$ rpki-client -vvf repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/3135372e32302e3135362e302f32332d3234203d3e20313532343131.roa File: 3135372e32302e3135362e302f32332d3234203d3e20313532343131.roa (raw, json) Hash identifier: VM44oDzp89KI0ikehp4Z/5g3jnp7Z7A/ZmjZbHNeCC8= Subject key identifier: E3:4F:F6:6E:48:04:61:F6:7B:A1:EA:F6:DB:10:1B:18:B1:C9:D6:78 Certificate issuer: /CN=99A17325620A243689E32E6074D5CFCA91D915EB Certificate serial: 59979B9BFC988E21331AC3E76ED06BB67365E4F5 Authority key identifier: 99:A1:73:25:62:0A:24:36:89:E3:2E:60:74:D5:CF:CA:91:D9:15:EB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/99A17325620A243689E32E6074D5CFCA91D915EB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/3135372e32302e3135362e302f32332d3234203d3e20313532343131.roa Signing time: Sun 31 Mar 2024 17:49:33 +0000 ROA not before: Sun 31 Mar 2024 17:44:33 +0000 ROA not after: Sun 30 Mar 2025 17:49:33 +0000 asID: 152411 IP address blocks: 157.20.156.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.crl rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/99A17325620A243689E32E6074D5CFCA91D915EB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:97:9b:9b:fc:98:8e:21:33:1a:c3:e7:6e:d0:6b:b6:73:65:e4:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99A17325620A243689E32E6074D5CFCA91D915EB Validity Not Before: Mar 31 17:44:33 2024 GMT Not After : Mar 30 17:49:33 2025 GMT Subject: CN=E34FF66E480461F67BA1EAF6DB101B18B1C9D678 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:5b:ae:39:5b:bf:23:e9:3d:f6:33:ba:7b:0b: 21:1e:a9:8b:21:72:62:8b:bc:f3:8f:45:8d:d0:41: 9c:8e:a0:ed:2c:63:7f:e0:cd:7d:09:ec:27:92:c2: b7:a2:92:b6:4a:4a:fb:0d:83:ed:9a:6d:95:3b:a8: c7:61:ab:6e:15:12:85:55:60:b2:af:71:45:82:be: 9f:78:d1:a3:89:0c:0a:a0:86:b6:38:ea:f4:5d:6d: 3d:2e:83:a7:41:fc:ba:6e:98:4e:98:d1:24:d8:e8: 6e:e4:89:71:bc:14:d0:28:77:83:7d:a6:d8:a9:32: a5:37:26:b6:f0:c4:bd:99:95:b9:b9:29:99:e8:f2: 3b:de:f1:25:b2:67:56:6a:db:cb:58:88:22:cf:9a: c5:7a:b5:da:b3:f7:27:fc:92:a0:79:ab:8b:55:3a: aa:62:fb:d4:ca:49:17:1f:70:96:ac:ce:fa:1e:95: 12:48:1a:3f:b3:d9:f8:28:e0:58:e5:68:bf:11:2a: 28:df:32:78:4e:18:d0:3f:f4:08:47:94:34:70:73: ce:6b:8d:6a:b0:01:49:e1:36:75:90:65:c6:1a:65: 67:f3:86:ac:d5:3d:53:71:09:b6:a9:c5:f6:14:78: 22:fa:c9:9c:bf:29:32:18:25:93:e0:6d:f8:f4:94: 63:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:4F:F6:6E:48:04:61:F6:7B:A1:EA:F6:DB:10:1B:18:B1:C9:D6:78 X509v3 Authority Key Identifier: keyid:99:A1:73:25:62:0A:24:36:89:E3:2E:60:74:D5:CF:CA:91:D9:15:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/99A17325620A243689E32E6074D5CFCA91D915EB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/3135372e32302e3135362e302f32332d3234203d3e20313532343131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.156.0/23 Signature Algorithm: sha256WithRSAEncryption 86:b8:09:d6:73:54:f2:b0:b7:75:9b:aa:2f:f6:f1:18:a9:ed: 3f:d5:87:af:88:ea:74:b2:c8:60:55:7e:d4:a6:05:1f:41:8e: b7:32:c2:0b:f3:75:96:58:67:78:b0:16:82:e7:0f:cd:d8:f3: dd:5a:bb:8c:d7:39:3b:68:03:15:36:eb:b6:29:0f:25:ea:4b: 22:52:37:00:8a:a8:f2:66:31:7c:47:e4:79:26:46:10:22:d8: 89:8a:38:f7:fc:c9:6e:e8:79:f6:14:aa:ed:a5:1a:8f:b0:a6: 16:23:b6:28:23:eb:a3:3c:33:36:c1:dd:87:5a:5d:d0:9b:c7: 48:e5:63:8c:31:6d:39:1a:b0:f1:71:c2:2e:b6:82:13:e9:19: 5f:f6:2c:e6:4f:d0:19:ae:90:7f:6c:4c:89:c5:99:b4:f2:f7: 90:17:43:2e:c9:72:81:e7:b6:71:83:c4:68:0d:f3:12:87:99: 3e:6c:8a:42:c7:54:79:95:a1:6e:d6:ed:66:68:8d:ac:e2:af: 16:36:5c:27:2a:3a:5b:ed:ce:7b:c3:e3:88:f6:84:05:de:b5: 3b:13:56:fb:6d:f7:21:f2:c2:c7:e7:7d:b4:3b:65:f9:32:42: e1:e8:77:d2:f8:84:63:28:2e:98:bb:d3:4d:f9:59:3d:12:2e: 93:45:09:59 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWZebm/yYjiEzGsPnbtBrtnNl5PUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTlBMTczMjU2MjBBMjQzNjg5RTMyRTYwNzRENUNGQ0E5 MUQ5MTVFQjAeFw0yNDAzMzExNzQ0MzNaFw0yNTAzMzAxNzQ5MzNaMDMxMTAvBgNV BAMTKEUzNEZGNjZFNDgwNDYxRjY3QkExRUFGNkRCMTAxQjE4QjFDOUQ2NzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0W645W78j6T32M7p7CyEeqYsh cmKLvPOPRY3QQZyOoO0sY3/gzX0J7CeSwreikrZKSvsNg+2abZU7qMdhq24VEoVV YLKvcUWCvp940aOJDAqghrY46vRdbT0ug6dB/LpumE6Y0STY6G7kiXG8FNAod4N9 ptipMqU3JrbwxL2Zlbm5KZno8jve8SWyZ1Zq28tYiCLPmsV6tdqz9yf8kqB5q4tV Oqpi+9TKSRcfcJaszvoelRJIGj+z2fgo4FjlaL8RKijfMnhOGNA/9AhHlDRwc85r jWqwAUnhNnWQZcYaZWfzhqzVPVNxCbapxfYUeCL6yZy/KTIYJZPgbfj0lGNlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU40/2bkgEYfZ7oer22xAbGLHJ1ngwHwYDVR0j BBgwFoAUmaFzJWIKJDaJ4y5gdNXPypHZFeswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDU5YjgyMi01YzA4LTQ2ZjEtYjI1ZS03NThkYzE4ZTk5MDUvMC85OUExNzMyNTYy MEEyNDM2ODlFMzJFNjA3NEQ1Q0ZDQTkxRDkxNUVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTlBMTczMjU2MjBBMjQzNjg5RTMyRTYwNzRENUNGQ0E5MUQ5 MTVFQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkNTliODIyLTVjMDgtNDZmMS1i MjVlLTc1OGRjMThlOTkwNS8wLzMxMzUzNzJlMzIzMDJlMzEzNTM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRScMA0GCSqG SIb3DQEBCwUAA4IBAQCGuAnWc1TysLd1m6ov9vEYqe0/1YeviOp0sshgVX7UpgUf QY63MsIL83WWWGd4sBaC5w/N2PPdWruM1zk7aAMVNuu2KQ8l6ksiUjcAiqjyZjF8 R+R5JkYQItiJijj3/Mlu6Hn2FKrtpRqPsKYWI7YoI+ujPDM2wd2HWl3Qm8dI5WOM MW05GrDxccIutoIT6Rlf9izmT9AZrpB/bEyJxZm08veQF0MuyXKB57Zxg8RoDfMS h5k+bIpCx1R5laFu1u1maI2s4q8WNlwnKjpb7c57w+OI9oQF3rU7E1b7bfch8sLH 5320O2X5MkLh6HfS+IRjKC6Yu9NN+Vk9Ei6TRQlZ -----END CERTIFICATE-----Generated at Wed Nov 20 18:41:50 2024 by rpki-client on console-fra.rpki-client.org