$ rpki-client -vvf repo-rpki.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/0/3135372e32302e3230342e302f32332d3233203d3e20313532343139.roa File: 3135372e32302e3230342e302f32332d3233203d3e20313532343139.roa (raw, json) Hash identifier: TFhj8SLO4LH98/gaGyMRF6J8AGLrxj5vgToGWgrHGVQ= Subject key identifier: 18:37:68:7E:5A:2E:89:A8:AF:BD:33:1C:4A:31:DE:B3:2B:BA:93:61 Certificate issuer: /CN=77ACF18F5317E7A202E583C3C59C223234FA2D8B Certificate serial: 7EBD7F3777CDC7B1473EFFB63E0A148319E0736B Authority key identifier: 77:AC:F1:8F:53:17:E7:A2:02:E5:83:C3:C5:9C:22:32:34:FA:2D:8B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/77ACF18F5317E7A202E583C3C59C223234FA2D8B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/0/3135372e32302e3230342e302f32332d3233203d3e20313532343139.roa Signing time: Wed 24 Apr 2024 19:09:46 +0000 ROA not before: Wed 24 Apr 2024 19:04:46 +0000 ROA not after: Wed 23 Apr 2025 19:09:46 +0000 asID: 152419 IP address blocks: 157.20.204.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/0/77ACF18F5317E7A202E583C3C59C223234FA2D8B.crl rsync://repo-rpki.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/0/77ACF18F5317E7A202E583C3C59C223234FA2D8B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/77ACF18F5317E7A202E583C3C59C223234FA2D8B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 03:51:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:bd:7f:37:77:cd:c7:b1:47:3e:ff:b6:3e:0a:14:83:19:e0:73:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=77ACF18F5317E7A202E583C3C59C223234FA2D8B Validity Not Before: Apr 24 19:04:46 2024 GMT Not After : Apr 23 19:09:46 2025 GMT Subject: CN=1837687E5A2E89A8AFBD331C4A31DEB32BBA9361 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:3a:10:9a:68:ad:48:42:62:27:57:e0:a4:bc: 7b:d9:ec:15:3c:9c:89:60:12:8c:cb:0d:10:ef:92: a7:02:3f:e9:93:5a:89:c4:f8:1f:bf:cb:b6:80:0c: 07:b0:b3:a5:b6:ee:37:12:b9:79:46:c8:5b:09:c5: 08:b7:9d:50:e3:05:d7:9a:fb:0c:57:51:94:44:91: 24:08:69:74:0c:db:b8:2a:79:99:78:d8:6c:c5:e4: d8:70:53:e1:b2:bb:c5:88:87:a1:3b:5f:3f:fe:fb: 50:20:ca:8f:ca:2e:80:68:4d:66:09:b3:a3:e1:5b: fd:8c:9c:5d:7f:da:be:c6:4c:e8:9f:59:6c:a0:3a: c6:4b:d1:bb:08:36:49:15:b9:87:33:7b:b0:37:0b: 3d:c3:80:30:00:05:a7:be:4f:9e:f6:8d:4c:fb:55: 1b:03:59:b6:41:58:2d:6f:0c:c9:41:17:92:16:c8: ec:ce:e6:60:cb:01:e8:14:e0:fa:63:00:17:c4:64: 5c:d5:f0:bc:89:73:1e:23:ee:98:88:c8:20:c3:d4: 84:9c:75:aa:0e:dc:19:63:e5:7d:31:83:9d:c5:6c: 5e:fc:7a:dd:87:89:2b:e9:d1:ee:c2:d4:51:69:fe: fe:29:94:b1:e8:f6:d7:1f:af:d1:02:36:36:04:3a: f6:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:37:68:7E:5A:2E:89:A8:AF:BD:33:1C:4A:31:DE:B3:2B:BA:93:61 X509v3 Authority Key Identifier: keyid:77:AC:F1:8F:53:17:E7:A2:02:E5:83:C3:C5:9C:22:32:34:FA:2D:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/0/77ACF18F5317E7A202E583C3C59C223234FA2D8B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/77ACF18F5317E7A202E583C3C59C223234FA2D8B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/0/3135372e32302e3230342e302f32332d3233203d3e20313532343139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.204.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:e9:58:14:79:7b:b6:49:26:49:a9:8c:33:35:80:50:14:ce: 43:b1:99:a0:fb:e7:98:66:5b:10:4d:5f:c4:36:99:00:32:4e: 2c:36:5d:1d:3a:8b:fc:fe:07:9a:14:4a:47:7c:36:04:d2:40: fb:71:db:1b:d2:dd:02:61:ee:a2:16:c8:b5:9a:f3:a6:4e:4f: 8d:c0:a4:c0:f5:a4:49:88:bd:c6:5e:cf:7f:bf:1d:3d:e2:7a: 82:8b:58:97:f2:25:e5:a8:93:16:3c:ab:eb:cb:4a:f1:71:b5: ed:f7:b5:67:af:c5:d0:ef:e6:25:b8:3e:e1:da:02:bf:fc:26: 84:6e:bc:c8:41:fb:a9:71:07:11:cc:9c:85:2d:2e:50:2e:24: d4:03:b1:d0:66:fb:08:43:86:7f:77:02:f6:7a:c3:f9:86:b5: bd:d5:8c:c6:48:c6:58:f1:c7:2d:4c:1f:1d:d1:e3:cf:21:0b: e5:69:eb:ef:91:2e:6e:a8:c7:38:4f:bb:a2:39:a8:3c:f9:56: 53:44:18:7f:ad:70:16:8f:39:51:1b:eb:0a:1f:99:de:a1:c2: 4f:99:38:55:2f:83:67:26:a4:b0:dd:69:1c:95:1e:df:35:8e: 02:87:8b:b9:2d:be:08:b7:ba:a3:61:6e:a8:17:e8:23:c7:ec: 51:2a:ae:12 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfr1/N3fNx7FHPv+2PgoUgxngc2swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzdBQ0YxOEY1MzE3RTdBMjAyRTU4M0MzQzU5QzIyMzIz NEZBMkQ4QjAeFw0yNDA0MjQxOTA0NDZaFw0yNTA0MjMxOTA5NDZaMDMxMTAvBgNV BAMTKDE4Mzc2ODdFNUEyRTg5QThBRkJEMzMxQzRBMzFERUIzMkJCQTkzNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsOhCaaK1IQmInV+CkvHvZ7BU8 nIlgEozLDRDvkqcCP+mTWonE+B+/y7aADAews6W27jcSuXlGyFsJxQi3nVDjBdea +wxXUZREkSQIaXQM27gqeZl42GzF5NhwU+Gyu8WIh6E7Xz/++1Agyo/KLoBoTWYJ s6PhW/2MnF1/2r7GTOifWWygOsZL0bsINkkVuYcze7A3Cz3DgDAABae+T572jUz7 VRsDWbZBWC1vDMlBF5IWyOzO5mDLAegU4PpjABfEZFzV8LyJcx4j7piIyCDD1ISc daoO3Blj5X0xg53FbF78et2HiSvp0e7C1FFp/v4plLHo9tcfr9ECNjYEOvY/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGDdoflouiaivvTMcSjHesyu6k2EwHwYDVR0j BBgwFoAUd6zxj1MX56IC5YPDxZwiMjT6LYswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDgyM2JiMy01YTAxLTQ2NTgtYTc4My1mOGU4OWZhZGNmNDUvMC83N0FDRjE4RjUz MTdFN0EyMDJFNTgzQzNDNTlDMjIzMjM0RkEyRDhCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNzdBQ0YxOEY1MzE3RTdBMjAyRTU4M0MzQzU5QzIyMzIzNEZB MkQ4Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkODIzYmIzLTVhMDEtNDY1OC1h NzgzLWY4ZTg5ZmFkY2Y0NS8wLzMxMzUzNzJlMzIzMDJlMzIzMDM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzQzMTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRTMMA0GCSqG SIb3DQEBCwUAA4IBAQBP6VgUeXu2SSZJqYwzNYBQFM5DsZmg++eYZlsQTV/ENpkA Mk4sNl0dOov8/geaFEpHfDYE0kD7cdsb0t0CYe6iFsi1mvOmTk+NwKTA9aRJiL3G Xs9/vx094nqCi1iX8iXlqJMWPKvry0rxcbXt97Vnr8XQ7+YluD7h2gK//CaEbrzI QfupcQcRzJyFLS5QLiTUA7HQZvsIQ4Z/dwL2esP5hrW91YzGSMZY8cctTB8d0ePP IQvlaevvkS5uqMc4T7uiOag8+VZTRBh/rXAWjzlRG+sKH5neocJPmThVL4NnJqSw 3WkclR7fNY4Ch4u5Lb4It7qjYW6oF+gjx+xRKq4S -----END CERTIFICATE-----Generated at Sat Jun 22 12:35:22 2024 by rpki-client on console-fra.rpki-client.org