$ rpki-client -vvf repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/3135372e32302e39322e302f32332d3234203d3e20313532343037.roa File: 3135372e32302e39322e302f32332d3234203d3e20313532343037.roa (raw, json) Hash identifier: MU3QX9wOyN5MJ5+2Sse/wz/eRIZjpwZUwSSKtJec7ic= Subject key identifier: D3:0A:EC:E1:E9:37:26:FB:17:13:97:25:93:BB:56:B8:9A:E4:3F:A9 Certificate issuer: /CN=871B4235DFC56C482416E7BBA192562092FFE055 Certificate serial: 2AFF4B2B06D43D5F80DED95CCA427D3994DA8B2D Authority key identifier: 87:1B:42:35:DF:C5:6C:48:24:16:E7:BB:A1:92:56:20:92:FF:E0:55 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/3135372e32302e39322e302f32332d3234203d3e20313532343037.roa Signing time: Tue 19 Mar 2024 06:02:47 +0000 ROA not before: Tue 19 Mar 2024 05:57:47 +0000 ROA not after: Tue 18 Mar 2025 06:02:47 +0000 asID: 152407 IP address blocks: 157.20.92.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.crl rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:ff:4b:2b:06:d4:3d:5f:80:de:d9:5c:ca:42:7d:39:94:da:8b:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=871B4235DFC56C482416E7BBA192562092FFE055 Validity Not Before: Mar 19 05:57:47 2024 GMT Not After : Mar 18 06:02:47 2025 GMT Subject: CN=D30AECE1E93726FB1713972593BB56B89AE43FA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:56:bd:5d:21:45:83:14:f0:7e:dc:80:56:c1: 53:36:18:19:20:db:e2:f8:ab:7e:3d:66:79:42:41: bd:b1:81:5b:01:a0:1d:69:75:4e:7c:f4:91:65:7e: 17:3b:61:61:51:56:d0:16:d4:df:16:f4:37:9c:3d: 49:35:ca:30:ae:90:a8:a2:6e:e8:ab:10:01:22:29: e7:fa:7d:22:0a:3f:d3:24:27:6f:6f:2f:65:e4:5f: e2:56:73:9a:0e:5e:0e:ef:50:7e:65:d7:c3:87:06: 66:de:f8:2f:f1:f2:d0:20:3e:c5:96:37:1e:4e:9e: 47:c0:8f:16:ce:fb:5c:b4:31:e8:75:94:80:9a:e8: a0:a6:1c:6a:0c:91:e6:eb:a1:b0:9a:86:c5:51:8b: 2c:ef:68:dc:c6:1f:af:b4:8e:dd:2b:d8:5a:fe:09: fe:71:f9:a2:99:56:14:1e:0b:16:46:ef:c9:7a:fe: a0:c8:df:ed:b8:c1:79:6e:fb:f5:ca:88:82:37:7f: aa:af:d6:e2:01:10:2f:35:19:e4:12:72:72:52:bd: 90:72:8c:82:07:16:6f:2f:be:b4:53:bc:aa:7a:6d: 8d:ae:aa:3d:76:f6:31:3a:3b:a3:4d:30:1b:cf:02: 05:59:67:53:64:81:64:1d:98:c1:b9:ea:66:e1:49: 5f:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:0A:EC:E1:E9:37:26:FB:17:13:97:25:93:BB:56:B8:9A:E4:3F:A9 X509v3 Authority Key Identifier: keyid:87:1B:42:35:DF:C5:6C:48:24:16:E7:BB:A1:92:56:20:92:FF:E0:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/3135372e32302e39322e302f32332d3234203d3e20313532343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.92.0/23 Signature Algorithm: sha256WithRSAEncryption 19:71:93:55:44:d0:6e:84:55:7b:b4:dd:79:5b:16:13:8b:af: 55:dc:a2:c4:60:c4:8f:cd:9f:12:28:99:0d:25:00:40:67:d9: f6:ff:ab:fb:5c:22:f0:22:f0:c2:45:25:52:26:16:d2:e7:0b: 8e:b2:0a:b5:29:14:a7:17:38:38:cc:43:cb:42:cd:f4:90:46: 81:d9:68:27:23:3e:5f:44:4c:d3:1c:ae:02:89:3c:05:e0:8c: 49:c9:cf:0b:11:87:aa:e8:18:35:f8:0f:0b:69:d2:58:06:41: fa:31:57:aa:66:0a:aa:e9:89:61:2e:f1:fb:7a:23:da:1e:d1: 03:85:9f:e6:69:6e:d9:bc:ac:d3:5a:82:4a:0a:c7:62:99:95: ee:9b:82:38:fa:13:93:14:74:c9:fa:d1:c0:07:c9:9b:f9:bb: 0d:5f:02:dc:68:df:d4:cd:0a:86:9c:83:b3:b5:5e:e3:1f:06: 31:36:a2:ca:b5:f6:03:05:17:72:5b:07:bf:43:b3:ea:ba:cc: da:27:a0:9a:d5:c0:4d:36:0c:dd:f0:e0:a7:9a:f6:35:07:12: 01:ca:94:fa:d9:55:cd:ea:5e:52:6d:ce:2e:f8:1c:40:ca:c6: a5:b4:b5:22:aa:d5:b2:b8:e3:0f:c8:90:0d:b2:e1:ea:04:ce: ec:55:2e:97 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKv9LKwbUPV+A3tlcykJ9OZTaiy0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2MjA5 MkZGRTA1NTAeFw0yNDAzMTkwNTU3NDdaFw0yNTAzMTgwNjAyNDdaMDMxMTAvBgNV BAMTKEQzMEFFQ0UxRTkzNzI2RkIxNzEzOTcyNTkzQkI1NkI4OUFFNDNGQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTVr1dIUWDFPB+3IBWwVM2GBkg 2+L4q349ZnlCQb2xgVsBoB1pdU589JFlfhc7YWFRVtAW1N8W9DecPUk1yjCukKii buirEAEiKef6fSIKP9MkJ29vL2XkX+JWc5oOXg7vUH5l18OHBmbe+C/x8tAgPsWW Nx5OnkfAjxbO+1y0Meh1lICa6KCmHGoMkebrobCahsVRiyzvaNzGH6+0jt0r2Fr+ Cf5x+aKZVhQeCxZG78l6/qDI3+24wXlu+/XKiII3f6qv1uIBEC81GeQScnJSvZBy jIIHFm8vvrRTvKp6bY2uqj129jE6O6NNMBvPAgVZZ1NkgWQdmMG56mbhSV9fAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0wrs4ek3JvsXE5clk7tWuJrkP6kwHwYDVR0j BBgwFoAUhxtCNd/FbEgkFue7oZJWIJL/4FUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YTg5NmZkYy01NjM4LTQxZDItOGE5OS02OGNlODE2YmQzY2YvMC84NzFCNDIzNURG QzU2QzQ4MjQxNkU3QkJBMTkyNTYyMDkyRkZFMDU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2MjA5MkZG RTA1NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZhODk2ZmRjLTU2MzgtNDFkMi04 YTk5LTY4Y2U4MTZiZDNjZi8wLzMxMzUzNzJlMzIzMDJlMzkzMjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjM0MzAzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0UXDANBgkqhkiG 9w0BAQsFAAOCAQEAGXGTVUTQboRVe7TdeVsWE4uvVdyixGDEj82fEiiZDSUAQGfZ 9v+r+1wi8CLwwkUlUiYW0ucLjrIKtSkUpxc4OMxDy0LN9JBGgdloJyM+X0RM0xyu Aok8BeCMScnPCxGHqugYNfgPC2nSWAZB+jFXqmYKqumJYS7x+3oj2h7RA4Wf5mlu 2bys01qCSgrHYpmV7puCOPoTkxR0yfrRwAfJm/m7DV8C3Gjf1M0KhpyDs7Ve4x8G MTaiyrX2AwUXclsHv0Oz6rrM2iegmtXATTYM3fDgp5r2NQcSAcqU+tlVzepeUm3O LvgcQMrGpbS1IqrVsrjjD8iQDbLh6gTO7FUulw== -----END CERTIFICATE-----Generated at Wed Nov 20 20:04:31 2024 by rpki-client on console-fra.rpki-client.org