$ rpki-client -vvf repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/3135372e32302e3232322e302f32342d3234203d3e20313532343337.roa File: 3135372e32302e3232322e302f32342d3234203d3e20313532343337.roa (raw, json) Hash identifier: +Kj/yNSvqJkzfZHG0YjF5fj4VUnhw1dhWNDzyeVm7oE= Subject key identifier: A5:2E:4D:D0:F6:4C:CD:CF:2E:47:57:D1:AE:F4:33:82:1C:32:B5:3A Certificate issuer: /CN=FE79E56CBE99C773CD721DF7AB0E5CA2809D0739 Certificate serial: 3D0521C30894A57333516A7415FC4C5385FBBA30 Authority key identifier: FE:79:E5:6C:BE:99:C7:73:CD:72:1D:F7:AB:0E:5C:A2:80:9D:07:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/3135372e32302e3232322e302f32342d3234203d3e20313532343337.roa Signing time: Wed 12 Jun 2024 04:37:22 +0000 ROA not before: Wed 12 Jun 2024 04:32:22 +0000 ROA not after: Wed 11 Jun 2025 04:37:22 +0000 asID: 152437 IP address blocks: 157.20.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.crl rsync://repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:05:21:c3:08:94:a5:73:33:51:6a:74:15:fc:4c:53:85:fb:ba:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FE79E56CBE99C773CD721DF7AB0E5CA2809D0739 Validity Not Before: Jun 12 04:32:22 2024 GMT Not After : Jun 11 04:37:22 2025 GMT Subject: CN=A52E4DD0F64CCDCF2E4757D1AEF433821C32B53A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:17:1c:1d:39:31:4d:b6:ef:c7:e8:db:e1:11: b1:e4:25:0b:0f:e7:37:6b:11:cc:43:98:71:45:35: 9d:4f:b7:0e:28:9b:5e:72:f5:84:69:52:af:e6:f0: 49:a8:54:0a:12:61:f2:25:20:76:d6:21:e4:53:9a: 6c:98:3b:30:9c:ae:2e:f3:e4:fa:f8:35:5f:cc:e3: 0a:5f:b0:2a:02:da:b6:6c:c8:63:5d:97:25:36:cf: 07:c0:ea:66:97:c9:bd:62:74:f8:14:3b:11:a8:0e: 7c:52:51:f4:0e:8d:1a:b5:e8:81:b9:91:ec:a7:ff: 5a:37:31:c7:33:22:67:28:14:39:d2:cb:db:43:2e: 25:11:89:cb:a5:d6:8c:5e:d9:e1:cd:2e:30:3c:3a: 45:03:ce:9a:6f:53:d2:34:f6:07:c0:28:0e:b6:0b: 8a:a8:8c:66:95:c1:d2:7e:2d:92:cc:19:1a:62:01: a7:d2:25:49:e6:a5:01:5c:b5:f8:4a:a8:ff:0e:8f: ee:a5:f8:74:9d:db:30:70:dc:ae:2e:4b:16:4f:c6: b5:9f:eb:8c:a7:d4:51:d6:a2:1e:3f:28:ef:3a:1c: 4d:0c:cf:12:55:7d:c8:e6:06:73:1b:cf:ad:cc:89: f0:e7:6b:05:42:ed:43:cc:dc:27:bd:12:59:46:f8: 16:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:2E:4D:D0:F6:4C:CD:CF:2E:47:57:D1:AE:F4:33:82:1C:32:B5:3A X509v3 Authority Key Identifier: keyid:FE:79:E5:6C:BE:99:C7:73:CD:72:1D:F7:AB:0E:5C:A2:80:9D:07:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/3135372e32302e3232322e302f32342d3234203d3e20313532343337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.222.0/24 Signature Algorithm: sha256WithRSAEncryption 76:9c:20:e0:26:b3:2e:74:1d:7f:62:f7:58:db:da:88:0b:f3: 03:83:45:37:c1:83:a9:82:80:b6:d8:de:9d:6c:07:a0:d7:ae: 9d:dd:28:f1:50:33:a7:af:08:01:30:82:16:99:57:31:c9:c0: 2f:ec:e6:ca:60:d7:46:de:08:bd:5e:4f:bc:d8:f9:fb:dd:e4: b5:67:02:e0:6e:cb:07:90:8e:c3:8b:b5:05:f4:03:89:91:a9: 32:ca:c1:9f:6b:36:44:33:4c:c4:4b:7f:95:84:de:04:b5:9c: c3:2d:6b:68:7f:60:c6:47:0a:08:c5:f7:31:81:be:6c:b7:c0: c2:e2:7e:19:39:4a:2d:5b:ad:bf:51:66:9c:7f:a6:63:f1:00: dd:c7:21:ea:27:6b:47:e3:5c:dc:b6:54:8d:c9:96:9c:05:e0: aa:d0:36:b1:04:35:eb:3d:13:5f:94:52:f4:91:fe:65:ed:4a: 39:25:c6:93:4b:8e:ce:0c:c3:82:03:0e:36:93:56:92:72:6e: 23:3b:45:73:20:56:5e:31:cf:dc:0f:1d:94:8d:b3:88:73:96: 3d:96:d2:13:11:de:ef:e6:1c:0a:37:36:29:d1:a6:68:92:01: 76:ed:e0:be:9f:71:86:51:f1:a6:1f:27:d3:98:9f:49:9c:cc: e0:23:9e:0e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPQUhwwiUpXMzUWp0FfxMU4X7ujAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkU3OUU1NkNCRTk5Qzc3M0NENzIxREY3QUIwRTVDQTI4 MDlEMDczOTAeFw0yNDA2MTIwNDMyMjJaFw0yNTA2MTEwNDM3MjJaMDMxMTAvBgNV BAMTKEE1MkU0REQwRjY0Q0NEQ0YyRTQ3NTdEMUFFRjQzMzgyMUMzMkI1M0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOFxwdOTFNtu/H6NvhEbHkJQsP 5zdrEcxDmHFFNZ1Ptw4om15y9YRpUq/m8EmoVAoSYfIlIHbWIeRTmmyYOzCcri7z 5Pr4NV/M4wpfsCoC2rZsyGNdlyU2zwfA6maXyb1idPgUOxGoDnxSUfQOjRq16IG5 keyn/1o3McczImcoFDnSy9tDLiURicul1oxe2eHNLjA8OkUDzppvU9I09gfAKA62 C4qojGaVwdJ+LZLMGRpiAafSJUnmpQFctfhKqP8Oj+6l+HSd2zBw3K4uSxZPxrWf 64yn1FHWoh4/KO86HE0MzxJVfcjmBnMbz63MifDnawVC7UPM3Ce9EllG+BZLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUpS5N0PZMzc8uR1fRrvQzghwytTowHwYDVR0j BBgwFoAU/nnlbL6Zx3PNch33qw5cooCdBzkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MWYxNWExZC01ZGFjLTRjYzktODExYS1lNDljYjRlN2JjZTEvMC9GRTc5RTU2Q0JF OTlDNzczQ0Q3MjFERjdBQjBFNUNBMjgwOUQwNzM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkU3OUU1NkNCRTk5Qzc3M0NENzIxREY3QUIwRTVDQTI4MDlE MDczOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExZjE1YTFkLTVkYWMtNGNjOS04 MTFhLWU0OWNiNGU3YmNlMS8wLzMxMzUzNzJlMzIzMDJlMzIzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRTeMA0GCSqG SIb3DQEBCwUAA4IBAQB2nCDgJrMudB1/YvdY29qIC/MDg0U3wYOpgoC22N6dbAeg 166d3SjxUDOnrwgBMIIWmVcxycAv7ObKYNdG3gi9Xk+82Pn73eS1ZwLgbssHkI7D i7UF9AOJkakyysGfazZEM0zES3+VhN4EtZzDLWtof2DGRwoIxfcxgb5st8DC4n4Z OUotW62/UWacf6Zj8QDdxyHqJ2tH41zctlSNyZacBeCq0DaxBDXrPRNflFL0kf5l 7Uo5JcaTS47ODMOCAw42k1aScm4jO0VzIFZeMc/cDx2UjbOIc5Y9ltITEd7v5hwK NzYp0aZokgF27eC+n3GGUfGmHyfTmJ9JnMzgI54O -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:56 2024 by rpki-client on console-ams.rpki-client.org