$ rpki-client -vvf repo-rpki.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0/3135372e32302e3130302e302f32342d3234203d3e20313532343235.roa File: 3135372e32302e3130302e302f32342d3234203d3e20313532343235.roa (raw, json) Hash identifier: 4pn9i96Sd9Dytot6pDnqe2G9IGnKwhQFNG+fNFPTqyM= Subject key identifier: E4:38:05:E0:AB:14:4E:07:CB:FF:E5:6A:20:FA:C3:B6:55:5C:F7:14 Certificate issuer: /CN=4ED16B9231905A1C7A353DF749BF99487E69E313 Certificate serial: 024304C68829704FD35D9FBEEC4A3CC99569D306 Authority key identifier: 4E:D1:6B:92:31:90:5A:1C:7A:35:3D:F7:49:BF:99:48:7E:69:E3:13 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4ED16B9231905A1C7A353DF749BF99487E69E313.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0/3135372e32302e3130302e302f32342d3234203d3e20313532343235.roa Signing time: Sat 27 Apr 2024 05:24:40 +0000 ROA not before: Sat 27 Apr 2024 05:19:40 +0000 ROA not after: Sat 26 Apr 2025 05:24:40 +0000 asID: 152425 IP address blocks: 157.20.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0/4ED16B9231905A1C7A353DF749BF99487E69E313.crl rsync://repo-rpki.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0/4ED16B9231905A1C7A353DF749BF99487E69E313.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4ED16B9231905A1C7A353DF749BF99487E69E313.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:43:04:c6:88:29:70:4f:d3:5d:9f:be:ec:4a:3c:c9:95:69:d3:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ED16B9231905A1C7A353DF749BF99487E69E313 Validity Not Before: Apr 27 05:19:40 2024 GMT Not After : Apr 26 05:24:40 2025 GMT Subject: CN=E43805E0AB144E07CBFFE56A20FAC3B6555CF714 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:32:4e:1b:fa:c6:c1:8a:75:9d:06:e9:ae:0e: fa:31:24:c3:b6:c4:45:0a:8d:0f:88:03:a7:ba:40: a1:c9:f2:53:47:db:2b:3b:ce:3d:16:55:64:c0:f5: 30:92:69:86:d2:5c:d9:9f:9b:37:0a:91:9b:23:3b: be:ab:70:a7:10:b7:8e:9d:89:4e:ba:35:6b:c0:05: 63:c6:83:89:9f:b7:85:65:3c:ab:33:37:65:62:0b: 2e:09:1f:54:b1:8c:3e:5a:a8:58:52:5b:6f:63:88: 4c:ee:68:c6:70:d8:fa:2d:28:fb:a1:9f:36:6a:d3: bc:0b:3a:a7:b6:5f:c2:17:8d:a1:63:cf:ee:9b:00: 12:3f:8d:21:f2:59:9f:a6:ed:ee:0c:d5:ac:ca:d6: 89:65:8f:f5:66:af:20:1a:29:a9:bd:15:b5:52:53: c5:40:37:48:20:92:76:8f:7d:c4:d6:9f:08:3c:3e: ca:90:b9:eb:80:68:52:66:c3:3c:6f:76:6b:ff:34: 66:b7:70:3f:ef:ac:fb:0a:1c:e8:f1:27:b7:fb:56: 8e:89:1d:87:c1:f3:4d:dc:a9:15:72:0f:71:aa:d6: dc:c3:8a:a8:a2:df:a5:05:b1:1d:f8:43:bc:2d:de: db:7b:a1:44:81:91:ad:23:a5:69:dc:4e:68:43:d6: ff:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:38:05:E0:AB:14:4E:07:CB:FF:E5:6A:20:FA:C3:B6:55:5C:F7:14 X509v3 Authority Key Identifier: keyid:4E:D1:6B:92:31:90:5A:1C:7A:35:3D:F7:49:BF:99:48:7E:69:E3:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0/4ED16B9231905A1C7A353DF749BF99487E69E313.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4ED16B9231905A1C7A353DF749BF99487E69E313.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0/3135372e32302e3130302e302f32342d3234203d3e20313532343235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.100.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:da:05:ca:22:0f:5e:4e:3a:c3:1c:2c:f4:38:d4:14:c1:4f: e9:5c:41:a1:71:14:61:01:17:93:30:4e:8e:34:31:a0:48:fe: 1c:97:33:af:c5:e2:c9:8e:7f:70:0c:61:32:ce:39:4f:ae:15: 83:bc:66:ca:be:e1:35:2e:d3:c7:30:28:c1:55:df:46:9d:ec: c1:7f:38:48:00:87:60:3e:61:3c:73:4b:4b:b8:c7:be:3d:0a: 6c:10:c1:ce:a1:d3:d4:ce:79:67:dd:59:39:90:44:ad:08:dc: 40:5b:2e:5b:8b:0a:eb:36:e6:00:f3:79:0c:a2:33:64:bb:f2: 1c:e9:dc:1b:b7:63:27:24:20:fc:06:e8:77:db:e1:3d:ed:3b: 58:92:18:8a:40:f4:52:01:10:9b:27:df:8e:16:06:31:6e:66: 62:b5:aa:af:78:4b:17:ac:f7:a4:1c:4e:0b:ff:69:b1:e4:e0: eb:c8:79:1b:7e:2d:30:80:0e:4b:54:99:14:68:54:d1:13:8f: 4d:3a:da:d8:05:31:58:76:82:93:f8:a9:b3:6d:25:e9:d3:41: 43:ec:10:c3:e7:14:30:43:a4:95:3e:82:30:a0:d8:ce:c9:b3: e7:b8:39:2e:bf:73:0d:22:2e:1a:38:7c:5c:8e:6f:c2:29:aa: af:92:ae:c0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAkMExogpcE/TXZ++7Eo8yZVp0wYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEVEMTZCOTIzMTkwNUExQzdBMzUzREY3NDlCRjk5NDg3 RTY5RTMxMzAeFw0yNDA0MjcwNTE5NDBaFw0yNTA0MjYwNTI0NDBaMDMxMTAvBgNV BAMTKEU0MzgwNUUwQUIxNDRFMDdDQkZGRTU2QTIwRkFDM0I2NTU1Q0Y3MTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLMk4b+sbBinWdBumuDvoxJMO2 xEUKjQ+IA6e6QKHJ8lNH2ys7zj0WVWTA9TCSaYbSXNmfmzcKkZsjO76rcKcQt46d iU66NWvABWPGg4mft4VlPKszN2ViCy4JH1SxjD5aqFhSW29jiEzuaMZw2PotKPuh nzZq07wLOqe2X8IXjaFjz+6bABI/jSHyWZ+m7e4M1azK1ollj/VmryAaKam9FbVS U8VAN0ggknaPfcTWnwg8PsqQueuAaFJmwzxvdmv/NGa3cD/vrPsKHOjxJ7f7Vo6J HYfB803cqRVyD3Gq1tzDiqii36UFsR34Q7wt3tt7oUSBka0jpWncTmhD1v/FAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU5DgF4KsUTgfL/+VqIPrDtlVc9xQwHwYDVR0j BBgwFoAUTtFrkjGQWhx6NT33Sb+ZSH5p4xMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Yjg4ZDJjYS0yMjliLTRhYWMtOWI1Yy00MmMxNTEwNWJiODIvMC80RUQxNkI5MjMx OTA1QTFDN0EzNTNERjc0OUJGOTk0ODdFNjlFMzEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNEVEMTZCOTIzMTkwNUExQzdBMzUzREY3NDlCRjk5NDg3RTY5 RTMxMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FiODhkMmNhLTIyOWItNGFhYy05 YjVjLTQyYzE1MTA1YmI4Mi8wLzMxMzUzNzJlMzIzMDJlMzEzMDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRRkMA0GCSqG SIb3DQEBCwUAA4IBAQCN2gXKIg9eTjrDHCz0ONQUwU/pXEGhcRRhAReTME6ONDGg SP4clzOvxeLJjn9wDGEyzjlPrhWDvGbKvuE1LtPHMCjBVd9GnezBfzhIAIdgPmE8 c0tLuMe+PQpsEMHOodPUznln3Vk5kEStCNxAWy5biwrrNuYA83kMojNku/Ic6dwb t2MnJCD8Buh32+E97TtYkhiKQPRSARCbJ9+OFgYxbmZitaqveEsXrPekHE4L/2mx 5ODryHkbfi0wgA5LVJkUaFTRE49NOtrYBTFYdoKT+KmzbSXp00FD7BDD5xQwQ6SV PoIwoNjOybPnuDkuv3MNIi4aOHxcjm/CKaqvkq7A -----END CERTIFICATE-----Generated at Fri Nov 22 09:39:13 2024 by rpki-client on console-ams.rpki-client.org