$ rpki-client -vvf repo-rpki.idnic.net/repo/acaccf26-8354-49c8-998a-0a44a64eb909/0/3135372e32302e3233362e302f32342d3234203d3e203538333639.roa File: 3135372e32302e3233362e302f32342d3234203d3e203538333639.roa (raw, json) Hash identifier: M2WSqRxJqm/a+TjExZAycGaOr3lagmCqKP+vn/w0Hu4= Subject key identifier: 0B:E1:37:7A:9B:F1:28:29:21:A9:43:AB:7E:A9:10:F8:BC:47:E9:C3 Certificate issuer: /CN=92E0AE79CBF46A2DC24CDD3A7FD48A842BCFEE8D Certificate serial: 2B5907D79A24A9F6CE5F2FD05A277464D3894DC1 Authority key identifier: 92:E0:AE:79:CB:F4:6A:2D:C2:4C:DD:3A:7F:D4:8A:84:2B:CF:EE:8D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/92E0AE79CBF46A2DC24CDD3A7FD48A842BCFEE8D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acaccf26-8354-49c8-998a-0a44a64eb909/0/3135372e32302e3233362e302f32342d3234203d3e203538333639.roa Signing time: Tue 02 Apr 2024 08:02:19 +0000 ROA not before: Tue 02 Apr 2024 07:57:19 +0000 ROA not after: Tue 01 Apr 2025 08:02:19 +0000 asID: 58369 IP address blocks: 157.20.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acaccf26-8354-49c8-998a-0a44a64eb909/0/92E0AE79CBF46A2DC24CDD3A7FD48A842BCFEE8D.crl rsync://repo-rpki.idnic.net/repo/acaccf26-8354-49c8-998a-0a44a64eb909/0/92E0AE79CBF46A2DC24CDD3A7FD48A842BCFEE8D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/92E0AE79CBF46A2DC24CDD3A7FD48A842BCFEE8D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 15:51:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:59:07:d7:9a:24:a9:f6:ce:5f:2f:d0:5a:27:74:64:d3:89:4d:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92E0AE79CBF46A2DC24CDD3A7FD48A842BCFEE8D Validity Not Before: Apr 2 07:57:19 2024 GMT Not After : Apr 1 08:02:19 2025 GMT Subject: CN=0BE1377A9BF1282921A943AB7EA910F8BC47E9C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:6e:78:36:6e:d1:70:bc:36:9a:27:97:48:88: 78:ee:c3:d3:e6:b8:fa:bd:1f:06:98:d5:93:0e:f0: f8:85:80:b3:61:04:fa:83:5a:07:c5:44:df:2a:53: 03:6f:62:38:c0:b4:0a:a4:c2:87:92:c3:8d:2a:b6: e9:f8:32:ac:b7:1e:90:15:12:f4:67:b6:d4:b7:21: fb:0a:bf:11:b0:5d:4c:6d:cd:46:b7:c3:0e:c5:f3: 2a:12:7d:d9:e9:8f:35:22:63:4a:58:a9:c2:5d:6b: 77:07:0b:1c:af:b7:ab:17:a8:e8:df:e9:9f:e3:49: 7d:4a:2d:13:56:69:b9:31:74:40:cd:5f:66:9b:13: 7d:92:1c:49:55:94:c7:eb:9e:7c:18:31:91:eb:65: 75:7d:33:81:0b:82:db:35:f1:9f:7f:d6:9a:06:b8: 57:c6:0d:76:8e:74:0a:a1:98:a9:3a:cb:14:72:4c: c5:6c:43:35:a3:aa:cf:c9:7e:b8:95:72:8f:72:a2: d3:18:5b:ad:7b:45:8d:c0:62:d4:91:40:2b:9f:b9: df:b4:17:bc:5d:31:77:ab:e0:01:ba:c0:b1:72:fa: be:f3:60:df:71:4a:a7:15:e0:e6:20:01:cd:38:fb: 8a:8a:fa:71:91:80:d4:b2:49:a7:c5:be:19:d4:f7: bb:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:E1:37:7A:9B:F1:28:29:21:A9:43:AB:7E:A9:10:F8:BC:47:E9:C3 X509v3 Authority Key Identifier: keyid:92:E0:AE:79:CB:F4:6A:2D:C2:4C:DD:3A:7F:D4:8A:84:2B:CF:EE:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acaccf26-8354-49c8-998a-0a44a64eb909/0/92E0AE79CBF46A2DC24CDD3A7FD48A842BCFEE8D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/92E0AE79CBF46A2DC24CDD3A7FD48A842BCFEE8D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acaccf26-8354-49c8-998a-0a44a64eb909/0/3135372e32302e3233362e302f32342d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.236.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:9c:38:ae:78:8e:04:75:03:cb:fe:c7:a7:38:1b:72:ff:33: 62:b4:99:98:13:a1:f1:46:42:d0:91:1b:ca:5c:92:86:0e:33: b3:79:11:34:8a:93:0b:e4:e2:fc:f2:a5:0e:e5:3d:ad:c7:e0: f3:a4:6e:d8:06:f1:22:7c:82:11:fc:55:61:7e:64:32:f5:b6: 3d:3d:48:7d:1d:70:b1:19:8b:d6:58:d2:95:97:3d:c5:21:73: df:a1:75:a5:af:6b:ef:1a:ad:00:93:91:15:55:33:f9:1b:fb: 42:2d:fb:33:ec:75:bc:50:70:2b:9d:6f:3e:43:47:d4:f8:bf: 16:b6:23:bf:e3:76:91:c9:cf:24:d6:9e:93:6b:66:be:c0:34: a6:51:65:32:6c:c2:3b:c2:aa:a0:11:b0:23:6f:1a:b0:3e:87: 5f:62:5f:de:67:57:e8:df:ac:95:ab:8a:e6:68:9d:08:60:a8: af:6a:82:69:fb:0a:db:04:26:a0:2b:b5:c0:42:c7:59:3a:50: 17:2f:03:e0:45:40:0f:42:6a:09:0d:92:3e:b4:6b:10:ad:80: 4c:ba:b1:47:4f:13:47:cf:46:87:0f:97:1c:d0:96:72:c8:fa: 75:90:b7:02:30:43:19:0c:62:32:7d:c9:32:ee:15:ad:cc:f2: d8:55:15:d0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUK1kH15okqfbOXy/QWid0ZNOJTcEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTJFMEFFNzlDQkY0NkEyREMyNENERDNBN0ZENDhBODQy QkNGRUU4RDAeFw0yNDA0MDIwNzU3MTlaFw0yNTA0MDEwODAyMTlaMDMxMTAvBgNV BAMTKDBCRTEzNzdBOUJGMTI4MjkyMUE5NDNBQjdFQTkxMEY4QkM0N0U5QzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4bng2btFwvDaaJ5dIiHjuw9Pm uPq9HwaY1ZMO8PiFgLNhBPqDWgfFRN8qUwNvYjjAtAqkwoeSw40qtun4Mqy3HpAV EvRnttS3IfsKvxGwXUxtzUa3ww7F8yoSfdnpjzUiY0pYqcJda3cHCxyvt6sXqOjf 6Z/jSX1KLRNWabkxdEDNX2abE32SHElVlMfrnnwYMZHrZXV9M4ELgts18Z9/1poG uFfGDXaOdAqhmKk6yxRyTMVsQzWjqs/JfriVco9yotMYW617RY3AYtSRQCufud+0 F7xdMXer4AG6wLFy+r7zYN9xSqcV4OYgAc04+4qK+nGRgNSySafFvhnU97vXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUC+E3epvxKCkhqUOrfqkQ+LxH6cMwHwYDVR0j BBgwFoAUkuCuecv0ai3CTN06f9SKhCvP7o0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2FjY2YyNi04MzU0LTQ5YzgtOTk4YS0wYTQ0YTY0ZWI5MDkvMC85MkUwQUU3OUNC RjQ2QTJEQzI0Q0REM0E3RkQ0OEE4NDJCQ0ZFRThELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTJFMEFFNzlDQkY0NkEyREMyNENERDNBN0ZENDhBODQyQkNG RUU4RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYWNjZjI2LTgzNTQtNDljOC05 OThhLTBhNDRhNjRlYjkwOS8wLzMxMzUzNzJlMzIzMDJlMzIzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0U7DANBgkqhkiG 9w0BAQsFAAOCAQEAi5w4rniOBHUDy/7Hpzgbcv8zYrSZmBOh8UZC0JEbylyShg4z s3kRNIqTC+Ti/PKlDuU9rcfg86Ru2AbxInyCEfxVYX5kMvW2PT1IfR1wsRmL1ljS lZc9xSFz36F1pa9r7xqtAJORFVUz+Rv7Qi37M+x1vFBwK51vPkNH1Pi/FrYjv+N2 kcnPJNaek2tmvsA0plFlMmzCO8KqoBGwI28asD6HX2Jf3mdX6N+slauK5midCGCo r2qCafsK2wQmoCu1wELHWTpQFy8D4EVAD0JqCQ2SPrRrEK2ATLqxR08TR89Ghw+X HNCWcsj6dZC3AjBDGQxiMn3JMu4Vrczy2FUV0A== -----END CERTIFICATE-----Generated at Tue Apr 30 15:50:31 2024 by rpki-client on console-fra.rpki-client.org