$ rpki-client -vvf repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33362e302f32332d3233203d3e20313430343730.roa File: 3135372e32302e33362e302f32332d3233203d3e20313430343730.roa (raw, json) Hash identifier: U38sUkdxAIlKS7gfjQdptpoWDf2BQeiqfgxDUY6pqYc= Subject key identifier: 3B:68:6D:60:FE:3D:76:BE:62:09:E8:33:4F:7B:68:3D:FA:2A:68:AE Certificate issuer: /CN=B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46 Certificate serial: 7BC5C7E64D97D18B2AEB41E88155AB8BA5757A71 Authority key identifier: B5:AB:E8:6E:BB:2A:02:C5:83:92:74:9A:92:FE:A6:8F:BA:FC:5C:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33362e302f32332d3233203d3e20313430343730.roa Signing time: Wed 13 Mar 2024 07:24:12 +0000 ROA not before: Wed 13 Mar 2024 07:19:12 +0000 ROA not after: Wed 12 Mar 2025 07:24:12 +0000 asID: 140470 IP address blocks: 157.20.36.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.crl rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:c5:c7:e6:4d:97:d1:8b:2a:eb:41:e8:81:55:ab:8b:a5:75:7a:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46 Validity Not Before: Mar 13 07:19:12 2024 GMT Not After : Mar 12 07:24:12 2025 GMT Subject: CN=3B686D60FE3D76BE6209E8334F7B683DFA2A68AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:c8:63:6f:36:ed:b7:24:b8:d8:17:0c:84:33: d5:ff:25:8b:3c:81:25:d1:c6:88:14:5b:77:c2:a1: 75:82:3c:5c:14:e5:99:39:95:7b:9f:d9:86:c3:43: c8:19:68:ad:54:ce:63:72:ac:38:11:17:9d:1c:5c: 95:e5:df:f6:ed:86:58:37:51:83:15:4e:25:04:93: 94:f6:0e:f4:08:9b:56:ff:90:41:84:56:91:22:b0: e5:ba:87:28:10:b3:d4:c4:36:08:ff:bb:34:d4:1c: fe:9c:d7:73:c6:fe:4c:4f:25:9e:33:ad:53:c9:86: ac:0b:66:82:9f:b3:3e:f2:3a:7c:be:83:f4:36:cb: 38:38:7e:d9:15:96:0f:c8:f9:6a:d4:25:f8:ee:88: e8:11:60:13:91:9d:5e:84:b5:46:17:1a:2c:e8:67: 8c:b9:e9:90:35:ce:ea:9a:a7:92:82:6f:c7:71:43: ec:bb:47:9f:50:52:97:9c:a4:b0:b4:09:34:99:9f: 0a:c4:02:61:15:e6:13:3d:69:09:81:55:14:b6:4e: a1:ad:97:b7:db:6b:e7:6f:3f:1a:63:26:40:8c:32: c3:ee:cc:2a:d8:29:0d:56:c7:e8:09:14:ec:5e:75: 9f:f0:12:ee:bb:32:6a:b8:f1:32:51:0e:a2:e9:a4: 63:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:68:6D:60:FE:3D:76:BE:62:09:E8:33:4F:7B:68:3D:FA:2A:68:AE X509v3 Authority Key Identifier: keyid:B5:AB:E8:6E:BB:2A:02:C5:83:92:74:9A:92:FE:A6:8F:BA:FC:5C:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33362e302f32332d3233203d3e20313430343730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.36.0/23 Signature Algorithm: sha256WithRSAEncryption 25:66:f0:0a:f6:df:3d:f7:73:b6:77:d7:8b:e5:39:d6:e5:1d: e6:3b:d0:04:4c:24:44:65:4e:69:22:52:8c:35:23:5d:21:30: da:1a:ff:35:16:d7:3a:01:b8:ca:95:10:41:76:ac:a2:7c:70: de:c3:e8:06:3e:4f:fe:dc:7b:c7:b3:b9:19:20:9d:87:b2:fc: 19:d2:2e:eb:75:21:13:d8:fd:64:81:80:db:12:cc:bf:a6:e0: ca:50:e3:ba:f0:77:5c:96:e0:95:dd:62:8a:26:71:da:0e:cb: 87:ba:ae:d6:17:c0:3a:b1:f4:ef:0e:89:f2:e4:40:90:fd:ba: 98:b9:6d:fb:3b:c2:7e:b5:75:c9:7c:35:d5:af:77:e3:b2:ec: e9:d8:f2:fd:ff:8d:ba:5a:eb:4b:b6:5e:74:95:81:c4:d9:45: 99:82:e7:fa:bc:83:be:01:f0:12:91:58:f8:d4:29:fd:8f:92: d9:0f:58:41:77:4d:11:68:93:37:ae:8e:25:81:05:ff:70:77: 6d:0e:49:e0:40:51:ec:23:bb:ca:86:e7:98:38:69:9f:c8:05: fa:ce:c5:4a:36:dd:6a:3d:7d:7b:f3:89:f3:99:04:a9:3f:19: 8c:af:79:4a:24:5a:ea:7f:be:75:fe:7a:de:2a:2a:40:a3:52: 8a:1f:4c:8c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUe8XH5k2X0Ysq60HogVWri6V1enEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjVBQkU4NkVCQjJBMDJDNTgzOTI3NDlBOTJGRUE2OEZC QUZDNUM0NjAeFw0yNDAzMTMwNzE5MTJaFw0yNTAzMTIwNzI0MTJaMDMxMTAvBgNV BAMTKDNCNjg2RDYwRkUzRDc2QkU2MjA5RTgzMzRGN0I2ODNERkEyQTY4QUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlyGNvNu23JLjYFwyEM9X/JYs8 gSXRxogUW3fCoXWCPFwU5Zk5lXuf2YbDQ8gZaK1UzmNyrDgRF50cXJXl3/bthlg3 UYMVTiUEk5T2DvQIm1b/kEGEVpEisOW6hygQs9TENgj/uzTUHP6c13PG/kxPJZ4z rVPJhqwLZoKfsz7yOny+g/Q2yzg4ftkVlg/I+WrUJfjuiOgRYBORnV6EtUYXGizo Z4y56ZA1zuqap5KCb8dxQ+y7R59QUpecpLC0CTSZnwrEAmEV5hM9aQmBVRS2TqGt l7fba+dvPxpjJkCMMsPuzCrYKQ1Wx+gJFOxedZ/wEu67Mmq48TJRDqLppGPrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUO2htYP49dr5iCegzT3toPfoqaK4wHwYDVR0j BBgwFoAUtavobrsqAsWDknSakv6mj7r8XEYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MGJkN2Q2Yy1lYTVhLTRjNDUtOTU1OC03MTc5OTRhYjY4MGUvMC9CNUFCRTg2RUJC MkEwMkM1ODM5Mjc0OUE5MkZFQTY4RkJBRkM1QzQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQjVBQkU4NkVCQjJBMDJDNTgzOTI3NDlBOTJGRUE2OEZCQUZD NUM0Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwYmQ3ZDZjLWVhNWEtNGM0NS05 NTU4LTcxNzk5NGFiNjgwZS8wLzMxMzUzNzJlMzIzMDJlMzMzNjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzQzMDM0MzczMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0UJDANBgkqhkiG 9w0BAQsFAAOCAQEAJWbwCvbfPfdztnfXi+U51uUd5jvQBEwkRGVOaSJSjDUjXSEw 2hr/NRbXOgG4ypUQQXasonxw3sPoBj5P/tx7x7O5GSCdh7L8GdIu63UhE9j9ZIGA 2xLMv6bgylDjuvB3XJbgld1iiiZx2g7Lh7qu1hfAOrH07w6J8uRAkP26mLlt+zvC frV1yXw11a9347Ls6djy/f+NulrrS7ZedJWBxNlFmYLn+ryDvgHwEpFY+NQp/Y+S 2Q9YQXdNEWiTN66OJYEF/3B3bQ5J4EBR7CO7yobnmDhpn8gF+s7FSjbdaj19e/OJ 85kEqT8ZjK95SiRa6n++df563ioqQKNSih9MjA== -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:18 2024 by rpki-client on console-ams.rpki-client.org