$ rpki-client -vvf repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33362e302f32342d3234203d3e20313430343730.roa File: 3135372e32302e33362e302f32342d3234203d3e20313430343730.roa (raw, json) Hash identifier: SDbh6f95nHzsvR8L/kjRB4/hgNlObxcAY8nUggl/LUc= Subject key identifier: 40:92:27:4C:93:88:7D:7F:53:6C:C8:CD:5A:8A:2E:73:A3:85:58:9C Certificate issuer: /CN=B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46 Certificate serial: 6834DD6F650887423865DF5266132C440703B9FF Authority key identifier: B5:AB:E8:6E:BB:2A:02:C5:83:92:74:9A:92:FE:A6:8F:BA:FC:5C:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33362e302f32342d3234203d3e20313430343730.roa Signing time: Wed 13 Mar 2024 07:16:12 +0000 ROA not before: Wed 13 Mar 2024 07:11:12 +0000 ROA not after: Wed 12 Mar 2025 07:16:12 +0000 asID: 140470 IP address blocks: 157.20.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.crl rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:34:dd:6f:65:08:87:42:38:65:df:52:66:13:2c:44:07:03:b9:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46 Validity Not Before: Mar 13 07:11:12 2024 GMT Not After : Mar 12 07:16:12 2025 GMT Subject: CN=4092274C93887D7F536CC8CD5A8A2E73A385589C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:50:78:4b:78:79:d8:9d:ca:82:5a:c2:b1:7e: f2:98:52:28:bb:b1:fd:fc:2e:01:ef:2c:50:f8:e2: a3:7d:33:1f:c6:20:99:23:5c:51:fb:5a:cd:5e:9a: 10:cd:99:fb:72:20:33:d1:a4:8e:9d:98:2f:d6:67: 51:f2:fa:3a:78:14:7b:b4:29:44:d3:19:37:66:8e: 8c:90:f4:2d:1d:ae:8f:06:ce:05:28:b2:e0:ee:1f: 18:c0:6d:e9:00:fe:1b:9b:ca:0a:07:f6:77:ee:b4: 41:4b:9a:b5:3f:36:8d:74:a2:05:6c:ba:d3:0d:d6: 96:81:03:f4:2b:c1:30:1d:0d:34:18:14:e7:14:f2: ac:cd:34:89:4d:31:9a:78:35:cb:52:87:71:02:db: b1:ea:2a:36:d0:61:51:5b:4c:4c:d9:64:30:b2:6a: 9e:94:06:fc:cb:48:89:c7:97:fe:64:a6:8f:e2:16: 42:b2:20:d6:78:cd:7f:52:e4:14:8c:63:33:13:af: 67:46:53:0c:c8:4a:02:03:2f:62:6b:73:e6:24:6f: 16:04:34:f1:31:f5:e0:ba:63:4f:ae:76:f9:7c:8d: 95:41:3f:32:41:cf:de:63:70:3c:d2:a8:b1:fb:83: dc:de:df:41:32:a5:02:39:cf:e1:75:98:74:d4:ca: e9:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:92:27:4C:93:88:7D:7F:53:6C:C8:CD:5A:8A:2E:73:A3:85:58:9C X509v3 Authority Key Identifier: keyid:B5:AB:E8:6E:BB:2A:02:C5:83:92:74:9A:92:FE:A6:8F:BA:FC:5C:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33362e302f32342d3234203d3e20313430343730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.36.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:30:6f:fc:7d:54:4f:05:48:b9:b8:1b:af:38:1c:45:76:93: 88:ec:e8:3b:e8:e5:02:1e:e9:69:00:81:61:f6:86:5c:3c:16: dc:51:43:96:44:90:93:ef:12:1c:74:38:0f:78:7d:2c:de:55: ab:f5:d4:b9:59:e4:c2:4b:d9:e9:19:80:e9:17:91:83:74:6f: 14:14:41:16:a2:43:a5:89:04:1a:73:2e:67:e9:67:12:24:38: a0:25:7c:93:d8:11:76:9a:c2:fd:04:34:7b:29:d0:4e:d2:8e: c4:3b:0e:f6:2b:53:2b:9c:f4:76:f2:0d:ed:42:11:53:09:9e: 54:7d:2c:4c:fe:b4:39:c9:19:23:71:ab:68:e4:da:c9:cb:0a: 47:19:97:20:97:32:60:46:9c:6c:b3:d8:bb:e5:3a:b6:71:03: 8c:22:37:9d:71:a4:c6:e7:0b:24:99:1a:9a:37:17:50:88:bf: 7a:e5:35:30:b4:c6:43:b0:09:ea:1a:c4:e8:09:e3:4a:3e:f4: 56:a3:17:03:7d:23:bf:2d:ed:d5:b5:41:82:ae:b0:0e:d7:12: 19:cb:6f:b7:21:64:0b:3e:39:a6:2c:24:00:52:84:88:35:32: 64:4f:20:e9:bf:b5:9f:ee:1d:28:b0:30:e7:ee:e3:63:2f:ad: 03:31:74:83 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaDTdb2UIh0I4Zd9SZhMsRAcDuf8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjVBQkU4NkVCQjJBMDJDNTgzOTI3NDlBOTJGRUE2OEZC QUZDNUM0NjAeFw0yNDAzMTMwNzExMTJaFw0yNTAzMTIwNzE2MTJaMDMxMTAvBgNV BAMTKDQwOTIyNzRDOTM4ODdEN0Y1MzZDQzhDRDVBOEEyRTczQTM4NTU4OUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcUHhLeHnYncqCWsKxfvKYUii7 sf38LgHvLFD44qN9Mx/GIJkjXFH7Ws1emhDNmftyIDPRpI6dmC/WZ1Hy+jp4FHu0 KUTTGTdmjoyQ9C0dro8GzgUosuDuHxjAbekA/hubygoH9nfutEFLmrU/No10ogVs utMN1paBA/QrwTAdDTQYFOcU8qzNNIlNMZp4NctSh3EC27HqKjbQYVFbTEzZZDCy ap6UBvzLSInHl/5kpo/iFkKyINZ4zX9S5BSMYzMTr2dGUwzISgIDL2Jrc+YkbxYE NPEx9eC6Y0+udvl8jZVBPzJBz95jcDzSqLH7g9ze30EypQI5z+F1mHTUyunZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUQJInTJOIfX9TbMjNWoouc6OFWJwwHwYDVR0j BBgwFoAUtavobrsqAsWDknSakv6mj7r8XEYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MGJkN2Q2Yy1lYTVhLTRjNDUtOTU1OC03MTc5OTRhYjY4MGUvMC9CNUFCRTg2RUJC MkEwMkM1ODM5Mjc0OUE5MkZFQTY4RkJBRkM1QzQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQjVBQkU4NkVCQjJBMDJDNTgzOTI3NDlBOTJGRUE2OEZCQUZD NUM0Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwYmQ3ZDZjLWVhNWEtNGM0NS05 NTU4LTcxNzk5NGFiNjgwZS8wLzMxMzUzNzJlMzIzMDJlMzMzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMDM0MzczMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0UJDANBgkqhkiG 9w0BAQsFAAOCAQEAPzBv/H1UTwVIubgbrzgcRXaTiOzoO+jlAh7paQCBYfaGXDwW 3FFDlkSQk+8SHHQ4D3h9LN5Vq/XUuVnkwkvZ6RmA6ReRg3RvFBRBFqJDpYkEGnMu Z+lnEiQ4oCV8k9gRdprC/QQ0eynQTtKOxDsO9itTK5z0dvIN7UIRUwmeVH0sTP60 OckZI3GraOTaycsKRxmXIJcyYEacbLPYu+U6tnEDjCI3nXGkxucLJJkamjcXUIi/ euU1MLTGQ7AJ6hrE6AnjSj70VqMXA30jvy3t1bVBgq6wDtcSGctvtyFkCz45piwk AFKEiDUyZE8g6b+1n+4dKLAw5+7jYy+tAzF0gw== -----END CERTIFICATE-----Generated at Fri Nov 22 23:37:26 2024 by rpki-client on console-fra.rpki-client.org