$ rpki-client -vvf repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33372e302f32342d3234203d3e20313430343730.roa File: 3135372e32302e33372e302f32342d3234203d3e20313430343730.roa (raw, json) Hash identifier: vpOwUAxZoKnUCvuVLW1e+d8BAvrtQ52WUXPit22oNnE= Subject key identifier: 6D:1D:7E:A7:1E:0A:08:87:D5:80:9E:00:F4:1B:79:15:70:EC:AB:DA Certificate issuer: /CN=B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46 Certificate serial: 0942BC5092D75244DC214EA366308CECEA6388A1 Authority key identifier: B5:AB:E8:6E:BB:2A:02:C5:83:92:74:9A:92:FE:A6:8F:BA:FC:5C:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33372e302f32342d3234203d3e20313430343730.roa Signing time: Wed 13 Mar 2024 07:17:14 +0000 ROA not before: Wed 13 Mar 2024 07:12:14 +0000 ROA not after: Wed 12 Mar 2025 07:17:14 +0000 asID: 140470 IP address blocks: 157.20.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.crl rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:42:bc:50:92:d7:52:44:dc:21:4e:a3:66:30:8c:ec:ea:63:88:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46 Validity Not Before: Mar 13 07:12:14 2024 GMT Not After : Mar 12 07:17:14 2025 GMT Subject: CN=6D1D7EA71E0A0887D5809E00F41B791570ECABDA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ef:09:90:5c:f9:18:e2:d2:5d:65:3b:cc:47: e6:83:f2:05:5a:55:74:9d:77:6f:f3:cc:29:27:6e: e4:fe:0c:c8:75:ad:0d:b3:8a:34:1e:ad:37:ba:d6: 69:2e:f5:93:df:4e:26:fd:7c:58:62:1b:84:4f:28: 58:c0:d6:e3:74:4c:ca:38:2d:80:33:47:48:e3:3b: 5c:ed:63:f1:6c:80:d7:d6:76:db:12:3e:89:be:70: 26:ca:18:f9:d8:cf:3b:8f:14:9a:2c:40:17:dc:67: f8:c7:92:2b:3c:9d:15:b4:6c:a3:e4:2d:2e:07:9e: 9f:76:32:39:97:ba:e5:28:07:16:ed:25:f6:24:83: 69:83:67:b1:1b:4d:19:6f:e2:15:de:b0:ab:29:a0: 0c:45:c9:22:d8:24:86:d9:1c:0b:b9:6f:54:76:90: 89:dc:d5:36:86:b6:d0:fe:f8:23:ac:20:99:16:e5: bb:d8:52:55:c6:b5:f2:e2:96:6e:6c:54:bc:ad:0d: 3f:dd:17:85:5b:0b:37:14:9b:3a:43:14:84:22:36: f6:81:cd:f5:e6:99:52:1e:51:83:63:b8:29:7c:59: c8:b9:6b:db:b3:5f:9a:84:40:09:47:1b:90:8d:77: 35:de:f6:e8:75:64:65:40:ae:a8:ce:6f:3f:51:16: ee:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:1D:7E:A7:1E:0A:08:87:D5:80:9E:00:F4:1B:79:15:70:EC:AB:DA X509v3 Authority Key Identifier: keyid:B5:AB:E8:6E:BB:2A:02:C5:83:92:74:9A:92:FE:A6:8F:BA:FC:5C:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33372e302f32342d3234203d3e20313430343730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.37.0/24 Signature Algorithm: sha256WithRSAEncryption 45:34:06:e6:74:7a:81:5b:03:40:95:ed:eb:10:c6:d7:e6:13: 5c:09:dd:b7:69:66:c2:b4:a8:08:50:27:7f:30:d7:10:71:d3: 16:ee:98:a6:f8:dc:0e:a9:2b:db:85:0f:ae:b0:3e:2c:e5:5c: 3d:6f:1e:20:c1:db:11:6f:25:14:f1:27:e7:04:45:d1:00:1e: 0b:46:d6:92:43:a0:5f:f3:3e:e0:e2:4d:17:2f:fc:f0:a1:d1: 2d:8e:0c:9d:bb:4f:0e:52:c4:26:96:57:b5:8d:43:88:4e:60: 4b:7a:c0:54:ed:c0:71:b8:c9:7e:d2:98:f3:23:ba:67:18:b7: 4b:d0:73:32:24:f3:7d:55:5c:89:0d:d8:4a:9b:7b:e8:f3:9b: 56:1a:e8:d2:55:92:1f:36:05:3c:c0:ef:4d:b6:e3:b4:5e:e7: b4:2a:40:60:cc:f4:bc:4d:ef:bf:0e:92:f8:56:39:0f:2a:07: 63:dd:d8:d6:c3:36:61:c9:fd:f0:f7:63:6c:40:56:f5:04:b7: 77:49:6f:9e:c8:33:a8:26:af:a6:c8:68:74:91:90:6f:fe:2f: f1:fe:22:65:31:90:af:00:43:58:74:88:c4:dd:60:b9:3b:46: 24:0d:3e:8c:d8:79:c1:56:ea:c9:a0:ff:1d:9b:5a:0b:f9:91: 60:66:ae:44 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCUK8UJLXUkTcIU6jZjCM7OpjiKEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjVBQkU4NkVCQjJBMDJDNTgzOTI3NDlBOTJGRUE2OEZC QUZDNUM0NjAeFw0yNDAzMTMwNzEyMTRaFw0yNTAzMTIwNzE3MTRaMDMxMTAvBgNV BAMTKDZEMUQ3RUE3MUUwQTA4ODdENTgwOUUwMEY0MUI3OTE1NzBFQ0FCREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt7wmQXPkY4tJdZTvMR+aD8gVa VXSdd2/zzCknbuT+DMh1rQ2zijQerTe61mku9ZPfTib9fFhiG4RPKFjA1uN0TMo4 LYAzR0jjO1ztY/FsgNfWdtsSPom+cCbKGPnYzzuPFJosQBfcZ/jHkis8nRW0bKPk LS4Hnp92MjmXuuUoBxbtJfYkg2mDZ7EbTRlv4hXesKspoAxFySLYJIbZHAu5b1R2 kInc1TaGttD++COsIJkW5bvYUlXGtfLilm5sVLytDT/dF4VbCzcUmzpDFIQiNvaB zfXmmVIeUYNjuCl8Wci5a9uzX5qEQAlHG5CNdzXe9uh1ZGVArqjObz9RFu7LAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUbR1+px4KCIfVgJ4A9Bt5FXDsq9owHwYDVR0j BBgwFoAUtavobrsqAsWDknSakv6mj7r8XEYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MGJkN2Q2Yy1lYTVhLTRjNDUtOTU1OC03MTc5OTRhYjY4MGUvMC9CNUFCRTg2RUJC MkEwMkM1ODM5Mjc0OUE5MkZFQTY4RkJBRkM1QzQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQjVBQkU4NkVCQjJBMDJDNTgzOTI3NDlBOTJGRUE2OEZCQUZD NUM0Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwYmQ3ZDZjLWVhNWEtNGM0NS05 NTU4LTcxNzk5NGFiNjgwZS8wLzMxMzUzNzJlMzIzMDJlMzMzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMDM0MzczMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0UJTANBgkqhkiG 9w0BAQsFAAOCAQEARTQG5nR6gVsDQJXt6xDG1+YTXAndt2lmwrSoCFAnfzDXEHHT Fu6YpvjcDqkr24UPrrA+LOVcPW8eIMHbEW8lFPEn5wRF0QAeC0bWkkOgX/M+4OJN Fy/88KHRLY4MnbtPDlLEJpZXtY1DiE5gS3rAVO3AcbjJftKY8yO6Zxi3S9BzMiTz fVVciQ3YSpt76PObVhro0lWSHzYFPMDvTbbjtF7ntCpAYMz0vE3vvw6S+FY5DyoH Y93Y1sM2Ycn98PdjbEBW9QS3d0lvnsgzqCavpshodJGQb/4v8f4iZTGQrwBDWHSI xN1guTtGJA0+jNh5wVbqyaD/HZtaC/mRYGauRA== -----END CERTIFICATE-----Generated at Fri Nov 22 23:37:26 2024 by rpki-client on console-fra.rpki-client.org