$ rpki-client -vvf repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137382e302f32332d3233203d3e20313532343138.roa File: 3135372e32302e3137382e302f32332d3233203d3e20313532343138.roa (raw, json) Hash identifier: WQ3o4ScBRNrBdkrsNj1S2rAOurS9wRqMMCvcQilACbA= Subject key identifier: 5A:AE:FC:D1:E7:B6:52:B7:A2:44:62:0F:84:25:FA:80:48:3B:AF:A7 Certificate issuer: /CN=BD9B7A89C85E0DF6786F5BD51D4B7D963618231A Certificate serial: 568E9EC9C0D36FE5537AA502767FF0A9E6C3CD03 Authority key identifier: BD:9B:7A:89:C8:5E:0D:F6:78:6F:5B:D5:1D:4B:7D:96:36:18:23:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137382e302f32332d3233203d3e20313532343138.roa Signing time: Thu 30 May 2024 12:24:36 +0000 ROA not before: Thu 30 May 2024 12:19:36 +0000 ROA not after: Thu 29 May 2025 12:24:36 +0000 asID: 152418 IP address blocks: 157.20.178.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:8e:9e:c9:c0:d3:6f:e5:53:7a:a5:02:76:7f:f0:a9:e6:c3:cd:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD9B7A89C85E0DF6786F5BD51D4B7D963618231A Validity Not Before: May 30 12:19:36 2024 GMT Not After : May 29 12:24:36 2025 GMT Subject: CN=5AAEFCD1E7B652B7A244620F8425FA80483BAFA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:4b:8c:0e:e9:91:3b:24:43:65:54:fa:43:52: 65:78:bd:45:6f:ee:e9:49:02:2b:df:ef:84:65:c2: 7d:c8:25:50:f1:49:a9:49:8a:03:67:a0:ea:50:0e: ad:58:7a:6b:2f:55:6f:3b:dd:ad:c0:30:5d:0b:8f: 31:27:67:03:29:6b:53:e2:bd:d9:ad:0c:4b:26:30: e1:95:71:5c:f3:b0:1a:87:82:e9:c0:8a:0b:4e:d0: 96:60:47:3e:3e:65:5f:ec:cb:d8:a4:45:98:32:dd: 0f:c0:56:e2:a6:fe:7d:2d:78:cf:e7:0f:70:26:26: 64:05:fa:ab:42:c1:4b:96:cb:19:1e:4d:5d:3d:40: 6d:86:89:01:12:33:b5:dd:43:67:9f:c5:1c:c1:91: e4:df:60:6d:60:ba:d6:c2:ef:86:2c:1a:11:9b:95: 7a:f4:11:02:a9:19:93:05:4e:b9:24:d9:6d:2f:ef: a5:34:b2:96:78:fb:2e:a2:75:2c:c7:5e:92:3e:bc: cf:50:44:35:8a:32:33:d5:e7:1f:f5:02:51:f6:6c: ca:52:8d:c8:ee:48:bc:71:92:36:20:1c:11:2a:50: c6:cc:16:16:ac:49:02:c1:2b:6e:12:8a:15:c8:5f: d3:a0:15:3d:23:63:e6:61:a1:ff:e0:e7:c0:25:b7: b1:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:AE:FC:D1:E7:B6:52:B7:A2:44:62:0F:84:25:FA:80:48:3B:AF:A7 X509v3 Authority Key Identifier: keyid:BD:9B:7A:89:C8:5E:0D:F6:78:6F:5B:D5:1D:4B:7D:96:36:18:23:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137382e302f32332d3233203d3e20313532343138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.178.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:5b:3f:b2:f8:0f:d3:73:67:ef:70:e1:54:ed:74:d1:da:38: 8d:22:77:93:0b:ed:3a:af:8b:4d:ef:be:7a:4d:53:ed:31:48: e2:9e:95:be:d6:02:dd:57:6a:ff:b0:b8:00:00:8a:49:c7:02: f5:2e:e2:bb:c0:ec:a5:ec:d0:6a:63:9a:1c:8a:c7:cd:4a:d7: d7:49:a8:35:2e:43:57:8d:0a:ba:43:91:d2:ba:8c:98:5d:fc: 67:57:c6:b4:da:74:47:a9:aa:0e:21:fd:1f:57:9c:16:45:9a: b6:9a:bb:9e:33:84:c7:ee:3c:1e:78:f1:a6:ee:b1:cf:4c:12: d2:94:18:e1:c9:0e:fd:3f:c1:9a:67:26:e3:49:c3:1a:2d:a6: 50:18:cc:60:36:cf:e8:65:aa:78:42:f8:95:18:32:9b:ae:2e: 4d:4f:f2:73:2b:c7:9c:c2:ab:11:40:b5:fc:1a:46:58:91:8a: 6c:e9:e7:f4:ab:f3:91:8f:71:14:3a:f3:eb:5d:fd:31:0a:41: 72:61:29:1c:5f:79:ef:a3:fb:3d:b4:87:87:f4:a0:c4:36:e5: 00:04:17:29:ab:88:97:e8:0c:9f:89:b1:2d:04:b3:23:36:4c: f4:bd:a0:07:ba:c7:93:16:69:d0:88:48:d1:bf:29:be:50:d3: 8f:08:64:a6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVo6eycDTb+VTeqUCdn/wqebDzQMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ5QjdBODlDODVFMERGNjc4NkY1QkQ1MUQ0QjdEOTYz NjE4MjMxQTAeFw0yNDA1MzAxMjE5MzZaFw0yNTA1MjkxMjI0MzZaMDMxMTAvBgNV BAMTKDVBQUVGQ0QxRTdCNjUyQjdBMjQ0NjIwRjg0MjVGQTgwNDgzQkFGQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUS4wO6ZE7JENlVPpDUmV4vUVv 7ulJAivf74Rlwn3IJVDxSalJigNnoOpQDq1YemsvVW873a3AMF0LjzEnZwMpa1Pi vdmtDEsmMOGVcVzzsBqHgunAigtO0JZgRz4+ZV/sy9ikRZgy3Q/AVuKm/n0teM/n D3AmJmQF+qtCwUuWyxkeTV09QG2GiQESM7XdQ2efxRzBkeTfYG1gutbC74YsGhGb lXr0EQKpGZMFTrkk2W0v76U0spZ4+y6idSzHXpI+vM9QRDWKMjPV5x/1AlH2bMpS jcjuSLxxkjYgHBEqUMbMFhasSQLBK24SihXIX9OgFT0jY+Zhof/g58Alt7G3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWq780ee2UreiRGIPhCX6gEg7r6cwHwYDVR0j BBgwFoAUvZt6icheDfZ4b1vVHUt9ljYYIxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MzYwNjZlOC04ZTE5LTRkZTctOTQ3Yi05NGVlM2NkMDlmODUvMC9CRDlCN0E4OUM4 NUUwREY2Nzg2RjVCRDUxRDRCN0Q5NjM2MTgyMzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkQ5QjdBODlDODVFMERGNjc4NkY1QkQ1MUQ0QjdEOTYzNjE4 MjMxQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzNjA2NmU4LThlMTktNGRlNy05 NDdiLTk0ZWUzY2QwOWY4NS8wLzMxMzUzNzJlMzIzMDJlMzEzNzM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzQzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRSyMA0GCSqG SIb3DQEBCwUAA4IBAQAOWz+y+A/Tc2fvcOFU7XTR2jiNIneTC+06r4tN7756TVPt MUjinpW+1gLdV2r/sLgAAIpJxwL1LuK7wOyl7NBqY5ocisfNStfXSag1LkNXjQq6 Q5HSuoyYXfxnV8a02nRHqaoOIf0fV5wWRZq2mrueM4TH7jweePGm7rHPTBLSlBjh yQ79P8GaZybjScMaLaZQGMxgNs/oZap4QviVGDKbri5NT/JzK8ecwqsRQLX8GkZY kYps6ef0q/ORj3EUOvPrXf0xCkFyYSkcX3nvo/s9tIeH9KDENuUABBcpq4iX6Ayf ibEtBLMjNkz0vaAHuseTFmnQiEjRvym+UNOPCGSm -----END CERTIFICATE-----Generated at Sun Nov 24 05:18:50 2024 by rpki-client on console-ams.rpki-client.org