$ rpki-client -vvf repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137382e302f32342d3234203d3e20313532343138.roa File: 3135372e32302e3137382e302f32342d3234203d3e20313532343138.roa (raw, json) Hash identifier: fPg3CNopGP6G+4XgqOe4b1fpuyhHkNvO3rM/vx+ZU+o= Subject key identifier: 39:1A:60:E5:CE:68:E0:14:C0:58:D3:24:68:97:C2:D5:64:DA:9B:93 Certificate issuer: /CN=BD9B7A89C85E0DF6786F5BD51D4B7D963618231A Certificate serial: 484B4E6EEF4E81B317167AD73ADE52E5F82E1057 Authority key identifier: BD:9B:7A:89:C8:5E:0D:F6:78:6F:5B:D5:1D:4B:7D:96:36:18:23:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137382e302f32342d3234203d3e20313532343138.roa Signing time: Thu 30 May 2024 12:23:35 +0000 ROA not before: Thu 30 May 2024 12:18:35 +0000 ROA not after: Thu 29 May 2025 12:23:35 +0000 asID: 152418 IP address blocks: 157.20.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:4b:4e:6e:ef:4e:81:b3:17:16:7a:d7:3a:de:52:e5:f8:2e:10:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD9B7A89C85E0DF6786F5BD51D4B7D963618231A Validity Not Before: May 30 12:18:35 2024 GMT Not After : May 29 12:23:35 2025 GMT Subject: CN=391A60E5CE68E014C058D3246897C2D564DA9B93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:9d:9a:24:ad:59:e4:b7:47:09:11:93:82:5c: c8:17:67:6d:45:61:d7:4d:b6:fd:c1:4b:cd:0a:87: f7:35:57:36:f8:41:6a:f2:6a:7d:dc:a4:d6:3d:f0: aa:27:52:13:c4:74:21:5c:73:b5:3e:5a:71:0f:7e: e4:8f:03:85:53:fa:a7:6b:d1:2c:e8:f9:13:4b:d1: 40:0a:54:cd:13:d0:1b:8f:c0:37:d4:93:c2:79:14: 92:e1:2a:75:23:9e:d7:0e:59:32:82:d2:18:90:af: 04:04:4c:b4:d6:17:5f:86:7f:82:e0:96:64:2c:23: fe:aa:03:43:27:6e:db:fd:f3:54:84:a1:46:5a:30: 71:0b:3e:97:07:e9:2e:aa:aa:17:97:2c:46:af:bd: f2:9b:b2:ae:3f:87:60:6f:ac:29:f2:57:dc:36:ea: c8:73:e3:b9:66:93:5c:9c:57:10:10:b1:45:93:70: f2:9e:a5:c6:28:0b:66:a5:ad:28:e4:28:e8:df:df: 29:d9:e6:2c:f2:16:17:fc:36:13:ba:2a:f7:b9:84: f9:3d:92:70:d7:60:9f:a8:cd:ab:29:11:06:fd:d8: 8a:f6:b4:4a:85:43:a9:a9:d9:82:b2:20:c1:38:fd: 61:cd:e8:6d:91:33:ae:1c:51:da:21:cd:52:bc:fe: 01:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:1A:60:E5:CE:68:E0:14:C0:58:D3:24:68:97:C2:D5:64:DA:9B:93 X509v3 Authority Key Identifier: keyid:BD:9B:7A:89:C8:5E:0D:F6:78:6F:5B:D5:1D:4B:7D:96:36:18:23:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137382e302f32342d3234203d3e20313532343138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.178.0/24 Signature Algorithm: sha256WithRSAEncryption 27:e1:8c:38:6a:9f:98:7e:3f:64:b9:44:15:ce:8f:23:46:ea: 62:69:e1:65:31:0e:88:55:4d:9e:20:c0:a1:12:a0:2b:03:ec: c5:dc:28:30:33:16:08:59:f3:97:d5:ea:16:e9:d1:b9:45:61: c6:a5:8f:41:0d:9f:74:2e:9a:3f:c2:4b:58:be:b1:10:23:09: f8:80:44:9a:dd:86:f5:4e:e8:38:52:76:1d:27:1c:0f:18:43: 00:ad:02:f2:19:69:2b:fb:49:4d:be:d8:2b:1c:63:2b:17:d2: ba:96:b7:0c:bd:97:7f:28:78:08:08:10:fa:64:a8:42:ef:2b: 1f:5e:c0:b1:57:5e:8a:7e:c0:58:7d:1c:e1:78:f9:f0:b7:9a: 58:d3:60:7c:89:cd:ea:f7:46:88:ec:da:5b:d3:9f:91:90:f0: ec:d9:3a:b3:b6:b6:96:0d:8f:24:b2:cf:b5:48:77:33:c4:5b: 39:da:b6:c9:09:49:99:3d:d4:65:fe:cf:a3:f1:72:4d:b1:a2: f3:34:4e:35:62:cc:47:d1:ab:0b:0e:11:39:de:68:a4:89:e7: 85:eb:a3:95:60:89:96:8a:fb:fb:d8:4e:c5:1d:1e:54:09:6f: 13:7c:80:08:ff:e5:0e:75:b5:7d:9d:01:c6:ed:73:16:01:54: f4:50:9a:5c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSEtObu9OgbMXFnrXOt5S5fguEFcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ5QjdBODlDODVFMERGNjc4NkY1QkQ1MUQ0QjdEOTYz NjE4MjMxQTAeFw0yNDA1MzAxMjE4MzVaFw0yNTA1MjkxMjIzMzVaMDMxMTAvBgNV BAMTKDM5MUE2MEU1Q0U2OEUwMTRDMDU4RDMyNDY4OTdDMkQ1NjREQTlCOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHnZokrVnkt0cJEZOCXMgXZ21F YddNtv3BS80Kh/c1Vzb4QWryan3cpNY98KonUhPEdCFcc7U+WnEPfuSPA4VT+qdr 0Szo+RNL0UAKVM0T0BuPwDfUk8J5FJLhKnUjntcOWTKC0hiQrwQETLTWF1+Gf4Lg lmQsI/6qA0Mnbtv981SEoUZaMHELPpcH6S6qqheXLEavvfKbsq4/h2BvrCnyV9w2 6shz47lmk1ycVxAQsUWTcPKepcYoC2alrSjkKOjf3ynZ5izyFhf8NhO6Kve5hPk9 knDXYJ+ozaspEQb92Ir2tEqFQ6mp2YKyIME4/WHN6G2RM64cUdohzVK8/gF3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUORpg5c5o4BTAWNMkaJfC1WTam5MwHwYDVR0j BBgwFoAUvZt6icheDfZ4b1vVHUt9ljYYIxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MzYwNjZlOC04ZTE5LTRkZTctOTQ3Yi05NGVlM2NkMDlmODUvMC9CRDlCN0E4OUM4 NUUwREY2Nzg2RjVCRDUxRDRCN0Q5NjM2MTgyMzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkQ5QjdBODlDODVFMERGNjc4NkY1QkQ1MUQ0QjdEOTYzNjE4 MjMxQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzNjA2NmU4LThlMTktNGRlNy05 NDdiLTk0ZWUzY2QwOWY4NS8wLzMxMzUzNzJlMzIzMDJlMzEzNzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRSyMA0GCSqG SIb3DQEBCwUAA4IBAQAn4Yw4ap+Yfj9kuUQVzo8jRupiaeFlMQ6IVU2eIMChEqAr A+zF3CgwMxYIWfOX1eoW6dG5RWHGpY9BDZ90Lpo/wktYvrEQIwn4gESa3Yb1Tug4 UnYdJxwPGEMArQLyGWkr+0lNvtgrHGMrF9K6lrcMvZd/KHgICBD6ZKhC7ysfXsCx V16KfsBYfRzhePnwt5pY02B8ic3q90aI7Npb05+RkPDs2TqztraWDY8kss+1SHcz xFs52rbJCUmZPdRl/s+j8XJNsaLzNE41YsxH0asLDhE53mikieeF66OVYImWivv7 2E7FHR5UCW8TfIAI/+UOdbV9nQHG7XMWAVT0UJpc -----END CERTIFICATE-----Generated at Sun Nov 24 05:18:50 2024 by rpki-client on console-ams.rpki-client.org