$ rpki-client -vvf repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137392e302f32342d3234203d3e20313532343138.roa File: 3135372e32302e3137392e302f32342d3234203d3e20313532343138.roa (raw, json) Hash identifier: k/SYZle1NkfnFNVvY93UJAk7vhv/223CGCuJXPKjR+M= Subject key identifier: DF:96:3E:CB:9B:C7:50:59:B3:04:46:F2:50:DA:E9:C9:66:A3:83:A3 Certificate issuer: /CN=BD9B7A89C85E0DF6786F5BD51D4B7D963618231A Certificate serial: 50090A16C373DA3C250103EBBB9BAC5C2CE67867 Authority key identifier: BD:9B:7A:89:C8:5E:0D:F6:78:6F:5B:D5:1D:4B:7D:96:36:18:23:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137392e302f32342d3234203d3e20313532343138.roa Signing time: Thu 30 May 2024 12:24:07 +0000 ROA not before: Thu 30 May 2024 12:19:07 +0000 ROA not after: Thu 29 May 2025 12:24:07 +0000 asID: 152418 IP address blocks: 157.20.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:09:0a:16:c3:73:da:3c:25:01:03:eb:bb:9b:ac:5c:2c:e6:78:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD9B7A89C85E0DF6786F5BD51D4B7D963618231A Validity Not Before: May 30 12:19:07 2024 GMT Not After : May 29 12:24:07 2025 GMT Subject: CN=DF963ECB9BC75059B30446F250DAE9C966A383A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c4:50:c0:e5:2e:88:6b:ed:be:d3:f9:57:af: 8e:dc:12:82:9d:32:d2:4f:f4:ce:d3:13:79:4e:ad: 25:97:5d:27:d4:eb:e6:ec:c2:ad:36:9d:13:ac:f8: ef:51:ab:60:7c:ea:b9:a7:c0:97:c3:9b:57:99:c3: 86:70:0d:4a:fe:79:8d:01:a5:62:e8:d9:b0:d3:0a: de:89:1f:e4:c3:33:e4:7d:f8:b3:91:b3:6b:b0:4f: 2c:0a:29:c7:99:3f:1b:31:bb:7f:d2:b2:cb:01:71: 25:ef:99:80:37:03:c9:2b:82:3a:0f:56:dd:3a:ee: 7a:7e:37:4d:a4:7e:00:5b:6b:ed:ac:83:07:3f:5f: 6a:a3:d2:31:3b:1a:f3:b6:b8:4b:9a:a9:37:94:7b: 27:05:5d:7b:71:c6:86:e8:4a:b3:40:42:df:ae:e9: 37:4a:20:be:46:c4:15:c2:f9:c6:f4:d2:0d:1b:ec: 52:2a:38:b2:7d:2a:4b:bd:29:34:61:aa:88:b1:67: ad:f7:db:8c:b6:9a:00:bf:63:50:40:97:2a:7e:6a: 57:40:c1:3f:a3:d5:d6:11:31:b7:84:8d:c0:71:cf: c7:4f:e6:55:87:d1:7a:fd:c4:58:33:83:f6:7e:3e: 0a:09:3e:c5:b9:8c:c1:f3:94:98:8c:67:3f:b4:df: 24:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:96:3E:CB:9B:C7:50:59:B3:04:46:F2:50:DA:E9:C9:66:A3:83:A3 X509v3 Authority Key Identifier: keyid:BD:9B:7A:89:C8:5E:0D:F6:78:6F:5B:D5:1D:4B:7D:96:36:18:23:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137392e302f32342d3234203d3e20313532343138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.179.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:07:c6:40:3a:6a:e6:31:ba:b1:1a:9d:1c:e0:c7:af:48:f7: 4d:e9:c4:91:82:50:9d:c3:70:09:d6:03:e8:88:30:68:c0:2f: 1c:05:d9:36:25:c8:36:aa:1a:06:4d:42:68:a5:4b:92:30:5f: b3:46:f2:d7:52:01:9a:95:00:a8:3c:dd:82:32:bc:76:f8:94: 75:ed:35:18:59:b7:13:36:6e:4e:e0:7b:8e:2d:10:b2:fb:25: 95:57:f5:8d:2f:ef:ee:bd:44:85:f6:61:8b:ec:72:bf:10:e2: 89:14:e1:3f:bf:56:f0:a5:e3:ee:94:e7:50:d7:6b:48:e7:aa: 04:50:a5:41:81:c9:54:4f:ae:32:d7:4f:a8:57:2c:e0:2a:75: 09:e1:1a:1f:46:20:a3:f2:f3:9c:ae:33:0f:a8:ad:6e:2c:9b: 9e:2b:af:ea:e2:91:b6:ac:98:cc:32:d4:1a:54:31:df:86:2e: 30:0c:92:2f:c9:3b:89:ba:87:13:5c:24:de:d2:dc:3e:51:90: d1:09:29:63:e0:d7:cc:64:1f:70:5a:42:8c:14:1b:64:b9:46: 1b:b4:ea:e3:c6:c3:d3:cd:73:74:8c:c5:26:51:c4:a5:53:de: c2:0e:b7:a3:f3:c2:bb:fc:80:aa:20:db:31:64:9e:22:fb:a5: a3:95:73:15 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUAkKFsNz2jwlAQPru5usXCzmeGcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ5QjdBODlDODVFMERGNjc4NkY1QkQ1MUQ0QjdEOTYz NjE4MjMxQTAeFw0yNDA1MzAxMjE5MDdaFw0yNTA1MjkxMjI0MDdaMDMxMTAvBgNV BAMTKERGOTYzRUNCOUJDNzUwNTlCMzA0NDZGMjUwREFFOUM5NjZBMzgzQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0xFDA5S6Ia+2+0/lXr47cEoKd MtJP9M7TE3lOrSWXXSfU6+bswq02nROs+O9Rq2B86rmnwJfDm1eZw4ZwDUr+eY0B pWLo2bDTCt6JH+TDM+R9+LORs2uwTywKKceZPxsxu3/SsssBcSXvmYA3A8krgjoP Vt067np+N02kfgBba+2sgwc/X2qj0jE7GvO2uEuaqTeUeycFXXtxxoboSrNAQt+u 6TdKIL5GxBXC+cb00g0b7FIqOLJ9Kku9KTRhqoixZ63324y2mgC/Y1BAlyp+aldA wT+j1dYRMbeEjcBxz8dP5lWH0Xr9xFgzg/Z+PgoJPsW5jMHzlJiMZz+03yTBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU35Y+y5vHUFmzBEbyUNrpyWajg6MwHwYDVR0j BBgwFoAUvZt6icheDfZ4b1vVHUt9ljYYIxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MzYwNjZlOC04ZTE5LTRkZTctOTQ3Yi05NGVlM2NkMDlmODUvMC9CRDlCN0E4OUM4 NUUwREY2Nzg2RjVCRDUxRDRCN0Q5NjM2MTgyMzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkQ5QjdBODlDODVFMERGNjc4NkY1QkQ1MUQ0QjdEOTYzNjE4 MjMxQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzNjA2NmU4LThlMTktNGRlNy05 NDdiLTk0ZWUzY2QwOWY4NS8wLzMxMzUzNzJlMzIzMDJlMzEzNzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRSzMA0GCSqG SIb3DQEBCwUAA4IBAQAKB8ZAOmrmMbqxGp0c4MevSPdN6cSRglCdw3AJ1gPoiDBo wC8cBdk2Jcg2qhoGTUJopUuSMF+zRvLXUgGalQCoPN2CMrx2+JR17TUYWbcTNm5O 4HuOLRCy+yWVV/WNL+/uvUSF9mGL7HK/EOKJFOE/v1bwpePulOdQ12tI56oEUKVB gclUT64y10+oVyzgKnUJ4RofRiCj8vOcrjMPqK1uLJueK6/q4pG2rJjMMtQaVDHf hi4wDJIvyTuJuocTXCTe0tw+UZDRCSlj4NfMZB9wWkKMFBtkuUYbtOrjxsPTzXN0 jMUmUcSlU97CDrej88K7/ICqINsxZJ4i+6WjlXMV -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org