$ rpki-client -vvf repo-rpki.idnic.net/repo/dae13bac-91c1-463b-8333-64eec6d2797e/0/3135372e32302e39352e302f32342d3234203d3e20313431363032.roa File: 3135372e32302e39352e302f32342d3234203d3e20313431363032.roa (raw, json) Hash identifier: vbNqRg8Y2DI2wXMSlXABdq04S+a/OL3FdAA8x2z1HiM= Subject key identifier: 66:EB:9F:9A:D0:16:C8:7F:EA:22:A6:66:03:CB:2F:A4:D9:1F:7F:B7 Certificate issuer: /CN=FD18E3ECB5F2285C0751C48EAF23EF210BA8FDCC Certificate serial: 23DE4790CC4BAB1AF3064D7138339D4DB7401AD0 Authority key identifier: FD:18:E3:EC:B5:F2:28:5C:07:51:C4:8E:AF:23:EF:21:0B:A8:FD:CC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD18E3ECB5F2285C0751C48EAF23EF210BA8FDCC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dae13bac-91c1-463b-8333-64eec6d2797e/0/3135372e32302e39352e302f32342d3234203d3e20313431363032.roa Signing time: Fri 21 Jun 2024 01:29:48 +0000 ROA not before: Fri 21 Jun 2024 01:24:48 +0000 ROA not after: Fri 20 Jun 2025 01:29:48 +0000 asID: 141602 IP address blocks: 157.20.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dae13bac-91c1-463b-8333-64eec6d2797e/0/FD18E3ECB5F2285C0751C48EAF23EF210BA8FDCC.crl rsync://repo-rpki.idnic.net/repo/dae13bac-91c1-463b-8333-64eec6d2797e/0/FD18E3ECB5F2285C0751C48EAF23EF210BA8FDCC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD18E3ECB5F2285C0751C48EAF23EF210BA8FDCC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:de:47:90:cc:4b:ab:1a:f3:06:4d:71:38:33:9d:4d:b7:40:1a:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FD18E3ECB5F2285C0751C48EAF23EF210BA8FDCC Validity Not Before: Jun 21 01:24:48 2024 GMT Not After : Jun 20 01:29:48 2025 GMT Subject: CN=66EB9F9AD016C87FEA22A66603CB2FA4D91F7FB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:bb:8c:02:22:9a:78:d6:0d:5b:e8:d4:5c:ce: 03:5a:75:65:9e:d6:ac:cd:35:13:14:aa:bf:ed:ae: 54:99:9a:55:ca:0d:71:95:3a:24:e2:20:29:95:f4: 6a:86:8b:43:f2:1d:6e:aa:6c:b8:9a:6d:2e:8d:4c: 6f:bd:bd:2f:1c:74:2b:4b:fc:d3:f1:db:20:25:7f: e8:b7:6b:44:09:de:5b:8f:b7:fc:d3:f7:dc:47:25: e5:e2:94:e5:bf:bb:08:14:53:37:44:95:0d:59:59: a4:ce:61:0e:fb:43:c9:24:3e:f5:3c:77:67:ce:de: 02:92:7b:0c:ce:24:71:a7:07:ee:56:a0:61:11:cb: ae:10:07:f1:b0:87:68:84:e3:8e:e5:e0:0e:33:a4: 33:88:3e:9b:3c:b1:05:a5:4d:99:4a:42:b6:7e:5a: ce:e8:af:6c:83:f3:86:78:43:ba:c0:e5:27:cb:0a: 22:71:53:94:ed:f7:e5:24:19:72:dd:80:3f:72:7a: 47:18:15:5a:0a:16:1c:02:9a:8b:7e:e4:06:2d:d2: c4:a0:bc:4b:27:28:82:53:c2:86:6c:c0:36:40:b0: eb:74:1f:7c:cf:20:25:41:58:79:2d:a2:63:67:07: 94:31:9e:b2:2c:25:9d:bf:6f:d2:9b:7c:2d:86:f1: aa:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:EB:9F:9A:D0:16:C8:7F:EA:22:A6:66:03:CB:2F:A4:D9:1F:7F:B7 X509v3 Authority Key Identifier: keyid:FD:18:E3:EC:B5:F2:28:5C:07:51:C4:8E:AF:23:EF:21:0B:A8:FD:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dae13bac-91c1-463b-8333-64eec6d2797e/0/FD18E3ECB5F2285C0751C48EAF23EF210BA8FDCC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD18E3ECB5F2285C0751C48EAF23EF210BA8FDCC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dae13bac-91c1-463b-8333-64eec6d2797e/0/3135372e32302e39352e302f32342d3234203d3e20313431363032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.95.0/24 Signature Algorithm: sha256WithRSAEncryption 95:db:3a:6e:31:b8:a2:40:10:67:86:41:c8:8f:9b:78:21:36: 80:f1:96:ce:de:06:eb:cd:fc:6e:82:e4:3e:ba:de:4a:b5:c9: 3c:5e:f6:69:94:cb:e1:ec:cb:7e:d9:52:ac:3c:e7:26:8f:cd: 8b:e3:cb:d3:43:7d:20:32:d4:26:32:75:2c:c1:71:5e:7c:41: c8:a6:5f:cd:77:1e:fb:0c:94:99:0e:54:07:6d:7c:ee:9d:0a: 3b:08:e9:1c:2a:c8:5a:6d:5f:cb:95:84:2b:a3:9a:e1:a6:d1: db:97:76:c4:42:f3:41:ee:f8:9d:34:9d:bb:2c:bf:ae:d0:13: 54:28:87:fc:0d:2f:70:7c:f4:2a:a1:fc:62:ff:e2:99:dc:f4: f7:b5:b9:35:e8:a0:21:89:e4:d0:39:ad:8a:2d:c0:0e:a2:6e: 63:84:7d:29:41:41:86:4f:c4:92:22:36:ba:22:01:1c:cd:1a: b9:e9:af:f8:97:a2:e5:78:eb:0d:a4:97:2a:d4:20:6a:04:40: f3:e0:39:5e:ea:26:df:90:73:95:96:2b:9e:f4:0c:71:03:2c: 9f:87:17:23:e3:6a:a7:50:0e:21:32:cf:36:da:ff:f8:b8:28: 2a:f6:3f:58:e4:27:88:94:2c:13:bc:c5:08:73:80:2d:d1:91: 1b:83:42:c4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUI95HkMxLqxrzBk1xODOdTbdAGtAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkQxOEUzRUNCNUYyMjg1QzA3NTFDNDhFQUYyM0VGMjEw QkE4RkRDQzAeFw0yNDA2MjEwMTI0NDhaFw0yNTA2MjAwMTI5NDhaMDMxMTAvBgNV BAMTKDY2RUI5RjlBRDAxNkM4N0ZFQTIyQTY2NjAzQ0IyRkE0RDkxRjdGQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMu4wCIpp41g1b6NRczgNadWWe 1qzNNRMUqr/trlSZmlXKDXGVOiTiICmV9GqGi0PyHW6qbLiabS6NTG+9vS8cdCtL /NPx2yAlf+i3a0QJ3luPt/zT99xHJeXilOW/uwgUUzdElQ1ZWaTOYQ77Q8kkPvU8 d2fO3gKSewzOJHGnB+5WoGERy64QB/Gwh2iE447l4A4zpDOIPps8sQWlTZlKQrZ+ Ws7or2yD84Z4Q7rA5SfLCiJxU5Tt9+UkGXLdgD9yekcYFVoKFhwCmot+5AYt0sSg vEsnKIJTwoZswDZAsOt0H3zPICVBWHktomNnB5QxnrIsJZ2/b9KbfC2G8ar/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZuufmtAWyH/qIqZmA8svpNkff7cwHwYDVR0j BBgwFoAU/Rjj7LXyKFwHUcSOryPvIQuo/cwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YWUxM2JhYy05MWMxLTQ2M2ItODMzMy02NGVlYzZkMjc5N2UvMC9GRDE4RTNFQ0I1 RjIyODVDMDc1MUM0OEVBRjIzRUYyMTBCQThGRENDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkQxOEUzRUNCNUYyMjg1QzA3NTFDNDhFQUYyM0VGMjEwQkE4 RkRDQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RhZTEzYmFjLTkxYzEtNDYzYi04 MzMzLTY0ZWVjNmQyNzk3ZS8wLzMxMzUzNzJlMzIzMDJlMzkzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTM2MzAzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0UXzANBgkqhkiG 9w0BAQsFAAOCAQEAlds6bjG4okAQZ4ZByI+beCE2gPGWzt4G6838boLkPrreSrXJ PF72aZTL4ezLftlSrDznJo/Ni+PL00N9IDLUJjJ1LMFxXnxByKZfzXce+wyUmQ5U B2187p0KOwjpHCrIWm1fy5WEK6Oa4abR25d2xELzQe74nTSduyy/rtATVCiH/A0v cHz0KqH8Yv/imdz097W5NeigIYnk0Dmtii3ADqJuY4R9KUFBhk/EkiI2uiIBHM0a uemv+Jei5XjrDaSXKtQgagRA8+A5Xuom35BzlZYrnvQMcQMsn4cXI+Nqp1AOITLP Ntr/+LgoKvY/WOQniJQsE7zFCHOALdGRG4NCxA== -----END CERTIFICATE-----Generated at Thu Nov 21 23:33:00 2024 by rpki-client on console-ams.rpki-client.org