$ rpki-client -vvf repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/3135372e32302e3230382e302f32332d3233203d3e20313532343136.roa File: 3135372e32302e3230382e302f32332d3233203d3e20313532343136.roa (raw, json) Hash identifier: wamhsBz//EPBaIxlON2oWzeWgxlr1NAD3XrCOJ7CCzY= Subject key identifier: DB:B7:6E:BB:E5:A9:FD:EF:51:ED:DD:6A:D8:8E:3C:9E:1B:FC:51:5F Certificate issuer: /CN=C453630F1ABE5FF992F948A75DB4587776AD02EC Certificate serial: 5F26426B46C82EA31407F69867E7C620A42254AE Authority key identifier: C4:53:63:0F:1A:BE:5F:F9:92:F9:48:A7:5D:B4:58:77:76:AD:02:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C453630F1ABE5FF992F948A75DB4587776AD02EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/3135372e32302e3230382e302f32332d3233203d3e20313532343136.roa Signing time: Sun 19 May 2024 07:30:13 +0000 ROA not before: Sun 19 May 2024 07:25:13 +0000 ROA not after: Sun 18 May 2025 07:30:13 +0000 asID: 152416 IP address blocks: 157.20.208.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/C453630F1ABE5FF992F948A75DB4587776AD02EC.crl rsync://repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/C453630F1ABE5FF992F948A75DB4587776AD02EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C453630F1ABE5FF992F948A75DB4587776AD02EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:26:42:6b:46:c8:2e:a3:14:07:f6:98:67:e7:c6:20:a4:22:54:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C453630F1ABE5FF992F948A75DB4587776AD02EC Validity Not Before: May 19 07:25:13 2024 GMT Not After : May 18 07:30:13 2025 GMT Subject: CN=DBB76EBBE5A9FDEF51EDDD6AD88E3C9E1BFC515F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c0:f6:d3:ac:e2:66:f8:1a:bb:de:d8:85:fc: 2b:0e:69:cd:b7:ac:20:26:fc:0c:17:68:45:79:fe: 8f:93:d2:96:f5:2b:fd:52:06:3c:4e:67:c9:ce:c1: d1:a0:0b:be:a7:a0:d3:3e:10:32:cb:84:ba:5a:b4: 5e:4f:cb:af:85:e4:d8:55:e7:26:4f:9e:6c:bc:32: 4f:c8:94:2e:6c:31:e0:b7:96:70:9c:21:7d:33:24: b3:f0:49:29:85:ad:f8:1a:43:c2:66:1a:b1:df:53: 54:6f:cc:a6:f8:3a:fd:19:73:da:4a:c3:7f:0d:c5: 93:67:7a:02:a7:e6:78:7b:14:30:3f:08:d1:bd:d6: d8:1c:9a:ed:5b:57:27:a9:06:a5:c8:66:ff:94:c3: c8:01:74:81:b2:8c:e4:49:0f:91:bb:bf:dc:d9:1a: 55:62:ef:71:80:f5:16:62:ad:ea:45:e1:cf:72:6b: 04:ee:74:69:fb:c1:3e:0f:b2:33:c6:96:07:b4:48: 7b:6f:ae:f3:e2:f8:b6:ab:2f:be:75:1d:43:fb:f4: c1:de:cb:de:40:11:27:98:7d:a4:da:27:78:fb:93: c3:45:a6:21:d9:53:e8:82:41:e2:5d:bc:54:b0:e0: 0f:bf:05:22:70:eb:c3:09:c3:77:9c:31:af:40:22: 2f:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:B7:6E:BB:E5:A9:FD:EF:51:ED:DD:6A:D8:8E:3C:9E:1B:FC:51:5F X509v3 Authority Key Identifier: keyid:C4:53:63:0F:1A:BE:5F:F9:92:F9:48:A7:5D:B4:58:77:76:AD:02:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/C453630F1ABE5FF992F948A75DB4587776AD02EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C453630F1ABE5FF992F948A75DB4587776AD02EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/3135372e32302e3230382e302f32332d3233203d3e20313532343136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.208.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:51:35:b8:cc:ca:54:c8:de:39:70:c9:c7:a2:84:31:cd:14: 1a:37:66:7a:d2:4c:d7:1f:d1:5e:1b:f9:49:b9:25:1b:33:d4: c0:f4:6f:6c:4d:0d:78:5c:ab:8e:c9:e7:fa:52:f3:f6:2b:d6: df:7d:ef:2c:1d:80:09:5d:cf:a7:14:4b:f9:63:24:fe:16:b2: 6b:2d:99:c3:8a:63:87:ba:d2:8d:37:f0:a2:38:20:58:e1:38: 57:0c:b1:ca:e8:a1:35:3b:74:77:08:1f:f4:a9:e0:5f:37:eb: 82:cb:ac:bb:6b:b3:1d:fe:b0:25:d1:51:0d:b6:ec:bd:f0:71: 06:f6:2e:96:03:0b:6f:c8:73:15:18:fc:d6:27:79:36:c8:f8: 36:0f:85:68:6c:71:67:e1:c4:22:df:18:52:f7:78:6a:03:53: df:5b:38:1c:4e:8c:95:50:88:12:e7:b3:cb:97:58:12:91:ca: 1c:e5:26:4d:71:63:27:b5:d7:76:b4:b3:a3:d2:1c:a9:07:e0: 29:10:de:9b:2f:e3:6d:2c:dc:db:c1:81:83:3b:ce:68:a7:c5: d0:d7:c8:b1:54:e8:57:8d:7c:84:3e:1d:72:fc:e0:56:c7:ec: cd:08:c2:c8:66:15:23:08:9d:04:96:96:e5:86:31:43:59:b8: ba:7b:33:b7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXyZCa0bILqMUB/aYZ+fGIKQiVK4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MzYzMEYxQUJFNUZGOTkyRjk0OEE3NURCNDU4Nzc3 NkFEMDJFQzAeFw0yNDA1MTkwNzI1MTNaFw0yNTA1MTgwNzMwMTNaMDMxMTAvBgNV BAMTKERCQjc2RUJCRTVBOUZERUY1MUVEREQ2QUQ4OEUzQzlFMUJGQzUxNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCywPbTrOJm+Bq73tiF/CsOac23 rCAm/AwXaEV5/o+T0pb1K/1SBjxOZ8nOwdGgC76noNM+EDLLhLpatF5Py6+F5NhV 5yZPnmy8Mk/IlC5sMeC3lnCcIX0zJLPwSSmFrfgaQ8JmGrHfU1RvzKb4Ov0Zc9pK w38NxZNnegKn5nh7FDA/CNG91tgcmu1bVyepBqXIZv+Uw8gBdIGyjORJD5G7v9zZ GlVi73GA9RZirepF4c9yawTudGn7wT4PsjPGlge0SHtvrvPi+LarL751HUP79MHe y95AESeYfaTaJ3j7k8NFpiHZU+iCQeJdvFSw4A+/BSJw68MJw3ecMa9AIi81AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU27duu+Wp/e9R7d1q2I48nhv8UV8wHwYDVR0j BBgwFoAUxFNjDxq+X/mS+UinXbRYd3atAuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YzQwOTRkMi1lMThkLTQ4NDAtODRmYS1jNTc1N2FmNTgwZjEvMC9DNDUzNjMwRjFB QkU1RkY5OTJGOTQ4QTc1REI0NTg3Nzc2QUQwMkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzQ1MzYzMEYxQUJFNUZGOTkyRjk0OEE3NURCNDU4Nzc3NkFE MDJFQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RjNDA5NGQyLWUxOGQtNDg0MC04 NGZhLWM1NzU3YWY1ODBmMS8wLzMxMzUzNzJlMzIzMDJlMzIzMDM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzQzMTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRTQMA0GCSqG SIb3DQEBCwUAA4IBAQA/UTW4zMpUyN45cMnHooQxzRQaN2Z60kzXH9FeG/lJuSUb M9TA9G9sTQ14XKuOyef6UvP2K9bffe8sHYAJXc+nFEv5YyT+FrJrLZnDimOHutKN N/CiOCBY4ThXDLHK6KE1O3R3CB/0qeBfN+uCy6y7a7Md/rAl0VENtuy98HEG9i6W AwtvyHMVGPzWJ3k2yPg2D4VobHFn4cQi3xhS93hqA1PfWzgcToyVUIgS57PLl1gS kcoc5SZNcWMntdd2tLOj0hypB+ApEN6bL+NtLNzbwYGDO85op8XQ18ixVOhXjXyE Ph1y/OBWx+zNCMLIZhUjCJ0ElpblhjFDWbi6ezO3 -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:49 2024 by rpki-client on console-fra.rpki-client.org