$ rpki-client -vvf repo-rpki.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/0/3135372e32302e3134352e302f32342d3234203d3e20313532343231.roa File: 3135372e32302e3134352e302f32342d3234203d3e20313532343231.roa (raw, json) Hash identifier: oUhvxzdkxLC2c3V4jupa5oJ3doUGhbuoHpGb3COznqg= Subject key identifier: E7:81:46:71:A0:1F:34:15:A5:1D:BA:FC:8B:8A:BE:0B:71:30:34:91 Certificate issuer: /CN=969449FF3E24842B0CECC61AB398E88F83709FC1 Certificate serial: 50D8CA3F5D6D409D736AED0385ADBED831B46118 Authority key identifier: 96:94:49:FF:3E:24:84:2B:0C:EC:C6:1A:B3:98:E8:8F:83:70:9F:C1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/969449FF3E24842B0CECC61AB398E88F83709FC1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/0/3135372e32302e3134352e302f32342d3234203d3e20313532343231.roa Signing time: Thu 28 Mar 2024 02:24:51 +0000 ROA not before: Thu 28 Mar 2024 02:19:51 +0000 ROA not after: Thu 27 Mar 2025 02:24:51 +0000 asID: 152421 IP address blocks: 157.20.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/0/969449FF3E24842B0CECC61AB398E88F83709FC1.crl rsync://repo-rpki.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/0/969449FF3E24842B0CECC61AB398E88F83709FC1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/969449FF3E24842B0CECC61AB398E88F83709FC1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:d8:ca:3f:5d:6d:40:9d:73:6a:ed:03:85:ad:be:d8:31:b4:61:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=969449FF3E24842B0CECC61AB398E88F83709FC1 Validity Not Before: Mar 28 02:19:51 2024 GMT Not After : Mar 27 02:24:51 2025 GMT Subject: CN=E7814671A01F3415A51DBAFC8B8ABE0B71303491 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4f:23:6f:97:7c:8a:aa:c7:e5:0d:1e:b5:5d: 1a:df:3c:a8:46:9b:61:c1:2a:e0:4e:db:8d:58:aa: 2b:7d:33:55:bd:d5:d1:9c:d1:b0:8e:08:88:a1:59: 72:39:98:1e:f6:4a:c6:af:c0:76:bb:35:37:06:a6: d4:1a:a0:8c:ae:c1:c8:e6:e5:34:c4:35:33:dd:5a: de:1e:d7:21:14:02:a8:a3:24:96:33:a9:e5:f0:19: 13:98:02:27:1f:25:e7:cd:d7:39:e4:76:28:08:fb: e4:96:af:98:f7:08:10:6b:a3:14:ba:b2:23:ba:00: 7a:09:ea:32:5c:99:2a:38:4f:1d:c4:f0:1b:a7:e3: 23:de:18:2f:fa:f1:e0:67:7f:07:6a:45:3d:8b:d3: 87:f3:52:3e:d3:93:3b:c6:08:47:04:08:e2:8a:60: af:2f:a2:e9:4c:ef:71:97:1b:62:d8:63:cc:8e:73: 57:8d:9c:7b:9c:b6:48:83:a2:ff:fb:e7:b0:b1:01: 6d:72:6c:0c:e0:26:cb:db:a7:dc:d8:32:5c:03:58: 4a:33:95:91:a6:8c:56:1e:fb:22:4b:65:43:61:20: fb:7d:ad:a1:1b:87:e2:61:c2:61:9c:68:f7:b5:4d: 05:6d:c6:78:6e:f8:e4:bf:17:d2:8a:5c:db:0e:21: e8:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:81:46:71:A0:1F:34:15:A5:1D:BA:FC:8B:8A:BE:0B:71:30:34:91 X509v3 Authority Key Identifier: keyid:96:94:49:FF:3E:24:84:2B:0C:EC:C6:1A:B3:98:E8:8F:83:70:9F:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/0/969449FF3E24842B0CECC61AB398E88F83709FC1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/969449FF3E24842B0CECC61AB398E88F83709FC1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/0/3135372e32302e3134352e302f32342d3234203d3e20313532343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.145.0/24 Signature Algorithm: sha256WithRSAEncryption 58:13:4e:32:48:15:3b:7f:2f:f4:16:41:f4:8d:43:08:c1:7a: 47:c4:01:97:10:41:07:b8:eb:e9:26:9c:10:16:87:91:99:50: 04:57:3d:79:6c:5c:f9:ab:69:12:a9:93:d1:d5:e2:5d:e9:93: 29:19:0d:be:29:86:bd:5d:33:21:10:0e:9a:ff:bf:18:d6:6d: 94:cc:22:2f:b3:f1:d7:8c:35:c4:ec:20:50:3c:dd:4e:ab:c0: 36:c0:63:60:23:c4:98:48:b9:18:9a:a0:c2:9c:bb:60:d8:d3: 74:0b:ad:d3:41:04:fd:2e:72:06:ed:e3:a5:98:fe:26:b8:49: 5f:68:0d:56:05:39:f7:ac:f2:13:b3:29:72:39:ea:46:28:1f: 9d:5f:62:17:28:4f:db:02:0d:d9:71:0c:89:43:37:1b:16:ef: 5c:8d:e2:1a:14:ba:24:5c:43:05:5a:a1:10:e8:09:e2:20:fb: 03:c9:d5:7e:3b:ff:ac:5e:b8:c5:ae:e7:94:7b:96:05:5b:ac: b2:cd:ee:41:54:eb:af:26:c5:68:a0:8e:53:b0:98:26:ca:88: cd:8b:d6:43:53:00:dc:47:8e:10:0f:63:9b:90:c0:f3:af:36: 38:39:34:be:58:82:ee:d0:55:3a:7d:50:11:95:47:b1:79:a4: 57:97:21:e7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUNjKP11tQJ1zau0Dha2+2DG0YRgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTY5NDQ5RkYzRTI0ODQyQjBDRUNDNjFBQjM5OEU4OEY4 MzcwOUZDMTAeFw0yNDAzMjgwMjE5NTFaFw0yNTAzMjcwMjI0NTFaMDMxMTAvBgNV BAMTKEU3ODE0NjcxQTAxRjM0MTVBNTFEQkFGQzhCOEFCRTBCNzEzMDM0OTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDETyNvl3yKqsflDR61XRrfPKhG m2HBKuBO241Yqit9M1W91dGc0bCOCIihWXI5mB72SsavwHa7NTcGptQaoIyuwcjm 5TTENTPdWt4e1yEUAqijJJYzqeXwGROYAicfJefN1znkdigI++SWr5j3CBBroxS6 siO6AHoJ6jJcmSo4Tx3E8Bun4yPeGC/68eBnfwdqRT2L04fzUj7TkzvGCEcECOKK YK8voulM73GXG2LYY8yOc1eNnHuctkiDov/757CxAW1ybAzgJsvbp9zYMlwDWEoz lZGmjFYe+yJLZUNhIPt9raEbh+JhwmGcaPe1TQVtxnhu+OS/F9KKXNsOIegxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU54FGcaAfNBWlHbr8i4q+C3EwNJEwHwYDVR0j BBgwFoAUlpRJ/z4khCsM7MYas5joj4Nwn8EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTRmNzkzNC1jZGM3LTQwODItODNmYi1kZjdkNGY4MjE5YWYvMC85Njk0NDlGRjNF MjQ4NDJCMENFQ0M2MUFCMzk4RTg4RjgzNzA5RkMxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTY5NDQ5RkYzRTI0ODQyQjBDRUNDNjFBQjM5OEU4OEY4Mzcw OUZDMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhNGY3OTM0LWNkYzctNDA4Mi04 M2ZiLWRmN2Q0ZjgyMTlhZi8wLzMxMzUzNzJlMzIzMDJlMzEzNDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRSRMA0GCSqG SIb3DQEBCwUAA4IBAQBYE04ySBU7fy/0FkH0jUMIwXpHxAGXEEEHuOvpJpwQFoeR mVAEVz15bFz5q2kSqZPR1eJd6ZMpGQ2+KYa9XTMhEA6a/78Y1m2UzCIvs/HXjDXE 7CBQPN1Oq8A2wGNgI8SYSLkYmqDCnLtg2NN0C63TQQT9LnIG7eOlmP4muElfaA1W BTn3rPITsylyOepGKB+dX2IXKE/bAg3ZcQyJQzcbFu9cjeIaFLokXEMFWqEQ6Ani IPsDydV+O/+sXrjFrueUe5YFW6yyze5BVOuvJsVooI5TsJgmyojNi9ZDUwDcR44Q D2ObkMDzrzY4OTS+WILu0FU6fVARlUexeaRXlyHn -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:57 2024 by rpki-client on console-ams.rpki-client.org