$ rpki-client -vvf repo-rpki.idnic.net/repo/f3b47ab6-d1f1-4d2e-9cfc-8084a4bacf0b/0/3135372e32302e3231322e302f32332d3234203d3e20313532343135.roa File: 3135372e32302e3231322e302f32332d3234203d3e20313532343135.roa (raw, json) Hash identifier: qOQ8CZbQcoDh7CafgiyWPSSKcAvsE1+3O3buONli3OE= Subject key identifier: E3:29:1B:BB:49:2B:49:0D:B9:2D:2E:16:5D:CE:75:93:69:8F:35:55 Certificate issuer: /CN=7C4EACB6A8C8C7276D4CEB86DCDCA3E7F468A793 Certificate serial: 0DF589251D87C292CC1641B8FFA3C944CAFF8599 Authority key identifier: 7C:4E:AC:B6:A8:C8:C7:27:6D:4C:EB:86:DC:DC:A3:E7:F4:68:A7:93 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7C4EACB6A8C8C7276D4CEB86DCDCA3E7F468A793.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3b47ab6-d1f1-4d2e-9cfc-8084a4bacf0b/0/3135372e32302e3231322e302f32332d3234203d3e20313532343135.roa Signing time: Thu 04 Apr 2024 04:28:54 +0000 ROA not before: Thu 04 Apr 2024 04:23:54 +0000 ROA not after: Thu 03 Apr 2025 04:28:54 +0000 asID: 152415 IP address blocks: 157.20.212.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3b47ab6-d1f1-4d2e-9cfc-8084a4bacf0b/0/7C4EACB6A8C8C7276D4CEB86DCDCA3E7F468A793.crl rsync://repo-rpki.idnic.net/repo/f3b47ab6-d1f1-4d2e-9cfc-8084a4bacf0b/0/7C4EACB6A8C8C7276D4CEB86DCDCA3E7F468A793.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7C4EACB6A8C8C7276D4CEB86DCDCA3E7F468A793.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 13:51:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:f5:89:25:1d:87:c2:92:cc:16:41:b8:ff:a3:c9:44:ca:ff:85:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7C4EACB6A8C8C7276D4CEB86DCDCA3E7F468A793 Validity Not Before: Apr 4 04:23:54 2024 GMT Not After : Apr 3 04:28:54 2025 GMT Subject: CN=E3291BBB492B490DB92D2E165DCE7593698F3555 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:c9:6e:f2:04:bd:86:29:06:80:0f:2c:47:af: 50:ee:6a:2b:90:46:ad:68:6d:6c:42:18:fa:5a:e0: d3:30:3e:b5:f9:1d:c7:86:86:58:73:f7:17:5b:8e: aa:fc:f5:2a:c7:a3:47:06:07:9d:ad:3a:2f:6b:46: d8:63:34:a9:0b:ce:e3:20:cf:7b:ef:f6:04:80:17: 61:84:f8:11:8b:92:6a:4a:3f:be:0c:8d:fa:64:18: ec:fa:1d:8e:c6:f8:1e:e0:1c:89:5f:53:21:79:3b: d4:25:b0:2c:59:c2:09:31:88:b8:46:b0:b8:98:1a: 0d:54:bd:3e:6e:71:0c:fe:64:42:3d:5e:83:a9:96: 35:a5:7e:fa:48:72:de:9e:4e:7f:70:f6:db:8a:e3: 88:89:bb:ba:3a:d4:c8:dc:2e:64:3d:ee:63:91:b2: a8:b4:a5:87:22:37:d5:a4:d1:0c:5b:50:e6:1c:98: 90:c8:b6:38:dd:c3:66:7b:ad:03:3e:dd:59:f1:8e: 86:ff:a6:d8:a4:35:11:a8:52:12:d8:f0:91:7c:e1: ec:34:69:50:83:d8:bb:d5:99:fc:8d:d6:f3:c7:9a: d3:b5:ea:44:4a:b3:b4:00:49:55:cd:48:6b:2c:f4: 57:d1:fb:dc:c5:f6:c0:31:a4:b7:ea:c8:7e:a5:2c: 6c:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:29:1B:BB:49:2B:49:0D:B9:2D:2E:16:5D:CE:75:93:69:8F:35:55 X509v3 Authority Key Identifier: keyid:7C:4E:AC:B6:A8:C8:C7:27:6D:4C:EB:86:DC:DC:A3:E7:F4:68:A7:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3b47ab6-d1f1-4d2e-9cfc-8084a4bacf0b/0/7C4EACB6A8C8C7276D4CEB86DCDCA3E7F468A793.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7C4EACB6A8C8C7276D4CEB86DCDCA3E7F468A793.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3b47ab6-d1f1-4d2e-9cfc-8084a4bacf0b/0/3135372e32302e3231322e302f32332d3234203d3e20313532343135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.212.0/23 Signature Algorithm: sha256WithRSAEncryption b1:96:d1:20:bb:a3:fa:b8:e5:d4:3a:d4:ff:4c:29:69:49:0c: 23:0e:ca:1c:bb:02:1f:26:fc:7a:c0:59:3a:ac:17:fc:b9:9d: 8a:4e:2f:b0:25:0d:4d:e2:a4:b6:fa:cb:b8:78:31:0d:41:7e: 62:b3:04:26:b0:19:97:2e:23:b4:e6:22:84:26:bf:b8:04:d5: 8f:b4:89:bf:cc:66:ce:63:8b:e3:95:2f:69:52:70:9d:91:3b: 8d:2f:0a:f9:6c:7e:2d:fa:a6:50:b4:92:52:11:ae:9e:98:85: 64:2f:ee:45:a5:a7:ce:29:92:d8:35:94:12:c0:73:ae:9f:41: d1:2d:89:87:fb:da:47:e7:be:85:ac:d0:e9:d7:19:5a:34:93: ca:c6:f8:47:64:c6:d6:05:be:71:10:76:6e:ab:07:76:52:97: 87:42:ae:a1:9f:9c:7a:72:38:5e:d7:17:62:fe:66:cd:4a:ef: 4d:67:a2:da:59:6c:96:24:b2:84:53:a1:bc:fd:b5:9d:47:0e: bc:96:48:d7:20:4a:b1:0a:8b:bb:de:ff:5a:4e:56:bc:ce:e9: e3:85:ef:e9:c8:8e:36:91:6a:14:8e:40:d9:7c:af:d5:9f:01: 79:b5:25:ce:20:19:0b:2f:e1:a7:b9:c5:41:2a:48:46:31:c5: 79:92:31:6a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDfWJJR2HwpLMFkG4/6PJRMr/hZkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0M0RUFDQjZBOEM4QzcyNzZENENFQjg2RENEQ0EzRTdG NDY4QTc5MzAeFw0yNDA0MDQwNDIzNTRaFw0yNTA0MDMwNDI4NTRaMDMxMTAvBgNV BAMTKEUzMjkxQkJCNDkyQjQ5MERCOTJEMkUxNjVEQ0U3NTkzNjk4RjM1NTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVyW7yBL2GKQaADyxHr1DuaiuQ Rq1obWxCGPpa4NMwPrX5HceGhlhz9xdbjqr89SrHo0cGB52tOi9rRthjNKkLzuMg z3vv9gSAF2GE+BGLkmpKP74MjfpkGOz6HY7G+B7gHIlfUyF5O9QlsCxZwgkxiLhG sLiYGg1UvT5ucQz+ZEI9XoOpljWlfvpIct6eTn9w9tuK44iJu7o61MjcLmQ97mOR sqi0pYciN9Wk0QxbUOYcmJDItjjdw2Z7rQM+3Vnxjob/ptikNRGoUhLY8JF84ew0 aVCD2LvVmfyN1vPHmtO16kRKs7QASVXNSGss9FfR+9zF9sAxpLfqyH6lLGxtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU4ykbu0krSQ25LS4WXc51k2mPNVUwHwYDVR0j BBgwFoAUfE6stqjIxydtTOuG3Nyj5/Rop5MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2I0N2FiNi1kMWYxLTRkMmUtOWNmYy04MDg0YTRiYWNmMGIvMC83QzRFQUNCNkE4 QzhDNzI3NkQ0Q0VCODZEQ0RDQTNFN0Y0NjhBNzkzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0M0RUFDQjZBOEM4QzcyNzZENENFQjg2RENEQ0EzRTdGNDY4 QTc5My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzYjQ3YWI2LWQxZjEtNGQyZS05 Y2ZjLTgwODRhNGJhY2YwYi8wLzMxMzUzNzJlMzIzMDJlMzIzMTMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRTUMA0GCSqG SIb3DQEBCwUAA4IBAQCxltEgu6P6uOXUOtT/TClpSQwjDsocuwIfJvx6wFk6rBf8 uZ2KTi+wJQ1N4qS2+su4eDENQX5iswQmsBmXLiO05iKEJr+4BNWPtIm/zGbOY4vj lS9pUnCdkTuNLwr5bH4t+qZQtJJSEa6emIVkL+5FpafOKZLYNZQSwHOun0HRLYmH +9pH576FrNDp1xlaNJPKxvhHZMbWBb5xEHZuqwd2UpeHQq6hn5x6cjhe1xdi/mbN Su9NZ6LaWWyWJLKEU6G8/bWdRw68lkjXIEqxCou73v9aTla8zunjhe/pyI42kWoU jkDZfK/VnwF5tSXOIBkLL+GnucVBKkhGMcV5kjFq -----END CERTIFICATE-----Generated at Wed Nov 27 11:00:50 2024 by rpki-client on console-ams.rpki-client.org