$ rpki-client -vvf repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/3135372e3131392e3232302e302f32322d3234203d3e203435333032.roa File: 3135372e3131392e3232302e302f32322d3234203d3e203435333032.roa (raw, json) Hash identifier: vIr8EFYpMesmWpGG8L+iJmePa3KxzvW4o1c9yABNaa4= Subject key identifier: 74:9E:7C:12:73:CE:58:78:43:5A:3B:97:EC:9C:93:EE:AC:9C:7B:2E Certificate issuer: /CN=19A196F5E5BABA31926C5AEEF44FC16387E65C3C Certificate serial: 420B393511982A92DCC5900E6DB8383C3DB5ED0C Authority key identifier: 19:A1:96:F5:E5:BA:BA:31:92:6C:5A:EE:F4:4F:C1:63:87:E6:5C:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/3135372e3131392e3232302e302f32322d3234203d3e203435333032.roa Signing time: Mon 01 Jul 2024 01:04:28 +0000 ROA not before: Mon 01 Jul 2024 00:59:28 +0000 ROA not after: Mon 30 Jun 2025 01:04:28 +0000 asID: 45302 IP address blocks: 157.119.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.crl rsync://repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:0b:39:35:11:98:2a:92:dc:c5:90:0e:6d:b8:38:3c:3d:b5:ed:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=19A196F5E5BABA31926C5AEEF44FC16387E65C3C Validity Not Before: Jul 1 00:59:28 2024 GMT Not After : Jun 30 01:04:28 2025 GMT Subject: CN=749E7C1273CE5878435A3B97EC9C93EEAC9C7B2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a4:42:19:92:f2:17:9b:0c:15:65:38:b4:d8: 0e:50:46:e3:72:23:20:73:3f:75:cf:cd:9c:68:2a: d6:83:25:b6:5e:78:65:7d:a2:0a:56:6b:b2:76:89: 5f:d5:d2:ca:d9:0f:ac:85:a1:ed:99:8a:fe:4b:dc: 7e:9b:76:3e:45:44:34:c0:29:e3:88:be:2d:04:84: b4:72:76:9e:04:f7:b2:2f:98:04:81:a0:8c:3b:7b: 4f:5f:e8:18:a8:e7:25:e6:eb:f7:32:c2:f1:0a:7b: ad:19:7e:25:6a:dc:30:6a:74:5b:c7:02:e8:14:40: 02:18:55:51:10:19:3a:f8:f9:3e:ca:84:db:d0:bf: ce:4c:25:f6:7e:91:c7:f6:99:ae:63:b9:b1:83:a7: e6:6a:e8:9a:6b:e1:41:a0:dc:4c:ca:aa:3e:db:90: 4a:ea:c7:54:24:c4:12:d2:91:c1:3b:dd:f6:ed:74: 68:e4:ee:68:f5:10:e6:b5:a6:63:c1:c2:06:dd:92: 1d:82:a7:01:2d:e4:b5:fd:f4:62:67:9c:db:72:2d: 98:55:15:0c:9f:39:3d:38:41:28:ce:79:94:30:58: 09:fc:7c:26:0a:aa:79:5a:8a:cd:61:37:f8:e8:20: 5f:f2:64:fa:01:99:38:eb:da:78:03:5e:27:fb:4b: fe:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:9E:7C:12:73:CE:58:78:43:5A:3B:97:EC:9C:93:EE:AC:9C:7B:2E X509v3 Authority Key Identifier: keyid:19:A1:96:F5:E5:BA:BA:31:92:6C:5A:EE:F4:4F:C1:63:87:E6:5C:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/3135372e3131392e3232302e302f32322d3234203d3e203435333032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.119.220.0/22 Signature Algorithm: sha256WithRSAEncryption 02:61:24:1d:b1:39:84:28:f1:0a:25:e4:4f:83:9b:b0:3d:7e: a7:a8:c1:2a:c7:bc:3b:70:a1:e8:81:1f:c9:08:ad:e9:af:6e: 95:33:f8:73:84:0e:d3:b3:d8:a1:1e:11:10:8f:87:6f:28:ec: 73:98:e2:73:ca:c5:ee:9b:f7:5c:55:39:e3:98:15:32:97:3c: de:bc:a3:17:72:50:fd:69:c6:72:e6:99:a7:ae:44:82:3f:ac: 7d:09:c4:86:10:ae:84:4f:b7:a4:e0:15:40:ed:eb:92:ba:d2: 50:ba:52:9c:14:f2:7b:41:1e:c6:b5:0a:40:79:cd:b2:d4:55: c0:8b:b3:8a:fb:46:57:df:e2:3b:bb:c4:a1:a0:63:bc:10:e8: 65:30:9a:62:99:6d:25:23:5c:4a:62:72:0c:0d:2c:48:e1:d6: 0f:2b:b4:3e:27:6c:33:81:c1:6e:66:39:1a:d3:f7:9d:c0:d2: 2d:ef:52:56:21:18:ac:23:fe:28:84:ed:03:d1:a7:65:2a:7d: 77:e9:ff:9e:b8:58:52:68:7a:32:d9:2d:78:f1:e5:a8:51:27: ab:10:99:92:15:68:54:eb:4b:0f:79:89:b1:86:4d:71:32:44: 0d:3d:ce:5e:aa:17:11:4f:ad:13:c7:58:e0:15:b6:d2:15:2e: ea:44:ad:91 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQgs5NRGYKpLcxZAObbg4PD217QwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTlBMTk2RjVFNUJBQkEzMTkyNkM1QUVFRjQ0RkMxNjM4 N0U2NUMzQzAeFw0yNDA3MDEwMDU5MjhaFw0yNTA2MzAwMTA0MjhaMDMxMTAvBgNV BAMTKDc0OUU3QzEyNzNDRTU4Nzg0MzVBM0I5N0VDOUM5M0VFQUM5QzdCMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKpEIZkvIXmwwVZTi02A5QRuNy IyBzP3XPzZxoKtaDJbZeeGV9ogpWa7J2iV/V0srZD6yFoe2Ziv5L3H6bdj5FRDTA KeOIvi0EhLRydp4E97IvmASBoIw7e09f6Bio5yXm6/cywvEKe60ZfiVq3DBqdFvH AugUQAIYVVEQGTr4+T7KhNvQv85MJfZ+kcf2ma5jubGDp+Zq6Jpr4UGg3EzKqj7b kErqx1QkxBLSkcE73fbtdGjk7mj1EOa1pmPBwgbdkh2CpwEt5LX99GJnnNtyLZhV FQyfOT04QSjOeZQwWAn8fCYKqnlais1hN/joIF/yZPoBmTjr2ngDXif7S/71AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdJ58EnPOWHhDWjuX7JyT7qycey4wHwYDVR0j BBgwFoAUGaGW9eW6ujGSbFru9E/BY4fmXDwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m Yjg4NThlMC1lY2YwLTRlNTMtYTQ5MC0zYjdjMmRlMTY5M2MvMC8xOUExOTZGNUU1 QkFCQTMxOTI2QzVBRUVGNDRGQzE2Mzg3RTY1QzNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTlBMTk2RjVFNUJBQkEzMTkyNkM1QUVFRjQ0RkMxNjM4N0U2 NUMzQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZiODg1OGUwLWVjZjAtNGU1My1h NDkwLTNiN2MyZGUxNjkzYy8wLzMxMzUzNzJlMzEzMTM5MmUzMjMyMzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNDM1MzMzMDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCnXfcMA0GCSqG SIb3DQEBCwUAA4IBAQACYSQdsTmEKPEKJeRPg5uwPX6nqMEqx7w7cKHogR/JCK3p r26VM/hzhA7Ts9ihHhEQj4dvKOxzmOJzysXum/dcVTnjmBUylzzevKMXclD9acZy 5pmnrkSCP6x9CcSGEK6ET7ek4BVA7euSutJQulKcFPJ7QR7GtQpAec2y1FXAi7OK +0ZX3+I7u8ShoGO8EOhlMJpimW0lI1xKYnIMDSxI4dYPK7Q+J2wzgcFuZjka0/ed wNIt71JWIRisI/4ohO0D0adlKn136f+euFhSaHoy2S148eWoUSerEJmSFWhU60sP eYmxhk1xMkQNPc5eqhcRT60Tx1jgFbbSFS7qRK2R -----END CERTIFICATE-----Generated at Mon Nov 25 04:42:07 2024 by rpki-client on console-ams.rpki-client.org