$ rpki-client -vvf repo-rpki.idnic.net/repo/15bae30c-b363-407b-a0ab-3154eb309ae9/0/3135372e32302e32342e302f32342d3234203d3e203633353036.roa File: 3135372e32302e32342e302f32342d3234203d3e203633353036.roa (raw, json) Hash identifier: ezt2zOc+QeH12Y4wsUJfGo7Jo150v9lgxU8FKHNnM9I= Subject key identifier: 12:85:9B:60:BB:C2:5C:4E:B8:84:8A:1B:13:AD:98:18:67:EB:4C:24 Certificate issuer: /CN=2A2E185B12379871494114828D5D5D713982E469 Certificate serial: 41174B3C493F9325D63F319C2CC5EA1B96F8E074 Authority key identifier: 2A:2E:18:5B:12:37:98:71:49:41:14:82:8D:5D:5D:71:39:82:E4:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2A2E185B12379871494114828D5D5D713982E469.cer Subject info access: rsync://repo-rpki.idnic.net/repo/15bae30c-b363-407b-a0ab-3154eb309ae9/0/3135372e32302e32342e302f32342d3234203d3e203633353036.roa Signing time: Thu 15 Feb 2024 16:58:02 +0000 ROA not before: Thu 15 Feb 2024 16:53:02 +0000 ROA not after: Thu 13 Feb 2025 16:58:02 +0000 asID: 63506 IP address blocks: 157.20.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/15bae30c-b363-407b-a0ab-3154eb309ae9/0/2A2E185B12379871494114828D5D5D713982E469.crl rsync://repo-rpki.idnic.net/repo/15bae30c-b363-407b-a0ab-3154eb309ae9/0/2A2E185B12379871494114828D5D5D713982E469.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2A2E185B12379871494114828D5D5D713982E469.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:17:4b:3c:49:3f:93:25:d6:3f:31:9c:2c:c5:ea:1b:96:f8:e0:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2E185B12379871494114828D5D5D713982E469 Validity Not Before: Feb 15 16:53:02 2024 GMT Not After : Feb 13 16:58:02 2025 GMT Subject: CN=12859B60BBC25C4EB8848A1B13AD981867EB4C24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c7:78:c2:c7:f5:5c:dd:43:45:3d:10:ac:66: 85:30:e2:26:02:1c:93:a6:f5:86:b1:a3:9d:81:6b: e4:f9:ee:1e:19:67:48:3a:83:8f:ab:7b:4b:40:74: 1c:c3:b9:67:43:fd:0b:83:00:64:dd:ff:13:ed:3e: cc:90:22:0a:6c:34:63:d5:34:04:4a:8e:92:4b:d0: 47:32:53:15:65:8f:cc:47:3a:42:cd:47:a4:af:27: 00:1b:5e:73:e3:12:ce:7e:3e:1a:19:fc:48:2c:87: 55:c2:d2:12:5d:15:d1:a9:91:e6:32:48:8a:9f:5f: 5a:30:ce:d0:d9:ca:16:1b:03:3b:5b:61:c4:81:f0: 47:63:09:9a:57:b5:8b:16:89:34:fb:6d:67:46:74: 43:88:99:50:6d:e8:6c:b4:35:a8:e6:25:27:66:5e: 9a:f1:24:61:76:b6:70:60:ca:26:91:ca:1a:f7:44: e3:4e:ec:34:32:b4:d8:ac:e7:d4:27:b7:4d:46:04: 60:07:41:74:3e:0a:32:6e:93:6b:82:fc:68:1b:02: be:65:68:2b:b8:de:c8:ae:79:61:d2:4e:4f:63:5e: b6:8d:72:03:45:8a:80:1d:e3:8f:b8:84:46:0f:93: 5b:31:54:09:81:77:05:dc:82:e7:96:9e:c8:3d:48: 72:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:85:9B:60:BB:C2:5C:4E:B8:84:8A:1B:13:AD:98:18:67:EB:4C:24 X509v3 Authority Key Identifier: keyid:2A:2E:18:5B:12:37:98:71:49:41:14:82:8D:5D:5D:71:39:82:E4:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/15bae30c-b363-407b-a0ab-3154eb309ae9/0/2A2E185B12379871494114828D5D5D713982E469.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2A2E185B12379871494114828D5D5D713982E469.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/15bae30c-b363-407b-a0ab-3154eb309ae9/0/3135372e32302e32342e302f32342d3234203d3e203633353036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.24.0/24 Signature Algorithm: sha256WithRSAEncryption a5:44:5e:51:d4:20:af:15:02:44:cf:17:ee:64:b1:69:9c:c0: 54:e7:2c:4c:31:04:8f:b4:3d:1b:2a:30:0c:2d:a7:b5:49:3e: f6:37:aa:04:6a:24:56:c9:3f:d8:76:d3:a2:96:1a:ef:42:5a: f2:02:63:35:e1:66:0a:76:3a:42:26:85:c3:8c:e2:21:f6:8e: 32:f9:54:ad:ba:31:0a:fe:df:af:92:eb:82:dc:03:03:bc:db: 6d:b9:97:54:fe:cb:21:f9:f4:51:70:f4:84:f4:8e:d9:0b:01: 06:85:7d:36:6e:99:a3:7e:ec:46:e1:f8:b8:cb:04:70:19:2a: 60:78:89:ab:9a:ce:6f:4e:0d:cd:42:94:6b:62:3e:8e:04:55: f6:97:f2:ec:0b:55:a9:99:a1:a2:51:82:9f:0e:99:a7:37:2e: a4:c8:a4:59:2a:21:d1:5d:79:a9:ee:69:3b:35:7a:50:17:4e: f2:c0:65:be:52:36:f8:db:f9:95:f4:08:89:fc:cf:2d:7e:84: 87:58:b4:02:ba:7d:ae:ee:3e:a1:14:e0:4c:00:dd:c4:7d:eb: 3c:df:24:3a:17:8b:fc:15:b1:d9:1b:eb:86:17:8b:d7:6a:06: 8e:31:72:5b:06:df:41:3d:75:27:6a:c6:b0:a8:98:f0:17:fa: d6:20:f7:92 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUQRdLPEk/kyXWPzGcLMXqG5b44HQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRTE4NUIxMjM3OTg3MTQ5NDExNDgyOEQ1RDVENzEz OTgyRTQ2OTAeFw0yNDAyMTUxNjUzMDJaFw0yNTAyMTMxNjU4MDJaMDMxMTAvBgNV BAMTKDEyODU5QjYwQkJDMjVDNEVCODg0OEExQjEzQUQ5ODE4NjdFQjRDMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGx3jCx/Vc3UNFPRCsZoUw4iYC HJOm9Yaxo52Ba+T57h4ZZ0g6g4+re0tAdBzDuWdD/QuDAGTd/xPtPsyQIgpsNGPV NARKjpJL0EcyUxVlj8xHOkLNR6SvJwAbXnPjEs5+PhoZ/Egsh1XC0hJdFdGpkeYy SIqfX1owztDZyhYbAztbYcSB8EdjCZpXtYsWiTT7bWdGdEOImVBt6Gy0NajmJSdm XprxJGF2tnBgyiaRyhr3RONO7DQytNis59Qnt01GBGAHQXQ+CjJuk2uC/GgbAr5l aCu43siueWHSTk9jXraNcgNFioAd44+4hEYPk1sxVAmBdwXcgueWnsg9SHIZAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUEoWbYLvCXE64hIobE62YGGfrTCQwHwYDVR0j BBgwFoAUKi4YWxI3mHFJQRSCjV1dcTmC5GkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NWJhZTMwYy1iMzYzLTQwN2ItYTBhYi0zMTU0ZWIzMDlhZTkvMC8yQTJFMTg1QjEy Mzc5ODcxNDk0MTE0ODI4RDVENUQ3MTM5ODJFNDY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMkEyRTE4NUIxMjM3OTg3MTQ5NDExNDgyOEQ1RDVENzEzOTgy RTQ2OS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE1YmFlMzBjLWIzNjMtNDA3Yi1h MGFiLTMxNTRlYjMwOWFlOS8wLzMxMzUzNzJlMzIzMDJlMzIzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzNTMwMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACdFBgwDQYJKoZIhvcN AQELBQADggEBAKVEXlHUIK8VAkTPF+5ksWmcwFTnLEwxBI+0PRsqMAwtp7VJPvY3 qgRqJFbJP9h206KWGu9CWvICYzXhZgp2OkImhcOM4iH2jjL5VK26MQr+36+S64Lc AwO82225l1T+yyH59FFw9IT0jtkLAQaFfTZumaN+7Ebh+LjLBHAZKmB4iauazm9O Dc1ClGtiPo4EVfaX8uwLVamZoaJRgp8Omac3LqTIpFkqIdFdeanuaTs1elAXTvLA Zb5SNvjb+ZX0CIn8zy1+hIdYtAK6fa7uPqEU4EwA3cR96zzfJDoXi/wVsdkb64YX i9dqBo4xclsG30E9dSdqxrComPAX+tYg95I= -----END CERTIFICATE-----Generated at Wed Nov 20 20:04:30 2024 by rpki-client on console-fra.rpki-client.org