$ rpki-client -vvf repo-rpki.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/3135372e31352e38322e302f32332d3233203d3e20313532333633.roa File: 3135372e31352e38322e302f32332d3233203d3e20313532333633.roa (raw, json) Hash identifier: UffQnz05QFV8GgWK1doH6hmpZ9NUthRZ5as/2PM5Ybc= Subject key identifier: 27:82:11:C0:72:E3:74:54:91:D6:C0:A1:78:0D:F4:8B:96:A7:0E:6B Certificate issuer: /CN=FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8 Certificate serial: 1208F1E49F612CD33E80494BF705AC64F1BEE134 Authority key identifier: FF:3F:06:6A:5E:9A:B8:F9:88:B8:E1:7C:7A:56:DD:2E:00:A6:6A:D8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/3135372e31352e38322e302f32332d3233203d3e20313532333633.roa Signing time: Thu 30 May 2024 14:55:58 +0000 ROA not before: Thu 30 May 2024 14:50:58 +0000 ROA not after: Thu 29 May 2025 14:55:58 +0000 asID: 152363 IP address blocks: 157.15.82.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8.crl rsync://repo-rpki.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:08:f1:e4:9f:61:2c:d3:3e:80:49:4b:f7:05:ac:64:f1:be:e1:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8 Validity Not Before: May 30 14:50:58 2024 GMT Not After : May 29 14:55:58 2025 GMT Subject: CN=278211C072E3745491D6C0A1780DF48B96A70E6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:07:9a:a7:64:0c:c8:54:2a:6c:8e:5d:89:b3: 49:1c:6b:0f:f7:c5:08:63:00:2a:cd:af:92:ba:7d: 45:e2:ba:d5:6c:c8:64:0c:bc:06:8c:28:6a:0a:d0: fe:b2:a0:0c:da:83:3c:2f:45:7f:d8:45:fb:62:ad: 13:0d:09:08:89:5c:26:87:22:9d:76:b4:78:83:ea: 46:b1:bc:f9:43:98:b2:46:2c:9b:66:2a:a4:ff:02: f8:c9:a1:62:e3:10:d0:d9:18:69:e3:71:8e:bd:98: b9:3e:d5:4f:f9:bb:f0:65:f3:60:da:b4:ae:47:1f: 99:a9:19:28:65:05:6e:f1:ff:63:a7:52:3d:50:2f: ff:3f:1d:7f:a0:29:8e:7a:55:3a:ef:dd:ba:1e:7a: 31:c2:08:b7:e8:9a:d0:1e:72:85:28:47:fa:8f:25: 4d:bc:6a:de:8d:8a:a8:ae:1f:bb:0e:72:b6:1a:54: ac:36:e4:7d:af:03:14:92:d7:5d:c1:8a:7f:a2:29: fc:c0:52:07:a2:21:ff:d7:ec:bc:4a:fc:41:5b:28: 31:7d:3f:32:6a:02:28:a4:70:d5:d3:04:d8:0d:c1: 78:89:5a:cc:25:db:ea:53:92:5e:b8:af:02:db:70: d9:a0:5a:fc:df:9c:08:c0:e2:e5:a4:f5:0c:72:30: d4:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:82:11:C0:72:E3:74:54:91:D6:C0:A1:78:0D:F4:8B:96:A7:0E:6B X509v3 Authority Key Identifier: keyid:FF:3F:06:6A:5E:9A:B8:F9:88:B8:E1:7C:7A:56:DD:2E:00:A6:6A:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/3135372e31352e38322e302f32332d3233203d3e20313532333633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.82.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:4f:36:63:f0:fc:bb:44:a8:21:4f:8e:41:72:41:f8:2a:6a: fb:3d:6f:fc:df:b7:b6:2c:0b:05:d5:89:2c:9e:68:a4:4d:65: a4:e1:b2:6c:57:59:3d:43:56:21:d2:a6:30:01:c7:33:f7:64: 50:2c:2f:e2:fa:1c:99:43:dc:7d:f1:7c:1f:a1:c0:bd:b9:31: 39:d2:aa:78:d4:05:74:54:4f:13:c2:65:b3:83:b8:8a:fe:4c: 40:02:80:92:37:d4:d4:39:20:f5:24:41:a6:d4:52:be:c8:3a: f6:b5:89:40:44:64:23:ba:86:f0:89:25:10:af:c7:1a:1b:95: 7b:c4:dc:c1:75:5b:13:42:2f:8d:1b:8d:28:70:2e:81:e6:53: bd:a2:e6:7c:d8:00:b7:16:c6:38:fd:8f:1d:50:d4:52:39:94: fb:99:2a:bb:61:a9:a5:6b:9f:d1:4b:15:b1:79:59:79:da:d4: 04:67:e6:13:c6:d9:2b:53:62:a6:cc:ba:0e:db:95:8a:4b:db: ea:e8:04:3a:85:07:8b:f1:56:f4:9e:fc:f1:66:e9:bd:c1:6b: 62:84:1d:09:de:d1:be:10:55:ca:33:ba:74:8f:b3:42:2c:8d: f4:23:46:f4:f6:78:c9:6e:85:bc:ef:5f:cf:3b:40:4f:a8:2e: 52:aa:25:8d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEgjx5J9hLNM+gElL9wWsZPG+4TQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkYzRjA2NkE1RTlBQjhGOTg4QjhFMTdDN0E1NkREMkUw MEE2NkFEODAeFw0yNDA1MzAxNDUwNThaFw0yNTA1MjkxNDU1NThaMDMxMTAvBgNV BAMTKDI3ODIxMUMwNzJFMzc0NTQ5MUQ2QzBBMTc4MERGNDhCOTZBNzBFNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnB5qnZAzIVCpsjl2Js0kcaw/3 xQhjACrNr5K6fUXiutVsyGQMvAaMKGoK0P6yoAzagzwvRX/YRftirRMNCQiJXCaH Ip12tHiD6kaxvPlDmLJGLJtmKqT/AvjJoWLjENDZGGnjcY69mLk+1U/5u/Bl82Da tK5HH5mpGShlBW7x/2OnUj1QL/8/HX+gKY56VTrv3boeejHCCLfomtAecoUoR/qP JU28at6NiqiuH7sOcrYaVKw25H2vAxSS113Bin+iKfzAUgeiIf/X7LxK/EFbKDF9 PzJqAiikcNXTBNgNwXiJWswl2+pTkl64rwLbcNmgWvzfnAjA4uWk9QxyMNQFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJ4IRwHLjdFSR1sCheA30i5anDmswHwYDVR0j BBgwFoAU/z8Gal6auPmIuOF8elbdLgCmatgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZDAxMWExYy1hMGFkLTRkOTMtODZhZi0zZjBhYWRkOTY4NGYvMC9GRjNGMDY2QTVF OUFCOEY5ODhCOEUxN0M3QTU2REQyRTAwQTY2QUQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkYzRjA2NkE1RTlBQjhGOTg4QjhFMTdDN0E1NkREMkUwMEE2 NkFEOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkMDExYTFjLWEwYWQtNGQ5My04 NmFmLTNmMGFhZGQ5Njg0Zi8wLzMxMzUzNzJlMzEzNTJlMzgzMjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMjMzMzYzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0PUjANBgkqhkiG 9w0BAQsFAAOCAQEATE82Y/D8u0SoIU+OQXJB+Cpq+z1v/N+3tiwLBdWJLJ5opE1l pOGybFdZPUNWIdKmMAHHM/dkUCwv4vocmUPcffF8H6HAvbkxOdKqeNQFdFRPE8Jl s4O4iv5MQAKAkjfU1Dkg9SRBptRSvsg69rWJQERkI7qG8IklEK/HGhuVe8TcwXVb E0IvjRuNKHAugeZTvaLmfNgAtxbGOP2PHVDUUjmU+5kqu2GppWuf0UsVsXlZedrU BGfmE8bZK1Nipsy6DtuVikvb6ugEOoUHi/FW9J788WbpvcFrYoQdCd7RvhBVyjO6 dI+zQiyN9CNG9PZ4yW6FvO9fzztAT6guUqoljQ== -----END CERTIFICATE-----Generated at Mon Nov 25 15:26:44 2024 by rpki-client on console-fra.rpki-client.org