$ rpki-client -vvf repo-rpki.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/3135372e31352e38322e302f32342d3234203d3e20313532333633.roa File: 3135372e31352e38322e302f32342d3234203d3e20313532333633.roa (raw, json) Hash identifier: LrI1MXered6/Wn/sgVv2p3qHmbqQpnmve4fLzG+M9WE= Subject key identifier: 2F:18:BC:12:02:CA:16:2A:48:AA:94:C2:21:A7:7B:63:19:BB:C2:D9 Certificate issuer: /CN=FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8 Certificate serial: 6EE3F127E3320F3B55EB7E0EC065E7A711F39CC2 Authority key identifier: FF:3F:06:6A:5E:9A:B8:F9:88:B8:E1:7C:7A:56:DD:2E:00:A6:6A:D8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/3135372e31352e38322e302f32342d3234203d3e20313532333633.roa Signing time: Fri 14 Jun 2024 13:07:50 +0000 ROA not before: Fri 14 Jun 2024 13:02:50 +0000 ROA not after: Fri 13 Jun 2025 13:07:50 +0000 asID: 152363 IP address blocks: 157.15.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8.crl rsync://repo-rpki.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:e3:f1:27:e3:32:0f:3b:55:eb:7e:0e:c0:65:e7:a7:11:f3:9c:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8 Validity Not Before: Jun 14 13:02:50 2024 GMT Not After : Jun 13 13:07:50 2025 GMT Subject: CN=2F18BC1202CA162A48AA94C221A77B6319BBC2D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:12:3d:5b:0b:73:6e:4b:91:3e:8e:21:7c:11: b4:89:b0:ad:cd:ec:4d:77:fe:84:15:58:56:39:a3: bb:70:38:5c:8c:14:88:6b:02:ab:d4:02:f8:12:51: 33:06:c1:e7:70:f8:43:6f:2e:17:80:23:c5:75:a6: bc:81:63:e6:9e:be:bb:ad:d0:c5:7b:9e:0a:87:bd: d2:96:e8:ad:dc:e4:e2:fe:af:54:7b:57:0c:18:fe: 7b:f7:45:b7:4d:2f:4f:63:35:cf:60:f2:ab:40:c5: 9f:03:42:28:1d:1a:0f:d1:d3:50:18:40:a2:6f:ac: 8a:e5:78:ce:45:0f:34:63:b0:cc:e0:5a:90:28:a3: 7c:60:2e:dd:e9:3d:e4:fb:f1:86:76:45:21:dc:58: d3:fb:ec:3b:31:df:ec:8d:35:45:da:89:a6:e2:97: 42:9a:f0:b2:46:a5:63:1c:72:48:da:58:ee:96:60: 6f:2c:43:97:fd:ef:13:cb:07:1c:79:1a:16:24:e4: c5:ea:25:f6:dc:f3:90:c3:9d:8f:1f:50:87:fe:c1: 94:c7:73:3e:b0:18:e3:89:cb:d1:74:10:9b:75:b2: d2:42:9b:f1:33:1b:3c:35:a4:c0:a5:1c:84:14:4a: 31:a9:c1:75:34:62:c0:55:fd:05:61:72:a4:52:ac: 8e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:18:BC:12:02:CA:16:2A:48:AA:94:C2:21:A7:7B:63:19:BB:C2:D9 X509v3 Authority Key Identifier: keyid:FF:3F:06:6A:5E:9A:B8:F9:88:B8:E1:7C:7A:56:DD:2E:00:A6:6A:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/3135372e31352e38322e302f32342d3234203d3e20313532333633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.82.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:f8:b6:e0:14:28:c4:a6:ee:92:96:c0:28:2c:f1:bb:c6:5b: 00:8e:fd:56:8c:2a:41:af:84:51:29:a5:bf:a8:8f:99:08:81: 69:6f:7f:0a:70:cf:6d:7a:b9:ef:10:9b:00:fd:1c:14:be:af: d1:d1:61:1a:84:fe:08:b9:89:4d:04:8a:d0:de:23:b1:c2:e4: 93:35:bc:8f:d2:97:64:ce:09:3a:23:b1:92:9d:8f:f2:d6:79: 71:aa:9f:4d:71:d1:9b:4c:b8:85:bc:ba:94:15:34:f0:72:ef: 3e:d1:c2:7e:55:9a:78:b7:63:3e:50:fa:69:1b:3e:ef:8e:c9: d1:5c:ab:22:b0:d8:e6:7e:e7:e0:5c:7f:c1:4b:32:f8:8a:cb: 7d:b0:d7:0b:86:4d:38:30:ee:22:13:fe:4f:57:9b:f1:71:dd: 42:92:a6:bc:3c:85:27:09:db:ca:bf:b4:43:8d:68:7f:e4:8a: 90:d8:b1:0a:cc:fb:4c:d9:ed:f1:82:c1:b6:59:18:e5:3e:c2: 5a:3c:ac:7a:e3:79:03:19:ee:c8:1b:f5:51:ef:37:69:92:a7: e3:63:ef:63:df:c6:39:1b:b4:75:ef:54:21:b0:8f:36:10:10: c5:29:fc:53:4f:c3:69:22:05:a9:1b:be:78:6a:d5:8c:ee:36: 34:2e:0c:31 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbuPxJ+MyDztV634OwGXnpxHznMIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkYzRjA2NkE1RTlBQjhGOTg4QjhFMTdDN0E1NkREMkUw MEE2NkFEODAeFw0yNDA2MTQxMzAyNTBaFw0yNTA2MTMxMzA3NTBaMDMxMTAvBgNV BAMTKDJGMThCQzEyMDJDQTE2MkE0OEFBOTRDMjIxQTc3QjYzMTlCQkMyRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIEj1bC3NuS5E+jiF8EbSJsK3N 7E13/oQVWFY5o7twOFyMFIhrAqvUAvgSUTMGwedw+ENvLheAI8V1pryBY+aevrut 0MV7ngqHvdKW6K3c5OL+r1R7VwwY/nv3RbdNL09jNc9g8qtAxZ8DQigdGg/R01AY QKJvrIrleM5FDzRjsMzgWpAoo3xgLt3pPeT78YZ2RSHcWNP77Dsx3+yNNUXaiabi l0Ka8LJGpWMcckjaWO6WYG8sQ5f97xPLBxx5GhYk5MXqJfbc85DDnY8fUIf+wZTH cz6wGOOJy9F0EJt1stJCm/EzGzw1pMClHIQUSjGpwXU0YsBV/QVhcqRSrI7zAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULxi8EgLKFipIqpTCIad7Yxm7wtkwHwYDVR0j BBgwFoAU/z8Gal6auPmIuOF8elbdLgCmatgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZDAxMWExYy1hMGFkLTRkOTMtODZhZi0zZjBhYWRkOTY4NGYvMC9GRjNGMDY2QTVF OUFCOEY5ODhCOEUxN0M3QTU2REQyRTAwQTY2QUQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkYzRjA2NkE1RTlBQjhGOTg4QjhFMTdDN0E1NkREMkUwMEE2 NkFEOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkMDExYTFjLWEwYWQtNGQ5My04 NmFmLTNmMGFhZGQ5Njg0Zi8wLzMxMzUzNzJlMzEzNTJlMzgzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMzMzYzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0PUjANBgkqhkiG 9w0BAQsFAAOCAQEAK/i24BQoxKbukpbAKCzxu8ZbAI79VowqQa+EUSmlv6iPmQiB aW9/CnDPbXq57xCbAP0cFL6v0dFhGoT+CLmJTQSK0N4jscLkkzW8j9KXZM4JOiOx kp2P8tZ5caqfTXHRm0y4hby6lBU08HLvPtHCflWaeLdjPlD6aRs+747J0VyrIrDY 5n7n4Fx/wUsy+IrLfbDXC4ZNODDuIhP+T1eb8XHdQpKmvDyFJwnbyr+0Q41of+SK kNixCsz7TNnt8YLBtlkY5T7CWjyseuN5AxnuyBv1Ue83aZKn42PvY9/GORu0de9U IbCPNhAQxSn8U0/DaSIFqRu+eGrVjO42NC4MMQ== -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:02 2024 by rpki-client on console-fra.rpki-client.org