$ rpki-client -vvf repo-rpki.idnic.net/repo/36dd15e3-9ee5-4d52-9eee-712bb3b7bffb/0/3135372e31352e3132332e302f32342d3234203d3e20313532333937.roa File: 3135372e31352e3132332e302f32342d3234203d3e20313532333937.roa (raw, json) Hash identifier: pjc/YrdKV/TdiFaIjRayQO8Sqerd8j/hCT2Hki4kTnU= Subject key identifier: F2:C9:5B:0C:14:35:AA:39:43:B5:3E:A7:10:5B:AB:54:E2:AE:3A:A2 Certificate issuer: /CN=1073C0AF2447C17B85643987B72701D1AE52823D Certificate serial: 0432B339B3A2AAB2F0B0E411087E3FFD0612751C Authority key identifier: 10:73:C0:AF:24:47:C1:7B:85:64:39:87:B7:27:01:D1:AE:52:82:3D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/1073C0AF2447C17B85643987B72701D1AE52823D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/36dd15e3-9ee5-4d52-9eee-712bb3b7bffb/0/3135372e31352e3132332e302f32342d3234203d3e20313532333937.roa Signing time: Tue 18 Jun 2024 01:55:30 +0000 ROA not before: Tue 18 Jun 2024 01:50:30 +0000 ROA not after: Tue 17 Jun 2025 01:55:30 +0000 asID: 152397 IP address blocks: 157.15.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/36dd15e3-9ee5-4d52-9eee-712bb3b7bffb/0/1073C0AF2447C17B85643987B72701D1AE52823D.crl rsync://repo-rpki.idnic.net/repo/36dd15e3-9ee5-4d52-9eee-712bb3b7bffb/0/1073C0AF2447C17B85643987B72701D1AE52823D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/1073C0AF2447C17B85643987B72701D1AE52823D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:32:b3:39:b3:a2:aa:b2:f0:b0:e4:11:08:7e:3f:fd:06:12:75:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1073C0AF2447C17B85643987B72701D1AE52823D Validity Not Before: Jun 18 01:50:30 2024 GMT Not After : Jun 17 01:55:30 2025 GMT Subject: CN=F2C95B0C1435AA3943B53EA7105BAB54E2AE3AA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:2d:e7:48:a5:c3:2e:3a:e7:26:da:df:23:30: fd:db:56:8d:cc:93:bc:35:2f:c7:ab:bc:6c:01:09: c5:30:d7:de:71:84:03:97:cf:f4:f3:e1:bd:64:a6: a6:a5:2c:ec:c4:3f:d4:d8:f0:d5:28:dc:38:e7:a1: 7b:65:23:d9:48:f1:2e:f5:11:5e:b2:21:a0:a4:e0: a7:02:63:b3:84:76:e4:71:72:b1:51:2b:f7:ac:9d: ba:50:5c:10:81:04:96:19:a2:77:98:a8:11:ca:99: 1c:22:ff:32:7f:88:bb:c3:8e:cb:d3:c5:68:b0:78: 6f:9c:8a:7b:62:08:27:ab:7b:95:d9:9d:5a:ff:f7: 81:17:dc:c1:c1:cb:a1:27:c6:e5:df:4d:d0:a8:47: 74:c5:c4:5d:11:70:fd:32:e0:69:01:0b:06:c6:3c: f4:9e:e5:d9:bc:fd:af:6e:6c:63:b5:a5:b1:47:ae: d3:6d:9e:4c:8c:66:72:62:bf:70:d2:df:d0:eb:fa: c1:0b:d1:24:1a:a3:d6:0d:a9:21:25:92:35:24:be: d0:5b:f9:26:1c:96:8b:e0:96:c6:66:76:25:0a:49: a4:c2:8c:47:08:17:c9:ac:1e:4b:f0:d6:cc:e6:e1: dc:93:97:2f:98:37:49:f6:a0:a3:fb:41:f5:fa:0f: 31:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:C9:5B:0C:14:35:AA:39:43:B5:3E:A7:10:5B:AB:54:E2:AE:3A:A2 X509v3 Authority Key Identifier: keyid:10:73:C0:AF:24:47:C1:7B:85:64:39:87:B7:27:01:D1:AE:52:82:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/36dd15e3-9ee5-4d52-9eee-712bb3b7bffb/0/1073C0AF2447C17B85643987B72701D1AE52823D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/1073C0AF2447C17B85643987B72701D1AE52823D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/36dd15e3-9ee5-4d52-9eee-712bb3b7bffb/0/3135372e31352e3132332e302f32342d3234203d3e20313532333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.123.0/24 Signature Algorithm: sha256WithRSAEncryption 95:cc:4f:c1:aa:5d:73:88:dc:a8:e7:c2:25:8b:62:18:45:b8: 23:a2:2a:b2:61:5f:20:d9:19:e0:20:2b:ec:80:bd:33:0b:c7: d6:d1:66:16:eb:01:c3:f7:10:76:19:eb:d8:39:2e:29:05:4e: 0f:f7:78:1c:5d:f1:f3:3d:24:d0:e6:51:80:6e:6b:3a:06:29: 90:86:e5:8b:18:4d:b8:29:38:a5:41:0e:0d:a7:e0:7c:90:be: 43:e8:cd:11:7d:bd:da:e4:f4:96:84:89:f7:2d:b6:69:71:10: 83:66:97:96:2f:18:8d:48:99:71:23:a2:c6:b5:9e:aa:a3:7b: e6:a1:e9:ed:72:96:42:5e:69:d5:6f:f3:a9:d4:2e:40:7b:7b: 50:65:7e:fb:e8:d4:48:bf:73:69:3a:2e:c8:f9:bf:c0:20:97: 2c:f3:e0:9f:d2:a5:2c:12:29:d3:a8:19:b3:9f:a3:10:41:44: f3:b0:0b:ca:e1:ed:87:c3:80:51:5a:00:aa:a7:39:27:38:91: 82:2e:b7:f3:37:48:d1:ab:55:9a:31:14:ca:1f:bd:74:44:2d: 62:ad:56:67:b4:fa:71:bb:a8:2d:1c:a6:55:8b:e9:ba:b8:07: 9b:22:42:97:09:50:6b:d7:48:47:c1:f0:39:9a:6f:e4:a5:7c: fc:d7:96:f9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBDKzObOiqrLwsOQRCH4//QYSdRwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA3M0MwQUYyNDQ3QzE3Qjg1NjQzOTg3QjcyNzAxRDFB RTUyODIzRDAeFw0yNDA2MTgwMTUwMzBaFw0yNTA2MTcwMTU1MzBaMDMxMTAvBgNV BAMTKEYyQzk1QjBDMTQzNUFBMzk0M0I1M0VBNzEwNUJBQjU0RTJBRTNBQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjLedIpcMuOucm2t8jMP3bVo3M k7w1L8ervGwBCcUw195xhAOXz/Tz4b1kpqalLOzEP9TY8NUo3DjnoXtlI9lI8S71 EV6yIaCk4KcCY7OEduRxcrFRK/esnbpQXBCBBJYZoneYqBHKmRwi/zJ/iLvDjsvT xWiweG+cintiCCere5XZnVr/94EX3MHBy6EnxuXfTdCoR3TFxF0RcP0y4GkBCwbG PPSe5dm8/a9ubGO1pbFHrtNtnkyMZnJiv3DS39Dr+sEL0SQao9YNqSElkjUkvtBb +SYclovglsZmdiUKSaTCjEcIF8msHkvw1szm4dyTly+YN0n2oKP7QfX6DzFzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8slbDBQ1qjlDtT6nEFurVOKuOqIwHwYDVR0j BBgwFoAUEHPAryRHwXuFZDmHtycB0a5Sgj0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NmRkMTVlMy05ZWU1LTRkNTItOWVlZS03MTJiYjNiN2JmZmIvMC8xMDczQzBBRjI0 NDdDMTdCODU2NDM5ODdCNzI3MDFEMUFFNTI4MjNELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMTA3M0MwQUYyNDQ3QzE3Qjg1NjQzOTg3QjcyNzAxRDFBRTUy ODIzRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM2ZGQxNWUzLTllZTUtNGQ1Mi05 ZWVlLTcxMmJiM2I3YmZmYi8wLzMxMzUzNzJlMzEzNTJlMzEzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzOTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQ97MA0GCSqG SIb3DQEBCwUAA4IBAQCVzE/Bql1ziNyo58Ili2IYRbgjoiqyYV8g2RngICvsgL0z C8fW0WYW6wHD9xB2GevYOS4pBU4P93gcXfHzPSTQ5lGAbms6BimQhuWLGE24KTil QQ4Np+B8kL5D6M0Rfb3a5PSWhIn3LbZpcRCDZpeWLxiNSJlxI6LGtZ6qo3vmoent cpZCXmnVb/Op1C5Ae3tQZX776NRIv3NpOi7I+b/AIJcs8+Cf0qUsEinTqBmzn6MQ QUTzsAvK4e2Hw4BRWgCqpzknOJGCLrfzN0jRq1WaMRTKH710RC1irVZntPpxu6gt HKZVi+m6uAebIkKXCVBr10hHwfA5mm/kpXz815b5 -----END CERTIFICATE-----Generated at Fri Nov 22 14:19:26 2024 by rpki-client on console-ams.rpki-client.org