$ rpki-client -vvf repo-rpki.idnic.net/repo/453ac667-4d9e-48d7-afd6-82e98fa76c1e/0/3135372e31352e3136362e302f32342d3234203d3e20313532333832.roa File: 3135372e31352e3136362e302f32342d3234203d3e20313532333832.roa (raw, json) Hash identifier: U6M3r2+hhFmgDnbopdxtZZBAHIlHM8s0FMvrxh2P2r0= Subject key identifier: E4:32:CB:89:29:3E:6D:F4:AF:A7:7E:75:19:0D:D6:79:5C:60:5A:30 Certificate issuer: /CN=EC1B9BE63137230F6756E222019318C640EBE42E Certificate serial: 6DC7BDF9EE05A99BDE2FA7B618097BF943978A63 Authority key identifier: EC:1B:9B:E6:31:37:23:0F:67:56:E2:22:01:93:18:C6:40:EB:E4:2E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/EC1B9BE63137230F6756E222019318C640EBE42E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/453ac667-4d9e-48d7-afd6-82e98fa76c1e/0/3135372e31352e3136362e302f32342d3234203d3e20313532333832.roa Signing time: Tue 20 Feb 2024 01:51:23 +0000 ROA not before: Tue 20 Feb 2024 01:46:23 +0000 ROA not after: Tue 18 Feb 2025 01:51:23 +0000 asID: 152382 IP address blocks: 157.15.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/453ac667-4d9e-48d7-afd6-82e98fa76c1e/0/EC1B9BE63137230F6756E222019318C640EBE42E.crl rsync://repo-rpki.idnic.net/repo/453ac667-4d9e-48d7-afd6-82e98fa76c1e/0/EC1B9BE63137230F6756E222019318C640EBE42E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/EC1B9BE63137230F6756E222019318C640EBE42E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 01 Jul 2024 06:40:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:c7:bd:f9:ee:05:a9:9b:de:2f:a7:b6:18:09:7b:f9:43:97:8a:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EC1B9BE63137230F6756E222019318C640EBE42E Validity Not Before: Feb 20 01:46:23 2024 GMT Not After : Feb 18 01:51:23 2025 GMT Subject: CN=E432CB89293E6DF4AFA77E75190DD6795C605A30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:af:b2:45:b3:e8:ba:e0:70:d1:fa:6c:cd:0a: 31:c8:8c:2c:ce:31:1a:e1:5b:e1:50:49:ad:f7:84: 8a:25:6e:34:96:20:c3:8c:de:08:89:de:8c:49:da: f4:f7:aa:55:84:a4:3b:54:e1:32:8d:78:b7:a5:4b: ee:08:33:84:73:cb:d0:43:8a:2c:e8:d5:e5:87:42: a5:3d:28:6d:cf:a4:c5:35:43:27:81:e8:6f:65:d5: 91:b2:85:db:f3:5b:db:56:3e:19:f5:6e:d6:4e:11: f3:0f:e9:78:66:cc:8e:1d:17:2b:f7:45:4d:c2:88: 2a:3a:ca:57:cd:d7:e7:dd:e9:13:ec:6e:a6:db:8e: be:b2:f3:a6:ac:3a:f0:e0:27:2a:49:75:e8:07:05: 74:ca:f7:04:8e:ff:33:de:c3:53:2a:64:10:67:e3: b5:63:29:84:b5:ee:0b:3b:2e:44:b4:ce:fd:af:f5: 13:28:04:ab:45:49:25:a7:29:ea:85:0d:4e:25:35: 28:ae:ee:bc:a6:80:9b:e5:95:a2:0e:69:41:c3:d1: 5e:fc:07:95:52:04:44:b5:cc:16:50:2f:48:30:92: 9c:33:2f:28:fc:5a:2c:93:03:b8:b6:54:20:e8:10: 13:da:43:80:3b:b2:2d:3b:33:7f:83:b6:c7:ff:1d: 61:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:32:CB:89:29:3E:6D:F4:AF:A7:7E:75:19:0D:D6:79:5C:60:5A:30 X509v3 Authority Key Identifier: keyid:EC:1B:9B:E6:31:37:23:0F:67:56:E2:22:01:93:18:C6:40:EB:E4:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/453ac667-4d9e-48d7-afd6-82e98fa76c1e/0/EC1B9BE63137230F6756E222019318C640EBE42E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/EC1B9BE63137230F6756E222019318C640EBE42E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/453ac667-4d9e-48d7-afd6-82e98fa76c1e/0/3135372e31352e3136362e302f32342d3234203d3e20313532333832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.166.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:59:8c:df:d7:c4:17:04:01:0e:b9:fc:1b:26:24:cd:d2:ef: f2:0a:3d:0d:15:fb:83:45:b7:41:85:be:5b:2c:bb:bb:2d:03: 1b:c2:80:81:2b:a4:e1:eb:4f:36:f9:4a:a5:82:2e:82:9d:b3: 58:15:16:5c:48:e1:35:75:23:05:6e:cb:d7:65:a8:69:b3:6a: d9:9b:ce:ce:b4:29:47:5b:66:dd:87:c7:3b:d7:51:58:45:95: 76:e3:e9:77:95:9f:b6:77:1f:b1:ad:2d:30:97:a3:29:30:51: d4:fb:e3:21:f1:ad:77:9c:a0:35:81:04:6f:24:24:6c:d5:5f: 10:8c:17:4d:b7:b5:7c:a1:8f:91:50:d8:b2:dc:3c:cc:cb:d8: 0b:6b:59:0e:83:e0:50:28:e0:41:c4:57:6c:96:cd:00:25:5b: e4:db:b9:ef:c8:af:e1:06:4d:4f:dd:31:b3:0f:d9:1e:ae:32: 2c:b2:6f:c7:fd:11:95:6d:ab:ee:6e:d6:1c:30:37:b4:cd:9c: 83:74:65:cb:b8:90:8b:e4:d1:68:e9:13:08:8c:c2:4c:b9:01: a3:d6:dd:bf:32:9f:aa:5d:95:bd:d4:f9:07:89:c5:4a:84:6a: f2:06:f4:27:4f:9d:54:ec:59:07:f4:aa:cd:05:d5:d3:d9:44: ce:64:d0:8d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbce9+e4FqZveL6e2GAl7+UOXimMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUMxQjlCRTYzMTM3MjMwRjY3NTZFMjIyMDE5MzE4QzY0 MEVCRTQyRTAeFw0yNDAyMjAwMTQ2MjNaFw0yNTAyMTgwMTUxMjNaMDMxMTAvBgNV BAMTKEU0MzJDQjg5MjkzRTZERjRBRkE3N0U3NTE5MERENjc5NUM2MDVBMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDer7JFs+i64HDR+mzNCjHIjCzO MRrhW+FQSa33hIolbjSWIMOM3giJ3oxJ2vT3qlWEpDtU4TKNeLelS+4IM4Rzy9BD iizo1eWHQqU9KG3PpMU1QyeB6G9l1ZGyhdvzW9tWPhn1btZOEfMP6XhmzI4dFyv3 RU3CiCo6ylfN1+fd6RPsbqbbjr6y86asOvDgJypJdegHBXTK9wSO/zPew1MqZBBn 47VjKYS17gs7LkS0zv2v9RMoBKtFSSWnKeqFDU4lNSiu7rymgJvllaIOaUHD0V78 B5VSBES1zBZQL0gwkpwzLyj8WiyTA7i2VCDoEBPaQ4A7si07M3+Dtsf/HWERAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU5DLLiSk+bfSvp351GQ3WeVxgWjAwHwYDVR0j BBgwFoAU7Bub5jE3Iw9nVuIiAZMYxkDr5C4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NTNhYzY2Ny00ZDllLTQ4ZDctYWZkNi04MmU5OGZhNzZjMWUvMC9FQzFCOUJFNjMx MzcyMzBGNjc1NkUyMjIwMTkzMThDNjQwRUJFNDJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRUMxQjlCRTYzMTM3MjMwRjY3NTZFMjIyMDE5MzE4QzY0MEVC RTQyRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ1M2FjNjY3LTRkOWUtNDhkNy1h ZmQ2LTgyZTk4ZmE3NmMxZS8wLzMxMzUzNzJlMzEzNTJlMzEzNjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQ+mMA0GCSqG SIb3DQEBCwUAA4IBAQBOWYzf18QXBAEOufwbJiTN0u/yCj0NFfuDRbdBhb5bLLu7 LQMbwoCBK6Th6082+Uqlgi6CnbNYFRZcSOE1dSMFbsvXZahps2rZm87OtClHW2bd h8c711FYRZV24+l3lZ+2dx+xrS0wl6MpMFHU++Mh8a13nKA1gQRvJCRs1V8QjBdN t7V8oY+RUNiy3DzMy9gLa1kOg+BQKOBBxFdsls0AJVvk27nvyK/hBk1P3TGzD9ke rjIssm/H/RGVbavubtYcMDe0zZyDdGXLuJCL5NFo6RMIjMJMuQGj1t2/Mp+qXZW9 1PkHicVKhGryBvQnT51U7FkH9KrNBdXT2UTOZNCN -----END CERTIFICATE-----Generated at Fri Jun 28 19:17:49 2024 by rpki-client on console-fra.rpki-client.org