$ rpki-client -vvf repo-rpki.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/3135372e31352e36362e302f32332d3233203d3e20313532333737.roa File: 3135372e31352e36362e302f32332d3233203d3e20313532333737.roa (raw, json) Hash identifier: wEAVk17qBqspOEGxIZUXVHQNaYtQzVxj0+6pyct72Xw= Subject key identifier: BE:EF:7A:DB:54:AC:AB:AC:AE:7E:58:D8:8D:CC:8B:5B:93:AC:CD:BC Certificate issuer: /CN=350BAE86CA7B54F1B9E53AC60EE2BAA51563F67B Certificate serial: 5BC91CDAAE4CA8CEB9711E12B3C88E80DA175549 Authority key identifier: 35:0B:AE:86:CA:7B:54:F1:B9:E5:3A:C6:0E:E2:BA:A5:15:63:F6:7B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/350BAE86CA7B54F1B9E53AC60EE2BAA51563F67B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/3135372e31352e36362e302f32332d3233203d3e20313532333737.roa Signing time: Thu 15 Aug 2024 05:28:36 +0000 ROA not before: Thu 15 Aug 2024 05:23:36 +0000 ROA not after: Thu 14 Aug 2025 05:28:36 +0000 asID: 152377 IP address blocks: 157.15.66.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/350BAE86CA7B54F1B9E53AC60EE2BAA51563F67B.crl rsync://repo-rpki.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/350BAE86CA7B54F1B9E53AC60EE2BAA51563F67B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/350BAE86CA7B54F1B9E53AC60EE2BAA51563F67B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:c9:1c:da:ae:4c:a8:ce:b9:71:1e:12:b3:c8:8e:80:da:17:55:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=350BAE86CA7B54F1B9E53AC60EE2BAA51563F67B Validity Not Before: Aug 15 05:23:36 2024 GMT Not After : Aug 14 05:28:36 2025 GMT Subject: CN=BEEF7ADB54ACABACAE7E58D88DCC8B5B93ACCDBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c1:b8:61:1d:1e:ad:9b:69:fa:a0:0c:8d:25: ef:32:9d:af:88:60:7d:c8:e9:ee:2a:ad:be:76:3b: 27:50:34:fc:07:8f:48:59:37:e6:b7:77:c2:2c:6e: 1f:9d:95:5d:db:4a:17:a3:d0:84:dc:7b:6c:e7:05: 3c:9a:a8:3e:48:85:39:a8:c7:2a:83:cb:ce:60:c4: 94:f8:ba:59:cd:04:e3:21:fd:91:74:af:12:ac:3f: ba:d3:11:d9:e9:d1:3c:9f:25:3e:3f:98:91:88:02: 6e:73:e0:aa:d6:61:d3:21:94:76:ca:d6:4c:50:42: 11:6d:14:30:1d:ef:c4:f9:e8:1d:12:f9:47:a3:f2: 58:c3:6d:76:e5:d3:1e:6a:c6:d4:37:44:dc:36:ad: 1b:8d:cc:5a:42:fa:e8:66:77:0c:ad:36:96:a6:53: 5f:54:29:14:be:73:78:a4:55:bd:7d:4b:86:b8:9e: 9a:a0:21:93:e5:da:ce:05:ff:24:20:c2:e2:3d:f6: 71:10:57:de:7f:88:12:d2:48:4d:2b:ef:c8:d8:50: d5:22:63:10:d8:17:ba:65:eb:91:62:97:60:07:70: f0:19:e8:08:1c:26:6e:8c:17:46:6b:93:61:94:63: d7:a9:37:99:5f:5d:4e:cc:cf:0f:34:12:bd:2a:22: a1:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:EF:7A:DB:54:AC:AB:AC:AE:7E:58:D8:8D:CC:8B:5B:93:AC:CD:BC X509v3 Authority Key Identifier: keyid:35:0B:AE:86:CA:7B:54:F1:B9:E5:3A:C6:0E:E2:BA:A5:15:63:F6:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/350BAE86CA7B54F1B9E53AC60EE2BAA51563F67B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/350BAE86CA7B54F1B9E53AC60EE2BAA51563F67B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/3135372e31352e36362e302f32332d3233203d3e20313532333737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.66.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:7a:2a:ff:e3:2b:60:96:4f:e5:6e:82:7e:1c:ff:54:25:fe: 23:c4:46:17:07:de:b0:2a:af:b2:0e:01:1d:fd:55:61:dc:14: 38:e1:9b:bc:e0:2b:92:98:c0:62:f9:ba:d2:c3:8b:eb:25:d7: 7a:dd:84:5d:d5:9e:9c:fb:82:61:6b:35:29:47:be:3d:24:a4: 67:2a:00:ee:f1:86:65:04:f7:23:f0:91:b3:27:54:47:aa:09: e7:b0:c6:22:7f:2e:2e:59:cb:ff:6e:86:89:7e:d2:96:c3:66: 0e:e5:1c:22:00:43:dc:60:c8:23:0c:27:fe:d2:f8:f0:cc:d2: 77:2f:e7:ef:d8:bc:17:b9:42:b6:a2:6a:ce:8a:fa:04:e3:61: f1:4f:44:4f:d5:68:f4:91:a5:6a:84:80:40:63:ed:81:23:9c: 6f:59:ed:82:bc:94:92:af:fb:ad:5b:c1:0a:89:83:7b:f7:e1: d7:0b:38:98:9e:96:21:d8:82:9b:1c:18:20:81:ce:b6:a4:4f: 0a:d1:2e:de:08:5e:1c:ab:83:d6:4d:7a:b1:ab:21:1b:90:67: b2:b3:82:30:69:fc:3d:b0:61:12:ae:c1:cb:4c:94:96:9d:a4: b6:74:42:3a:72:61:32:c7:1a:15:f1:d6:a5:ed:59:93:be:5f: ba:46:89:bf -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUW8kc2q5MqM65cR4Ss8iOgNoXVUkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzUwQkFFODZDQTdCNTRGMUI5RTUzQUM2MEVFMkJBQTUx NTYzRjY3QjAeFw0yNDA4MTUwNTIzMzZaFw0yNTA4MTQwNTI4MzZaMDMxMTAvBgNV BAMTKEJFRUY3QURCNTRBQ0FCQUNBRTdFNThEODhEQ0M4QjVCOTNBQ0NEQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7wbhhHR6tm2n6oAyNJe8yna+I YH3I6e4qrb52OydQNPwHj0hZN+a3d8Isbh+dlV3bShej0ITce2znBTyaqD5IhTmo xyqDy85gxJT4ulnNBOMh/ZF0rxKsP7rTEdnp0TyfJT4/mJGIAm5z4KrWYdMhlHbK 1kxQQhFtFDAd78T56B0S+Uej8ljDbXbl0x5qxtQ3RNw2rRuNzFpC+uhmdwytNpam U19UKRS+c3ikVb19S4a4npqgIZPl2s4F/yQgwuI99nEQV95/iBLSSE0r78jYUNUi YxDYF7pl65Fil2AHcPAZ6AgcJm6MF0Zrk2GUY9epN5lfXU7Mzw80Er0qIqHrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUvu9621Ssq6yufljYjcyLW5OszbwwHwYDVR0j BBgwFoAUNQuuhsp7VPG55TrGDuK6pRVj9nswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ODRlODc5Zi0zYTU2LTRkOGQtODNlOC0wZTljYzY1NzcwZWEvMC8zNTBCQUU4NkNB N0I1NEYxQjlFNTNBQzYwRUUyQkFBNTE1NjNGNjdCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMzUwQkFFODZDQTdCNTRGMUI5RTUzQUM2MEVFMkJBQTUxNTYz RjY3Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ4NGU4NzlmLTNhNTYtNGQ4ZC04 M2U4LTBlOWNjNjU3NzBlYS8wLzMxMzUzNzJlMzEzNTJlMzYzNjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMjMzMzczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0PQjANBgkqhkiG 9w0BAQsFAAOCAQEAXHoq/+MrYJZP5W6Cfhz/VCX+I8RGFwfesCqvsg4BHf1VYdwU OOGbvOArkpjAYvm60sOL6yXXet2EXdWenPuCYWs1KUe+PSSkZyoA7vGGZQT3I/CR sydUR6oJ57DGIn8uLlnL/26GiX7SlsNmDuUcIgBD3GDIIwwn/tL48MzSdy/n79i8 F7lCtqJqzor6BONh8U9ET9Vo9JGlaoSAQGPtgSOcb1ntgryUkq/7rVvBComDe/fh 1ws4mJ6WIdiCmxwYIIHOtqRPCtEu3gheHKuD1k16sashG5BnsrOCMGn8PbBhEq7B y0yUlp2ktnRCOnJhMscaFfHWpe1Zk75fukaJvw== -----END CERTIFICATE-----Generated at Thu Nov 21 09:17:19 2024 by rpki-client on console-fra.rpki-client.org