$ rpki-client -vvf repo-rpki.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/3135372e31352e36372e302f32342d3234203d3e20313532333737.roa File: 3135372e31352e36372e302f32342d3234203d3e20313532333737.roa (raw, json) Hash identifier: h6b78rnWmc4UxsaAltU81Ojr8OO2bmT5gAnKPiXH+TU= Subject key identifier: 6A:50:8B:18:05:12:7B:30:5F:9F:1A:30:27:FF:B6:D3:6A:DF:E5:36 Certificate issuer: /CN=350BAE86CA7B54F1B9E53AC60EE2BAA51563F67B Certificate serial: 4FE50301CC735791319D2DDDEE93034A638E17FB Authority key identifier: 35:0B:AE:86:CA:7B:54:F1:B9:E5:3A:C6:0E:E2:BA:A5:15:63:F6:7B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/350BAE86CA7B54F1B9E53AC60EE2BAA51563F67B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/3135372e31352e36372e302f32342d3234203d3e20313532333737.roa Signing time: Mon 19 Feb 2024 05:47:04 +0000 ROA not before: Mon 19 Feb 2024 05:42:04 +0000 ROA not after: Mon 17 Feb 2025 05:47:04 +0000 asID: 152377 IP address blocks: 157.15.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/350BAE86CA7B54F1B9E53AC60EE2BAA51563F67B.crl rsync://repo-rpki.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/350BAE86CA7B54F1B9E53AC60EE2BAA51563F67B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/350BAE86CA7B54F1B9E53AC60EE2BAA51563F67B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:e5:03:01:cc:73:57:91:31:9d:2d:dd:ee:93:03:4a:63:8e:17:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=350BAE86CA7B54F1B9E53AC60EE2BAA51563F67B Validity Not Before: Feb 19 05:42:04 2024 GMT Not After : Feb 17 05:47:04 2025 GMT Subject: CN=6A508B1805127B305F9F1A3027FFB6D36ADFE536 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:42:9a:bd:6c:a0:87:ef:95:3f:d8:9e:3f:c6: b8:6c:af:7f:94:1f:fc:6e:78:12:2d:fe:7d:94:90: 8d:2c:88:1d:09:62:8e:c2:47:26:7d:f4:c5:bc:68: 94:ea:74:61:83:ac:19:76:01:31:bb:95:ab:f7:fa: bf:26:ff:26:f5:50:45:8a:4a:83:d1:45:f8:57:f8: 9b:86:cf:41:52:cb:f5:63:b1:72:d5:c9:9e:50:cd: 9c:c4:e0:5d:34:73:b2:6d:a9:67:05:98:09:1d:bd: ef:f0:bc:14:d3:3e:fa:31:33:71:5e:13:df:c1:03: 92:81:15:7c:a5:51:f0:85:ff:62:4e:9f:a5:87:d7: 1b:3f:40:58:27:59:84:da:fd:a0:12:30:14:2f:ba: 16:6e:ad:38:a9:e4:56:a8:71:f4:f1:8d:86:af:bb: 46:6c:e7:b4:35:21:08:88:ff:93:37:a6:32:46:e9: 3f:7a:1d:97:48:6b:46:dd:0c:2e:73:a2:eb:b9:46: 7d:a8:85:59:5a:ad:9a:e2:68:11:ff:7a:a7:71:18: 2a:b3:9e:99:73:9f:6d:45:7a:c4:55:3e:6d:e3:ef: ed:11:97:ed:46:4b:23:c6:57:48:fe:c9:48:ef:be: 12:30:1a:cd:67:75:8c:82:78:e7:dd:8b:f8:88:59: da:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:50:8B:18:05:12:7B:30:5F:9F:1A:30:27:FF:B6:D3:6A:DF:E5:36 X509v3 Authority Key Identifier: keyid:35:0B:AE:86:CA:7B:54:F1:B9:E5:3A:C6:0E:E2:BA:A5:15:63:F6:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/350BAE86CA7B54F1B9E53AC60EE2BAA51563F67B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/350BAE86CA7B54F1B9E53AC60EE2BAA51563F67B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/3135372e31352e36372e302f32342d3234203d3e20313532333737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.67.0/24 Signature Algorithm: sha256WithRSAEncryption a3:62:52:c4:fd:39:51:a0:d8:91:54:27:e3:f9:85:63:67:94: 11:e5:76:f8:b3:ec:ee:8a:6c:0f:f7:1f:61:10:70:46:a2:8f: 16:67:8c:0c:0b:41:b7:01:94:60:40:89:c4:90:17:d4:cf:1a: 6d:74:a6:17:98:5a:81:5f:88:11:12:40:ca:c9:c4:8b:43:3f: b2:c5:e0:d9:a1:d3:cc:63:26:3f:a9:6b:de:9c:e5:67:dd:f8: 90:e9:81:75:20:14:5d:e4:36:9c:29:62:d3:53:8d:9a:d6:e6: 4a:f8:56:48:5e:08:d9:c8:ea:2a:eb:60:99:77:76:06:72:6a: c0:f4:74:17:30:6a:37:cc:67:a3:cd:46:83:56:c4:9e:62:8c: 77:33:c2:1e:91:14:9f:01:51:5e:a8:b1:d1:7e:d3:0c:a5:a6: 25:ec:77:32:28:c6:c3:10:27:50:28:90:81:21:74:23:83:02: 48:3e:12:a0:7e:ed:f8:9e:f1:f7:b1:ff:94:1c:c2:e9:f6:20: fc:9b:db:f0:2d:73:77:39:02:79:eb:2c:84:90:0f:a8:a0:c5: eb:7c:11:87:a6:af:d1:43:5f:be:4e:46:35:4f:8e:50:da:3d: 1a:37:20:42:c2:05:56:f1:88:13:fa:90:82:18:56:6e:8e:a7: 1b:2f:d4:cd -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUT+UDAcxzV5ExnS3d7pMDSmOOF/swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzUwQkFFODZDQTdCNTRGMUI5RTUzQUM2MEVFMkJBQTUx NTYzRjY3QjAeFw0yNDAyMTkwNTQyMDRaFw0yNTAyMTcwNTQ3MDRaMDMxMTAvBgNV BAMTKDZBNTA4QjE4MDUxMjdCMzA1RjlGMUEzMDI3RkZCNkQzNkFERkU1MzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhQpq9bKCH75U/2J4/xrhsr3+U H/xueBIt/n2UkI0siB0JYo7CRyZ99MW8aJTqdGGDrBl2ATG7lav3+r8m/yb1UEWK SoPRRfhX+JuGz0FSy/VjsXLVyZ5QzZzE4F00c7JtqWcFmAkdve/wvBTTPvoxM3Fe E9/BA5KBFXylUfCF/2JOn6WH1xs/QFgnWYTa/aASMBQvuhZurTip5FaocfTxjYav u0Zs57Q1IQiI/5M3pjJG6T96HZdIa0bdDC5zouu5Rn2ohVlarZriaBH/eqdxGCqz nplzn21FesRVPm3j7+0Rl+1GSyPGV0j+yUjvvhIwGs1ndYyCeOfdi/iIWdpDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUalCLGAUSezBfnxowJ/+202rf5TYwHwYDVR0j BBgwFoAUNQuuhsp7VPG55TrGDuK6pRVj9nswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ODRlODc5Zi0zYTU2LTRkOGQtODNlOC0wZTljYzY1NzcwZWEvMC8zNTBCQUU4NkNB N0I1NEYxQjlFNTNBQzYwRUUyQkFBNTE1NjNGNjdCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMzUwQkFFODZDQTdCNTRGMUI5RTUzQUM2MEVFMkJBQTUxNTYz RjY3Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ4NGU4NzlmLTNhNTYtNGQ4ZC04 M2U4LTBlOWNjNjU3NzBlYS8wLzMxMzUzNzJlMzEzNTJlMzYzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMzMzczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0PQzANBgkqhkiG 9w0BAQsFAAOCAQEAo2JSxP05UaDYkVQn4/mFY2eUEeV2+LPs7opsD/cfYRBwRqKP FmeMDAtBtwGUYECJxJAX1M8abXSmF5hagV+IERJAysnEi0M/ssXg2aHTzGMmP6lr 3pzlZ934kOmBdSAUXeQ2nCli01ONmtbmSvhWSF4I2cjqKutgmXd2BnJqwPR0FzBq N8xno81Gg1bEnmKMdzPCHpEUnwFRXqix0X7TDKWmJex3MijGwxAnUCiQgSF0I4MC SD4SoH7t+J7x97H/lBzC6fYg/Jvb8C1zdzkCeesshJAPqKDF63wRh6av0UNfvk5G NU+OUNo9GjcgQsIFVvGIE/qQghhWbo6nGy/UzQ== -----END CERTIFICATE-----Generated at Thu Nov 21 09:17:19 2024 by rpki-client on console-fra.rpki-client.org