$ rpki-client -vvf repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/3135372e31352e36322e302f32332d3233203d3e20313532333733.roa File: 3135372e31352e36322e302f32332d3233203d3e20313532333733.roa (raw, json) Hash identifier: dQqdGzwsOH4w6OoRumtaDfHU4ux71p/P4WkaxWzep5I= Subject key identifier: BF:05:E3:4F:37:07:F4:12:5F:35:7A:65:EB:A9:9F:72:15:5D:6D:19 Certificate issuer: /CN=CB54DC526FA214F9F736926E6AAA16ABE39BF8E8 Certificate serial: 6900E0A479D59A38D2B5D419B339DE7B481245A2 Authority key identifier: CB:54:DC:52:6F:A2:14:F9:F7:36:92:6E:6A:AA:16:AB:E3:9B:F8:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/3135372e31352e36322e302f32332d3233203d3e20313532333733.roa Signing time: Thu 21 Mar 2024 19:35:12 +0000 ROA not before: Thu 21 Mar 2024 19:30:12 +0000 ROA not after: Thu 20 Mar 2025 19:35:12 +0000 asID: 152373 IP address blocks: 157.15.62.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.crl rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 28 Jun 2024 18:22:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:00:e0:a4:79:d5:9a:38:d2:b5:d4:19:b3:39:de:7b:48:12:45:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB54DC526FA214F9F736926E6AAA16ABE39BF8E8 Validity Not Before: Mar 21 19:30:12 2024 GMT Not After : Mar 20 19:35:12 2025 GMT Subject: CN=BF05E34F3707F4125F357A65EBA99F72155D6D19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d8:1d:c6:38:a6:1b:c2:27:97:30:e2:f6:98: fc:4d:7b:97:72:8f:4a:4c:fa:0c:15:75:79:14:33: 7d:01:6c:30:e7:e9:dc:bd:99:6f:61:ce:48:8b:11: ff:99:f5:46:39:cb:aa:06:3c:71:10:ae:a9:4d:10: 9c:33:8f:f6:8b:62:ca:4c:fd:7e:fc:bf:71:ea:26: 3b:03:88:67:67:3f:dc:89:c9:25:bf:57:5e:4e:fc: 94:45:d3:a8:70:0c:3c:b1:65:7d:1c:d0:cb:69:e0: d2:b0:d1:21:8b:a6:5d:c4:df:4c:f2:28:c8:ef:d6: bc:e1:fb:20:1e:33:3f:df:2c:b7:be:77:62:0c:89: 83:3b:c1:d9:f8:18:34:2e:7e:0d:70:fc:1b:d9:d6: 44:9b:54:f6:91:93:83:cc:fc:20:3c:02:c6:69:77: df:f3:c4:b5:0e:8f:c5:e7:e6:cb:e8:09:3f:05:97: a3:37:64:4c:4d:77:39:fe:2b:84:17:f4:89:3b:6c: 16:10:b2:82:91:86:ac:11:a9:d3:97:19:dc:9d:87: e5:81:30:f8:65:e0:34:8a:c0:3d:dd:87:16:6e:46: 32:88:62:38:59:b8:3c:cc:7e:22:72:58:a4:7f:c7: 9a:19:57:09:b3:73:2b:99:0b:2d:f2:cc:4f:84:67: bc:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:05:E3:4F:37:07:F4:12:5F:35:7A:65:EB:A9:9F:72:15:5D:6D:19 X509v3 Authority Key Identifier: keyid:CB:54:DC:52:6F:A2:14:F9:F7:36:92:6E:6A:AA:16:AB:E3:9B:F8:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/3135372e31352e36322e302f32332d3233203d3e20313532333733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.62.0/23 Signature Algorithm: sha256WithRSAEncryption 46:ae:78:fc:27:e6:de:de:fc:2d:a3:db:1d:75:1e:c2:f0:d3: dd:6a:d4:80:37:9c:8c:20:89:c2:8c:c8:4c:66:4e:97:6b:09: ad:cb:94:11:ac:c2:03:76:19:de:ca:a1:e0:a1:fc:bc:e7:fa: 48:14:3a:c5:63:7a:4d:f0:74:43:dc:52:06:e8:f6:5d:9a:a4: 34:45:aa:94:02:aa:92:bb:02:a8:28:07:fb:3b:71:45:c2:8c: 46:88:b9:0b:ec:31:ce:f7:44:28:66:b3:61:f5:78:b9:fb:58: c0:92:48:ff:3c:da:8c:02:83:01:fe:56:78:f7:19:11:37:b6: 9d:fe:94:ed:93:00:20:a9:4d:48:55:5f:41:3c:f0:69:2e:d0: 19:51:28:8c:86:b6:92:56:2d:b1:33:eb:12:49:c9:78:e7:90: 0f:ba:b6:66:e3:ca:5d:aa:34:b7:38:ca:65:59:31:f6:c0:e3: bb:e5:76:73:f8:12:ae:07:ee:58:00:31:b1:6f:9e:d1:b0:3b: dc:11:7e:a1:dc:e0:a0:95:f3:86:3c:46:5d:4a:74:c1:e3:11: 79:54:1d:f3:08:83:ca:17:5c:98:f1:c2:5a:a8:05:6f:f1:a9: 5b:06:e1:30:ab:1f:5d:1b:36:97:b3:e7:bb:12:df:da:fb:00: 26:87:17:8c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaQDgpHnVmjjStdQZsznee0gSRaIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0I1NERDNTI2RkEyMTRGOUY3MzY5MjZFNkFBQTE2QUJF MzlCRjhFODAeFw0yNDAzMjExOTMwMTJaFw0yNTAzMjAxOTM1MTJaMDMxMTAvBgNV BAMTKEJGMDVFMzRGMzcwN0Y0MTI1RjM1N0E2NUVCQTk5RjcyMTU1RDZEMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH2B3GOKYbwieXMOL2mPxNe5dy j0pM+gwVdXkUM30BbDDn6dy9mW9hzkiLEf+Z9UY5y6oGPHEQrqlNEJwzj/aLYspM /X78v3HqJjsDiGdnP9yJySW/V15O/JRF06hwDDyxZX0c0Mtp4NKw0SGLpl3E30zy KMjv1rzh+yAeMz/fLLe+d2IMiYM7wdn4GDQufg1w/BvZ1kSbVPaRk4PM/CA8AsZp d9/zxLUOj8Xn5svoCT8Fl6M3ZExNdzn+K4QX9Ik7bBYQsoKRhqwRqdOXGdydh+WB MPhl4DSKwD3dhxZuRjKIYjhZuDzMfiJyWKR/x5oZVwmzcyuZCy3yzE+EZ7wvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUvwXjTzcH9BJfNXpl66mfchVdbRkwHwYDVR0j BBgwFoAUy1TcUm+iFPn3NpJuaqoWq+Ob+OgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MTIzNGM0YS1hOGZmLTQwMzYtODQyMC1kYTgxNjIxMTE4MDYvMC9DQjU0REM1MjZG QTIxNEY5RjczNjkyNkU2QUFBMTZBQkUzOUJGOEU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQ0I1NERDNTI2RkEyMTRGOUY3MzY5MjZFNkFBQTE2QUJFMzlC RjhFOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxMjM0YzRhLWE4ZmYtNDAzNi04 NDIwLWRhODE2MjExMTgwNi8wLzMxMzUzNzJlMzEzNTJlMzYzMjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMjMzMzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0PPjANBgkqhkiG 9w0BAQsFAAOCAQEARq54/Cfm3t78LaPbHXUewvDT3WrUgDecjCCJwozITGZOl2sJ rcuUEazCA3YZ3sqh4KH8vOf6SBQ6xWN6TfB0Q9xSBuj2XZqkNEWqlAKqkrsCqCgH +ztxRcKMRoi5C+wxzvdEKGazYfV4uftYwJJI/zzajAKDAf5WePcZETe2nf6U7ZMA IKlNSFVfQTzwaS7QGVEojIa2klYtsTPrEknJeOeQD7q2ZuPKXao0tzjKZVkx9sDj u+V2c/gSrgfuWAAxsW+e0bA73BF+odzgoJXzhjxGXUp0weMReVQd8wiDyhdcmPHC WqgFb/GpWwbhMKsfXRs2l7PnuxLf2vsAJocXjA== -----END CERTIFICATE-----Generated at Tue Jun 25 17:42:08 2024 by rpki-client on console-ams.rpki-client.org