$ rpki-client -vvf repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/3135372e31352e36322e302f32342d3234203d3e20313532333733.roa File: 3135372e31352e36322e302f32342d3234203d3e20313532333733.roa (raw, json) Hash identifier: 7kk5lzX+ABHwnoVX8AogEcbZ2Bl1IUp9EP4dmPT8sis= Subject key identifier: 0D:A3:82:3A:7A:2A:FC:4C:C5:A0:ED:94:5C:A2:A6:4C:AF:5F:88:F5 Certificate issuer: /CN=CB54DC526FA214F9F736926E6AAA16ABE39BF8E8 Certificate serial: 220A7F7BC46853811885EA2ADCC752DEB9D89512 Authority key identifier: CB:54:DC:52:6F:A2:14:F9:F7:36:92:6E:6A:AA:16:AB:E3:9B:F8:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/3135372e31352e36322e302f32342d3234203d3e20313532333733.roa Signing time: Thu 21 Mar 2024 19:34:25 +0000 ROA not before: Thu 21 Mar 2024 19:29:25 +0000 ROA not after: Thu 20 Mar 2025 19:34:25 +0000 asID: 152373 IP address blocks: 157.15.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.crl rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 28 Jun 2024 18:22:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:0a:7f:7b:c4:68:53:81:18:85:ea:2a:dc:c7:52:de:b9:d8:95:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB54DC526FA214F9F736926E6AAA16ABE39BF8E8 Validity Not Before: Mar 21 19:29:25 2024 GMT Not After : Mar 20 19:34:25 2025 GMT Subject: CN=0DA3823A7A2AFC4CC5A0ED945CA2A64CAF5F88F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:16:d9:1d:0a:f2:93:84:95:0f:57:63:0a:56: 94:33:6f:a2:09:15:eb:9c:35:f8:72:8e:69:c8:b8: 02:d4:7f:db:6c:79:92:6e:38:c4:f6:2d:c5:08:a8: 68:06:e9:83:a9:b0:5e:2c:35:31:a6:84:4a:c9:b5: e9:9a:89:6d:9c:80:ff:fa:77:13:bc:3f:8f:b4:73: ee:1a:4d:ca:66:74:19:5b:cf:97:b2:2d:c0:6a:ca: bb:a0:c1:60:82:95:2b:ec:dd:1b:e0:7a:4f:ad:2e: e5:e7:fa:5a:c7:02:a5:37:45:cb:17:d2:d6:5f:d1: 78:88:19:10:1d:93:31:79:de:4d:ed:c1:50:de:b2: 1a:fa:89:74:7c:f2:57:1d:1c:0b:84:da:bb:6e:ac: fb:e4:c0:b3:f3:c0:ed:eb:df:5f:fa:3f:aa:fc:83: 89:e9:24:a8:95:5f:06:50:f9:0e:ba:15:d8:e1:14: 4f:74:13:0a:86:a2:66:4d:5d:95:91:de:44:11:b0: 1f:51:c1:7a:e5:da:ec:6e:a4:d4:95:5b:19:96:54: 77:b4:e8:af:91:cc:5e:0b:df:5d:03:18:c5:5a:82: 17:05:60:05:74:24:68:91:a0:50:b0:27:8b:7e:0b: 6c:c6:f5:66:5e:93:96:9b:b5:fe:60:95:c1:81:f6: d9:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:A3:82:3A:7A:2A:FC:4C:C5:A0:ED:94:5C:A2:A6:4C:AF:5F:88:F5 X509v3 Authority Key Identifier: keyid:CB:54:DC:52:6F:A2:14:F9:F7:36:92:6E:6A:AA:16:AB:E3:9B:F8:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/3135372e31352e36322e302f32342d3234203d3e20313532333733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.62.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:af:cb:f1:02:79:b0:27:7a:f9:ce:3f:25:27:6c:12:30:64: c7:11:f0:bb:05:b4:9b:96:1e:95:bd:ba:b3:46:d4:db:60:b5: 58:cb:ae:a0:5a:a9:e6:4b:20:5b:25:85:40:6f:e0:dc:96:7f: 88:ee:7c:ed:ec:33:4d:d6:77:05:41:91:95:28:e2:37:36:f1: ed:25:9f:b9:44:78:20:2a:e4:4c:6c:e7:db:63:45:5f:01:8c: 3b:bb:85:f7:f6:dd:b0:0b:9f:83:b8:97:15:9c:33:62:01:a7: 9e:27:67:2d:a3:da:be:66:a8:95:80:11:6b:a6:39:14:9d:36: 9c:23:a4:73:55:29:54:41:54:96:74:c5:39:ba:ae:5f:2d:75: 7a:1f:4f:e7:5e:3c:b4:1f:10:d1:81:8e:ef:8a:f5:af:c8:68: ce:b8:2a:15:94:00:ec:a1:4c:6d:12:55:37:2f:37:68:5d:2b: 5b:ec:88:82:22:2d:29:df:f6:88:28:f5:ce:60:50:b9:b1:a3: af:89:0e:91:32:cc:95:e2:98:cd:b1:b4:ed:cb:5e:bc:2f:b4: 97:02:a2:ad:74:d6:6a:56:6d:64:3a:34:ba:79:a6:55:bd:48: db:4c:52:73:ca:58:40:49:5a:25:80:74:34:9a:b4:f9:e6:bf: 9d:5d:6b:75 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIgp/e8RoU4EYheoq3MdS3rnYlRIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0I1NERDNTI2RkEyMTRGOUY3MzY5MjZFNkFBQTE2QUJF MzlCRjhFODAeFw0yNDAzMjExOTI5MjVaFw0yNTAzMjAxOTM0MjVaMDMxMTAvBgNV BAMTKDBEQTM4MjNBN0EyQUZDNENDNUEwRUQ5NDVDQTJBNjRDQUY1Rjg4RjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2FtkdCvKThJUPV2MKVpQzb6IJ FeucNfhyjmnIuALUf9tseZJuOMT2LcUIqGgG6YOpsF4sNTGmhErJtemaiW2cgP/6 dxO8P4+0c+4aTcpmdBlbz5eyLcBqyrugwWCClSvs3Rvgek+tLuXn+lrHAqU3RcsX 0tZf0XiIGRAdkzF53k3twVDeshr6iXR88lcdHAuE2rturPvkwLPzwO3r31/6P6r8 g4npJKiVXwZQ+Q66FdjhFE90EwqGomZNXZWR3kQRsB9RwXrl2uxupNSVWxmWVHe0 6K+RzF4L310DGMVaghcFYAV0JGiRoFCwJ4t+C2zG9WZek5abtf5glcGB9tmvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUDaOCOnoq/EzFoO2UXKKmTK9fiPUwHwYDVR0j BBgwFoAUy1TcUm+iFPn3NpJuaqoWq+Ob+OgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MTIzNGM0YS1hOGZmLTQwMzYtODQyMC1kYTgxNjIxMTE4MDYvMC9DQjU0REM1MjZG QTIxNEY5RjczNjkyNkU2QUFBMTZBQkUzOUJGOEU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQ0I1NERDNTI2RkEyMTRGOUY3MzY5MjZFNkFBQTE2QUJFMzlC RjhFOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxMjM0YzRhLWE4ZmYtNDAzNi04 NDIwLWRhODE2MjExMTgwNi8wLzMxMzUzNzJlMzEzNTJlMzYzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMzMzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0PPjANBgkqhkiG 9w0BAQsFAAOCAQEAPa/L8QJ5sCd6+c4/JSdsEjBkxxHwuwW0m5Yelb26s0bU22C1 WMuuoFqp5ksgWyWFQG/g3JZ/iO587ewzTdZ3BUGRlSjiNzbx7SWfuUR4ICrkTGzn 22NFXwGMO7uF9/bdsAufg7iXFZwzYgGnnidnLaPavmaolYARa6Y5FJ02nCOkc1Up VEFUlnTFObquXy11eh9P5148tB8Q0YGO74r1r8hozrgqFZQA7KFMbRJVNy83aF0r W+yIgiItKd/2iCj1zmBQubGjr4kOkTLMleKYzbG07ctevC+0lwKirXTWalZtZDo0 unmmVb1I20xSc8pYQElaJYB0NJq0+ea/nV1rdQ== -----END CERTIFICATE-----Generated at Tue Jun 25 17:42:08 2024 by rpki-client on console-ams.rpki-client.org