$ rpki-client -vvf repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/3135372e31352e36332e302f32342d3234203d3e20313532333733.roa File: 3135372e31352e36332e302f32342d3234203d3e20313532333733.roa (raw, json) Hash identifier: dYLGwX6x//D+8eoU/n2virU9jHf3lYDEXKf6fC2Iwc0= Subject key identifier: 77:7C:9E:C2:6A:F7:11:34:C2:85:98:9E:6F:7B:CA:34:8B:D4:AE:1B Certificate issuer: /CN=CB54DC526FA214F9F736926E6AAA16ABE39BF8E8 Certificate serial: 5AE1E3F2A1977409D777337C5A93C44EFAC0F083 Authority key identifier: CB:54:DC:52:6F:A2:14:F9:F7:36:92:6E:6A:AA:16:AB:E3:9B:F8:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/3135372e31352e36332e302f32342d3234203d3e20313532333733.roa Signing time: Thu 21 Mar 2024 19:34:39 +0000 ROA not before: Thu 21 Mar 2024 19:29:39 +0000 ROA not after: Thu 20 Mar 2025 19:34:39 +0000 asID: 152373 IP address blocks: 157.15.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.crl rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 28 Jun 2024 18:22:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:e1:e3:f2:a1:97:74:09:d7:77:33:7c:5a:93:c4:4e:fa:c0:f0:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB54DC526FA214F9F736926E6AAA16ABE39BF8E8 Validity Not Before: Mar 21 19:29:39 2024 GMT Not After : Mar 20 19:34:39 2025 GMT Subject: CN=777C9EC26AF71134C285989E6F7BCA348BD4AE1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:7f:3c:3b:db:dc:99:38:0d:11:6e:1c:d4:12: 27:dd:4a:af:ac:15:f2:45:f2:65:a9:42:b8:f6:4d: 37:4d:af:df:eb:b9:76:4b:e7:28:c7:b6:11:3f:3c: cc:95:49:80:17:87:c5:e2:7f:e1:9d:25:46:04:5b: 98:bd:4f:a2:f0:5a:2c:5e:a3:8f:51:f7:90:ed:a4: eb:e7:19:aa:e0:d3:c1:f7:7e:be:33:9a:ab:b8:9d: 4c:a6:bf:72:6e:82:9b:1e:b6:1d:d5:c5:37:73:a0: 49:85:de:66:96:38:b5:79:da:f1:60:7b:5e:a8:82: a0:2a:8b:77:c6:89:39:6a:48:df:eb:23:35:92:41: de:1c:ca:41:38:b8:52:dd:16:34:6b:72:ba:d0:98: 8e:41:3b:73:98:d8:d7:20:4d:12:35:c5:fa:f8:5b: dd:bf:78:47:0c:42:38:ef:22:ee:b6:1c:b6:c2:45: f1:77:59:98:e4:6f:37:27:35:0e:e9:b1:6b:c9:4a: 01:99:7e:79:dd:7f:aa:cc:1e:06:50:fe:6a:6e:fe: 8e:e4:0e:15:a1:43:10:0a:88:00:83:ad:19:98:c6: a4:19:72:e1:d0:95:fc:56:a3:cc:f4:7c:85:43:62: e0:02:f6:6e:89:6e:6a:9f:11:d2:8c:12:e8:ff:f6: fb:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:7C:9E:C2:6A:F7:11:34:C2:85:98:9E:6F:7B:CA:34:8B:D4:AE:1B X509v3 Authority Key Identifier: keyid:CB:54:DC:52:6F:A2:14:F9:F7:36:92:6E:6A:AA:16:AB:E3:9B:F8:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/3135372e31352e36332e302f32342d3234203d3e20313532333733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.63.0/24 Signature Algorithm: sha256WithRSAEncryption 56:9c:54:a8:6e:72:2f:d3:91:3e:ee:f6:b1:f5:e3:7b:0e:80: 16:95:4b:ec:be:0c:e5:9e:8e:3c:35:9e:39:53:11:2b:bd:dc: ed:76:03:2a:b8:a6:3a:ef:5a:c5:53:fa:49:ba:e9:b0:89:6c: 04:d0:d9:49:fc:70:c2:3c:0e:84:05:08:44:ff:23:38:b4:69: 4e:c9:97:50:d4:57:4a:6a:3c:79:23:d5:20:47:3c:3d:bc:94: 10:0c:b3:31:c8:a5:7f:a7:68:f1:63:ff:a1:e8:ed:99:e3:f5: 36:1d:ab:c4:77:f6:10:f0:11:14:05:e6:fa:e4:1e:93:b1:1b: f3:91:b4:d3:9e:a2:6e:48:22:20:b8:05:00:39:2c:a5:48:6c: 90:3c:59:84:bb:ab:56:a2:bf:fa:1d:f2:b4:18:01:d1:97:f8: 9d:d6:51:46:48:c7:16:fa:d9:37:c8:f1:6e:2f:f1:b0:72:b1: a0:99:fa:4f:aa:4c:e5:17:3f:81:82:9d:86:6a:a4:26:f6:78: cb:6c:6e:0f:8b:22:eb:b0:20:7e:56:f7:89:44:31:10:01:66: e9:23:c7:b4:b1:d4:43:68:58:62:d6:c2:1f:db:c3:de:4d:77: bd:f3:21:d7:95:77:0e:4e:09:e5:a9:99:7b:95:94:80:d0:5c: ca:1d:82:1b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWuHj8qGXdAnXdzN8WpPETvrA8IMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0I1NERDNTI2RkEyMTRGOUY3MzY5MjZFNkFBQTE2QUJF MzlCRjhFODAeFw0yNDAzMjExOTI5MzlaFw0yNTAzMjAxOTM0MzlaMDMxMTAvBgNV BAMTKDc3N0M5RUMyNkFGNzExMzRDMjg1OTg5RTZGN0JDQTM0OEJENEFFMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcfzw729yZOA0RbhzUEifdSq+s FfJF8mWpQrj2TTdNr9/ruXZL5yjHthE/PMyVSYAXh8Xif+GdJUYEW5i9T6LwWixe o49R95DtpOvnGarg08H3fr4zmqu4nUymv3Jugpseth3VxTdzoEmF3maWOLV52vFg e16ogqAqi3fGiTlqSN/rIzWSQd4cykE4uFLdFjRrcrrQmI5BO3OY2NcgTRI1xfr4 W92/eEcMQjjvIu62HLbCRfF3WZjkbzcnNQ7psWvJSgGZfnndf6rMHgZQ/mpu/o7k DhWhQxAKiACDrRmYxqQZcuHQlfxWo8z0fIVDYuAC9m6JbmqfEdKMEuj/9vu1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUd3yewmr3ETTChZieb3vKNIvUrhswHwYDVR0j BBgwFoAUy1TcUm+iFPn3NpJuaqoWq+Ob+OgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MTIzNGM0YS1hOGZmLTQwMzYtODQyMC1kYTgxNjIxMTE4MDYvMC9DQjU0REM1MjZG QTIxNEY5RjczNjkyNkU2QUFBMTZBQkUzOUJGOEU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQ0I1NERDNTI2RkEyMTRGOUY3MzY5MjZFNkFBQTE2QUJFMzlC RjhFOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxMjM0YzRhLWE4ZmYtNDAzNi04 NDIwLWRhODE2MjExMTgwNi8wLzMxMzUzNzJlMzEzNTJlMzYzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMzMzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0PPzANBgkqhkiG 9w0BAQsFAAOCAQEAVpxUqG5yL9ORPu72sfXjew6AFpVL7L4M5Z6OPDWeOVMRK73c 7XYDKrimOu9axVP6SbrpsIlsBNDZSfxwwjwOhAUIRP8jOLRpTsmXUNRXSmo8eSPV IEc8PbyUEAyzMcilf6do8WP/oejtmeP1Nh2rxHf2EPARFAXm+uQek7Eb85G0056i bkgiILgFADkspUhskDxZhLurVqK/+h3ytBgB0Zf4ndZRRkjHFvrZN8jxbi/xsHKx oJn6T6pM5Rc/gYKdhmqkJvZ4y2xuD4si67Agflb3iUQxEAFm6SPHtLHUQ2hYYtbC H9vD3k13vfMh15V3Dk4J5amZe5WUgNBcyh2CGw== -----END CERTIFICATE-----Generated at Tue Jun 25 17:42:08 2024 by rpki-client on console-ams.rpki-client.org