$ rpki-client -vvf repo-rpki.idnic.net/repo/935acb07-9d5f-497f-9932-33a434d3aa32/0/3135372e31352e37362e302f32342d3234203d3e20313532333734.roa File: 3135372e31352e37362e302f32342d3234203d3e20313532333734.roa (raw, json) Hash identifier: +KpY7gdGhjGsBNmsMzsiKhbE//IKf7fuzrvdDXWYquU= Subject key identifier: 47:D0:13:31:0B:B9:B0:1B:A6:5F:77:1F:E4:DD:AB:27:9C:1A:60:0F Certificate issuer: /CN=9D23189F67CA669A4612567DD77CC645E3AFDF71 Certificate serial: 572794E8D4BAAA39FE8B0EBAFB57AFD03C01859D Authority key identifier: 9D:23:18:9F:67:CA:66:9A:46:12:56:7D:D7:7C:C6:45:E3:AF:DF:71 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D23189F67CA669A4612567DD77CC645E3AFDF71.cer Subject info access: rsync://repo-rpki.idnic.net/repo/935acb07-9d5f-497f-9932-33a434d3aa32/0/3135372e31352e37362e302f32342d3234203d3e20313532333734.roa Signing time: Mon 08 Apr 2024 15:05:00 +0000 ROA not before: Mon 08 Apr 2024 15:00:00 +0000 ROA not after: Mon 07 Apr 2025 15:05:00 +0000 asID: 152374 IP address blocks: 157.15.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/935acb07-9d5f-497f-9932-33a434d3aa32/0/9D23189F67CA669A4612567DD77CC645E3AFDF71.crl rsync://repo-rpki.idnic.net/repo/935acb07-9d5f-497f-9932-33a434d3aa32/0/9D23189F67CA669A4612567DD77CC645E3AFDF71.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D23189F67CA669A4612567DD77CC645E3AFDF71.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:27:94:e8:d4:ba:aa:39:fe:8b:0e:ba:fb:57:af:d0:3c:01:85:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D23189F67CA669A4612567DD77CC645E3AFDF71 Validity Not Before: Apr 8 15:00:00 2024 GMT Not After : Apr 7 15:05:00 2025 GMT Subject: CN=47D013310BB9B01BA65F771FE4DDAB279C1A600F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:dd:81:62:f8:b2:47:35:ac:6f:ed:a5:ea:cc: 39:d3:ff:1d:93:36:e0:6e:87:dc:39:8e:72:8e:16: 43:0c:5b:b9:27:26:19:65:91:72:33:c4:53:3e:ff: 00:11:e9:c8:e1:41:b6:27:fb:6f:b8:d0:77:9c:f6: df:b7:18:a1:72:03:7f:04:3e:11:c4:e3:54:15:ad: 43:72:af:45:fa:b6:22:7a:76:57:26:86:0f:b0:12: 12:08:b6:51:49:28:78:4d:af:a2:57:02:60:32:d4: 61:13:79:a5:76:8f:3a:3e:fa:42:58:4c:71:ea:e6: 58:76:52:07:d3:f0:aa:d9:14:1d:89:a6:03:77:ae: 1e:2f:e0:24:82:a0:1b:64:35:aa:6f:48:4d:33:fa: b8:f6:3e:a6:da:3c:6b:35:ad:69:cb:cf:03:a7:d8: c3:42:e9:e4:8b:ae:6f:be:d5:3b:8a:b9:6a:71:aa: 74:d9:5d:98:2a:07:c5:5f:dc:a4:56:17:55:8e:fe: af:ed:f0:83:cc:ae:35:8b:4e:7a:2c:07:ad:84:29: f6:1f:3f:6a:c0:20:bb:28:27:ab:5c:43:df:2d:a4: 57:0f:0a:41:b9:51:26:74:d2:4c:d2:db:c1:31:09: 3c:4a:75:ae:37:88:d8:50:87:94:22:cf:c3:44:10: 80:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:D0:13:31:0B:B9:B0:1B:A6:5F:77:1F:E4:DD:AB:27:9C:1A:60:0F X509v3 Authority Key Identifier: keyid:9D:23:18:9F:67:CA:66:9A:46:12:56:7D:D7:7C:C6:45:E3:AF:DF:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/935acb07-9d5f-497f-9932-33a434d3aa32/0/9D23189F67CA669A4612567DD77CC645E3AFDF71.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D23189F67CA669A4612567DD77CC645E3AFDF71.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/935acb07-9d5f-497f-9932-33a434d3aa32/0/3135372e31352e37362e302f32342d3234203d3e20313532333734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.76.0/24 Signature Algorithm: sha256WithRSAEncryption 01:40:f7:2a:48:cf:5f:8c:b6:e9:11:58:0e:c8:34:02:c2:40: 73:1d:15:86:d1:4c:67:e1:ce:fc:a2:86:de:db:34:4b:cc:62: 6b:fe:5e:0c:58:47:af:a2:e7:f7:b9:aa:f1:47:30:3d:56:fe: 7f:b3:46:cd:ad:14:58:a4:28:4e:41:2d:c0:15:21:c8:c4:43: ea:44:b0:05:53:6c:16:dd:71:ea:21:50:f2:fa:90:ed:70:e3: ac:19:00:1b:4b:61:7c:b2:75:c0:fe:fe:88:5a:77:41:88:91: 7b:26:c8:78:8c:b5:19:6e:cf:c8:c7:3e:1c:2d:02:45:0f:9b: b3:a8:52:91:a8:0a:b0:4b:25:fe:fc:f8:8b:e8:88:ec:e7:c5: ff:3c:b6:25:38:e4:eb:ae:0f:76:15:66:2f:e9:16:20:db:d3: 0e:5f:a9:f8:76:42:a3:a9:6c:a9:35:d9:03:51:c2:31:d2:05: 08:ef:a9:3b:2c:69:ec:9f:27:73:af:fd:8f:f6:1f:89:a4:33: d6:24:a6:82:a2:ce:16:2c:d0:d6:7a:c2:7a:0f:a9:11:51:f9: 7c:bb:8f:4d:e3:29:45:80:d8:9e:52:7d:af:ec:08:9a:01:e4: 75:77:fe:8c:1d:0b:a6:72:46:74:c4:52:83:f1:3b:dd:8b:c9: 14:04:5c:e5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVyeU6NS6qjn+iw66+1ev0DwBhZ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQyMzE4OUY2N0NBNjY5QTQ2MTI1NjdERDc3Q0M2NDVF M0FGREY3MTAeFw0yNDA0MDgxNTAwMDBaFw0yNTA0MDcxNTA1MDBaMDMxMTAvBgNV BAMTKDQ3RDAxMzMxMEJCOUIwMUJBNjVGNzcxRkU0RERBQjI3OUMxQTYwMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn3YFi+LJHNaxv7aXqzDnT/x2T NuBuh9w5jnKOFkMMW7knJhllkXIzxFM+/wAR6cjhQbYn+2+40Hec9t+3GKFyA38E PhHE41QVrUNyr0X6tiJ6dlcmhg+wEhIItlFJKHhNr6JXAmAy1GETeaV2jzo++kJY THHq5lh2UgfT8KrZFB2JpgN3rh4v4CSCoBtkNapvSE0z+rj2PqbaPGs1rWnLzwOn 2MNC6eSLrm++1TuKuWpxqnTZXZgqB8Vf3KRWF1WO/q/t8IPMrjWLTnosB62EKfYf P2rAILsoJ6tcQ98tpFcPCkG5USZ00kzS28ExCTxKda43iNhQh5Qiz8NEEICvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUR9ATMQu5sBumX3cf5N2rJ5waYA8wHwYDVR0j BBgwFoAUnSMYn2fKZppGElZ913zGReOv33EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MzVhY2IwNy05ZDVmLTQ5N2YtOTkzMi0zM2E0MzRkM2FhMzIvMC85RDIzMTg5RjY3 Q0E2NjlBNDYxMjU2N0RENzdDQzY0NUUzQUZERjcxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUQyMzE4OUY2N0NBNjY5QTQ2MTI1NjdERDc3Q0M2NDVFM0FG REY3MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkzNWFjYjA3LTlkNWYtNDk3Zi05 OTMyLTMzYTQzNGQzYWEzMi8wLzMxMzUzNzJlMzEzNTJlMzczNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMzMzczNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0PTDANBgkqhkiG 9w0BAQsFAAOCAQEAAUD3KkjPX4y26RFYDsg0AsJAcx0VhtFMZ+HO/KKG3ts0S8xi a/5eDFhHr6Ln97mq8UcwPVb+f7NGza0UWKQoTkEtwBUhyMRD6kSwBVNsFt1x6iFQ 8vqQ7XDjrBkAG0thfLJ1wP7+iFp3QYiReybIeIy1GW7PyMc+HC0CRQ+bs6hSkagK sEsl/vz4i+iI7OfF/zy2JTjk664PdhVmL+kWINvTDl+p+HZCo6lsqTXZA1HCMdIF CO+pOyxp7J8nc6/9j/YfiaQz1iSmgqLOFizQ1nrCeg+pEVH5fLuPTeMpRYDYnlJ9 r+wImgHkdXf+jB0LpnJGdMRSg/E73YvJFARc5Q== -----END CERTIFICATE-----Generated at Fri Nov 22 14:19:27 2024 by rpki-client on console-ams.rpki-client.org