$ rpki-client -vvf repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/3135372e31352e34342e302f32332d3233203d3e20313532333931.roa File: 3135372e31352e34342e302f32332d3233203d3e20313532333931.roa (raw, json) Hash identifier: CWrSRGIb9DWeCqXVEcCNk243mh86Y3a1VFur2jkpr3Y= Subject key identifier: 27:0D:18:E7:0A:D5:F9:DA:6B:D8:AB:BB:5D:EA:DA:EF:22:28:71:FD Certificate issuer: /CN=4617272EE875B55CD5F2A88330A95F6410A3EB1B Certificate serial: 2E531D9DC7458056015F3757F6FB8D835A4B9053 Authority key identifier: 46:17:27:2E:E8:75:B5:5C:D5:F2:A8:83:30:A9:5F:64:10:A3:EB:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4617272EE875B55CD5F2A88330A95F6410A3EB1B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/3135372e31352e34342e302f32332d3233203d3e20313532333931.roa Signing time: Thu 10 Oct 2024 05:28:27 +0000 ROA not before: Thu 10 Oct 2024 05:23:27 +0000 ROA not after: Thu 09 Oct 2025 05:28:27 +0000 asID: 152391 IP address blocks: 157.15.44.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/4617272EE875B55CD5F2A88330A95F6410A3EB1B.crl rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/4617272EE875B55CD5F2A88330A95F6410A3EB1B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4617272EE875B55CD5F2A88330A95F6410A3EB1B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 08:43:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:53:1d:9d:c7:45:80:56:01:5f:37:57:f6:fb:8d:83:5a:4b:90:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4617272EE875B55CD5F2A88330A95F6410A3EB1B Validity Not Before: Oct 10 05:23:27 2024 GMT Not After : Oct 9 05:28:27 2025 GMT Subject: CN=270D18E70AD5F9DA6BD8ABBB5DEADAEF222871FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:5f:13:d2:03:db:f7:0f:30:03:b6:60:1e:05: eb:8d:33:32:83:0c:d2:58:78:9e:72:62:2a:b6:91: 03:cb:d0:49:43:66:d4:e1:b0:75:18:22:75:12:71: 76:23:07:e6:41:0c:3e:b2:77:28:d4:bd:a9:1f:38: 14:87:b5:0b:ff:d8:27:39:f6:c4:5a:ad:0c:64:64: 69:a3:92:36:09:97:ce:e2:38:5a:6c:3a:d8:ae:5f: 48:59:01:f2:65:f9:1e:f6:c7:fd:37:7f:fe:91:1b: db:52:ab:eb:1b:cd:b2:ff:40:83:8f:d5:4d:74:b3: 83:92:d7:b7:d0:75:5f:9c:cd:c2:3f:5e:32:18:c9: dc:19:b1:ea:36:da:ca:bd:36:ea:33:16:83:b0:c1: 5e:e7:cc:aa:f0:f6:41:00:0e:7b:76:9d:dd:07:8c: c3:bc:59:56:f4:da:a8:05:d4:40:34:71:46:7c:ce: df:c1:98:38:6e:06:c1:87:33:17:47:0d:ee:f4:78: 0c:17:39:05:3f:4f:7a:30:a5:d3:1c:1b:b9:a2:7f: 14:5c:cb:c8:5d:81:a5:7b:8a:ec:58:76:d8:fb:25: d8:7a:05:c0:f3:6b:35:34:39:9f:85:70:81:e3:ec: 5f:08:9a:71:3e:0a:b6:9f:20:5c:29:13:f5:5e:b8: c5:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:0D:18:E7:0A:D5:F9:DA:6B:D8:AB:BB:5D:EA:DA:EF:22:28:71:FD X509v3 Authority Key Identifier: keyid:46:17:27:2E:E8:75:B5:5C:D5:F2:A8:83:30:A9:5F:64:10:A3:EB:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/4617272EE875B55CD5F2A88330A95F6410A3EB1B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4617272EE875B55CD5F2A88330A95F6410A3EB1B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/3135372e31352e34342e302f32332d3233203d3e20313532333931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.44.0/23 Signature Algorithm: sha256WithRSAEncryption 7a:0b:20:a6:f0:54:5c:3b:fb:26:65:50:0e:11:ad:d2:bc:1d: 1d:00:64:af:1b:02:a2:82:79:e5:f4:a2:f1:56:6a:29:32:90: 4f:01:38:cc:27:84:e2:d5:38:f0:6a:bf:19:09:fc:9c:e4:97: 7d:d8:93:74:88:0e:37:d1:d5:ad:47:b9:c2:da:d2:7b:f7:7f: b8:02:83:b1:6f:ba:0b:36:16:86:e1:83:f0:94:c0:37:a3:fd: b7:2b:0b:73:25:ac:a8:11:42:0b:43:2a:fa:5e:5a:47:d5:75: da:a1:0c:a4:63:03:4f:fc:87:12:62:b1:26:92:c9:66:57:50: 0c:bd:33:bc:60:8f:ce:b8:a8:e6:3f:06:e4:1a:4a:0e:43:01: d3:ce:e8:72:1d:c6:dd:0e:d5:fa:eb:93:e9:46:4a:b5:5d:31: 7a:2e:ac:39:21:1b:fd:22:29:84:0b:dd:68:78:c1:f3:25:be: 5a:a7:ea:6f:e1:93:c8:94:b9:55:d5:77:ce:40:40:e4:fa:a7: b3:ba:89:ff:29:22:23:9b:75:5e:73:36:52:60:4f:65:53:d7: fd:90:9f:2a:15:3f:94:e6:d2:61:5d:a1:f7:18:6f:e1:5c:b2: df:13:f7:85:5a:2c:da:64:76:ce:ca:8d:d5:52:c4:1c:81:8f: d9:90:83:87 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULlMdncdFgFYBXzdX9vuNg1pLkFMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDYxNzI3MkVFODc1QjU1Q0Q1RjJBODgzMzBBOTVGNjQx MEEzRUIxQjAeFw0yNDEwMTAwNTIzMjdaFw0yNTEwMDkwNTI4MjdaMDMxMTAvBgNV BAMTKDI3MEQxOEU3MEFENUY5REE2QkQ4QUJCQjVERUFEQUVGMjIyODcxRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyXxPSA9v3DzADtmAeBeuNMzKD DNJYeJ5yYiq2kQPL0ElDZtThsHUYInUScXYjB+ZBDD6ydyjUvakfOBSHtQv/2Cc5 9sRarQxkZGmjkjYJl87iOFpsOtiuX0hZAfJl+R72x/03f/6RG9tSq+sbzbL/QIOP 1U10s4OS17fQdV+czcI/XjIYydwZseo22sq9NuozFoOwwV7nzKrw9kEADnt2nd0H jMO8WVb02qgF1EA0cUZ8zt/BmDhuBsGHMxdHDe70eAwXOQU/T3owpdMcG7mifxRc y8hdgaV7iuxYdtj7Jdh6BcDzazU0OZ+FcIHj7F8ImnE+CrafIFwpE/VeuMWxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJw0Y5wrV+dpr2Ku7Xera7yIocf0wHwYDVR0j BBgwFoAURhcnLuh1tVzV8qiDMKlfZBCj6xswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZmRhZjA2YS1mNjI0LTQyY2YtYmIxOS1iNmJiZjkzMWFhYzgvMC80NjE3MjcyRUU4 NzVCNTVDRDVGMkE4ODMzMEE5NUY2NDEwQTNFQjFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDYxNzI3MkVFODc1QjU1Q0Q1RjJBODgzMzBBOTVGNjQxMEEz RUIxQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlmZGFmMDZhLWY2MjQtNDJjZi1i YjE5LWI2YmJmOTMxYWFjOC8wLzMxMzUzNzJlMzEzNTJlMzQzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMjMzMzkzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0PLDANBgkqhkiG 9w0BAQsFAAOCAQEAegsgpvBUXDv7JmVQDhGt0rwdHQBkrxsCooJ55fSi8VZqKTKQ TwE4zCeE4tU48Gq/GQn8nOSXfdiTdIgON9HVrUe5wtrSe/d/uAKDsW+6CzYWhuGD 8JTAN6P9tysLcyWsqBFCC0Mq+l5aR9V12qEMpGMDT/yHEmKxJpLJZldQDL0zvGCP zrio5j8G5BpKDkMB087och3G3Q7V+uuT6UZKtV0xei6sOSEb/SIphAvdaHjB8yW+ Wqfqb+GTyJS5VdV3zkBA5Pqns7qJ/ykiI5t1XnM2UmBPZVPX/ZCfKhU/lObSYV2h 9xhv4Vyy3xP3hVos2mR2zsqN1VLEHIGP2ZCDhw== -----END CERTIFICATE-----Generated at Mon Nov 25 04:42:07 2024 by rpki-client on console-ams.rpki-client.org