$ rpki-client -vvf repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/3135372e31352e34342e302f32332d3234203d3e20313532333931.roa File: 3135372e31352e34342e302f32332d3234203d3e20313532333931.roa (raw, json) Hash identifier: TNk4onAa35vBWTPc2OIAD40iV2ncocl/ynkFFA2WCyo= Subject key identifier: D3:E7:2D:15:3C:16:98:0C:AB:FB:96:C1:B4:99:97:0B:E1:CA:AA:3F Certificate issuer: /CN=4617272EE875B55CD5F2A88330A95F6410A3EB1B Certificate serial: 36D33724F60395B24B429C44D68CD13DAB531C2B Authority key identifier: 46:17:27:2E:E8:75:B5:5C:D5:F2:A8:83:30:A9:5F:64:10:A3:EB:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4617272EE875B55CD5F2A88330A95F6410A3EB1B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/3135372e31352e34342e302f32332d3234203d3e20313532333931.roa Signing time: Tue 02 Apr 2024 03:49:20 +0000 ROA not before: Tue 02 Apr 2024 03:44:20 +0000 ROA not after: Tue 01 Apr 2025 03:49:20 +0000 asID: 152391 IP address blocks: 157.15.44.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/4617272EE875B55CD5F2A88330A95F6410A3EB1B.crl rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/4617272EE875B55CD5F2A88330A95F6410A3EB1B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4617272EE875B55CD5F2A88330A95F6410A3EB1B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Jun 2024 17:39:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:d3:37:24:f6:03:95:b2:4b:42:9c:44:d6:8c:d1:3d:ab:53:1c:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4617272EE875B55CD5F2A88330A95F6410A3EB1B Validity Not Before: Apr 2 03:44:20 2024 GMT Not After : Apr 1 03:49:20 2025 GMT Subject: CN=D3E72D153C16980CABFB96C1B499970BE1CAAA3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:13:b4:1d:b2:04:db:65:a9:ef:80:ad:6e:95: 59:3f:8b:72:1b:c0:90:86:92:89:be:f5:74:96:8c: 10:5f:06:b5:0d:ff:49:7b:10:df:4c:2b:07:de:b7: 09:c2:65:a4:4e:6b:38:50:c8:33:ae:da:f5:3c:db: 48:43:be:f5:bb:61:40:bc:9c:69:0c:3e:14:95:92: 1c:e8:e6:fe:62:77:9a:18:32:02:95:7d:0b:0a:a5: 38:5e:74:82:90:c6:13:57:ca:09:20:e3:44:6e:9a: 20:19:f4:40:f1:e1:f0:f0:af:75:99:eb:0f:aa:fd: c3:34:0c:d8:39:1f:8f:5e:01:0a:45:01:72:1a:c9: 72:a1:aa:d3:f0:06:57:14:ec:3e:97:fe:8b:7c:1f: a5:6b:ff:3c:27:f6:5d:2b:de:d7:5d:62:0f:2a:e5: 52:2c:74:bc:04:4e:44:dd:ce:57:0c:b3:d9:3e:21: 42:f0:df:da:e6:28:9a:e5:2c:f2:eb:57:ae:90:8c: 88:22:b0:19:aa:50:cd:37:5d:59:f1:f9:42:7c:e6: 89:98:54:8f:55:55:0d:7f:e5:a6:10:aa:31:96:74: 4a:51:21:f7:87:82:73:49:41:73:eb:40:35:54:53: 1b:1f:fb:c3:9e:fc:10:01:c3:14:75:0a:8b:a7:dc: 17:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:E7:2D:15:3C:16:98:0C:AB:FB:96:C1:B4:99:97:0B:E1:CA:AA:3F X509v3 Authority Key Identifier: keyid:46:17:27:2E:E8:75:B5:5C:D5:F2:A8:83:30:A9:5F:64:10:A3:EB:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/4617272EE875B55CD5F2A88330A95F6410A3EB1B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4617272EE875B55CD5F2A88330A95F6410A3EB1B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/3135372e31352e34342e302f32332d3234203d3e20313532333931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.44.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:12:ff:7f:aa:96:8e:8c:28:cc:b3:01:29:9b:2e:ee:c5:ba: d5:80:f2:02:0f:36:24:40:cb:92:b0:af:b0:f5:15:73:a8:7b: c2:24:c3:b8:84:67:43:ad:68:a8:48:1f:6a:4e:e0:ca:0e:97: 6b:95:c2:44:35:17:a5:6b:f8:6c:ce:b8:c0:f3:f7:85:b8:6e: 3b:3a:90:a2:3b:f7:a8:3a:a0:4e:bb:0c:28:b5:28:c7:69:20: ac:76:99:2b:91:25:0a:95:cd:9f:07:79:fa:84:72:f2:0c:53: 80:ef:f5:d1:26:ff:b3:d1:fb:71:08:aa:b6:a3:16:c1:81:c7: c1:30:04:7d:62:d8:39:82:3f:36:67:c9:35:ad:55:b2:fc:50: 23:ed:8a:cc:e0:46:c3:c8:81:39:b4:b1:cf:f0:91:cd:7a:b1: af:35:c5:d6:8d:ec:47:c3:a1:f3:8d:01:9e:e9:70:0f:c7:ff: 95:36:a5:b7:1b:21:4b:0d:9b:0a:25:34:dc:3a:4e:60:ad:45: 80:94:8b:e1:da:03:98:ad:56:35:98:9f:db:0e:1b:9d:fe:90: 9b:35:43:d3:65:a2:1a:9e:a1:96:a4:52:1f:50:8b:6c:b6:2d: 69:7d:e3:7a:14:5e:2a:11:58:35:07:fe:88:dc:e5:62:ba:e8: 70:ae:4b:df -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNtM3JPYDlbJLQpxE1ozRPatTHCswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDYxNzI3MkVFODc1QjU1Q0Q1RjJBODgzMzBBOTVGNjQx MEEzRUIxQjAeFw0yNDA0MDIwMzQ0MjBaFw0yNTA0MDEwMzQ5MjBaMDMxMTAvBgNV BAMTKEQzRTcyRDE1M0MxNjk4MENBQkZCOTZDMUI0OTk5NzBCRTFDQUFBM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAE7QdsgTbZanvgK1ulVk/i3Ib wJCGkom+9XSWjBBfBrUN/0l7EN9MKwfetwnCZaROazhQyDOu2vU820hDvvW7YUC8 nGkMPhSVkhzo5v5id5oYMgKVfQsKpThedIKQxhNXygkg40RumiAZ9EDx4fDwr3WZ 6w+q/cM0DNg5H49eAQpFAXIayXKhqtPwBlcU7D6X/ot8H6Vr/zwn9l0r3tddYg8q 5VIsdLwETkTdzlcMs9k+IULw39rmKJrlLPLrV66QjIgisBmqUM03XVnx+UJ85omY VI9VVQ1/5aYQqjGWdEpRIfeHgnNJQXPrQDVUUxsf+8Oe/BABwxR1Coun3Bf5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0+ctFTwWmAyr+5bBtJmXC+HKqj8wHwYDVR0j BBgwFoAURhcnLuh1tVzV8qiDMKlfZBCj6xswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZmRhZjA2YS1mNjI0LTQyY2YtYmIxOS1iNmJiZjkzMWFhYzgvMC80NjE3MjcyRUU4 NzVCNTVDRDVGMkE4ODMzMEE5NUY2NDEwQTNFQjFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDYxNzI3MkVFODc1QjU1Q0Q1RjJBODgzMzBBOTVGNjQxMEEz RUIxQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlmZGFmMDZhLWY2MjQtNDJjZi1i YjE5LWI2YmJmOTMxYWFjOC8wLzMxMzUzNzJlMzEzNTJlMzQzNDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjMzMzkzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0PLDANBgkqhkiG 9w0BAQsFAAOCAQEAfxL/f6qWjowozLMBKZsu7sW61YDyAg82JEDLkrCvsPUVc6h7 wiTDuIRnQ61oqEgfak7gyg6Xa5XCRDUXpWv4bM64wPP3hbhuOzqQojv3qDqgTrsM KLUox2kgrHaZK5ElCpXNnwd5+oRy8gxTgO/10Sb/s9H7cQiqtqMWwYHHwTAEfWLY OYI/NmfJNa1VsvxQI+2KzOBGw8iBObSxz/CRzXqxrzXF1o3sR8Oh840BnulwD8f/ lTaltxshSw2bCiU03DpOYK1FgJSL4doDmK1WNZif2w4bnf6QmzVD02WiGp6hlqRS H1CLbLYtaX3jehReKhFYNQf+iNzlYrrocK5L3w== -----END CERTIFICATE-----Generated at Mon Jun 24 05:52:41 2024 by rpki-client on console-ams.rpki-client.org