$ rpki-client -vvf repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/3135372e31352e34342e302f32342d3234203d3e20313532333931.roa File: 3135372e31352e34342e302f32342d3234203d3e20313532333931.roa (raw, json) Hash identifier: GmvMNkypXN/dIsdT8yqrh6k/wsMAgACMxsXszxhLEFE= Subject key identifier: 9C:EA:04:72:C9:6C:61:EB:02:8E:0A:B6:19:90:B4:84:16:77:43:2D Certificate issuer: /CN=4617272EE875B55CD5F2A88330A95F6410A3EB1B Certificate serial: 706872409FB86CD32D4E449A44B9343C0DC9347D Authority key identifier: 46:17:27:2E:E8:75:B5:5C:D5:F2:A8:83:30:A9:5F:64:10:A3:EB:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4617272EE875B55CD5F2A88330A95F6410A3EB1B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/3135372e31352e34342e302f32342d3234203d3e20313532333931.roa Signing time: Thu 10 Oct 2024 05:26:57 +0000 ROA not before: Thu 10 Oct 2024 05:21:57 +0000 ROA not after: Thu 09 Oct 2025 05:26:57 +0000 asID: 152391 IP address blocks: 157.15.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/4617272EE875B55CD5F2A88330A95F6410A3EB1B.crl rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/4617272EE875B55CD5F2A88330A95F6410A3EB1B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4617272EE875B55CD5F2A88330A95F6410A3EB1B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:68:72:40:9f:b8:6c:d3:2d:4e:44:9a:44:b9:34:3c:0d:c9:34:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4617272EE875B55CD5F2A88330A95F6410A3EB1B Validity Not Before: Oct 10 05:21:57 2024 GMT Not After : Oct 9 05:26:57 2025 GMT Subject: CN=9CEA0472C96C61EB028E0AB61990B4841677432D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:48:08:fc:b0:c2:f8:1c:97:22:1e:2a:9f:43: 44:d1:a7:1d:d5:23:d8:68:7c:44:eb:ed:de:1a:fd: 96:5c:55:90:3e:b5:ee:ec:75:45:b8:cf:c3:5b:d7: f7:b6:97:5b:a0:4a:9e:77:53:94:12:41:e0:cd:96: df:44:d7:2c:f7:54:a1:12:66:11:7d:0e:b7:5d:77: 07:67:c8:90:f5:30:40:6b:a4:ad:c1:e0:f1:ba:ac: c5:54:f4:a5:82:0b:a0:c2:ad:80:6f:0f:50:11:9f: 59:8a:28:72:41:b2:fc:aa:1e:bb:99:45:ec:54:f6: e3:09:49:ac:df:07:53:bf:c5:f1:32:6a:13:64:4d: f5:29:15:e3:7b:d7:e5:31:b2:9d:e1:d6:90:b9:10: f5:db:52:4b:f2:47:06:06:77:ef:54:e4:0f:7e:fe: 2b:4b:03:34:94:15:a6:91:f3:60:74:e3:a8:bf:3f: d7:1a:e4:70:d6:a5:fc:5e:d1:cc:64:34:2d:42:a9: 6a:d5:47:9b:07:57:8a:ef:a9:84:58:c7:3c:f3:e9: f9:7b:ef:b6:da:5f:21:68:5e:51:6f:60:d8:ae:92: 9e:11:21:28:ee:62:0e:d6:37:18:f6:91:a2:0b:36: 93:74:3b:b1:25:6b:08:fa:e3:32:80:d0:da:9c:a6: 55:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:EA:04:72:C9:6C:61:EB:02:8E:0A:B6:19:90:B4:84:16:77:43:2D X509v3 Authority Key Identifier: keyid:46:17:27:2E:E8:75:B5:5C:D5:F2:A8:83:30:A9:5F:64:10:A3:EB:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/4617272EE875B55CD5F2A88330A95F6410A3EB1B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4617272EE875B55CD5F2A88330A95F6410A3EB1B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/3135372e31352e34342e302f32342d3234203d3e20313532333931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.44.0/24 Signature Algorithm: sha256WithRSAEncryption 24:0f:d3:ba:87:61:bb:c5:d3:a6:ca:f1:87:cf:22:78:c3:c0: 7e:12:76:e0:35:e1:38:af:33:1a:88:f9:82:57:86:8d:b6:be: 8b:f3:b4:b3:ae:5f:93:a2:9b:87:61:49:f1:34:2a:9a:1b:d8: 77:e4:be:a7:07:4b:fc:d5:55:76:d5:cc:e0:37:74:90:f3:b9: 28:45:cd:c4:1e:dc:94:20:26:5a:ec:25:f4:c9:4b:f4:9c:62: 6a:66:ba:7b:29:ad:6f:98:9e:28:e8:45:a9:f0:ef:b7:76:67: e4:91:d2:2f:ff:f2:ef:a0:e9:0a:54:e7:fd:a3:55:aa:a3:a2: 6c:9a:7d:ce:9d:f5:3e:2c:0f:10:6c:8f:02:e9:03:69:df:c2: 73:a1:8f:bd:09:65:1f:72:c1:ea:d7:7f:6a:ed:75:58:94:ee: 8a:de:e9:e5:16:5c:e9:62:81:11:57:c9:d3:4a:a3:0f:02:54: 95:19:fc:94:60:13:46:17:38:48:67:8e:be:29:12:64:3e:5e: 94:3c:a6:a2:24:04:22:53:e3:d1:a1:84:a6:ae:f1:a0:b0:4c: 1b:ed:c1:3a:97:7d:58:9c:2e:fb:04:55:f7:78:c0:6c:e0:60: c0:ee:48:b7:8c:13:03:6c:b0:c9:49:ef:03:79:93:01:93:1f: c8:a9:16:67 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcGhyQJ+4bNMtTkSaRLk0PA3JNH0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDYxNzI3MkVFODc1QjU1Q0Q1RjJBODgzMzBBOTVGNjQx MEEzRUIxQjAeFw0yNDEwMTAwNTIxNTdaFw0yNTEwMDkwNTI2NTdaMDMxMTAvBgNV BAMTKDlDRUEwNDcyQzk2QzYxRUIwMjhFMEFCNjE5OTBCNDg0MTY3NzQzMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD3SAj8sML4HJciHiqfQ0TRpx3V I9hofETr7d4a/ZZcVZA+te7sdUW4z8Nb1/e2l1ugSp53U5QSQeDNlt9E1yz3VKES ZhF9DrdddwdnyJD1MEBrpK3B4PG6rMVU9KWCC6DCrYBvD1ARn1mKKHJBsvyqHruZ RexU9uMJSazfB1O/xfEyahNkTfUpFeN71+Uxsp3h1pC5EPXbUkvyRwYGd+9U5A9+ /itLAzSUFaaR82B046i/P9ca5HDWpfxe0cxkNC1CqWrVR5sHV4rvqYRYxzzz6fl7 77baXyFoXlFvYNiukp4RISjuYg7WNxj2kaILNpN0O7Elawj64zKA0NqcplUpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUnOoEcslsYesCjgq2GZC0hBZ3Qy0wHwYDVR0j BBgwFoAURhcnLuh1tVzV8qiDMKlfZBCj6xswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZmRhZjA2YS1mNjI0LTQyY2YtYmIxOS1iNmJiZjkzMWFhYzgvMC80NjE3MjcyRUU4 NzVCNTVDRDVGMkE4ODMzMEE5NUY2NDEwQTNFQjFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDYxNzI3MkVFODc1QjU1Q0Q1RjJBODgzMzBBOTVGNjQxMEEz RUIxQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlmZGFmMDZhLWY2MjQtNDJjZi1i YjE5LWI2YmJmOTMxYWFjOC8wLzMxMzUzNzJlMzEzNTJlMzQzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMzMzkzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0PLDANBgkqhkiG 9w0BAQsFAAOCAQEAJA/Tuodhu8XTpsrxh88ieMPAfhJ24DXhOK8zGoj5gleGjba+ i/O0s65fk6Kbh2FJ8TQqmhvYd+S+pwdL/NVVdtXM4Dd0kPO5KEXNxB7clCAmWuwl 9MlL9Jxiama6eymtb5ieKOhFqfDvt3Zn5JHSL//y76DpClTn/aNVqqOibJp9zp31 PiwPEGyPAukDad/Cc6GPvQllH3LB6td/au11WJTuit7p5RZc6WKBEVfJ00qjDwJU lRn8lGATRhc4SGeOvikSZD5elDymoiQEIlPj0aGEpq7xoLBMG+3BOpd9WJwu+wRV 93jAbOBgwO5It4wTA2ywyUnvA3mTAZMfyKkWZw== -----END CERTIFICATE-----Generated at Wed Nov 20 18:59:26 2024 by rpki-client on console-ams.rpki-client.org