$ rpki-client -vvf repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/3135372e31352e3134342e302f32332d3233203d3e20313532333736.roa File: 3135372e31352e3134342e302f32332d3233203d3e20313532333736.roa (raw, json) Hash identifier: 9S6q95kBz8KxxuZWvK6LznBcEJuKElC302dEQsFgUPw= Subject key identifier: D9:B7:3E:E1:7D:59:F6:24:E6:B7:39:BD:63:F7:22:42:4F:23:84:D9 Certificate issuer: /CN=2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F Certificate serial: 2C7CD30F3C48B4096307EAB41659CA1AEDAE7418 Authority key identifier: 22:46:01:5F:FF:2F:C5:5F:EF:B9:C4:4A:8A:D4:16:B5:5F:A5:E7:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/3135372e31352e3134342e302f32332d3233203d3e20313532333736.roa Signing time: Mon 29 Apr 2024 05:00:41 +0000 ROA not before: Mon 29 Apr 2024 04:55:41 +0000 ROA not after: Mon 28 Apr 2025 05:00:41 +0000 asID: 152376 IP address blocks: 157.15.144.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.crl rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Jun 2024 17:39:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:7c:d3:0f:3c:48:b4:09:63:07:ea:b4:16:59:ca:1a:ed:ae:74:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F Validity Not Before: Apr 29 04:55:41 2024 GMT Not After : Apr 28 05:00:41 2025 GMT Subject: CN=D9B73EE17D59F624E6B739BD63F722424F2384D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a9:72:39:68:9a:2c:dc:8b:b0:76:9e:b9:03: 3b:d2:09:e8:aa:09:cc:63:19:80:0b:46:22:fa:0d: f1:24:19:41:76:d3:d4:d6:3b:70:04:1c:bf:ea:4d: 57:72:32:f5:04:2c:2c:c3:5b:d3:8b:a1:0e:39:f3: b7:f2:ae:b3:73:95:32:10:ab:f3:96:a3:9a:48:2f: c1:b5:40:03:1a:e8:00:af:39:6f:03:b9:83:ff:07: 5d:dd:62:05:75:1f:1b:b1:ca:6e:e4:f3:1e:57:2c: 91:7d:04:1e:13:61:12:9c:35:1c:95:07:a4:10:de: b4:34:93:6e:63:45:95:a2:5e:b9:45:ad:5b:d3:ca: 76:cb:73:a6:6b:ea:66:a2:a9:1c:87:9a:8e:10:3c: 04:1c:7f:de:eb:3a:71:24:f6:76:05:4c:6d:88:9d: a6:fe:62:7d:48:30:cd:47:50:a5:40:97:ab:be:6a: bf:fa:e0:a6:3c:7e:2d:7d:60:31:3a:b5:9f:37:d5: 44:bb:cd:da:6c:39:21:98:c0:84:5f:6f:f9:62:e1: 0e:6a:28:5c:ad:6e:7a:81:c2:90:2c:05:a5:b1:84: 18:08:fa:60:1e:8f:c1:f6:34:87:c6:ee:ca:59:2f: 77:ef:4e:ef:f1:ad:8f:86:e2:e2:d7:29:e4:8f:36: 5e:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:B7:3E:E1:7D:59:F6:24:E6:B7:39:BD:63:F7:22:42:4F:23:84:D9 X509v3 Authority Key Identifier: keyid:22:46:01:5F:FF:2F:C5:5F:EF:B9:C4:4A:8A:D4:16:B5:5F:A5:E7:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/3135372e31352e3134342e302f32332d3233203d3e20313532333736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.144.0/23 Signature Algorithm: sha256WithRSAEncryption 92:96:d7:46:de:b3:af:a1:3e:a9:4c:a2:dc:bb:43:5b:4a:9a: 0c:da:a6:92:f7:7e:b2:e4:17:6b:9f:f2:ee:c7:b5:e4:ab:58: 34:05:e4:d8:7d:06:35:22:c1:62:21:ae:9c:ec:1f:e4:b6:32: a2:a0:b3:0e:96:88:e3:5a:37:57:94:39:01:7c:b1:f0:b1:db: 5a:7a:16:ef:f6:8d:cd:ad:47:fe:07:25:ac:88:52:46:a2:dc: a5:27:4f:b7:c3:84:c3:ae:ea:76:ae:00:11:fd:75:49:82:2d: 77:56:45:95:fe:fb:a6:ff:98:76:fd:d5:2f:17:d1:0d:d0:2c: 14:7b:fe:54:4e:37:8d:6e:36:60:69:c2:32:48:da:2e:38:7a: 74:92:a9:ad:52:02:2e:04:01:b4:83:fb:4f:2a:30:48:78:d8: b4:bd:ef:97:22:ea:7b:93:f3:5f:47:fc:20:00:15:66:62:64: 64:26:96:fa:e9:e1:a9:f5:4c:0d:e5:04:c4:a6:9c:6c:cd:80: a5:25:10:c4:e8:60:72:dc:a1:68:1b:5d:25:7a:18:8c:d6:9e: 89:b3:4a:f2:a3:0c:fe:3c:ff:86:87:c7:88:5f:33:f3:e2:e7: 2d:c1:8b:2b:0c:7f:2a:8c:53:47:2b:74:38:2f:c3:b2:4a:95: 97:ab:16:03 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULHzTDzxItAljB+q0FlnKGu2udBgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI0NjAxNUZGRjJGQzU1RkVGQjlDNDRBOEFENDE2QjU1 RkE1RTczRjAeFw0yNDA0MjkwNDU1NDFaFw0yNTA0MjgwNTAwNDFaMDMxMTAvBgNV BAMTKEQ5QjczRUUxN0Q1OUY2MjRFNkI3MzlCRDYzRjcyMjQyNEYyMzg0RDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbqXI5aJos3Iuwdp65AzvSCeiq CcxjGYALRiL6DfEkGUF209TWO3AEHL/qTVdyMvUELCzDW9OLoQ4587fyrrNzlTIQ q/OWo5pIL8G1QAMa6ACvOW8DuYP/B13dYgV1Hxuxym7k8x5XLJF9BB4TYRKcNRyV B6QQ3rQ0k25jRZWiXrlFrVvTynbLc6Zr6maiqRyHmo4QPAQcf97rOnEk9nYFTG2I nab+Yn1IMM1HUKVAl6u+ar/64KY8fi19YDE6tZ831US7zdpsOSGYwIRfb/li4Q5q KFytbnqBwpAsBaWxhBgI+mAej8H2NIfG7spZL3fvTu/xrY+G4uLXKeSPNl5xAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU2bc+4X1Z9iTmtzm9Y/ciQk8jhNkwHwYDVR0j BBgwFoAUIkYBX/8vxV/vucRKitQWtV+l5z8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTZlY2NiNy1lOTE3LTQwZjUtYWNlZS0wM2Q2OGJlNWZkOTcvMC8yMjQ2MDE1RkZG MkZDNTVGRUZCOUM0NEE4QUQ0MTZCNTVGQTVFNzNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjI0NjAxNUZGRjJGQzU1RkVGQjlDNDRBOEFENDE2QjU1RkE1 RTczRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1NmVjY2I3LWU5MTctNDBmNS1h Y2VlLTAzZDY4YmU1ZmQ5Ny8wLzMxMzUzNzJlMzEzNTJlMzEzNDM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzMzNzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnQ+QMA0GCSqG SIb3DQEBCwUAA4IBAQCSltdG3rOvoT6pTKLcu0NbSpoM2qaS936y5Bdrn/Lux7Xk q1g0BeTYfQY1IsFiIa6c7B/ktjKioLMOlojjWjdXlDkBfLHwsdtaehbv9o3NrUf+ ByWsiFJGotylJ0+3w4TDrup2rgAR/XVJgi13VkWV/vum/5h2/dUvF9EN0CwUe/5U TjeNbjZgacIySNouOHp0kqmtUgIuBAG0g/tPKjBIeNi0ve+XIup7k/NfR/wgABVm YmRkJpb66eGp9UwN5QTEppxszYClJRDE6GBy3KFoG10lehiM1p6Js0ryowz+PP+G h8eIXzPz4uctwYsrDH8qjFNHK3Q4L8OySpWXqxYD -----END CERTIFICATE-----Generated at Tue Jun 25 06:03:07 2024 by rpki-client on console-fra.rpki-client.org