$ rpki-client -vvf repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/3135372e31352e3134352e302f32342d3234203d3e20313532333736.roa File: 3135372e31352e3134352e302f32342d3234203d3e20313532333736.roa (raw, json) Hash identifier: 7p4ivskNPd7Z5zl103RAT72tuhZ6CuqDg4tGyIhI7SI= Subject key identifier: 1A:5B:73:1B:44:D2:47:FB:66:BB:A1:6E:B0:89:F1:5D:24:7B:7D:EB Certificate issuer: /CN=2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F Certificate serial: 610CED55DC5A05FD639E64FA894E1D2A66EE2D48 Authority key identifier: 22:46:01:5F:FF:2F:C5:5F:EF:B9:C4:4A:8A:D4:16:B5:5F:A5:E7:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/3135372e31352e3134352e302f32342d3234203d3e20313532333736.roa Signing time: Mon 29 Apr 2024 05:25:36 +0000 ROA not before: Mon 29 Apr 2024 05:20:36 +0000 ROA not after: Mon 28 Apr 2025 05:25:36 +0000 asID: 152376 IP address blocks: 157.15.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.crl rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Jun 2024 17:39:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:0c:ed:55:dc:5a:05:fd:63:9e:64:fa:89:4e:1d:2a:66:ee:2d:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F Validity Not Before: Apr 29 05:20:36 2024 GMT Not After : Apr 28 05:25:36 2025 GMT Subject: CN=1A5B731B44D247FB66BBA16EB089F15D247B7DEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e8:05:79:d9:6b:d2:8d:d9:69:00:c6:5d:c1: 2b:ab:a5:74:6b:de:ad:42:83:85:cc:1b:50:66:19: 5f:05:f6:21:4e:eb:89:c8:86:af:1f:f5:c6:20:94: d0:c9:c7:cd:3d:4d:b0:1c:31:92:c9:46:52:0a:4d: 1f:46:5c:2c:9d:fd:59:4d:d4:4b:50:6d:0c:a9:71: ed:e9:69:04:84:83:a1:25:63:3a:d5:86:b9:e4:37: 83:bc:9b:bd:d8:00:66:17:2a:f4:a4:bc:66:80:73: 9e:94:a0:40:af:ca:7d:37:d7:76:96:2f:b9:b3:0c: 2e:97:c6:92:86:6a:c0:ef:15:1a:c8:5a:36:00:9a: 5d:b4:76:4a:03:0a:eb:b3:53:f4:fe:c4:32:3c:d4: d7:dc:f7:a8:74:d3:52:74:3f:f6:81:28:66:fa:4b: 49:dc:aa:27:5d:ce:6e:ce:fa:43:cd:ab:f1:a6:f4: 2d:af:a8:da:6b:6a:43:f3:69:57:e1:6e:b6:5f:11: 73:4c:34:0d:1c:fc:ad:c2:c2:cb:ee:3e:38:11:9f: dc:de:36:09:52:ce:ac:36:09:7e:98:a4:80:68:92: 42:6c:33:21:2b:3a:b3:e8:c4:ea:94:ad:87:35:97: 4c:80:53:a8:20:6a:b8:5a:ad:9b:53:8b:3a:43:65: aa:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:5B:73:1B:44:D2:47:FB:66:BB:A1:6E:B0:89:F1:5D:24:7B:7D:EB X509v3 Authority Key Identifier: keyid:22:46:01:5F:FF:2F:C5:5F:EF:B9:C4:4A:8A:D4:16:B5:5F:A5:E7:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/3135372e31352e3134352e302f32342d3234203d3e20313532333736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.145.0/24 Signature Algorithm: sha256WithRSAEncryption 30:49:b9:50:0b:03:19:b2:77:29:e1:2b:3d:2e:6b:4c:f9:b5: 69:4e:b6:4b:ec:63:3a:8c:2b:09:77:32:8b:ba:7e:d1:b8:4a: 91:ee:8c:27:f4:d9:9f:79:e6:57:42:c1:d5:51:d6:7a:9b:06: 29:00:a9:3a:4c:54:cd:85:85:2c:9d:3b:2c:34:79:f9:51:f2: bc:0a:fe:49:33:3b:0f:bc:81:ee:99:ad:44:f7:d2:a7:81:54: 52:9b:8e:7c:0f:23:4a:53:13:04:9b:ae:41:1e:b8:25:9e:10: cd:dc:54:db:45:05:88:88:1a:44:a1:c6:90:27:8d:ba:1e:77: 64:93:8b:ea:b6:e5:b0:f2:d1:cb:f2:f9:18:d1:54:aa:a6:f7: 53:db:75:bc:a6:79:80:3e:93:98:38:81:f1:c0:2e:69:e4:a9: 77:3d:7c:5d:91:46:5d:8f:9d:df:f6:33:1a:44:36:78:a1:1b: ce:f2:ad:33:09:1f:eb:82:e5:ac:5d:72:25:2b:d5:38:02:2a: 0d:94:f8:94:20:26:b4:9e:dd:b2:a3:bc:3d:ff:1c:ee:f0:1a: 97:f0:0b:42:d4:b5:28:ce:0c:54:56:67:a6:1a:ea:8a:87:16: 7b:e6:5d:e8:3c:a5:a1:d3:26:f8:a4:bf:e7:67:b0:fe:75:13: d1:e9:f0:6c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYQztVdxaBf1jnmT6iU4dKmbuLUgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI0NjAxNUZGRjJGQzU1RkVGQjlDNDRBOEFENDE2QjU1 RkE1RTczRjAeFw0yNDA0MjkwNTIwMzZaFw0yNTA0MjgwNTI1MzZaMDMxMTAvBgNV BAMTKDFBNUI3MzFCNDREMjQ3RkI2NkJCQTE2RUIwODlGMTVEMjQ3QjdERUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa6AV52WvSjdlpAMZdwSurpXRr 3q1Cg4XMG1BmGV8F9iFO64nIhq8f9cYglNDJx809TbAcMZLJRlIKTR9GXCyd/VlN 1EtQbQypce3paQSEg6ElYzrVhrnkN4O8m73YAGYXKvSkvGaAc56UoECvyn0313aW L7mzDC6XxpKGasDvFRrIWjYAml20dkoDCuuzU/T+xDI81Nfc96h001J0P/aBKGb6 S0ncqiddzm7O+kPNq/Gm9C2vqNprakPzaVfhbrZfEXNMNA0c/K3CwsvuPjgRn9ze NglSzqw2CX6YpIBokkJsMyErOrPoxOqUrYc1l0yAU6ggarharZtTizpDZaqZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGltzG0TSR/tmu6FusInxXSR7feswHwYDVR0j BBgwFoAUIkYBX/8vxV/vucRKitQWtV+l5z8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTZlY2NiNy1lOTE3LTQwZjUtYWNlZS0wM2Q2OGJlNWZkOTcvMC8yMjQ2MDE1RkZG MkZDNTVGRUZCOUM0NEE4QUQ0MTZCNTVGQTVFNzNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjI0NjAxNUZGRjJGQzU1RkVGQjlDNDRBOEFENDE2QjU1RkE1 RTczRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1NmVjY2I3LWU5MTctNDBmNS1h Y2VlLTAzZDY4YmU1ZmQ5Ny8wLzMxMzUzNzJlMzEzNTJlMzEzNDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQ+RMA0GCSqG SIb3DQEBCwUAA4IBAQAwSblQCwMZsncp4Ss9LmtM+bVpTrZL7GM6jCsJdzKLun7R uEqR7own9NmfeeZXQsHVUdZ6mwYpAKk6TFTNhYUsnTssNHn5UfK8Cv5JMzsPvIHu ma1E99KngVRSm458DyNKUxMEm65BHrglnhDN3FTbRQWIiBpEocaQJ426Hndkk4vq tuWw8tHL8vkY0VSqpvdT23W8pnmAPpOYOIHxwC5p5Kl3PXxdkUZdj53f9jMaRDZ4 oRvO8q0zCR/rguWsXXIlK9U4AioNlPiUICa0nt2yo7w9/xzu8BqX8AtC1LUozgxU VmemGuqKhxZ75l3oPKWh0yb4pL/nZ7D+dRPR6fBs -----END CERTIFICATE-----Generated at Tue Jun 25 07:39:53 2024 by rpki-client on console-ams.rpki-client.org