$ rpki-client -vvf repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/3135372e31352e3137342e302f32342d3234203d3e20313532333739.roa File: 3135372e31352e3137342e302f32342d3234203d3e20313532333739.roa (raw, json) Hash identifier: dIklSAhTd1QkYpzQrRNxPi4OuuOcSwctGkAy0Q3T1ls= Subject key identifier: 2F:D3:D6:A2:AF:14:5E:D4:3D:B6:80:AF:CE:65:F0:B7:7F:CD:93:94 Certificate issuer: /CN=952177DE616DE181FF461A8481C060AD744E2603 Certificate serial: 3EA685772908CEA817B94795B95D34E3955AD7A9 Authority key identifier: 95:21:77:DE:61:6D:E1:81:FF:46:1A:84:81:C0:60:AD:74:4E:26:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/952177DE616DE181FF461A8481C060AD744E2603.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/3135372e31352e3137342e302f32342d3234203d3e20313532333739.roa Signing time: Fri 12 Jul 2024 08:37:12 +0000 ROA not before: Fri 12 Jul 2024 08:32:12 +0000 ROA not after: Fri 11 Jul 2025 08:37:12 +0000 asID: 152379 IP address blocks: 157.15.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/952177DE616DE181FF461A8481C060AD744E2603.crl rsync://repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/952177DE616DE181FF461A8481C060AD744E2603.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/952177DE616DE181FF461A8481C060AD744E2603.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:a6:85:77:29:08:ce:a8:17:b9:47:95:b9:5d:34:e3:95:5a:d7:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=952177DE616DE181FF461A8481C060AD744E2603 Validity Not Before: Jul 12 08:32:12 2024 GMT Not After : Jul 11 08:37:12 2025 GMT Subject: CN=2FD3D6A2AF145ED43DB680AFCE65F0B77FCD9394 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:4a:ee:c4:fe:49:8f:91:70:af:73:03:87:89: 91:27:3a:b2:ce:8c:19:94:42:0f:8b:23:e0:b9:b0: da:c7:01:b1:3a:8f:98:3f:4b:c6:e3:5f:9b:2b:e7: cb:09:fd:2d:88:7b:dd:15:23:8c:2c:28:79:ca:b2: c1:27:db:6b:33:e8:3c:c3:7c:64:b3:c8:26:13:63: 0f:ff:66:2a:46:42:3e:0c:10:7c:77:20:a7:6e:aa: 4a:93:1d:f7:f0:46:a2:15:ce:91:3b:ab:90:4a:c3: 00:5c:1f:06:a7:80:42:49:e2:56:fb:1a:3c:22:81: f7:b1:09:b3:cf:9f:4f:44:57:f8:c0:80:b2:64:f9: 0a:d9:9c:af:77:33:69:71:be:91:35:8e:a8:57:a2: 74:73:90:5e:58:ff:7b:1d:07:1d:b2:27:85:61:7d: 81:f3:81:59:05:01:a8:b2:c8:d7:39:14:3f:ae:c6: 69:b0:1d:f2:9b:40:49:a2:3c:7c:69:00:14:1e:79: b5:95:55:97:ac:d9:d8:63:e0:17:41:15:46:f8:38: 4c:90:ff:a1:a4:cd:c9:4a:e1:27:2d:2b:d6:b5:1c: a1:6a:b6:66:b3:8c:a1:7a:28:2e:81:0b:06:7c:ce: e7:55:34:de:47:0e:6f:bb:04:20:35:de:31:1a:47: aa:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:D3:D6:A2:AF:14:5E:D4:3D:B6:80:AF:CE:65:F0:B7:7F:CD:93:94 X509v3 Authority Key Identifier: keyid:95:21:77:DE:61:6D:E1:81:FF:46:1A:84:81:C0:60:AD:74:4E:26:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/952177DE616DE181FF461A8481C060AD744E2603.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/952177DE616DE181FF461A8481C060AD744E2603.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/3135372e31352e3137342e302f32342d3234203d3e20313532333739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.174.0/24 Signature Algorithm: sha256WithRSAEncryption 34:52:64:36:22:8d:79:6a:ce:8a:94:99:d5:bb:ad:ae:5e:78: 86:40:67:4a:f4:76:bc:3c:57:bb:7a:63:3c:cc:44:34:41:cc: bd:57:be:dd:fc:79:35:37:d4:2c:81:37:d9:c2:4a:5a:c5:49: 75:52:bf:47:32:a7:1b:93:bc:23:7f:e2:50:cb:be:7e:56:83: 42:24:78:87:81:e5:45:5c:b2:1f:b4:9f:a0:99:39:2d:35:29: 5d:cd:0d:63:bb:90:84:b2:07:d8:e7:72:a5:00:b3:ff:59:a0: 68:9b:43:77:68:f4:8d:b0:88:90:a0:fd:17:8b:3e:35:7b:67: f5:8e:07:73:fc:ee:77:a4:17:35:d7:79:e8:b7:43:ff:36:97: 4b:3f:c8:71:08:1b:bd:b3:3c:28:9e:c5:20:a3:d2:ff:c3:97: 8a:15:aa:dc:30:e9:6c:79:f7:52:78:21:cc:6e:7c:be:33:f8: 97:e2:4d:f2:10:ee:c4:30:bc:33:6b:b9:ff:96:ac:53:76:f4: 7e:e6:1e:12:92:e8:1a:1a:6f:34:8b:e4:2b:92:f1:27:ed:33: 74:6d:0a:fd:b4:fe:83:0a:09:66:0b:01:27:ba:26:20:54:a4: ea:78:e0:1d:35:bd:f9:f8:28:a5:69:a3:2e:37:e3:4c:04:b6: e4:c3:8d:29 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPqaFdykIzqgXuUeVuV0045Va16kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTUyMTc3REU2MTZERTE4MUZGNDYxQTg0ODFDMDYwQUQ3 NDRFMjYwMzAeFw0yNDA3MTIwODMyMTJaFw0yNTA3MTEwODM3MTJaMDMxMTAvBgNV BAMTKDJGRDNENkEyQUYxNDVFRDQzREI2ODBBRkNFNjVGMEI3N0ZDRDkzOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcSu7E/kmPkXCvcwOHiZEnOrLO jBmUQg+LI+C5sNrHAbE6j5g/S8bjX5sr58sJ/S2Ie90VI4wsKHnKssEn22sz6DzD fGSzyCYTYw//ZipGQj4MEHx3IKduqkqTHffwRqIVzpE7q5BKwwBcHwangEJJ4lb7 GjwigfexCbPPn09EV/jAgLJk+QrZnK93M2lxvpE1jqhXonRzkF5Y/3sdBx2yJ4Vh fYHzgVkFAaiyyNc5FD+uxmmwHfKbQEmiPHxpABQeebWVVZes2dhj4BdBFUb4OEyQ /6GkzclK4SctK9a1HKFqtmazjKF6KC6BCwZ8zudVNN5HDm+7BCA13jEaR6oLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUL9PWoq8UXtQ9toCvzmXwt3/Nk5QwHwYDVR0j BBgwFoAUlSF33mFt4YH/RhqEgcBgrXROJgMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YjAwMjk5Mi1hY2IyLTRmNzctOTk3ZC0zMjE3ZWFkOTliYjUvMC85NTIxNzdERTYx NkRFMTgxRkY0NjFBODQ4MUMwNjBBRDc0NEUyNjAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTUyMTc3REU2MTZERTE4MUZGNDYxQTg0ODFDMDYwQUQ3NDRF MjYwMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FiMDAyOTkyLWFjYjItNGY3Ny05 OTdkLTMyMTdlYWQ5OWJiNS8wLzMxMzUzNzJlMzEzNTJlMzEzNzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQ+uMA0GCSqG SIb3DQEBCwUAA4IBAQA0UmQ2Io15as6KlJnVu62uXniGQGdK9Ha8PFe7emM8zEQ0 Qcy9V77d/Hk1N9QsgTfZwkpaxUl1Ur9HMqcbk7wjf+JQy75+VoNCJHiHgeVFXLIf tJ+gmTktNSldzQ1ju5CEsgfY53KlALP/WaBom0N3aPSNsIiQoP0Xiz41e2f1jgdz /O53pBc113not0P/NpdLP8hxCBu9szwonsUgo9L/w5eKFarcMOlsefdSeCHMbny+ M/iX4k3yEO7EMLwza7n/lqxTdvR+5h4SkugaGm80i+QrkvEn7TN0bQr9tP6DCglm CwEnuiYgVKTqeOAdNb35+CilaaMuN+NMBLbkw40p -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:21 2024 by rpki-client on console-fra.rpki-client.org