$ rpki-client -vvf repo-rpki.idnic.net/repo/c47f6cf6-dd2b-4823-b264-e2bf4f30abfe/0/3135372e31352e3131362e302f32332d3234203d3e20313532333732.roa File: 3135372e31352e3131362e302f32332d3234203d3e20313532333732.roa (raw, json) Hash identifier: Mh2qAtV9OXmT8dkxySa/tVQuTPHOj1MMmtUTif0IndI= Subject key identifier: EB:AC:85:C3:27:92:4B:D8:53:B5:39:22:B6:17:F1:C9:5C:B3:6F:DC Certificate issuer: /CN=72D8DAFD481B3F8FAC2B2599C9E3ECEDFA3F4E16 Certificate serial: 24B5BA39B8689E1FA7840FD159F35F20915C9198 Authority key identifier: 72:D8:DA:FD:48:1B:3F:8F:AC:2B:25:99:C9:E3:EC:ED:FA:3F:4E:16 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/72D8DAFD481B3F8FAC2B2599C9E3ECEDFA3F4E16.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c47f6cf6-dd2b-4823-b264-e2bf4f30abfe/0/3135372e31352e3131362e302f32332d3234203d3e20313532333732.roa Signing time: Mon 28 Oct 2024 05:48:28 +0000 ROA not before: Mon 28 Oct 2024 05:43:28 +0000 ROA not after: Mon 27 Oct 2025 05:48:28 +0000 asID: 152372 IP address blocks: 157.15.116.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c47f6cf6-dd2b-4823-b264-e2bf4f30abfe/0/72D8DAFD481B3F8FAC2B2599C9E3ECEDFA3F4E16.crl rsync://repo-rpki.idnic.net/repo/c47f6cf6-dd2b-4823-b264-e2bf4f30abfe/0/72D8DAFD481B3F8FAC2B2599C9E3ECEDFA3F4E16.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/72D8DAFD481B3F8FAC2B2599C9E3ECEDFA3F4E16.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 19:02:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:b5:ba:39:b8:68:9e:1f:a7:84:0f:d1:59:f3:5f:20:91:5c:91:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72D8DAFD481B3F8FAC2B2599C9E3ECEDFA3F4E16 Validity Not Before: Oct 28 05:43:28 2024 GMT Not After : Oct 27 05:48:28 2025 GMT Subject: CN=EBAC85C327924BD853B53922B617F1C95CB36FDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:92:99:01:02:21:10:c8:af:52:65:f3:c3:ba: 2b:4e:47:2a:af:c7:8c:20:26:5e:8c:1f:e6:76:33: d9:a4:94:24:82:6d:f5:d5:da:ef:72:8b:db:00:56: f4:61:fd:99:4d:0b:df:02:e6:30:5c:06:99:96:ae: fa:16:7b:2e:61:bd:98:e6:8a:75:3d:a6:b1:ed:95: 82:57:9f:c4:30:fd:0a:f1:02:dd:74:29:14:70:c6: d8:6f:8b:04:13:02:44:3c:52:a4:3b:2d:fa:eb:39: 40:93:e4:ad:c2:4a:d9:e8:96:28:cd:7c:80:77:3b: f1:ac:0c:29:3f:70:7a:06:dd:37:df:a2:8a:d4:c2: 94:bb:4c:73:e8:32:cc:4e:3b:b1:6a:72:5b:08:66: 23:5a:63:74:f2:f6:d3:70:c9:42:f7:ec:57:1e:8b: eb:e8:92:f4:7f:8f:c8:b7:03:32:69:c8:7c:2d:2c: ba:b4:93:cd:9a:a0:7a:0c:de:87:2f:ee:d4:cc:98: 8a:a2:a6:3d:05:c0:6c:64:d1:06:3f:44:22:6a:6e: b4:07:b5:3f:82:56:56:dd:ca:d9:c1:ff:ea:f8:02: b8:8d:08:4e:25:a4:a2:e0:11:fb:0e:31:b4:cb:34: 06:7a:a7:26:e7:de:3c:77:92:82:82:6d:0b:d9:b2: de:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:AC:85:C3:27:92:4B:D8:53:B5:39:22:B6:17:F1:C9:5C:B3:6F:DC X509v3 Authority Key Identifier: keyid:72:D8:DA:FD:48:1B:3F:8F:AC:2B:25:99:C9:E3:EC:ED:FA:3F:4E:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c47f6cf6-dd2b-4823-b264-e2bf4f30abfe/0/72D8DAFD481B3F8FAC2B2599C9E3ECEDFA3F4E16.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/72D8DAFD481B3F8FAC2B2599C9E3ECEDFA3F4E16.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c47f6cf6-dd2b-4823-b264-e2bf4f30abfe/0/3135372e31352e3131362e302f32332d3234203d3e20313532333732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.116.0/23 Signature Algorithm: sha256WithRSAEncryption 07:b7:8e:25:d7:c9:a5:3c:96:da:3f:e0:c4:e6:f2:f3:03:b1: eb:54:92:6f:de:13:63:1c:09:4d:55:d4:ab:9e:e6:fa:be:43: e1:df:b5:70:fe:4f:16:67:cd:80:f8:ac:54:de:83:4f:1a:2b: 75:7c:d5:d1:65:5b:24:67:ed:c6:8c:98:58:15:ec:0e:35:3e: cc:c2:3d:a1:91:0a:15:e0:c4:18:dc:5a:1f:cc:ed:a9:6a:9b: 2e:e0:1c:cf:fa:3b:ab:ca:a7:a9:8e:3c:11:07:f7:74:c9:54: 53:61:8c:c5:57:7c:71:e3:98:d7:40:b4:64:c9:0f:e3:32:9a: 31:d5:b5:9d:93:cc:a6:7a:24:f0:56:b0:cb:81:7c:8e:3e:0a: 2b:29:d6:9f:2c:37:24:1e:6d:f2:d2:0f:93:36:48:8c:f3:e0: 49:b1:ff:3c:8d:69:42:c4:8f:75:a4:44:ac:cc:8f:3f:2a:9e: 9f:aa:b7:53:86:17:48:e7:6e:e6:52:1e:b2:97:ed:1a:32:d7: 16:8d:97:c7:55:6d:39:71:b2:d7:8b:f2:66:b0:0e:f2:7c:8e: 8b:1f:5d:25:26:be:46:b9:c9:b7:dd:bd:aa:1a:48:54:df:89: 03:2e:7e:c9:3c:d7:72:ea:f3:9f:1b:ed:92:ec:18:9d:33:5c: 04:f6:85:72 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJLW6Obhonh+nhA/RWfNfIJFckZgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzJEOERBRkQ0ODFCM0Y4RkFDMkIyNTk5QzlFM0VDRURG QTNGNEUxNjAeFw0yNDEwMjgwNTQzMjhaFw0yNTEwMjcwNTQ4MjhaMDMxMTAvBgNV BAMTKEVCQUM4NUMzMjc5MjRCRDg1M0I1MzkyMkI2MTdGMUM5NUNCMzZGREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCikpkBAiEQyK9SZfPDuitORyqv x4wgJl6MH+Z2M9mklCSCbfXV2u9yi9sAVvRh/ZlNC98C5jBcBpmWrvoWey5hvZjm inU9prHtlYJXn8Qw/QrxAt10KRRwxthviwQTAkQ8UqQ7LfrrOUCT5K3CStnolijN fIB3O/GsDCk/cHoG3TffoorUwpS7THPoMsxOO7FqclsIZiNaY3Ty9tNwyUL37Fce i+vokvR/j8i3AzJpyHwtLLq0k82aoHoM3ocv7tTMmIqipj0FwGxk0QY/RCJqbrQH tT+CVlbdytnB/+r4AriNCE4lpKLgEfsOMbTLNAZ6pybn3jx3koKCbQvZst7lAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU66yFwyeSS9hTtTkithfxyVyzb9wwHwYDVR0j BBgwFoAUctja/UgbP4+sKyWZyePs7fo/ThYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NDdmNmNmNi1kZDJiLTQ4MjMtYjI2NC1lMmJmNGYzMGFiZmUvMC83MkQ4REFGRDQ4 MUIzRjhGQUMyQjI1OTlDOUUzRUNFREZBM0Y0RTE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNzJEOERBRkQ0ODFCM0Y4RkFDMkIyNTk5QzlFM0VDRURGQTNG NEUxNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M0N2Y2Y2Y2LWRkMmItNDgyMy1i MjY0LWUyYmY0ZjMwYWJmZS8wLzMxMzUzNzJlMzEzNTJlMzEzMTM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnQ90MA0GCSqG SIb3DQEBCwUAA4IBAQAHt44l18mlPJbaP+DE5vLzA7HrVJJv3hNjHAlNVdSrnub6 vkPh37Vw/k8WZ82A+KxU3oNPGit1fNXRZVskZ+3GjJhYFewONT7Mwj2hkQoV4MQY 3FofzO2papsu4BzP+juryqepjjwRB/d0yVRTYYzFV3xx45jXQLRkyQ/jMpox1bWd k8ymeiTwVrDLgXyOPgorKdafLDckHm3y0g+TNkiM8+BJsf88jWlCxI91pESszI8/ Kp6fqrdThhdI527mUh6yl+0aMtcWjZfHVW05cbLXi/JmsA7yfI6LH10lJr5Gucm3 3b2qGkhU34kDLn7JPNdy6vOfG+2S7BidM1wE9oVy -----END CERTIFICATE-----Generated at Tue Nov 26 02:15:30 2024 by rpki-client on console-fra.rpki-client.org