$ rpki-client -vvf repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3135372e31352e34362e302f32332d3234203d3e20313532333936.roa File: 3135372e31352e34362e302f32332d3234203d3e20313532333936.roa (raw, json) Hash identifier: jvqEiRAhSBLWr+kk8qIzjzYMuPw1+LDQ4+yF8eDI1BE= Subject key identifier: 20:DD:7E:84:51:B0:04:17:79:D6:6F:4B:C3:33:3C:06:04:29:A1:A2 Certificate issuer: /CN=3008AF948C4742A525201F3FDA7EFB1800D52D64 Certificate serial: 355D9E37E4000A302B7A7F6140D5A919D8736987 Authority key identifier: 30:08:AF:94:8C:47:42:A5:25:20:1F:3F:DA:7E:FB:18:00:D5:2D:64 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3008AF948C4742A525201F3FDA7EFB1800D52D64.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3135372e31352e34362e302f32332d3234203d3e20313532333936.roa Signing time: Wed 21 Feb 2024 03:10:40 +0000 ROA not before: Wed 21 Feb 2024 03:05:40 +0000 ROA not after: Wed 19 Feb 2025 03:10:40 +0000 asID: 152396 IP address blocks: 157.15.46.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3008AF948C4742A525201F3FDA7EFB1800D52D64.crl rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3008AF948C4742A525201F3FDA7EFB1800D52D64.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3008AF948C4742A525201F3FDA7EFB1800D52D64.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:5d:9e:37:e4:00:0a:30:2b:7a:7f:61:40:d5:a9:19:d8:73:69:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3008AF948C4742A525201F3FDA7EFB1800D52D64 Validity Not Before: Feb 21 03:05:40 2024 GMT Not After : Feb 19 03:10:40 2025 GMT Subject: CN=20DD7E8451B0041779D66F4BC3333C060429A1A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:5f:7b:fe:3c:f2:7d:6e:f1:3e:c4:64:ab:51: 77:24:04:29:7c:7e:61:ef:38:bb:ea:19:d2:e0:27: 0d:95:88:f8:14:c6:a9:bc:6c:62:96:80:2b:da:e8: 5b:c8:4f:d9:4f:df:39:7a:ca:e4:8f:75:4f:ae:4e: 42:ce:6a:c5:ee:c4:dc:54:bd:91:c5:be:1e:8f:5b: c3:58:e0:83:3c:11:97:da:54:b3:d3:9f:dd:59:a9: ab:69:47:cd:24:00:ba:b8:e7:fe:5d:8d:ff:1c:13: 19:6d:5f:46:ad:25:5d:65:f3:d9:46:17:fb:e1:c4: b5:ad:b8:32:9a:1b:49:ef:44:cb:2b:0c:a5:ce:7d: d2:51:fe:e5:cd:63:bf:03:7f:79:58:fc:b8:dd:75: 9d:0e:e5:bc:99:6f:b6:dd:1f:34:e2:a2:ae:d3:cb: c3:0c:c2:8a:d4:f3:8d:d2:30:2d:ae:57:2a:f2:0d: b9:a1:9e:08:7a:e9:9a:11:67:9f:05:4a:7d:6e:ad: 5d:05:13:22:ac:ec:c3:2d:8f:f4:b3:27:0b:f9:ed: a7:98:ea:4c:05:bc:64:a2:47:03:10:b1:39:23:9e: bc:8d:63:9b:a7:69:4d:a6:82:94:53:25:6e:19:af: 03:77:09:26:cc:a7:ae:ff:a1:0b:95:d9:c9:5d:62: c0:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:DD:7E:84:51:B0:04:17:79:D6:6F:4B:C3:33:3C:06:04:29:A1:A2 X509v3 Authority Key Identifier: keyid:30:08:AF:94:8C:47:42:A5:25:20:1F:3F:DA:7E:FB:18:00:D5:2D:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3008AF948C4742A525201F3FDA7EFB1800D52D64.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3008AF948C4742A525201F3FDA7EFB1800D52D64.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3135372e31352e34362e302f32332d3234203d3e20313532333936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.46.0/23 Signature Algorithm: sha256WithRSAEncryption 8a:51:a2:ba:ee:65:2b:26:eb:2c:fe:84:cb:5c:11:c8:5d:f1: df:92:e7:87:f4:92:37:04:83:f7:53:91:2d:cc:0d:5f:37:31: 42:7f:e6:6e:1c:4d:84:12:dd:fd:8a:00:5e:19:3e:4f:82:59: d4:86:70:07:be:81:3e:70:4d:4d:04:85:a0:72:9a:7f:0e:ed: 86:ab:87:96:d0:af:92:c5:24:bb:ee:9d:24:6e:89:22:f1:78: cd:2a:86:f2:aa:76:75:50:ee:62:8c:34:f3:9d:00:fe:b7:d4: ed:91:7a:27:b8:3c:23:c6:15:81:6f:28:a5:78:2e:18:59:77: 2b:62:fa:7b:ca:ed:b7:0e:c7:0f:39:71:72:6a:2d:67:b1:b2: eb:95:cf:ba:ab:80:06:9f:e9:3f:60:91:a8:6a:6f:0e:63:1c: ec:93:4e:f2:ec:46:55:d5:02:0b:d9:a1:2f:5a:31:5e:f8:61: 5a:96:61:94:93:da:b0:76:18:c3:cd:06:08:da:60:18:fa:a0: df:68:12:7c:13:ca:83:97:71:e7:5c:07:56:ba:b0:c8:45:1b: 96:3b:e1:9b:b7:91:c5:70:d8:97:72:01:07:8d:5b:22:a6:15: 78:0e:0a:be:fd:ad:94:72:fe:89:82:ec:e0:9c:42:27:70:d0: 5b:68:61:05 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNV2eN+QACjAren9hQNWpGdhzaYcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzAwOEFGOTQ4QzQ3NDJBNTI1MjAxRjNGREE3RUZCMTgw MEQ1MkQ2NDAeFw0yNDAyMjEwMzA1NDBaFw0yNTAyMTkwMzEwNDBaMDMxMTAvBgNV BAMTKDIwREQ3RTg0NTFCMDA0MTc3OUQ2NkY0QkMzMzMzQzA2MDQyOUExQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTX3v+PPJ9bvE+xGSrUXckBCl8 fmHvOLvqGdLgJw2ViPgUxqm8bGKWgCva6FvIT9lP3zl6yuSPdU+uTkLOasXuxNxU vZHFvh6PW8NY4IM8EZfaVLPTn91ZqatpR80kALq45/5djf8cExltX0atJV1l89lG F/vhxLWtuDKaG0nvRMsrDKXOfdJR/uXNY78Df3lY/LjddZ0O5byZb7bdHzTioq7T y8MMworU843SMC2uVyryDbmhngh66ZoRZ58FSn1urV0FEyKs7MMtj/SzJwv57aeY 6kwFvGSiRwMQsTkjnryNY5unaU2mgpRTJW4ZrwN3CSbMp67/oQuV2cldYsAfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUIN1+hFGwBBd51m9LwzM8BgQpoaIwHwYDVR0j BBgwFoAUMAivlIxHQqUlIB8/2n77GADVLWQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YzM0ZWVkOS0xODdlLTRmNDYtYTViYi0wZWE4ZjY2OWFlOTAvMC8zMDA4QUY5NDhD NDc0MkE1MjUyMDFGM0ZEQTdFRkIxODAwRDUyRDY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMzAwOEFGOTQ4QzQ3NDJBNTI1MjAxRjNGREE3RUZCMTgwMEQ1 MkQ2NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RjMzRlZWQ5LTE4N2UtNGY0Ni1h NWJiLTBlYThmNjY5YWU5MC8wLzMxMzUzNzJlMzEzNTJlMzQzNjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjMzMzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0PLjANBgkqhkiG 9w0BAQsFAAOCAQEAilGiuu5lKybrLP6Ey1wRyF3x35Lnh/SSNwSD91ORLcwNXzcx Qn/mbhxNhBLd/YoAXhk+T4JZ1IZwB76BPnBNTQSFoHKafw7thquHltCvksUku+6d JG6JIvF4zSqG8qp2dVDuYow0850A/rfU7ZF6J7g8I8YVgW8opXguGFl3K2L6e8rt tw7HDzlxcmotZ7Gy65XPuquABp/pP2CRqGpvDmMc7JNO8uxGVdUCC9mhL1oxXvhh WpZhlJPasHYYw80GCNpgGPqg32gSfBPKg5dx51wHVrqwyEUbljvhm7eRxXDYl3IB B41bIqYVeA4Kvv2tlHL+iYLs4JxCJ3DQW2hhBQ== -----END CERTIFICATE-----Generated at Fri Nov 22 03:51:02 2024 by rpki-client on console-fra.rpki-client.org