$ rpki-client -vvf repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3135372e31352e34362e302f32342d3234203d3e20313532333936.roa File: 3135372e31352e34362e302f32342d3234203d3e20313532333936.roa (raw, json) Hash identifier: fyhYqE/uIKwXTb0Eshy8RqzwGgWI03pciEXfnnS+viM= Subject key identifier: D7:CB:E6:74:38:57:28:B9:7E:29:8F:1D:02:3F:1C:73:E3:30:ED:90 Certificate issuer: /CN=3008AF948C4742A525201F3FDA7EFB1800D52D64 Certificate serial: 2F72019CD51B25A8F052078A41E8AEEC9AA2BD1D Authority key identifier: 30:08:AF:94:8C:47:42:A5:25:20:1F:3F:DA:7E:FB:18:00:D5:2D:64 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3008AF948C4742A525201F3FDA7EFB1800D52D64.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3135372e31352e34362e302f32342d3234203d3e20313532333936.roa Signing time: Wed 21 Feb 2024 03:11:46 +0000 ROA not before: Wed 21 Feb 2024 03:06:46 +0000 ROA not after: Wed 19 Feb 2025 03:11:46 +0000 asID: 152396 IP address blocks: 157.15.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3008AF948C4742A525201F3FDA7EFB1800D52D64.crl rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3008AF948C4742A525201F3FDA7EFB1800D52D64.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3008AF948C4742A525201F3FDA7EFB1800D52D64.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:72:01:9c:d5:1b:25:a8:f0:52:07:8a:41:e8:ae:ec:9a:a2:bd:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3008AF948C4742A525201F3FDA7EFB1800D52D64 Validity Not Before: Feb 21 03:06:46 2024 GMT Not After : Feb 19 03:11:46 2025 GMT Subject: CN=D7CBE674385728B97E298F1D023F1C73E330ED90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:61:89:10:39:98:3b:8d:da:c1:ad:d3:3e:63: 7a:43:9f:54:9a:ef:dd:7b:96:27:34:32:28:b3:37: bd:35:85:ef:2d:da:14:a2:06:70:08:ef:9c:4d:ed: 74:87:65:ac:a7:22:14:89:f2:02:9f:d1:21:49:52: 74:0a:03:15:d4:77:25:d2:02:ed:ea:75:64:91:01: 6c:1c:52:85:b1:cb:48:9f:c6:09:cf:70:f8:2a:fe: 22:e2:42:61:1a:76:d0:b7:b3:cc:87:1c:a5:0d:32: 40:ff:f0:04:ae:8b:eb:66:c3:dc:c6:7b:8a:69:fc: d2:14:47:6c:39:b7:f7:72:5d:0b:8f:e8:cb:0d:29: 1d:aa:1f:8a:d2:75:4f:e0:33:c0:b2:65:28:d4:ec: a8:5d:8b:01:b8:a4:a5:75:d0:b1:ad:f8:42:45:7b: 15:85:7b:d4:5a:e9:4c:55:87:a4:cc:45:69:e9:a0: eb:cc:04:99:39:67:12:e7:57:61:4d:8c:78:96:b7: 28:e6:71:0f:c4:97:1f:d3:6e:a4:83:d6:ae:b3:61: 36:83:d4:cb:d6:ad:0e:af:83:82:83:33:d7:9a:e2: 3e:b1:45:7e:5f:fc:10:be:3a:df:cc:b2:12:77:29: 2e:8f:d0:58:5e:3e:96:4e:ab:44:a4:a3:fd:a0:6b: 0b:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:CB:E6:74:38:57:28:B9:7E:29:8F:1D:02:3F:1C:73:E3:30:ED:90 X509v3 Authority Key Identifier: keyid:30:08:AF:94:8C:47:42:A5:25:20:1F:3F:DA:7E:FB:18:00:D5:2D:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3008AF948C4742A525201F3FDA7EFB1800D52D64.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3008AF948C4742A525201F3FDA7EFB1800D52D64.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3135372e31352e34362e302f32342d3234203d3e20313532333936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.46.0/24 Signature Algorithm: sha256WithRSAEncryption 49:fc:ef:81:df:67:cd:b3:1b:18:75:8d:36:43:a2:4f:c4:cd: 6f:fe:c0:7b:d1:6b:b2:4e:4f:29:69:62:06:cb:d4:83:8d:62: c5:8b:2b:38:cd:ca:2b:55:f5:cd:30:13:6e:48:0e:6f:91:21: 8b:05:3a:a9:72:44:58:44:4d:61:23:77:57:58:3e:3a:ea:3d: a6:73:e5:7d:f9:c5:8d:19:8b:2e:05:86:d8:cc:44:83:d7:46: 55:fb:71:e9:2d:9d:6e:c2:89:ba:cc:a0:a7:69:2d:9b:90:24: 0a:95:c8:95:9a:45:d7:ef:e6:d9:c4:08:30:7b:9e:4b:f2:c8: 51:67:82:92:f1:4c:d9:2a:fa:49:cd:12:dd:47:d3:7a:18:ce: 66:0c:c7:bd:e6:b1:4d:96:20:57:90:6f:f7:f8:0c:34:8d:83: 9a:f1:38:d9:ba:d6:d5:cf:b4:10:f0:5b:2c:42:d3:28:ea:f1: ad:77:8a:38:78:68:ec:b3:c6:fc:59:e8:14:07:b2:ce:0d:af: 6a:ef:c3:e4:30:ca:a2:95:c8:37:7b:e9:b4:3a:e1:24:aa:3f: 24:60:5c:6c:9f:43:a6:a9:0d:bb:67:cb:88:0a:2e:bc:5c:e0: 67:59:98:21:37:6e:36:08:56:ca:18:d0:51:a5:3d:8f:fa:c0: 8e:96:ad:6e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUL3IBnNUbJajwUgeKQeiu7JqivR0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzAwOEFGOTQ4QzQ3NDJBNTI1MjAxRjNGREE3RUZCMTgw MEQ1MkQ2NDAeFw0yNDAyMjEwMzA2NDZaFw0yNTAyMTkwMzExNDZaMDMxMTAvBgNV BAMTKEQ3Q0JFNjc0Mzg1NzI4Qjk3RTI5OEYxRDAyM0YxQzczRTMzMEVEOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuYYkQOZg7jdrBrdM+Y3pDn1Sa 7917lic0MiizN701he8t2hSiBnAI75xN7XSHZaynIhSJ8gKf0SFJUnQKAxXUdyXS Au3qdWSRAWwcUoWxy0ifxgnPcPgq/iLiQmEadtC3s8yHHKUNMkD/8ASui+tmw9zG e4pp/NIUR2w5t/dyXQuP6MsNKR2qH4rSdU/gM8CyZSjU7KhdiwG4pKV10LGt+EJF exWFe9Ra6UxVh6TMRWnpoOvMBJk5ZxLnV2FNjHiWtyjmcQ/Elx/TbqSD1q6zYTaD 1MvWrQ6vg4KDM9ea4j6xRX5f/BC+Ot/MshJ3KS6P0FhePpZOq0Sko/2gawsPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU18vmdDhXKLl+KY8dAj8cc+Mw7ZAwHwYDVR0j BBgwFoAUMAivlIxHQqUlIB8/2n77GADVLWQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YzM0ZWVkOS0xODdlLTRmNDYtYTViYi0wZWE4ZjY2OWFlOTAvMC8zMDA4QUY5NDhD NDc0MkE1MjUyMDFGM0ZEQTdFRkIxODAwRDUyRDY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMzAwOEFGOTQ4QzQ3NDJBNTI1MjAxRjNGREE3RUZCMTgwMEQ1 MkQ2NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RjMzRlZWQ5LTE4N2UtNGY0Ni1h NWJiLTBlYThmNjY5YWU5MC8wLzMxMzUzNzJlMzEzNTJlMzQzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMzMzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0PLjANBgkqhkiG 9w0BAQsFAAOCAQEASfzvgd9nzbMbGHWNNkOiT8TNb/7Ae9Frsk5PKWliBsvUg41i xYsrOM3KK1X1zTATbkgOb5EhiwU6qXJEWERNYSN3V1g+Ouo9pnPlffnFjRmLLgWG 2MxEg9dGVftx6S2dbsKJusygp2ktm5AkCpXIlZpF1+/m2cQIMHueS/LIUWeCkvFM 2Sr6Sc0S3UfTehjOZgzHveaxTZYgV5Bv9/gMNI2DmvE42brW1c+0EPBbLELTKOrx rXeKOHho7LPG/FnoFAeyzg2vau/D5DDKopXIN3vptDrhJKo/JGBcbJ9DpqkNu2fL iAouvFzgZ1mYITduNghWyhjQUaU9j/rAjpatbg== -----END CERTIFICATE-----Generated at Sun Nov 24 08:01:26 2024 by rpki-client on console-fra.rpki-client.org