$ rpki-client -vvf repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3135372e31352e34372e302f32342d3234203d3e20313532333936.roa File: 3135372e31352e34372e302f32342d3234203d3e20313532333936.roa (raw, json) Hash identifier: K5p9Xih1OJGuh8PS6s7djckYJlvXSdVIIYiad8Ueq6c= Subject key identifier: BF:0F:33:E3:89:6C:14:6A:EA:7C:A5:12:B6:6B:BA:C6:54:AE:58:5A Certificate issuer: /CN=3008AF948C4742A525201F3FDA7EFB1800D52D64 Certificate serial: 3EC64AE7FB3D1D52FE97D0E9D687A6C0EAA2E563 Authority key identifier: 30:08:AF:94:8C:47:42:A5:25:20:1F:3F:DA:7E:FB:18:00:D5:2D:64 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3008AF948C4742A525201F3FDA7EFB1800D52D64.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3135372e31352e34372e302f32342d3234203d3e20313532333936.roa Signing time: Wed 21 Feb 2024 03:12:22 +0000 ROA not before: Wed 21 Feb 2024 03:07:22 +0000 ROA not after: Wed 19 Feb 2025 03:12:22 +0000 asID: 152396 IP address blocks: 157.15.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3008AF948C4742A525201F3FDA7EFB1800D52D64.crl rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3008AF948C4742A525201F3FDA7EFB1800D52D64.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3008AF948C4742A525201F3FDA7EFB1800D52D64.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:c6:4a:e7:fb:3d:1d:52:fe:97:d0:e9:d6:87:a6:c0:ea:a2:e5:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3008AF948C4742A525201F3FDA7EFB1800D52D64 Validity Not Before: Feb 21 03:07:22 2024 GMT Not After : Feb 19 03:12:22 2025 GMT Subject: CN=BF0F33E3896C146AEA7CA512B66BBAC654AE585A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0f:2d:d8:fd:68:84:4c:6c:82:e6:cb:70:61: aa:32:11:db:83:2d:4f:ac:66:bc:db:fa:30:61:cc: 99:72:e6:51:38:8d:ba:30:9b:14:a4:79:8d:cd:9c: bc:28:3c:7d:a3:ff:e9:66:24:50:88:0d:67:bb:d8: 9f:08:4c:ba:08:05:02:dc:3f:0a:a1:68:b3:07:8d: 29:da:59:47:8a:bd:e9:64:1d:37:47:0a:4d:f2:40: d6:72:61:43:32:a2:57:78:7c:ad:35:95:7e:c2:d2: 7c:80:78:0b:2c:19:22:97:f8:d5:a5:d6:c3:91:32: ac:34:59:ec:c8:c0:d9:65:8e:ed:00:87:f8:12:3c: 40:87:2e:79:70:bd:a8:54:77:6b:86:7e:69:73:90: 2f:e0:f3:72:9f:c7:fa:bf:37:33:5d:e3:ed:b7:81: 08:90:fc:02:86:b2:39:46:3f:8c:52:41:67:7f:8d: 8f:74:e6:67:ae:96:b2:97:49:60:8e:09:3c:9e:e6: 0f:e6:5a:35:7e:9f:0b:e4:13:04:21:c0:4d:90:1e: 6a:0c:ba:53:ce:96:3a:46:16:7a:e1:7a:a7:e2:ae: ec:6c:e4:5b:17:7f:5d:3c:30:69:3e:01:c7:11:3c: bc:29:6c:d5:6d:85:07:d2:8e:46:1b:33:55:69:58: da:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:0F:33:E3:89:6C:14:6A:EA:7C:A5:12:B6:6B:BA:C6:54:AE:58:5A X509v3 Authority Key Identifier: keyid:30:08:AF:94:8C:47:42:A5:25:20:1F:3F:DA:7E:FB:18:00:D5:2D:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3008AF948C4742A525201F3FDA7EFB1800D52D64.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3008AF948C4742A525201F3FDA7EFB1800D52D64.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3135372e31352e34372e302f32342d3234203d3e20313532333936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.47.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:79:60:78:7c:da:7e:77:a7:6f:02:c2:4a:39:23:59:1d:69: bf:35:cb:ee:14:66:60:c1:98:93:7e:ac:8b:c9:6a:25:9c:d6: 91:f5:90:57:f7:4e:74:1e:73:1b:8b:66:b5:75:24:c5:ec:d9: 20:ef:82:89:f2:e3:a9:04:d0:c6:26:89:bd:05:aa:f2:a0:13: 04:32:64:6b:19:90:ce:82:7e:d0:97:b1:b5:f3:05:a7:7b:d4: 70:50:7b:f4:a1:e3:ca:8b:5f:e1:42:e5:cb:ce:a8:5a:f6:71: df:93:f1:9e:64:a9:b1:72:52:60:d5:59:5b:e1:23:dc:92:4c: 15:87:17:06:f8:74:2d:a3:48:73:f7:fd:3c:ac:31:15:04:3d: 2d:cb:10:41:b4:b0:9c:ec:bb:f8:57:8b:9b:af:09:96:91:1a: 99:e8:db:e3:3a:17:63:78:6d:92:1d:13:b7:5e:0c:76:78:ed: 6c:87:2e:e6:1f:ac:54:67:53:79:b0:73:80:1f:d7:65:5f:2b: 23:1c:f7:f0:12:90:60:5a:8e:7d:a5:7f:9e:29:ca:69:03:01: 71:3e:38:d8:e1:10:9a:4e:ae:f8:bb:5d:de:1e:e2:41:c3:b2: 20:64:4f:80:d0:d9:3b:41:23:91:9a:50:37:47:63:24:6d:3f: 73:83:f9:e7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPsZK5/s9HVL+l9Dp1oemwOqi5WMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzAwOEFGOTQ4QzQ3NDJBNTI1MjAxRjNGREE3RUZCMTgw MEQ1MkQ2NDAeFw0yNDAyMjEwMzA3MjJaFw0yNTAyMTkwMzEyMjJaMDMxMTAvBgNV BAMTKEJGMEYzM0UzODk2QzE0NkFFQTdDQTUxMkI2NkJCQUM2NTRBRTU4NUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBDy3Y/WiETGyC5stwYaoyEduD LU+sZrzb+jBhzJly5lE4jbowmxSkeY3NnLwoPH2j/+lmJFCIDWe72J8ITLoIBQLc PwqhaLMHjSnaWUeKvelkHTdHCk3yQNZyYUMyold4fK01lX7C0nyAeAssGSKX+NWl 1sORMqw0WezIwNllju0Ah/gSPECHLnlwvahUd2uGfmlzkC/g83Kfx/q/NzNd4+23 gQiQ/AKGsjlGP4xSQWd/jY905meulrKXSWCOCTye5g/mWjV+nwvkEwQhwE2QHmoM ulPOljpGFnrheqfiruxs5FsXf108MGk+AccRPLwpbNVthQfSjkYbM1VpWNr5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUvw8z44lsFGrqfKUStmu6xlSuWFowHwYDVR0j BBgwFoAUMAivlIxHQqUlIB8/2n77GADVLWQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YzM0ZWVkOS0xODdlLTRmNDYtYTViYi0wZWE4ZjY2OWFlOTAvMC8zMDA4QUY5NDhD NDc0MkE1MjUyMDFGM0ZEQTdFRkIxODAwRDUyRDY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMzAwOEFGOTQ4QzQ3NDJBNTI1MjAxRjNGREE3RUZCMTgwMEQ1 MkQ2NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RjMzRlZWQ5LTE4N2UtNGY0Ni1h NWJiLTBlYThmNjY5YWU5MC8wLzMxMzUzNzJlMzEzNTJlMzQzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMzMzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0PLzANBgkqhkiG 9w0BAQsFAAOCAQEALXlgeHzafnenbwLCSjkjWR1pvzXL7hRmYMGYk36si8lqJZzW kfWQV/dOdB5zG4tmtXUkxezZIO+CifLjqQTQxiaJvQWq8qATBDJkaxmQzoJ+0Jex tfMFp3vUcFB79KHjyotf4ULly86oWvZx35PxnmSpsXJSYNVZW+Ej3JJMFYcXBvh0 LaNIc/f9PKwxFQQ9LcsQQbSwnOy7+FeLm68JlpEamejb4zoXY3htkh0Tt14Mdnjt bIcu5h+sVGdTebBzgB/XZV8rIxz38BKQYFqOfaV/ninKaQMBcT442OEQmk6u+Ltd 3h7iQcOyIGRPgNDZO0EjkZpQN0djJG0/c4P55w== -----END CERTIFICATE-----Generated at Fri Nov 22 03:51:02 2024 by rpki-client on console-fra.rpki-client.org