$ rpki-client -vvf repo-rpki.idnic.net/repo/e5de71ac-7f9f-47d4-9533-9df82afc5973/0/3135372e31352e34322e302f32332d3234203d3e20313532333635.roa File: 3135372e31352e34322e302f32332d3234203d3e20313532333635.roa (raw, json) Hash identifier: S9u62clpgJe5h8+hsptEA2skWgmQVRUf4bT4pfGZtb0= Subject key identifier: 3E:C2:73:C4:A2:78:FF:68:21:22:56:83:83:F9:81:77:61:80:3D:04 Certificate issuer: /CN=D8D82E797873C8877988A42E5C473D1919238C2A Certificate serial: 4D8D999925EB6CE5392E5766FD452264DA4C2792 Authority key identifier: D8:D8:2E:79:78:73:C8:87:79:88:A4:2E:5C:47:3D:19:19:23:8C:2A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D8D82E797873C8877988A42E5C473D1919238C2A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e5de71ac-7f9f-47d4-9533-9df82afc5973/0/3135372e31352e34322e302f32332d3234203d3e20313532333635.roa Signing time: Fri 09 Feb 2024 09:30:34 +0000 ROA not before: Fri 09 Feb 2024 09:25:34 +0000 ROA not after: Fri 07 Feb 2025 09:30:34 +0000 asID: 152365 IP address blocks: 157.15.42.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e5de71ac-7f9f-47d4-9533-9df82afc5973/0/D8D82E797873C8877988A42E5C473D1919238C2A.crl rsync://repo-rpki.idnic.net/repo/e5de71ac-7f9f-47d4-9533-9df82afc5973/0/D8D82E797873C8877988A42E5C473D1919238C2A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D8D82E797873C8877988A42E5C473D1919238C2A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 02 Jul 2024 19:50:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:8d:99:99:25:eb:6c:e5:39:2e:57:66:fd:45:22:64:da:4c:27:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D8D82E797873C8877988A42E5C473D1919238C2A Validity Not Before: Feb 9 09:25:34 2024 GMT Not After : Feb 7 09:30:34 2025 GMT Subject: CN=3EC273C4A278FF682122568383F9817761803D04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c6:9a:1d:17:e3:1e:9f:11:20:5b:85:54:60: 80:fc:88:1c:d4:12:95:50:a5:bb:34:48:36:90:6e: 86:af:b7:d4:9a:d6:c3:16:89:75:34:db:3b:6b:d3: 3f:bd:4b:f2:78:bf:b3:6b:ef:ec:32:25:34:80:bc: d5:56:f2:04:a6:5a:ac:51:00:ce:a8:be:a1:ca:0f: 2f:fe:4f:dc:8a:1b:ac:a4:3e:cb:a7:38:64:5d:47: af:46:66:bc:0d:6f:98:ab:00:e4:6c:e5:87:ce:3f: c9:f1:ac:d8:4d:65:4b:d6:77:9c:98:72:dd:ba:c3: ea:8a:1b:fe:c0:59:e3:f3:79:ee:51:27:7c:e5:0a: 88:85:d6:79:0b:71:ef:b6:75:f6:2f:87:a6:ee:f0: 7a:70:4c:5a:b1:c4:9c:ea:23:dc:e3:e3:68:66:1c: b3:3b:04:d1:31:a8:4b:5f:d1:f6:49:67:ec:b6:ac: 2e:83:bb:3a:a3:4f:92:e6:65:dc:e6:7c:93:d1:fa: b0:78:da:e3:5d:31:1d:bd:1f:46:e7:da:56:e4:9d: 77:70:ba:79:33:06:80:66:ab:9e:1b:db:3e:7e:23: 36:a3:01:c8:04:1d:58:45:6f:5d:fa:f4:df:86:cf: 4d:f3:00:cf:9d:fe:03:6b:54:61:cf:3f:2e:6a:84: fa:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:C2:73:C4:A2:78:FF:68:21:22:56:83:83:F9:81:77:61:80:3D:04 X509v3 Authority Key Identifier: keyid:D8:D8:2E:79:78:73:C8:87:79:88:A4:2E:5C:47:3D:19:19:23:8C:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e5de71ac-7f9f-47d4-9533-9df82afc5973/0/D8D82E797873C8877988A42E5C473D1919238C2A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D8D82E797873C8877988A42E5C473D1919238C2A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5de71ac-7f9f-47d4-9533-9df82afc5973/0/3135372e31352e34322e302f32332d3234203d3e20313532333635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.42.0/23 Signature Algorithm: sha256WithRSAEncryption 56:a8:7e:31:62:35:8f:f9:b7:ec:51:60:1c:66:fa:63:93:38: 58:c6:95:93:21:34:08:6e:4a:ee:1e:09:18:fd:9b:04:4d:6b: 69:c1:e3:3c:63:27:88:80:d5:d8:be:bd:ab:90:7c:da:49:56: 94:4a:81:d5:f5:6b:d9:ec:65:b2:af:e4:a0:eb:15:da:17:57: ac:fd:ff:35:7e:c0:6e:ab:aa:45:04:09:36:14:6d:24:d5:d7: 64:04:82:52:d9:69:a4:08:07:6c:d0:00:a8:cb:3b:dd:da:a6: ae:d7:fe:57:24:b8:f7:74:9c:14:2c:c1:47:cb:4c:38:39:de: ca:e6:79:b1:5b:82:1a:05:00:74:e7:37:a9:bd:65:32:dc:81: a2:37:fa:e5:8d:1e:61:a7:7b:09:8e:d5:b6:de:13:6d:45:b1: b6:61:28:99:48:4e:f2:20:a0:57:75:3b:d8:ac:fa:f8:bf:6c: 69:0e:c6:ca:c9:55:4e:70:6e:61:4d:36:f7:b2:6a:13:3a:8b: 38:f5:2d:1d:13:bd:fe:6e:b1:90:50:53:18:70:3a:49:72:6b: 3f:60:1b:cd:df:8f:a4:ce:df:b5:26:9e:99:c1:11:b9:8d:06: cc:da:86:82:e9:13:4e:2c:55:98:8f:8b:43:1a:6a:db:ea:ee: 61:c8:68:06 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTY2ZmSXrbOU5Lldm/UUiZNpMJ5IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDhEODJFNzk3ODczQzg4Nzc5ODhBNDJFNUM0NzNEMTkx OTIzOEMyQTAeFw0yNDAyMDkwOTI1MzRaFw0yNTAyMDcwOTMwMzRaMDMxMTAvBgNV BAMTKDNFQzI3M0M0QTI3OEZGNjgyMTIyNTY4MzgzRjk4MTc3NjE4MDNEMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+xpodF+MenxEgW4VUYID8iBzU EpVQpbs0SDaQboavt9Sa1sMWiXU02ztr0z+9S/J4v7Nr7+wyJTSAvNVW8gSmWqxR AM6ovqHKDy/+T9yKG6ykPsunOGRdR69GZrwNb5irAORs5YfOP8nxrNhNZUvWd5yY ct26w+qKG/7AWePzee5RJ3zlCoiF1nkLce+2dfYvh6bu8HpwTFqxxJzqI9zj42hm HLM7BNExqEtf0fZJZ+y2rC6DuzqjT5LmZdzmfJPR+rB42uNdMR29H0bn2lbknXdw unkzBoBmq54b2z5+IzajAcgEHVhFb1369N+Gz03zAM+d/gNrVGHPPy5qhPpRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUPsJzxKJ4/2ghIlaDg/mBd2GAPQQwHwYDVR0j BBgwFoAU2NgueXhzyId5iKQuXEc9GRkjjCowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NWRlNzFhYy03ZjlmLTQ3ZDQtOTUzMy05ZGY4MmFmYzU5NzMvMC9EOEQ4MkU3OTc4 NzNDODg3Nzk4OEE0MkU1QzQ3M0QxOTE5MjM4QzJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDhEODJFNzk3ODczQzg4Nzc5ODhBNDJFNUM0NzNEMTkxOTIz OEMyQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1ZGU3MWFjLTdmOWYtNDdkNC05 NTMzLTlkZjgyYWZjNTk3My8wLzMxMzUzNzJlMzEzNTJlMzQzMjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjMzMzYzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0PKjANBgkqhkiG 9w0BAQsFAAOCAQEAVqh+MWI1j/m37FFgHGb6Y5M4WMaVkyE0CG5K7h4JGP2bBE1r acHjPGMniIDV2L69q5B82klWlEqB1fVr2exlsq/koOsV2hdXrP3/NX7AbquqRQQJ NhRtJNXXZASCUtlppAgHbNAAqMs73dqmrtf+VyS493ScFCzBR8tMODneyuZ5sVuC GgUAdOc3qb1lMtyBojf65Y0eYad7CY7Vtt4TbUWxtmEomUhO8iCgV3U72Kz6+L9s aQ7GyslVTnBuYU0297JqEzqLOPUtHRO9/m6xkFBTGHA6SXJrP2Abzd+PpM7ftSae mcERuY0GzNqGgukTTixVmI+LQxpq2+ruYchoBg== -----END CERTIFICATE-----Generated at Sat Jun 29 20:37:22 2024 by rpki-client on console-ams.rpki-client.org