$ rpki-client -vvf repo-rpki.idnic.net/repo/e5de71ac-7f9f-47d4-9533-9df82afc5973/0/3135372e31352e34332e302f32342d3234203d3e20313532333635.roa File: 3135372e31352e34332e302f32342d3234203d3e20313532333635.roa (raw, json) Hash identifier: T3ZJDMOJTb0CQTGu41Nf5Vlt0/shD7fTd/Z+eKLZcDM= Subject key identifier: 66:3F:9A:53:24:7D:D7:89:70:AC:B3:A6:FF:31:4D:18:63:8A:6C:81 Certificate issuer: /CN=D8D82E797873C8877988A42E5C473D1919238C2A Certificate serial: 0F3876AC3B019304539F43C898AE885968DE5354 Authority key identifier: D8:D8:2E:79:78:73:C8:87:79:88:A4:2E:5C:47:3D:19:19:23:8C:2A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D8D82E797873C8877988A42E5C473D1919238C2A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e5de71ac-7f9f-47d4-9533-9df82afc5973/0/3135372e31352e34332e302f32342d3234203d3e20313532333635.roa Signing time: Fri 09 Feb 2024 09:39:35 +0000 ROA not before: Fri 09 Feb 2024 09:34:35 +0000 ROA not after: Fri 07 Feb 2025 09:39:35 +0000 asID: 152365 IP address blocks: 157.15.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e5de71ac-7f9f-47d4-9533-9df82afc5973/0/D8D82E797873C8877988A42E5C473D1919238C2A.crl rsync://repo-rpki.idnic.net/repo/e5de71ac-7f9f-47d4-9533-9df82afc5973/0/D8D82E797873C8877988A42E5C473D1919238C2A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D8D82E797873C8877988A42E5C473D1919238C2A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 02 Jul 2024 19:50:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:38:76:ac:3b:01:93:04:53:9f:43:c8:98:ae:88:59:68:de:53:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D8D82E797873C8877988A42E5C473D1919238C2A Validity Not Before: Feb 9 09:34:35 2024 GMT Not After : Feb 7 09:39:35 2025 GMT Subject: CN=663F9A53247DD78970ACB3A6FF314D18638A6C81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:44:85:31:77:2e:f3:05:69:b4:a9:35:42:e1: 75:90:78:6b:02:8f:05:8f:67:ad:04:e9:70:bd:ff: b3:13:42:56:27:a3:0a:97:50:cb:c1:c3:48:05:53: 7d:6b:cf:31:02:77:fe:b9:07:32:bb:00:dd:99:ee: 18:d6:17:a3:9c:bc:fa:2e:67:7d:44:cf:71:e0:44: 15:2e:74:55:c7:44:70:85:87:ea:9d:df:2a:5b:2e: ff:ee:f2:01:a4:34:d8:2f:f1:5c:b7:bf:f9:c0:69: 90:a9:11:51:ca:59:c8:21:ac:5f:8b:44:e9:4e:d0: bb:f7:32:6e:e4:0f:ae:d2:59:8c:6b:e1:41:af:e0: d6:53:07:4f:44:d5:ab:f3:93:2a:9b:f1:e8:cb:b3: 17:66:d4:10:42:69:58:c4:c8:db:33:ea:ee:56:53: ef:b5:cd:db:c6:c9:37:e7:16:c8:a7:c1:88:84:91: ba:93:10:78:12:2a:52:b3:c3:c6:da:b9:4b:69:9b: 6b:ea:26:bf:91:6f:f4:a4:54:18:17:97:cd:ec:04: a8:35:ce:e1:9d:cb:39:08:11:bd:ce:20:fa:20:1f: 3d:0d:e3:e5:15:8d:20:40:24:a4:f0:1b:e1:d3:0f: 6f:6b:ec:d8:2e:7a:ed:36:c9:18:1e:56:47:b1:f2: 77:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:3F:9A:53:24:7D:D7:89:70:AC:B3:A6:FF:31:4D:18:63:8A:6C:81 X509v3 Authority Key Identifier: keyid:D8:D8:2E:79:78:73:C8:87:79:88:A4:2E:5C:47:3D:19:19:23:8C:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e5de71ac-7f9f-47d4-9533-9df82afc5973/0/D8D82E797873C8877988A42E5C473D1919238C2A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D8D82E797873C8877988A42E5C473D1919238C2A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5de71ac-7f9f-47d4-9533-9df82afc5973/0/3135372e31352e34332e302f32342d3234203d3e20313532333635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.43.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:89:80:50:bd:cb:d5:3e:05:00:5e:53:26:31:f9:f3:2b:53: 07:8b:ea:bc:a8:0f:0f:35:ee:d3:17:c3:62:05:59:ca:65:f8: 58:b5:e9:64:72:47:1b:3f:52:d9:4f:d0:70:63:1c:22:a2:a0: 6f:64:8a:7b:c7:0e:ff:2d:ad:e2:38:ed:6f:65:0d:f6:3e:6e: e3:ef:f9:72:04:4e:82:f0:ce:5d:aa:4d:e6:d0:07:c6:72:41: 94:cb:75:73:97:1f:53:31:c3:29:c9:18:60:22:13:37:02:3d: 72:21:26:35:7f:8e:18:a9:2a:59:82:35:36:aa:8f:fb:bd:38: f1:67:52:ce:9a:0c:e2:3d:f0:90:65:ff:79:bf:35:03:97:86: ef:f4:16:d5:d3:97:6c:26:9e:7d:df:3e:64:88:1b:e4:35:18: ef:25:00:8e:23:4d:dc:0d:53:64:90:dc:66:e2:be:16:01:f6: 6c:6f:6e:8e:6d:34:35:31:4d:c5:0f:38:7c:a3:01:61:f4:19: 79:31:7e:0c:c7:88:8b:76:39:2f:54:01:26:f4:7c:7b:7e:0a: 90:e7:ff:ef:25:e4:b6:2a:a6:1c:eb:f7:74:ff:83:51:fc:b2: 75:4c:8b:fc:8f:33:d6:85:25:ae:1f:a8:bc:c4:9d:87:95:74: 0f:84:27:2e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDzh2rDsBkwRTn0PImK6IWWjeU1QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDhEODJFNzk3ODczQzg4Nzc5ODhBNDJFNUM0NzNEMTkx OTIzOEMyQTAeFw0yNDAyMDkwOTM0MzVaFw0yNTAyMDcwOTM5MzVaMDMxMTAvBgNV BAMTKDY2M0Y5QTUzMjQ3REQ3ODk3MEFDQjNBNkZGMzE0RDE4NjM4QTZDODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgRIUxdy7zBWm0qTVC4XWQeGsC jwWPZ60E6XC9/7MTQlYnowqXUMvBw0gFU31rzzECd/65BzK7AN2Z7hjWF6OcvPou Z31Ez3HgRBUudFXHRHCFh+qd3ypbLv/u8gGkNNgv8Vy3v/nAaZCpEVHKWcghrF+L ROlO0Lv3Mm7kD67SWYxr4UGv4NZTB09E1avzkyqb8ejLsxdm1BBCaVjEyNsz6u5W U++1zdvGyTfnFsinwYiEkbqTEHgSKlKzw8bauUtpm2vqJr+Rb/SkVBgXl83sBKg1 zuGdyzkIEb3OIPogHz0N4+UVjSBAJKTwG+HTD29r7Ngueu02yRgeVkex8ndvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZj+aUyR914lwrLOm/zFNGGOKbIEwHwYDVR0j BBgwFoAU2NgueXhzyId5iKQuXEc9GRkjjCowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NWRlNzFhYy03ZjlmLTQ3ZDQtOTUzMy05ZGY4MmFmYzU5NzMvMC9EOEQ4MkU3OTc4 NzNDODg3Nzk4OEE0MkU1QzQ3M0QxOTE5MjM4QzJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDhEODJFNzk3ODczQzg4Nzc5ODhBNDJFNUM0NzNEMTkxOTIz OEMyQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1ZGU3MWFjLTdmOWYtNDdkNC05 NTMzLTlkZjgyYWZjNTk3My8wLzMxMzUzNzJlMzEzNTJlMzQzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMzMzYzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0PKzANBgkqhkiG 9w0BAQsFAAOCAQEAbImAUL3L1T4FAF5TJjH58ytTB4vqvKgPDzXu0xfDYgVZymX4 WLXpZHJHGz9S2U/QcGMcIqKgb2SKe8cO/y2t4jjtb2UN9j5u4+/5cgROgvDOXapN 5tAHxnJBlMt1c5cfUzHDKckYYCITNwI9ciEmNX+OGKkqWYI1NqqP+7048WdSzpoM 4j3wkGX/eb81A5eG7/QW1dOXbCaefd8+ZIgb5DUY7yUAjiNN3A1TZJDcZuK+FgH2 bG9ujm00NTFNxQ84fKMBYfQZeTF+DMeIi3Y5L1QBJvR8e34KkOf/7yXktiqmHOv3 dP+DUfyydUyL/I8z1oUlrh+ovMSdh5V0D4QnLg== -----END CERTIFICATE-----Generated at Sat Jun 29 20:40:36 2024 by rpki-client on console-fra.rpki-client.org