$ rpki-client -vvf repo-rpki.idnic.net/repo/f191f55d-e382-4583-99cf-71a4717e7f09/0/3135372e31352e3131332e302f32342d3234203d3e20313532333639.roa File: 3135372e31352e3131332e302f32342d3234203d3e20313532333639.roa (raw, json) Hash identifier: RFhGHCb7fi7+5E4cFrD0wJlCJ5E75WvgEwQ51mKjbic= Subject key identifier: EE:61:85:FC:8E:0C:25:19:00:81:4D:77:59:4A:38:F5:D3:86:CE:16 Certificate issuer: /CN=5F4C49641E1677408C44A096E9E7E709A4580B39 Certificate serial: 43619DEC8E5833357E62BEF8E182B69FA55FEB21 Authority key identifier: 5F:4C:49:64:1E:16:77:40:8C:44:A0:96:E9:E7:E7:09:A4:58:0B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5F4C49641E1677408C44A096E9E7E709A4580B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f191f55d-e382-4583-99cf-71a4717e7f09/0/3135372e31352e3131332e302f32342d3234203d3e20313532333639.roa Signing time: Tue 27 Aug 2024 04:43:15 +0000 ROA not before: Tue 27 Aug 2024 04:38:15 +0000 ROA not after: Tue 26 Aug 2025 04:43:15 +0000 asID: 152369 IP address blocks: 157.15.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f191f55d-e382-4583-99cf-71a4717e7f09/0/5F4C49641E1677408C44A096E9E7E709A4580B39.crl rsync://repo-rpki.idnic.net/repo/f191f55d-e382-4583-99cf-71a4717e7f09/0/5F4C49641E1677408C44A096E9E7E709A4580B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5F4C49641E1677408C44A096E9E7E709A4580B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 19:02:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:61:9d:ec:8e:58:33:35:7e:62:be:f8:e1:82:b6:9f:a5:5f:eb:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5F4C49641E1677408C44A096E9E7E709A4580B39 Validity Not Before: Aug 27 04:38:15 2024 GMT Not After : Aug 26 04:43:15 2025 GMT Subject: CN=EE6185FC8E0C251900814D77594A38F5D386CE16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4c:15:1c:f3:f4:85:6e:65:30:7f:28:07:1d: 5f:c8:be:ef:82:09:d3:9b:b6:7e:5c:92:bb:0c:1e: bc:02:26:92:e3:ce:b5:24:27:ce:6f:5d:35:dd:ae: ae:23:5c:86:bf:fe:90:46:bd:32:e0:e3:9d:f2:57: 62:09:3f:c0:53:88:aa:b4:6e:7c:97:41:12:f8:3c: 6a:c8:38:c9:f2:0b:c9:d8:f0:d5:c6:53:86:ff:89: e7:eb:ed:ee:d8:3c:76:59:48:8a:03:f3:b9:ad:25: e0:c9:2b:4e:a7:19:0d:d2:20:ee:eb:83:d0:0b:ad: a8:4d:67:6b:a4:a9:ec:16:db:96:5c:12:8f:c5:c3: 8d:2d:b7:ce:96:61:9f:5e:ac:75:96:02:f4:4f:0e: ec:23:d0:66:3c:e8:ac:0b:0a:33:64:35:e1:49:92: 07:5a:01:9e:75:cb:48:53:ab:06:7c:1c:b4:76:2f: af:f4:39:e4:94:1c:33:24:26:93:83:f1:41:fb:32: 44:73:02:90:94:11:eb:ec:72:32:68:06:7b:88:2a: 78:24:29:cc:20:de:f3:35:59:ad:c8:7c:da:9e:08: a8:9b:a6:e6:cf:7c:a3:23:6e:df:31:8c:34:b4:5f: 23:17:b7:2d:7a:0a:94:8f:64:30:06:cb:77:0a:2e: b6:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:61:85:FC:8E:0C:25:19:00:81:4D:77:59:4A:38:F5:D3:86:CE:16 X509v3 Authority Key Identifier: keyid:5F:4C:49:64:1E:16:77:40:8C:44:A0:96:E9:E7:E7:09:A4:58:0B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f191f55d-e382-4583-99cf-71a4717e7f09/0/5F4C49641E1677408C44A096E9E7E709A4580B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5F4C49641E1677408C44A096E9E7E709A4580B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f191f55d-e382-4583-99cf-71a4717e7f09/0/3135372e31352e3131332e302f32342d3234203d3e20313532333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.113.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:fc:bb:71:77:8b:5e:10:16:b6:21:29:8e:20:b2:dc:26:dd: af:d1:34:49:14:ac:0e:56:5d:da:71:23:43:87:1f:cc:e9:41: 75:49:23:9f:f0:42:db:3f:45:8a:8d:67:f3:9b:33:df:1b:62: c4:cb:3b:94:dd:98:11:3e:14:32:bb:8c:92:62:5d:b7:bc:e8: fa:f2:13:88:58:5f:b5:44:66:c4:35:1d:0f:36:e3:1a:e4:0f: 38:ae:f9:f2:53:13:6a:bf:b0:ed:d2:ef:58:40:43:eb:9f:e1: 4d:a7:46:24:f5:b5:a0:a0:d7:36:6c:42:92:83:02:aa:04:8d: c3:f9:38:b4:7e:40:2f:11:12:b0:f4:8c:9c:d1:29:2b:14:60: 68:6e:f2:63:b4:35:93:16:e4:26:c9:74:76:a9:33:65:96:d0: 1a:f7:cc:51:e1:4e:5b:e4:7a:8e:07:35:1d:fc:b7:d9:f9:7b: 21:89:d2:38:01:f1:31:68:eb:3d:38:04:df:17:8a:74:b7:0a: c8:87:73:85:ea:f9:e5:a7:0b:76:68:02:78:ae:fa:60:34:29: d6:5c:36:18:ea:72:3f:9c:2c:89:3f:9e:f8:3a:9d:34:49:14: c8:31:b7:54:9c:a3:7b:01:c5:a2:1d:7b:21:1b:e7:c6:9e:0a: 4d:74:4a:be -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQ2Gd7I5YMzV+Yr744YK2n6Vf6yEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUY0QzQ5NjQxRTE2Nzc0MDhDNDRBMDk2RTlFN0U3MDlB NDU4MEIzOTAeFw0yNDA4MjcwNDM4MTVaFw0yNTA4MjYwNDQzMTVaMDMxMTAvBgNV BAMTKEVFNjE4NUZDOEUwQzI1MTkwMDgxNEQ3NzU5NEEzOEY1RDM4NkNFMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9TBUc8/SFbmUwfygHHV/Ivu+C CdObtn5ckrsMHrwCJpLjzrUkJ85vXTXdrq4jXIa//pBGvTLg453yV2IJP8BTiKq0 bnyXQRL4PGrIOMnyC8nY8NXGU4b/iefr7e7YPHZZSIoD87mtJeDJK06nGQ3SIO7r g9ALrahNZ2ukqewW25ZcEo/Fw40tt86WYZ9erHWWAvRPDuwj0GY86KwLCjNkNeFJ kgdaAZ51y0hTqwZ8HLR2L6/0OeSUHDMkJpOD8UH7MkRzApCUEevscjJoBnuIKngk Kcwg3vM1Wa3IfNqeCKibpubPfKMjbt8xjDS0XyMXty16CpSPZDAGy3cKLrbdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7mGF/I4MJRkAgU13WUo49dOGzhYwHwYDVR0j BBgwFoAUX0xJZB4Wd0CMRKCW6efnCaRYCzkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MTkxZjU1ZC1lMzgyLTQ1ODMtOTljZi03MWE0NzE3ZTdmMDkvMC81RjRDNDk2NDFF MTY3NzQwOEM0NEEwOTZFOUU3RTcwOUE0NTgwQjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNUY0QzQ5NjQxRTE2Nzc0MDhDNDRBMDk2RTlFN0U3MDlBNDU4 MEIzOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxOTFmNTVkLWUzODItNDU4My05 OWNmLTcxYTQ3MTdlN2YwOS8wLzMxMzUzNzJlMzEzNTJlMzEzMTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQ9xMA0GCSqG SIb3DQEBCwUAA4IBAQBs/Ltxd4teEBa2ISmOILLcJt2v0TRJFKwOVl3acSNDhx/M 6UF1SSOf8ELbP0WKjWfzmzPfG2LEyzuU3ZgRPhQyu4ySYl23vOj68hOIWF+1RGbE NR0PNuMa5A84rvnyUxNqv7Dt0u9YQEPrn+FNp0Yk9bWgoNc2bEKSgwKqBI3D+Ti0 fkAvERKw9Iyc0SkrFGBobvJjtDWTFuQmyXR2qTNlltAa98xR4U5b5HqOBzUd/LfZ +XshidI4AfExaOs9OATfF4p0twrIh3OF6vnlpwt2aAJ4rvpgNCnWXDYY6nI/nCyJ P574Op00SRTIMbdUnKN7AcWiHXshG+fGngpNdEq+ -----END CERTIFICATE-----Generated at Mon Nov 25 23:58:46 2024 by rpki-client on console-fra.rpki-client.org