$ rpki-client -vvf repo-rpki.idnic.net/repo/fd1fc1a2-ee77-405f-9e31-adc6dfc9b74c/0/3135372e31352e3231322e302f32342d3234203d3e20313532343036.roa File: 3135372e31352e3231322e302f32342d3234203d3e20313532343036.roa (raw, json) Hash identifier: wIsFczsDTaqC+ATVZnjy0nBnzY5EaaU/aixheXXYAis= Subject key identifier: 4A:2C:13:80:D1:88:36:AB:C4:62:56:ED:F1:F3:9A:85:DD:B0:3E:22 Certificate issuer: /CN=F38B6752412BBA5BA6A00E0BD400D0920CA01E22 Certificate serial: 7AD4E39E2FE6363DC80EA217DFA5383AB6F4C1E8 Authority key identifier: F3:8B:67:52:41:2B:BA:5B:A6:A0:0E:0B:D4:00:D0:92:0C:A0:1E:22 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F38B6752412BBA5BA6A00E0BD400D0920CA01E22.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fd1fc1a2-ee77-405f-9e31-adc6dfc9b74c/0/3135372e31352e3231322e302f32342d3234203d3e20313532343036.roa Signing time: Tue 02 Apr 2024 12:15:43 +0000 ROA not before: Tue 02 Apr 2024 12:10:43 +0000 ROA not after: Tue 01 Apr 2025 12:15:43 +0000 asID: 152406 IP address blocks: 157.15.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fd1fc1a2-ee77-405f-9e31-adc6dfc9b74c/0/F38B6752412BBA5BA6A00E0BD400D0920CA01E22.crl rsync://repo-rpki.idnic.net/repo/fd1fc1a2-ee77-405f-9e31-adc6dfc9b74c/0/F38B6752412BBA5BA6A00E0BD400D0920CA01E22.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F38B6752412BBA5BA6A00E0BD400D0920CA01E22.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Jun 2024 20:03:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:d4:e3:9e:2f:e6:36:3d:c8:0e:a2:17:df:a5:38:3a:b6:f4:c1:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F38B6752412BBA5BA6A00E0BD400D0920CA01E22 Validity Not Before: Apr 2 12:10:43 2024 GMT Not After : Apr 1 12:15:43 2025 GMT Subject: CN=4A2C1380D18836ABC46256EDF1F39A85DDB03E22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:6d:80:7e:28:8e:09:80:7d:10:90:00:34:82: cb:1a:17:66:ff:8f:4e:4d:85:93:6c:38:be:95:e6: 4d:7a:a2:3a:d3:9c:7e:02:e9:c9:1a:72:a3:01:22: 64:a5:e0:24:b9:f4:bd:22:ce:bc:46:69:db:6a:f2: 9a:26:92:e2:26:22:da:04:b7:f3:0d:b6:e2:a6:aa: 98:78:e9:73:07:fe:2d:b9:b9:61:ee:8e:87:66:b7: 30:1f:13:fe:73:dd:85:36:99:b6:d6:63:85:9e:4e: a1:e6:0d:f7:12:09:67:fc:56:02:49:bf:53:35:5b: a0:77:6b:e6:f3:8f:d1:d5:97:93:d6:f3:c8:49:0f: 83:89:dd:e3:1d:f3:c1:ad:36:e7:b9:88:29:59:22: 35:e1:2b:d6:a8:12:39:4a:2b:04:de:f3:79:96:0f: 19:11:da:cc:5e:32:f7:25:86:d6:41:d4:7d:db:51: 5f:bd:1e:be:d2:b0:39:15:79:06:28:8b:30:54:b3: 0c:12:79:9a:23:ce:f8:b7:28:51:8b:6d:31:d7:6a: 56:a5:28:53:a0:96:9e:c5:8a:20:49:80:3a:2c:33: 71:76:f7:08:17:87:3b:26:75:74:f2:ca:88:37:43: 5a:91:9f:e7:ac:5c:01:51:d7:b5:55:61:1f:83:ad: ab:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:2C:13:80:D1:88:36:AB:C4:62:56:ED:F1:F3:9A:85:DD:B0:3E:22 X509v3 Authority Key Identifier: keyid:F3:8B:67:52:41:2B:BA:5B:A6:A0:0E:0B:D4:00:D0:92:0C:A0:1E:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fd1fc1a2-ee77-405f-9e31-adc6dfc9b74c/0/F38B6752412BBA5BA6A00E0BD400D0920CA01E22.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F38B6752412BBA5BA6A00E0BD400D0920CA01E22.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fd1fc1a2-ee77-405f-9e31-adc6dfc9b74c/0/3135372e31352e3231322e302f32342d3234203d3e20313532343036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.212.0/24 Signature Algorithm: sha256WithRSAEncryption 87:e0:f9:75:b3:8e:db:1f:b1:16:eb:c8:e3:20:f0:73:62:b9: 68:1a:d5:94:1c:09:3c:eb:e2:d9:d9:43:4d:7e:1b:81:db:cc: a6:f4:9b:c5:94:fa:da:8c:fc:13:f1:a8:21:26:73:06:dd:ee: d0:93:ff:31:a6:88:04:3d:61:52:57:44:f8:c7:6f:95:34:60: 13:e9:e3:08:b3:2a:48:ac:a8:fc:a4:88:e1:2a:61:9f:cd:0f: 52:35:8b:01:92:05:0b:bd:99:d6:e5:a0:41:71:44:f0:6d:f4: 14:4f:b8:83:f4:f1:81:1e:2c:22:9d:a7:96:15:6d:6b:46:5c: 00:0f:53:c6:84:a1:fe:b0:d0:82:7d:4d:6f:d1:ce:a7:6c:9a: 5f:be:89:da:6f:09:b3:06:4a:34:50:40:eb:12:e1:9b:8f:6d: f6:01:0a:e1:90:a0:27:6b:b1:b7:ec:e2:09:e9:53:61:07:8b: 4d:c7:d6:b3:ec:d1:a2:6c:8d:ae:ea:13:96:bb:ca:b0:5c:a9: d5:8d:7e:48:5c:c5:7e:40:f4:bf:2d:eb:59:f3:84:0a:14:fd: 93:59:e5:97:92:94:07:a8:62:f1:00:be:76:7f:85:e9:c4:60: f1:3d:3a:d2:8d:44:fa:00:32:58:da:57:e5:ae:0f:0a:2a:06: 30:a6:67:56 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUetTjni/mNj3IDqIX36U4Orb0wegwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM4QjY3NTI0MTJCQkE1QkE2QTAwRTBCRDQwMEQwOTIw Q0EwMUUyMjAeFw0yNDA0MDIxMjEwNDNaFw0yNTA0MDExMjE1NDNaMDMxMTAvBgNV BAMTKDRBMkMxMzgwRDE4ODM2QUJDNDYyNTZFREYxRjM5QTg1RERCMDNFMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDibYB+KI4JgH0QkAA0gssaF2b/ j05NhZNsOL6V5k16ojrTnH4C6ckacqMBImSl4CS59L0izrxGadtq8pomkuImItoE t/MNtuKmqph46XMH/i25uWHujodmtzAfE/5z3YU2mbbWY4WeTqHmDfcSCWf8VgJJ v1M1W6B3a+bzj9HVl5PW88hJD4OJ3eMd88GtNue5iClZIjXhK9aoEjlKKwTe83mW DxkR2sxeMvclhtZB1H3bUV+9Hr7SsDkVeQYoizBUswwSeZojzvi3KFGLbTHXalal KFOglp7FiiBJgDosM3F29wgXhzsmdXTyyog3Q1qRn+esXAFR17VVYR+DrauNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSiwTgNGINqvEYlbt8fOahd2wPiIwHwYDVR0j BBgwFoAU84tnUkErulumoA4L1ADQkgygHiIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ZDFmYzFhMi1lZTc3LTQwNWYtOWUzMS1hZGM2ZGZjOWI3NGMvMC9GMzhCNjc1MjQx MkJCQTVCQTZBMDBFMEJENDAwRDA5MjBDQTAxRTIyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRjM4QjY3NTI0MTJCQkE1QkE2QTAwRTBCRDQwMEQwOTIwQ0Ew MUUyMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZkMWZjMWEyLWVlNzctNDA1Zi05 ZTMxLWFkYzZkZmM5Yjc0Yy8wLzMxMzUzNzJlMzEzNTJlMzIzMTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQ/UMA0GCSqG SIb3DQEBCwUAA4IBAQCH4Pl1s47bH7EW68jjIPBzYrloGtWUHAk86+LZ2UNNfhuB 28ym9JvFlPrajPwT8aghJnMG3e7Qk/8xpogEPWFSV0T4x2+VNGAT6eMIsypIrKj8 pIjhKmGfzQ9SNYsBkgULvZnW5aBBcUTwbfQUT7iD9PGBHiwinaeWFW1rRlwAD1PG hKH+sNCCfU1v0c6nbJpfvonabwmzBko0UEDrEuGbj232AQrhkKAna7G37OIJ6VNh B4tNx9az7NGibI2u6hOWu8qwXKnVjX5IXMV+QPS/LetZ84QKFP2TWeWXkpQHqGLx AL52f4XpxGDxPTrSjUT6ADJY2lflrg8KKgYwpmdW -----END CERTIFICATE-----Generated at Fri Jun 21 00:18:59 2024 by rpki-client on console-ams.rpki-client.org