$ rpki-client -vvf repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/3136302e32302e3232322e302f32342d3234203d3e20313338303737.roa File: 3136302e32302e3232322e302f32342d3234203d3e20313338303737.roa (raw, json) Hash identifier: zx3EsEj7vdg62SZL8H/xKZfzFI/WtSApdPssUEeDvhY= Subject key identifier: 47:13:62:7D:0A:D4:6B:54:AF:D5:C0:CB:9E:E2:18:20:A2:8B:73:C2 Certificate issuer: /CN=B877CD1C542C3DE2CBB8EF151F179B857E9376E4 Certificate serial: 2873187CF5EBB4FBA8A0D93AEE3D43A91CCC355F Authority key identifier: B8:77:CD:1C:54:2C:3D:E2:CB:B8:EF:15:1F:17:9B:85:7E:93:76:E4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/3136302e32302e3232322e302f32342d3234203d3e20313338303737.roa Signing time: Thu 11 Jan 2024 06:34:44 +0000 ROA not before: Thu 11 Jan 2024 06:29:44 +0000 ROA not after: Thu 09 Jan 2025 06:34:44 +0000 asID: 138077 IP address blocks: 160.20.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.crl rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 00:56:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:73:18:7c:f5:eb:b4:fb:a8:a0:d9:3a:ee:3d:43:a9:1c:cc:35:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B877CD1C542C3DE2CBB8EF151F179B857E9376E4 Validity Not Before: Jan 11 06:29:44 2024 GMT Not After : Jan 9 06:34:44 2025 GMT Subject: CN=4713627D0AD46B54AFD5C0CB9EE21820A28B73C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:fb:75:3c:3e:f1:ac:5b:47:8c:07:63:8a:96: a1:d4:74:3d:6b:12:0e:b2:a1:8f:6b:38:08:90:a5: e3:42:f1:a6:26:5a:c9:f6:39:ba:4f:bb:b4:da:be: 5c:73:25:ef:cf:58:79:9f:df:4a:6d:64:1f:8f:88: b5:dd:44:c7:99:59:ab:f5:85:ec:75:92:3d:05:5f: 4c:10:cf:22:f3:d0:74:23:cb:7b:68:1f:a8:8e:61: b6:95:c1:fa:27:63:b5:9a:ed:6b:6b:17:fd:dc:1b: 5a:d8:c6:9c:e1:65:68:38:d6:21:07:8c:70:08:8f: 68:fb:6d:31:89:02:54:ef:ed:6d:17:d4:ca:a0:27: 43:4a:f8:39:73:d2:10:03:fe:aa:3a:e8:bf:df:fe: 9c:36:53:fd:e9:b7:9f:5e:44:48:7b:79:e2:7c:19: 80:11:ee:0e:d5:09:61:25:31:a5:02:19:9f:e3:af: 7e:05:a6:51:93:3c:ee:0a:fe:56:bd:46:af:e3:af: f9:6d:4a:23:59:fb:91:a7:cb:8b:00:c0:ca:71:0f: 9e:ed:f4:59:81:89:54:0e:27:93:8c:59:be:82:b1: fc:62:d1:23:d9:5b:69:8a:47:85:89:3d:53:de:f5: c2:ad:18:4c:b6:e9:ae:e7:77:03:a7:82:70:ae:75: cd:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:13:62:7D:0A:D4:6B:54:AF:D5:C0:CB:9E:E2:18:20:A2:8B:73:C2 X509v3 Authority Key Identifier: keyid:B8:77:CD:1C:54:2C:3D:E2:CB:B8:EF:15:1F:17:9B:85:7E:93:76:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/3136302e32302e3232322e302f32342d3234203d3e20313338303737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.20.222.0/24 Signature Algorithm: sha256WithRSAEncryption 98:f0:1c:62:5e:60:42:f7:19:3d:65:84:24:a0:ad:7b:cd:77: 67:ef:25:23:c9:dc:8e:50:4a:4d:2a:8d:30:d2:3f:8a:a9:f2: a4:50:82:b2:62:df:0b:89:a6:37:63:96:13:5d:1d:dc:13:60: 02:64:8f:3b:df:d5:83:d7:37:7d:7c:9e:65:4c:a3:86:0e:1f: 74:46:43:09:8f:2c:ce:dd:18:e0:c1:55:76:87:15:eb:38:26: c6:ac:4b:0e:2a:ae:67:36:6b:0e:43:e1:aa:19:7b:38:17:29: 83:13:49:49:9d:74:89:e4:c0:69:d1:1b:3e:98:9b:82:d4:b1: 88:f4:fd:ef:4b:33:f5:c5:bc:56:1c:4b:84:aa:91:2f:80:69: 4c:59:ab:06:1b:cf:7c:50:a6:60:ec:d2:21:37:16:8d:e0:0b: 7a:ec:b2:b8:06:ff:e6:c1:94:09:37:c0:8e:fe:62:54:6d:bf: 51:51:0b:be:05:cf:a2:90:de:2f:7c:54:ce:4a:2f:87:f9:24: 86:ee:0e:e1:57:fb:ea:09:0f:00:6e:03:e7:d1:34:07:b3:e7: 90:c8:ab:fc:f5:ed:24:11:13:06:cb:a2:a5:6e:51:d7:25:87: f1:80:a5:13:f7:ce:1a:f1:6b:82:58:ce:37:49:56:69:ae:92: e6:89:8b:94 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKHMYfPXrtPuooNk67j1DqRzMNV8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg3N0NEMUM1NDJDM0RFMkNCQjhFRjE1MUYxNzlCODU3 RTkzNzZFNDAeFw0yNDAxMTEwNjI5NDRaFw0yNTAxMDkwNjM0NDRaMDMxMTAvBgNV BAMTKDQ3MTM2MjdEMEFENDZCNTRBRkQ1QzBDQjlFRTIxODIwQTI4QjczQzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM+3U8PvGsW0eMB2OKlqHUdD1r Eg6yoY9rOAiQpeNC8aYmWsn2ObpPu7TavlxzJe/PWHmf30ptZB+PiLXdRMeZWav1 hex1kj0FX0wQzyLz0HQjy3toH6iOYbaVwfonY7Wa7WtrF/3cG1rYxpzhZWg41iEH jHAIj2j7bTGJAlTv7W0X1MqgJ0NK+Dlz0hAD/qo66L/f/pw2U/3pt59eREh7eeJ8 GYAR7g7VCWElMaUCGZ/jr34FplGTPO4K/la9Rq/jr/ltSiNZ+5Gny4sAwMpxD57t 9FmBiVQOJ5OMWb6Csfxi0SPZW2mKR4WJPVPe9cKtGEy26a7ndwOngnCudc1RAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURxNifQrUa1Sv1cDLnuIYIKKLc8IwHwYDVR0j BBgwFoAUuHfNHFQsPeLLuO8VHxebhX6TduQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZjZkMTg1ZS1kNGY0LTQ4MjAtYjRiNi03OThjMzA3YWQ3ZTUvMC9CODc3Q0QxQzU0 MkMzREUyQ0JCOEVGMTUxRjE3OUI4NTdFOTM3NkU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjg3N0NEMUM1NDJDM0RFMkNCQjhFRjE1MUYxNzlCODU3RTkz NzZFNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FmNmQxODVlLWQ0ZjQtNDgyMC1i NGI2LTc5OGMzMDdhZDdlNS8wLzMxMzYzMDJlMzIzMDJlMzIzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBTeMA0GCSqG SIb3DQEBCwUAA4IBAQCY8BxiXmBC9xk9ZYQkoK17zXdn7yUjydyOUEpNKo0w0j+K qfKkUIKyYt8LiaY3Y5YTXR3cE2ACZI8739WD1zd9fJ5lTKOGDh90RkMJjyzO3Rjg wVV2hxXrOCbGrEsOKq5nNmsOQ+GqGXs4FymDE0lJnXSJ5MBp0Rs+mJuC1LGI9P3v SzP1xbxWHEuEqpEvgGlMWasGG898UKZg7NIhNxaN4At67LK4Bv/mwZQJN8CO/mJU bb9RUQu+Bc+ikN4vfFTOSi+H+SSG7g7hV/vqCQ8AbgPn0TQHs+eQyKv89e0kERMG y6KlblHXJYfxgKUT984a8WuCWM43SVZprpLmiYuU -----END CERTIFICATE-----Generated at Thu May 2 14:39:53 2024 by rpki-client on console-ams.rpki-client.org