$ rpki-client -vvf repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/3136302e32322e31322e302f32342d3234203d3e20313532373935.roa File: 3136302e32322e31322e302f32342d3234203d3e20313532373935.roa (raw, json) Hash identifier: c7u9a3tNo+sinKbXEOZIkxb5lpQ3V3xHWxLJ0wK62sQ= Subject key identifier: 5E:FC:BB:BC:57:9D:F5:88:D0:33:83:D8:BE:33:A5:9D:6C:0A:51:DE Certificate issuer: /CN=588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069 Certificate serial: 442D1250C866699F48AA0A77103A1F415767C04B Authority key identifier: 58:8D:D0:FC:E4:BC:24:3C:C9:C6:D6:8A:E0:4E:84:67:E0:E4:D0:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/3136302e32322e31322e302f32342d3234203d3e20313532373935.roa Signing time: Fri 23 Aug 2024 05:48:10 +0000 ROA not before: Fri 23 Aug 2024 05:43:10 +0000 ROA not after: Fri 22 Aug 2025 05:48:10 +0000 asID: 152795 IP address blocks: 160.22.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.crl rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:2d:12:50:c8:66:69:9f:48:aa:0a:77:10:3a:1f:41:57:67:c0:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069 Validity Not Before: Aug 23 05:43:10 2024 GMT Not After : Aug 22 05:48:10 2025 GMT Subject: CN=5EFCBBBC579DF588D03383D8BE33A59D6C0A51DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ca:79:e2:c8:74:f9:bc:11:d3:f3:51:c9:e0: 68:6c:19:9c:c0:df:1a:48:96:81:9c:15:70:3a:dc: fc:c7:e5:99:30:ff:c3:34:35:75:87:a6:89:80:57: 99:aa:09:ba:35:2a:0f:e8:c0:bf:9f:8d:69:bf:69: 03:d1:fa:93:e5:ad:eb:77:e7:bc:8b:ca:1a:e8:51: fe:de:8e:8e:36:fd:30:e6:45:70:c2:ce:28:63:1a: 57:3a:86:63:d7:85:e8:47:85:21:46:0b:3c:8b:78: 0b:3b:6c:f6:e3:49:47:2f:90:18:b1:3a:96:7b:0d: c2:8e:eb:84:c6:20:92:1a:c2:06:eb:4c:4b:22:54: 9b:0b:43:30:d4:c4:c9:8a:83:06:80:fd:68:38:93: 81:01:20:29:06:cc:89:60:a2:53:24:3f:ff:92:d0: ef:33:e4:20:f1:43:64:b7:a8:37:ec:a6:cc:5f:9e: 93:4d:e9:66:08:e0:0f:ff:52:f5:de:2f:a0:73:df: 1c:79:bf:3a:cf:11:4e:92:b2:1e:42:a8:d6:ae:a7: b9:64:ae:96:f1:7a:c2:12:d2:32:69:45:3d:1d:6f: 15:cf:a9:bc:6f:7d:3b:54:3b:b1:fb:10:dd:d2:de: ee:23:43:cc:67:ef:f4:4e:b5:28:27:31:fa:b4:1f: e2:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:FC:BB:BC:57:9D:F5:88:D0:33:83:D8:BE:33:A5:9D:6C:0A:51:DE X509v3 Authority Key Identifier: keyid:58:8D:D0:FC:E4:BC:24:3C:C9:C6:D6:8A:E0:4E:84:67:E0:E4:D0:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/3136302e32322e31322e302f32342d3234203d3e20313532373935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.12.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:4b:d9:0a:25:e8:fc:71:1c:f2:df:c4:67:58:2b:66:d6:fc: af:df:a7:a1:20:cd:1e:01:95:10:c9:eb:3f:69:14:02:eb:03: 5e:74:96:d1:70:89:27:02:85:57:72:a6:62:6c:ef:d8:0a:9f: ec:17:12:06:1c:34:90:46:3e:2b:2e:49:cd:70:3f:6d:05:f5: c9:e8:c5:db:42:2b:2c:b2:39:62:e9:c0:12:f1:7e:79:68:e1: fe:4e:25:ed:5c:83:2f:28:3c:47:55:6e:33:02:a6:46:84:de: 6c:36:36:3e:ac:82:ac:2d:9c:00:0c:23:f6:63:70:f9:bb:ce: a2:ad:9e:f8:01:aa:b8:38:cf:7f:e0:ec:0d:23:a5:76:77:a9: dc:3d:32:34:a7:4f:56:bc:bd:5c:b4:3b:e8:42:96:b7:1c:cd: b5:44:d8:c2:9f:f1:0e:b1:bd:14:f7:50:1a:c6:75:ba:6a:b4: ad:b0:9f:53:66:8e:53:47:b4:76:26:54:28:45:a3:92:3f:32: 43:a1:1f:83:01:80:3b:be:1e:8f:c7:3d:e8:98:fd:34:1d:62: b0:d0:f5:3a:e5:58:ed:a1:93:52:1d:fe:9e:ff:6c:60:4b:92: ff:98:78:45:0d:19:44:95:ec:b6:4a:50:d2:de:ba:30:91:6e: 85:73:ca:09 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURC0SUMhmaZ9Iqgp3EDofQVdnwEswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTg4REQwRkNFNEJDMjQzQ0M5QzZENjhBRTA0RTg0NjdF MEU0RDA2OTAeFw0yNDA4MjMwNTQzMTBaFw0yNTA4MjIwNTQ4MTBaMDMxMTAvBgNV BAMTKDVFRkNCQkJDNTc5REY1ODhEMDMzODNEOEJFMzNBNTlENkMwQTUxREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnynniyHT5vBHT81HJ4GhsGZzA 3xpIloGcFXA63PzH5Zkw/8M0NXWHpomAV5mqCbo1Kg/owL+fjWm/aQPR+pPlret3 57yLyhroUf7ejo42/TDmRXDCzihjGlc6hmPXhehHhSFGCzyLeAs7bPbjSUcvkBix OpZ7DcKO64TGIJIawgbrTEsiVJsLQzDUxMmKgwaA/Wg4k4EBICkGzIlgolMkP/+S 0O8z5CDxQ2S3qDfspsxfnpNN6WYI4A//UvXeL6Bz3xx5vzrPEU6Ssh5CqNaup7lk rpbxesIS0jJpRT0dbxXPqbxvfTtUO7H7EN3S3u4jQ8xn7/ROtSgnMfq0H+JzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUXvy7vFed9YjQM4PYvjOlnWwKUd4wHwYDVR0j BBgwFoAUWI3Q/OS8JDzJxtaK4E6EZ+Dk0GkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MTk5ZTU0MS0xODYxLTRkNmEtOGUyOC1iMDI4NDU4NjE0OTYvMC81ODhERDBGQ0U0 QkMyNDNDQzlDNkQ2OEFFMDRFODQ2N0UwRTREMDY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNTg4REQwRkNFNEJDMjQzQ0M5QzZENjhBRTA0RTg0NjdFMEU0 RDA2OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAxOTllNTQxLTE4NjEtNGQ2YS04 ZTI4LWIwMjg0NTg2MTQ5Ni8wLzMxMzYzMDJlMzIzMjJlMzEzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM3MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAWDDANBgkqhkiG 9w0BAQsFAAOCAQEAn0vZCiXo/HEc8t/EZ1grZtb8r9+noSDNHgGVEMnrP2kUAusD XnSW0XCJJwKFV3KmYmzv2Aqf7BcSBhw0kEY+Ky5JzXA/bQX1yejF20IrLLI5YunA EvF+eWjh/k4l7VyDLyg8R1VuMwKmRoTebDY2PqyCrC2cAAwj9mNw+bvOoq2e+AGq uDjPf+DsDSOldnep3D0yNKdPVry9XLQ76EKWtxzNtUTYwp/xDrG9FPdQGsZ1umq0 rbCfU2aOU0e0diZUKEWjkj8yQ6EfgwGAO74ej8c96Jj9NB1isND1OuVY7aGTUh3+ nv9sYEuS/5h4RQ0ZRJXstkpQ0t66MJFuhXPKCQ== -----END CERTIFICATE-----Generated at Sat Nov 23 20:17:06 2024 by rpki-client on console-ams.rpki-client.org