$ rpki-client -vvf repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/3136302e32322e31332e302f32342d3234203d3e20313532373935.roa File: 3136302e32322e31332e302f32342d3234203d3e20313532373935.roa (raw, json) Hash identifier: 4zrjWTGjIfmRVD7KoG+5XB5sYDfQiVJOsTHraO00txU= Subject key identifier: 95:28:34:FC:25:92:1E:AD:35:00:77:70:85:23:77:E9:CA:87:2F:23 Certificate issuer: /CN=588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069 Certificate serial: 706840C5ACD17A3F83627D788063F57A89780E97 Authority key identifier: 58:8D:D0:FC:E4:BC:24:3C:C9:C6:D6:8A:E0:4E:84:67:E0:E4:D0:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/3136302e32322e31332e302f32342d3234203d3e20313532373935.roa Signing time: Fri 23 Aug 2024 05:48:36 +0000 ROA not before: Fri 23 Aug 2024 05:43:36 +0000 ROA not after: Fri 22 Aug 2025 05:48:36 +0000 asID: 152795 IP address blocks: 160.22.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.crl rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:68:40:c5:ac:d1:7a:3f:83:62:7d:78:80:63:f5:7a:89:78:0e:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069 Validity Not Before: Aug 23 05:43:36 2024 GMT Not After : Aug 22 05:48:36 2025 GMT Subject: CN=952834FC25921EAD35007770852377E9CA872F23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:e7:b2:60:d7:b6:0d:4f:de:9f:cb:66:48:76: 78:34:83:64:3e:55:30:0d:bf:91:ea:c3:6e:68:9d: 95:b1:85:45:4e:d9:94:59:fb:9d:fc:21:07:35:39: b3:8d:7c:f5:d0:1d:60:db:88:77:79:39:c6:7d:30: fc:6e:6c:3b:dd:d4:83:e2:c5:77:17:eb:50:18:4a: 1a:a9:0f:ca:1f:06:8b:6b:ce:e0:05:2e:38:f2:c7: 1b:99:e8:07:a0:ce:a2:7f:f3:ca:98:f1:a8:8a:4e: fa:dd:05:97:db:a1:e1:41:59:ae:9d:c7:2d:f6:7e: 78:df:ca:f5:8b:3b:ca:5d:ba:a4:65:32:ce:62:ba: 3d:b9:0a:ac:cb:64:3d:51:89:b4:ac:44:c0:2b:e9: 70:a7:82:13:09:bd:84:e4:d7:3f:c0:25:b2:50:a9: 03:74:62:06:d2:82:d9:ad:a4:81:13:f1:59:4d:3f: 43:ea:10:49:77:6f:1f:a6:29:61:4e:ab:6d:cc:9d: df:fd:79:b1:da:a4:d6:c4:ae:db:31:87:0d:25:fe: 8e:57:0f:da:d9:4a:e3:ae:2c:04:5b:8a:1a:a0:c9: 90:6a:0c:e6:f0:3b:52:89:0a:8e:78:86:2b:2f:75: fe:1b:bb:c5:df:56:ed:64:79:95:8a:25:c9:61:ee: 72:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:28:34:FC:25:92:1E:AD:35:00:77:70:85:23:77:E9:CA:87:2F:23 X509v3 Authority Key Identifier: keyid:58:8D:D0:FC:E4:BC:24:3C:C9:C6:D6:8A:E0:4E:84:67:E0:E4:D0:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/3136302e32322e31332e302f32342d3234203d3e20313532373935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.13.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:d6:55:4f:95:f4:04:ad:a5:03:c2:65:65:ee:d1:94:94:61: 94:aa:11:63:32:1b:fe:d1:9c:f1:d4:4a:c6:0b:a7:39:ab:83: a2:84:70:07:94:06:e4:0b:11:c3:7d:6b:48:72:2e:34:7a:f1: 18:a0:f7:8e:85:28:b8:70:9b:a2:74:de:6e:a2:ae:38:db:98: 63:5b:e1:b4:7a:98:cd:eb:6c:e8:58:f7:5b:42:c5:2a:13:27: 49:73:8b:2c:c9:d6:0f:2c:47:77:b5:43:ea:f1:a6:2e:cd:31: 61:49:b3:3d:a7:39:29:2d:6b:83:2e:4e:5d:2d:15:66:c2:6a: 4a:5e:3b:20:86:a8:e5:c6:2c:64:f8:bc:46:a1:a4:36:30:ce: 72:da:fb:8d:d8:26:93:93:e7:a7:aa:4e:5c:97:3e:bb:1b:79: 3a:70:f1:da:97:5c:59:f9:e8:9d:bc:63:fd:04:31:2c:33:01: 68:39:9c:9d:a7:b7:6d:be:d1:40:9a:6a:66:10:c3:bb:fd:eb: e4:51:f0:34:cf:33:21:e2:67:37:bf:fd:3f:41:78:a7:6c:cb: 87:d2:cf:5b:6e:a3:c0:3e:e8:25:55:ac:c9:cd:d3:20:53:a8: 8a:54:9f:de:44:af:9d:1d:8e:5a:cc:78:c5:88:c1:71:f1:4f: fb:a4:59:9b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcGhAxazRej+DYn14gGP1eol4DpcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTg4REQwRkNFNEJDMjQzQ0M5QzZENjhBRTA0RTg0NjdF MEU0RDA2OTAeFw0yNDA4MjMwNTQzMzZaFw0yNTA4MjIwNTQ4MzZaMDMxMTAvBgNV BAMTKDk1MjgzNEZDMjU5MjFFQUQzNTAwNzc3MDg1MjM3N0U5Q0E4NzJGMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDk57Jg17YNT96fy2ZIdng0g2Q+ VTANv5Hqw25onZWxhUVO2ZRZ+538IQc1ObONfPXQHWDbiHd5OcZ9MPxubDvd1IPi xXcX61AYShqpD8ofBotrzuAFLjjyxxuZ6AegzqJ/88qY8aiKTvrdBZfboeFBWa6d xy32fnjfyvWLO8pduqRlMs5iuj25CqzLZD1RibSsRMAr6XCnghMJvYTk1z/AJbJQ qQN0YgbSgtmtpIET8VlNP0PqEEl3bx+mKWFOq23Mnd/9ebHapNbErtsxhw0l/o5X D9rZSuOuLARbihqgyZBqDObwO1KJCo54hisvdf4bu8XfVu1keZWKJclh7nIDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUlSg0/CWSHq01AHdwhSN36cqHLyMwHwYDVR0j BBgwFoAUWI3Q/OS8JDzJxtaK4E6EZ+Dk0GkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MTk5ZTU0MS0xODYxLTRkNmEtOGUyOC1iMDI4NDU4NjE0OTYvMC81ODhERDBGQ0U0 QkMyNDNDQzlDNkQ2OEFFMDRFODQ2N0UwRTREMDY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNTg4REQwRkNFNEJDMjQzQ0M5QzZENjhBRTA0RTg0NjdFMEU0 RDA2OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAxOTllNTQxLTE4NjEtNGQ2YS04 ZTI4LWIwMjg0NTg2MTQ5Ni8wLzMxMzYzMDJlMzIzMjJlMzEzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM3MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAWDTANBgkqhkiG 9w0BAQsFAAOCAQEAKtZVT5X0BK2lA8JlZe7RlJRhlKoRYzIb/tGc8dRKxgunOauD ooRwB5QG5AsRw31rSHIuNHrxGKD3joUouHCbonTebqKuONuYY1vhtHqYzets6Fj3 W0LFKhMnSXOLLMnWDyxHd7VD6vGmLs0xYUmzPac5KS1rgy5OXS0VZsJqSl47IIao 5cYsZPi8RqGkNjDOctr7jdgmk5Pnp6pOXJc+uxt5OnDx2pdcWfnonbxj/QQxLDMB aDmcnae3bb7RQJpqZhDDu/3r5FHwNM8zIeJnN7/9P0F4p2zLh9LPW26jwD7oJVWs yc3TIFOoilSf3kSvnR2OWsx4xYjBcfFP+6RZmw== -----END CERTIFICATE-----Generated at Sat Nov 23 20:17:06 2024 by rpki-client on console-ams.rpki-client.org