$ rpki-client -vvf repo-rpki.idnic.net/repo/0ec677fd-d569-4cc5-a563-9b0f248b1af1/0/3136302e32322e36322e302f32342d3234203d3e20313532383231.roa File: 3136302e32322e36322e302f32342d3234203d3e20313532383231.roa (raw, json) Hash identifier: aH6okphqxpRkcbzrmJ8UaY/Jz90Uk2iHjb4VbDgQR/I= Subject key identifier: 36:FB:B6:86:90:2F:3E:8D:AC:42:AB:F8:C3:07:19:08:DE:F9:CA:CA Certificate issuer: /CN=2AD789EBFC58C1F0E4F87390781D38CB0D580210 Certificate serial: 793416C92818130EFAC3AFF14C6AF3265E39898C Authority key identifier: 2A:D7:89:EB:FC:58:C1:F0:E4:F8:73:90:78:1D:38:CB:0D:58:02:10 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2AD789EBFC58C1F0E4F87390781D38CB0D580210.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0ec677fd-d569-4cc5-a563-9b0f248b1af1/0/3136302e32322e36322e302f32342d3234203d3e20313532383231.roa Signing time: Mon 19 Aug 2024 19:59:35 +0000 ROA not before: Mon 19 Aug 2024 19:54:35 +0000 ROA not after: Mon 18 Aug 2025 19:59:35 +0000 asID: 152821 IP address blocks: 160.22.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0ec677fd-d569-4cc5-a563-9b0f248b1af1/0/2AD789EBFC58C1F0E4F87390781D38CB0D580210.crl rsync://repo-rpki.idnic.net/repo/0ec677fd-d569-4cc5-a563-9b0f248b1af1/0/2AD789EBFC58C1F0E4F87390781D38CB0D580210.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2AD789EBFC58C1F0E4F87390781D38CB0D580210.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:34:16:c9:28:18:13:0e:fa:c3:af:f1:4c:6a:f3:26:5e:39:89:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2AD789EBFC58C1F0E4F87390781D38CB0D580210 Validity Not Before: Aug 19 19:54:35 2024 GMT Not After : Aug 18 19:59:35 2025 GMT Subject: CN=36FBB686902F3E8DAC42ABF8C3071908DEF9CACA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:81:40:20:38:86:17:af:c3:dc:bc:2f:ea:c8: 48:34:a0:79:10:f2:0d:de:d3:95:27:0d:45:97:ef: 6e:6c:d1:ee:a2:b3:b1:77:e9:81:76:2c:57:28:c3: 75:f9:74:aa:43:81:59:d5:05:37:96:35:da:8c:ad: 6d:44:37:22:12:b3:5b:28:e6:12:ac:c9:f9:72:5c: d3:6e:74:bb:de:9b:aa:30:02:96:e0:23:40:af:28: 9d:7a:3d:7f:dc:34:d8:22:69:72:f2:db:6c:4d:ce: fe:7f:c0:42:84:ec:35:9b:8f:2a:06:91:90:bb:10: 6b:2d:dd:af:0b:d4:c1:20:ae:a0:40:67:9a:65:20: 1f:57:c1:a3:d5:e3:41:02:9a:51:2d:d9:f1:a3:7b: 58:55:fe:4e:fb:86:6c:a6:9c:ef:c7:f3:43:fb:d3: 97:b8:c9:24:83:d0:a0:df:ad:c9:5c:c3:8d:73:4d: ac:7b:e3:71:d1:b2:8a:50:98:a9:9c:a3:95:98:97: a0:de:9b:5c:f8:00:e5:c5:a2:b2:54:30:7f:1d:98: 8f:78:b6:ec:96:df:4e:34:bb:25:af:e4:45:41:57: e4:a6:e5:fa:65:e6:3b:ab:8e:b3:71:76:c6:e3:e7: 78:9a:dd:be:42:6f:d0:40:11:4c:80:2b:38:e7:73: 35:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:FB:B6:86:90:2F:3E:8D:AC:42:AB:F8:C3:07:19:08:DE:F9:CA:CA X509v3 Authority Key Identifier: keyid:2A:D7:89:EB:FC:58:C1:F0:E4:F8:73:90:78:1D:38:CB:0D:58:02:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0ec677fd-d569-4cc5-a563-9b0f248b1af1/0/2AD789EBFC58C1F0E4F87390781D38CB0D580210.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2AD789EBFC58C1F0E4F87390781D38CB0D580210.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0ec677fd-d569-4cc5-a563-9b0f248b1af1/0/3136302e32322e36322e302f32342d3234203d3e20313532383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.62.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:8e:37:c4:26:b6:c4:ea:27:c7:10:97:99:0f:81:e5:e6:6a: e9:3c:f3:45:67:62:2b:a2:6f:d5:0a:17:d2:80:26:37:8e:cf: 81:17:ce:dc:45:0b:63:36:51:58:34:09:ea:f7:00:1c:1b:4f: 27:7b:99:22:4b:3a:88:eb:d4:d9:10:1c:62:9e:4c:42:9c:51: 1a:a5:90:82:f7:9c:1e:ba:82:39:d6:fe:43:e6:55:19:1b:11: f8:6a:db:c8:74:be:9b:0a:ae:77:b8:07:6c:3a:6a:9c:d7:90: 8e:f8:3b:a1:51:2f:21:d9:76:00:8b:73:66:76:41:82:5e:dd: 10:37:d5:5e:73:98:46:cc:77:ff:11:13:7e:09:98:c8:5a:c7: fb:77:8a:70:d0:49:62:9b:5c:d8:34:f1:82:55:00:1f:5d:fb: d8:e7:03:d3:36:5d:6d:7e:04:b2:d4:aa:94:51:b8:a2:fc:94: 0a:b4:bf:ec:3a:76:0f:6c:00:a2:0d:84:dd:90:be:e5:89:00: 9b:df:34:df:3d:fc:0c:35:4f:19:38:6a:9a:96:4a:f6:56:f2: e0:1a:fc:74:1d:45:63:29:76:bb:77:78:9e:03:d1:b1:4c:62: 8f:c3:4f:47:7a:ac:f0:ea:78:51:a7:92:f7:5b:86:d5:73:71: 92:96:7f:57 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeTQWySgYEw76w6/xTGrzJl45iYwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFENzg5RUJGQzU4QzFGMEU0Rjg3MzkwNzgxRDM4Q0Iw RDU4MDIxMDAeFw0yNDA4MTkxOTU0MzVaFw0yNTA4MTgxOTU5MzVaMDMxMTAvBgNV BAMTKDM2RkJCNjg2OTAyRjNFOERBQzQyQUJGOEMzMDcxOTA4REVGOUNBQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbgUAgOIYXr8PcvC/qyEg0oHkQ 8g3e05UnDUWX725s0e6is7F36YF2LFcow3X5dKpDgVnVBTeWNdqMrW1ENyISs1so 5hKsyflyXNNudLvem6owApbgI0CvKJ16PX/cNNgiaXLy22xNzv5/wEKE7DWbjyoG kZC7EGst3a8L1MEgrqBAZ5plIB9XwaPV40ECmlEt2fGje1hV/k77hmymnO/H80P7 05e4ySSD0KDfrclcw41zTax743HRsopQmKmco5WYl6Dem1z4AOXForJUMH8dmI94 tuyW3040uyWv5EVBV+Sm5fpl5jurjrNxdsbj53ia3b5Cb9BAEUyAKzjnczXxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUNvu2hpAvPo2sQqv4wwcZCN75ysowHwYDVR0j BBgwFoAUKteJ6/xYwfDk+HOQeB04yw1YAhAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZWM2NzdmZC1kNTY5LTRjYzUtYTU2My05YjBmMjQ4YjFhZjEvMC8yQUQ3ODlFQkZD NThDMUYwRTRGODczOTA3ODFEMzhDQjBENTgwMjEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMkFENzg5RUJGQzU4QzFGMEU0Rjg3MzkwNzgxRDM4Q0IwRDU4 MDIxMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlYzY3N2ZkLWQ1NjktNGNjNS1h NTYzLTliMGYyNDhiMWFmMS8wLzMxMzYzMDJlMzIzMjJlMzYzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzIzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAWPjANBgkqhkiG 9w0BAQsFAAOCAQEAHY43xCa2xOonxxCXmQ+B5eZq6TzzRWdiK6Jv1QoX0oAmN47P gRfO3EULYzZRWDQJ6vcAHBtPJ3uZIks6iOvU2RAcYp5MQpxRGqWQgvecHrqCOdb+ Q+ZVGRsR+GrbyHS+mwqud7gHbDpqnNeQjvg7oVEvIdl2AItzZnZBgl7dEDfVXnOY Rsx3/xETfgmYyFrH+3eKcNBJYptc2DTxglUAH1372OcD0zZdbX4EstSqlFG4ovyU CrS/7Dp2D2wAog2E3ZC+5YkAm9803z38DDVPGThqmpZK9lby4Br8dB1FYyl2u3d4 ngPRsUxij8NPR3qs8Op4UaeS91uG1XNxkpZ/Vw== -----END CERTIFICATE-----Generated at Sat Nov 23 21:51:28 2024 by rpki-client on console-fra.rpki-client.org