$ rpki-client -vvf repo-rpki.idnic.net/repo/0f7d2894-c077-421c-bc1d-37d6f9d9897d/0/3136302e32322e32322e302f32332d3234203d3e20313532383032.roa File: 3136302e32322e32322e302f32332d3234203d3e20313532383032.roa (raw, json) Hash identifier: 4aCs8l8XWq0PXApi4k476buA+52M0VZn+FhA4QRTZLQ= Subject key identifier: 8C:37:B7:55:55:15:B6:85:A0:4B:C4:CC:EA:B6:26:DE:63:C2:13:F0 Certificate issuer: /CN=B0D673B78DBE219F1EEEF056E3E49FB6D58A5550 Certificate serial: 3BF9BCFEEB6043F666575DA85D96B4D43D263A3E Authority key identifier: B0:D6:73:B7:8D:BE:21:9F:1E:EE:F0:56:E3:E4:9F:B6:D5:8A:55:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B0D673B78DBE219F1EEEF056E3E49FB6D58A5550.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0f7d2894-c077-421c-bc1d-37d6f9d9897d/0/3136302e32322e32322e302f32332d3234203d3e20313532383032.roa Signing time: Tue 11 Jun 2024 17:04:43 +0000 ROA not before: Tue 11 Jun 2024 16:59:43 +0000 ROA not after: Tue 10 Jun 2025 17:04:43 +0000 asID: 152802 IP address blocks: 160.22.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0f7d2894-c077-421c-bc1d-37d6f9d9897d/0/B0D673B78DBE219F1EEEF056E3E49FB6D58A5550.crl rsync://repo-rpki.idnic.net/repo/0f7d2894-c077-421c-bc1d-37d6f9d9897d/0/B0D673B78DBE219F1EEEF056E3E49FB6D58A5550.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B0D673B78DBE219F1EEEF056E3E49FB6D58A5550.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Sep 2024 10:04:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:f9:bc:fe:eb:60:43:f6:66:57:5d:a8:5d:96:b4:d4:3d:26:3a:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B0D673B78DBE219F1EEEF056E3E49FB6D58A5550 Validity Not Before: Jun 11 16:59:43 2024 GMT Not After : Jun 10 17:04:43 2025 GMT Subject: CN=8C37B7555515B685A04BC4CCEAB626DE63C213F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:fd:2a:51:fd:cb:06:be:51:11:18:18:65:37: 6a:4d:65:1d:06:5b:27:87:d4:98:29:04:30:09:82: 6f:9e:b2:e8:9d:3b:c8:a5:57:d8:b4:9f:07:ef:39: 9f:84:a0:e9:a9:41:32:ab:4c:a0:2d:b4:e2:8e:f2: d8:46:10:fc:28:e8:b4:c9:f5:0b:8e:75:b6:51:e4: b2:1b:f4:05:7c:0e:49:f2:32:24:6c:a8:5f:4b:52: 10:5e:e1:06:ba:2d:65:bd:65:ac:42:dd:e3:4e:71: fd:3b:96:ab:7c:fb:32:e4:3c:38:70:b2:c8:24:14: b2:e0:ac:ed:fe:34:a0:7b:fb:46:fb:d9:55:81:13: 68:7e:e1:36:dc:ef:d8:8b:fa:48:29:ce:7e:02:fe: 5e:4d:94:a8:83:c8:84:0c:0b:47:c6:03:0e:32:00: dd:40:09:36:11:73:42:2a:2a:b8:62:c8:d0:d2:d9: 39:34:ad:f2:49:c0:a5:6e:09:f1:56:70:99:c3:3b: 8e:76:c9:d5:57:53:f0:a9:69:91:44:19:f3:73:81: 82:ef:74:d9:c1:a6:1a:df:65:7f:29:84:e3:b0:13: 84:7e:fd:0d:4c:4c:b9:cc:4c:eb:f8:3f:93:28:28: e1:4e:89:de:a8:5b:c8:53:0c:3b:e9:5f:d7:d3:b1: c3:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:37:B7:55:55:15:B6:85:A0:4B:C4:CC:EA:B6:26:DE:63:C2:13:F0 X509v3 Authority Key Identifier: keyid:B0:D6:73:B7:8D:BE:21:9F:1E:EE:F0:56:E3:E4:9F:B6:D5:8A:55:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0f7d2894-c077-421c-bc1d-37d6f9d9897d/0/B0D673B78DBE219F1EEEF056E3E49FB6D58A5550.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B0D673B78DBE219F1EEEF056E3E49FB6D58A5550.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0f7d2894-c077-421c-bc1d-37d6f9d9897d/0/3136302e32322e32322e302f32332d3234203d3e20313532383032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.22.0/23 Signature Algorithm: sha256WithRSAEncryption 56:1b:0d:5c:35:bd:92:bb:33:50:26:98:41:30:c3:04:e1:14: 3d:2f:ff:87:ee:3c:30:46:d9:24:c7:18:55:4d:96:5c:f8:4c: a1:bd:37:e3:6a:93:ba:0d:5d:08:93:9c:5a:10:2f:16:6d:c8: d2:0e:bb:a7:46:e5:e1:31:af:38:60:08:25:b4:52:73:aa:f7: a5:c1:c3:dd:74:e2:aa:21:b7:b7:e3:db:33:b7:bb:fb:7a:02: aa:9e:fc:28:66:4f:00:6b:ab:e8:08:fa:6d:98:5a:43:a7:54: 6f:51:3b:66:96:0c:36:00:c8:07:12:57:12:dd:78:f1:42:14: 29:c9:10:c8:92:6e:c0:73:e8:aa:5c:41:c1:87:68:46:ff:d1: 8d:6d:31:0b:c1:21:c0:f1:9d:7c:b5:af:ed:e0:5c:8d:1a:85: 09:a3:b9:1d:46:ad:a2:fc:13:1e:09:03:6c:d4:5f:8e:6b:60: f3:bc:d5:36:f6:89:dc:ee:38:e5:4d:95:14:14:ff:16:3d:86: 9e:b8:0c:89:a0:74:60:ae:bd:bf:b3:95:dd:ad:89:6b:58:2e: 45:8d:58:8d:04:0b:60:0e:d7:04:07:80:ed:59:f1:f4:bb:de: b0:92:0d:6e:2f:f6:ad:1c:db:cc:88:28:c3:79:68:42:ae:61: 84:d8:a8:a1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUO/m8/utgQ/ZmV12oXZa01D0mOj4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjBENjczQjc4REJFMjE5RjFFRUVGMDU2RTNFNDlGQjZE NThBNTU1MDAeFw0yNDA2MTExNjU5NDNaFw0yNTA2MTAxNzA0NDNaMDMxMTAvBgNV BAMTKDhDMzdCNzU1NTUxNUI2ODVBMDRCQzRDQ0VBQjYyNkRFNjNDMjEzRjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp/SpR/csGvlERGBhlN2pNZR0G WyeH1JgpBDAJgm+esuidO8ilV9i0nwfvOZ+EoOmpQTKrTKAttOKO8thGEPwo6LTJ 9QuOdbZR5LIb9AV8DknyMiRsqF9LUhBe4Qa6LWW9ZaxC3eNOcf07lqt8+zLkPDhw ssgkFLLgrO3+NKB7+0b72VWBE2h+4Tbc79iL+kgpzn4C/l5NlKiDyIQMC0fGAw4y AN1ACTYRc0IqKrhiyNDS2Tk0rfJJwKVuCfFWcJnDO452ydVXU/CpaZFEGfNzgYLv dNnBphrfZX8phOOwE4R+/Q1MTLnMTOv4P5MoKOFOid6oW8hTDDvpX9fTscOHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUjDe3VVUVtoWgS8TM6rYm3mPCE/AwHwYDVR0j BBgwFoAUsNZzt42+IZ8e7vBW4+SfttWKVVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZjdkMjg5NC1jMDc3LTQyMWMtYmMxZC0zN2Q2ZjlkOTg5N2QvMC9CMEQ2NzNCNzhE QkUyMTlGMUVFRUYwNTZFM0U0OUZCNkQ1OEE1NTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQjBENjczQjc4REJFMjE5RjFFRUVGMDU2RTNFNDlGQjZENThB NTU1MC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBmN2QyODk0LWMwNzctNDIxYy1i YzFkLTM3ZDZmOWQ5ODk3ZC8wLzMxMzYzMDJlMzIzMjJlMzIzMjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzAzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaAWFjANBgkqhkiG 9w0BAQsFAAOCAQEAVhsNXDW9krszUCaYQTDDBOEUPS//h+48MEbZJMcYVU2WXPhM ob0342qTug1dCJOcWhAvFm3I0g67p0bl4TGvOGAIJbRSc6r3pcHD3XTiqiG3t+Pb M7e7+3oCqp78KGZPAGur6Aj6bZhaQ6dUb1E7ZpYMNgDIBxJXEt148UIUKckQyJJu wHPoqlxBwYdoRv/RjW0xC8EhwPGdfLWv7eBcjRqFCaO5HUatovwTHgkDbNRfjmtg 87zVNvaJ3O445U2VFBT/Fj2GnrgMiaB0YK69v7OV3a2Ja1guRY1YjQQLYA7XBAeA 7Vnx9LvesJINbi/2rRzbzIgow3loQq5hhNiooQ== -----END CERTIFICATE-----Generated at Fri Sep 27 12:52:45 2024 by rpki-client on console-ams.rpki-client.org