$ rpki-client -vvf repo-rpki.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/3136302e31392e3135362e302f32332d3233203d3e20313532373638.roa File: 3136302e31392e3135362e302f32332d3233203d3e20313532373638.roa (raw, json) Hash identifier: fSYAaBJeAhXypfTbKMG0EHTcxCrDe3+KTEel11RmWqM= Subject key identifier: E9:70:99:47:B6:A5:B5:81:E3:07:0A:42:97:DD:4D:20:9A:9C:06:BF Certificate issuer: /CN=01A2349B25C18BC156CEE53AEAE63EE3010910E2 Certificate serial: 5DB93706BD4526010215DC4631D1A0596E3CFBDA Authority key identifier: 01:A2:34:9B:25:C1:8B:C1:56:CE:E5:3A:EA:E6:3E:E3:01:09:10:E2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/01A2349B25C18BC156CEE53AEAE63EE3010910E2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/3136302e31392e3135362e302f32332d3233203d3e20313532373638.roa Signing time: Thu 04 Jul 2024 18:32:31 +0000 ROA not before: Thu 04 Jul 2024 18:27:31 +0000 ROA not after: Thu 03 Jul 2025 18:32:31 +0000 asID: 152768 IP address blocks: 160.19.156.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/01A2349B25C18BC156CEE53AEAE63EE3010910E2.crl rsync://repo-rpki.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/01A2349B25C18BC156CEE53AEAE63EE3010910E2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/01A2349B25C18BC156CEE53AEAE63EE3010910E2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:b9:37:06:bd:45:26:01:02:15:dc:46:31:d1:a0:59:6e:3c:fb:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A2349B25C18BC156CEE53AEAE63EE3010910E2 Validity Not Before: Jul 4 18:27:31 2024 GMT Not After : Jul 3 18:32:31 2025 GMT Subject: CN=E9709947B6A5B581E3070A4297DD4D209A9C06BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ce:3f:de:81:82:8e:61:20:84:e8:7f:b4:2b: be:dc:a9:a2:ec:8f:d5:9e:13:2c:56:b1:3f:44:18: 1d:63:b2:a5:8f:38:be:00:8b:66:ab:b0:85:a7:e0: b3:39:4a:88:5f:57:2c:91:e8:31:05:9e:e4:29:dd: 1c:e5:4a:bb:2d:19:4c:3e:67:51:51:9b:2b:74:61: 54:c9:1f:ab:d0:30:26:fe:c2:a8:7b:81:7c:ad:73: 74:f8:cc:72:b2:bb:47:2b:ec:f4:f8:d4:20:62:f5: 06:32:49:45:5c:1a:32:b1:59:d0:c4:7e:c8:ab:ed: c6:3f:0e:ba:9e:c6:44:c3:a3:dc:bc:e0:23:04:0c: 59:97:5b:a2:4b:19:c2:26:f4:34:42:75:13:1f:5e: 58:2d:df:94:df:8f:b8:bb:93:8d:b0:77:83:e2:5d: 62:b6:ff:53:5b:52:8e:9d:3e:71:bb:fd:d7:b2:05: ff:3e:7c:90:05:98:81:3c:75:81:12:c9:4c:e4:d3: 21:58:93:e9:50:f8:88:df:3b:0f:f3:85:c9:98:ad: 75:7a:4d:c9:2b:15:e8:40:1e:ad:27:70:a9:ee:07: 58:7c:00:d0:53:b0:9e:0b:22:f8:9e:98:e2:71:83: 80:31:d4:ea:5b:a8:68:41:07:c6:56:dd:d1:ff:9d: 72:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:70:99:47:B6:A5:B5:81:E3:07:0A:42:97:DD:4D:20:9A:9C:06:BF X509v3 Authority Key Identifier: keyid:01:A2:34:9B:25:C1:8B:C1:56:CE:E5:3A:EA:E6:3E:E3:01:09:10:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/01A2349B25C18BC156CEE53AEAE63EE3010910E2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/01A2349B25C18BC156CEE53AEAE63EE3010910E2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/3136302e31392e3135362e302f32332d3233203d3e20313532373638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.156.0/23 Signature Algorithm: sha256WithRSAEncryption bb:05:de:55:4a:0b:d2:f9:50:19:75:21:f5:6b:cd:f5:ca:b0: b3:4a:c6:5b:3a:f6:69:bf:1e:f5:b8:c9:9a:16:36:77:5a:fb: e8:56:cc:6e:1d:f4:f4:85:e1:25:fd:74:ed:0b:2f:5c:f2:c5: 5d:18:25:9f:96:53:8a:bb:4e:af:34:09:92:1a:9d:b0:46:83: 70:ef:ed:26:e8:ec:e4:1d:cc:30:ab:0d:6b:5f:21:20:c6:36: cb:05:9f:2b:d1:0b:c0:b6:ea:70:57:a4:fe:9b:61:ca:80:aa: c5:07:72:c1:b1:e5:e6:14:2f:5b:6e:78:54:41:95:07:fc:fe: 31:9b:03:1b:f6:5d:b3:5e:65:5d:fb:54:cc:bc:30:be:c6:b1: 41:7f:3c:3e:e9:27:ee:c9:c6:1e:c7:9f:88:a0:69:9d:8f:b2: ff:6b:c6:51:62:c1:8c:00:96:7e:e9:69:6a:f7:10:de:0b:1d: 19:d5:f8:10:76:d8:35:9e:3b:9c:58:3a:8c:fb:39:13:19:98: 46:34:03:17:52:b2:fe:78:81:27:fb:bb:36:1d:bc:fd:1b:20: 1b:bc:f9:86:9e:f0:f2:59:5a:47:5c:39:ca:9f:42:8e:0b:ac: b6:72:46:9a:42:1c:51:40:8d:83:25:fa:09:46:a8:37:2c:21: a9:a7:37:14 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXbk3Br1FJgECFdxGMdGgWW48+9owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDFBMjM0OUIyNUMxOEJDMTU2Q0VFNTNBRUFFNjNFRTMw MTA5MTBFMjAeFw0yNDA3MDQxODI3MzFaFw0yNTA3MDMxODMyMzFaMDMxMTAvBgNV BAMTKEU5NzA5OTQ3QjZBNUI1ODFFMzA3MEE0Mjk3REQ0RDIwOUE5QzA2QkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOzj/egYKOYSCE6H+0K77cqaLs j9WeEyxWsT9EGB1jsqWPOL4Ai2arsIWn4LM5SohfVyyR6DEFnuQp3RzlSrstGUw+ Z1FRmyt0YVTJH6vQMCb+wqh7gXytc3T4zHKyu0cr7PT41CBi9QYySUVcGjKxWdDE fsir7cY/DrqexkTDo9y84CMEDFmXW6JLGcIm9DRCdRMfXlgt35Tfj7i7k42wd4Pi XWK2/1NbUo6dPnG7/deyBf8+fJAFmIE8dYESyUzk0yFYk+lQ+IjfOw/zhcmYrXV6 TckrFehAHq0ncKnuB1h8ANBTsJ4LIviemOJxg4Ax1OpbqGhBB8ZW3dH/nXJDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6XCZR7altYHjBwpCl91NIJqcBr8wHwYDVR0j BBgwFoAUAaI0myXBi8FWzuU66uY+4wEJEOIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MmY4MDhhNC05ZGIzLTQ2OTgtYTA3Yi00NzY5ZGNlMThlYzcvMC8wMUEyMzQ5QjI1 QzE4QkMxNTZDRUU1M0FFQUU2M0VFMzAxMDkxMEUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMDFBMjM0OUIyNUMxOEJDMTU2Q0VFNTNBRUFFNjNFRTMwMTA5 MTBFMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEyZjgwOGE0LTlkYjMtNDY5OC1h MDdiLTQ3NjlkY2UxOGVjNy8wLzMxMzYzMDJlMzEzOTJlMzEzNTM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzczNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBOcMA0GCSqG SIb3DQEBCwUAA4IBAQC7Bd5VSgvS+VAZdSH1a831yrCzSsZbOvZpvx71uMmaFjZ3 WvvoVsxuHfT0heEl/XTtCy9c8sVdGCWfllOKu06vNAmSGp2wRoNw7+0m6OzkHcww qw1rXyEgxjbLBZ8r0QvAtupwV6T+m2HKgKrFB3LBseXmFC9bbnhUQZUH/P4xmwMb 9l2zXmVd+1TMvDC+xrFBfzw+6SfuycYex5+IoGmdj7L/a8ZRYsGMAJZ+6Wlq9xDe Cx0Z1fgQdtg1njucWDqM+zkTGZhGNAMXUrL+eIEn+7s2Hbz9GyAbvPmGnvDyWVpH XDnKn0KOC6y2ckaaQhxRQI2DJfoJRqg3LCGppzcU -----END CERTIFICATE-----Generated at Fri Nov 22 15:22:18 2024 by rpki-client on console-fra.rpki-client.org