$ rpki-client -vvf repo-rpki.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/3136302e31392e3135372e302f32342d3234203d3e20313532373638.roa File: 3136302e31392e3135372e302f32342d3234203d3e20313532373638.roa (raw, json) Hash identifier: QnRJ2uTyElbf7k1wpeY2ebpOhKDECfc+5dRNroBDh1A= Subject key identifier: DE:CD:8F:42:D3:5D:E4:DE:FA:53:28:6F:5D:2E:CC:FD:A5:A1:FE:19 Certificate issuer: /CN=01A2349B25C18BC156CEE53AEAE63EE3010910E2 Certificate serial: 0F2AB1BF079176E31B07F190F4325CAA3A2264FB Authority key identifier: 01:A2:34:9B:25:C1:8B:C1:56:CE:E5:3A:EA:E6:3E:E3:01:09:10:E2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/01A2349B25C18BC156CEE53AEAE63EE3010910E2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/3136302e31392e3135372e302f32342d3234203d3e20313532373638.roa Signing time: Thu 04 Jul 2024 18:31:55 +0000 ROA not before: Thu 04 Jul 2024 18:26:55 +0000 ROA not after: Thu 03 Jul 2025 18:31:55 +0000 asID: 152768 IP address blocks: 160.19.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/01A2349B25C18BC156CEE53AEAE63EE3010910E2.crl rsync://repo-rpki.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/01A2349B25C18BC156CEE53AEAE63EE3010910E2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/01A2349B25C18BC156CEE53AEAE63EE3010910E2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:2a:b1:bf:07:91:76:e3:1b:07:f1:90:f4:32:5c:aa:3a:22:64:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A2349B25C18BC156CEE53AEAE63EE3010910E2 Validity Not Before: Jul 4 18:26:55 2024 GMT Not After : Jul 3 18:31:55 2025 GMT Subject: CN=DECD8F42D35DE4DEFA53286F5D2ECCFDA5A1FE19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:34:b0:c4:26:85:4c:a7:12:a0:87:b0:55:2a: 9a:90:fa:aa:e0:53:d2:ae:9d:85:bf:6b:c3:c9:8d: 82:70:2c:e8:cf:aa:fa:02:6f:9e:fc:b2:13:de:8d: fd:ce:b5:73:d2:6f:39:8c:60:44:f9:00:b8:df:16: 6e:d8:f9:07:cb:af:40:02:8b:15:7f:45:91:3f:a8: 8d:96:64:c4:5b:ac:c9:46:94:dc:75:cc:50:33:3a: c3:0a:5a:b0:d2:6f:96:fa:2c:2e:5d:f1:76:9f:c9: 90:49:58:03:13:92:b4:9d:29:76:c6:79:04:62:f9: c9:9b:9c:a6:82:04:f9:cf:8e:6a:e7:0e:cf:c1:54: 37:43:01:39:35:02:80:93:3a:d1:65:ff:07:70:ef: 3d:d4:59:8b:36:1d:3f:d8:e5:cf:c1:2e:8c:24:97: 5f:32:06:4b:83:3e:d7:45:ba:75:5b:31:ad:f5:9b: 75:ba:3d:26:74:d1:d5:7c:40:18:e7:25:e3:93:2d: 87:7a:cd:d2:f3:b3:a7:fe:2b:2a:f2:3c:b1:d1:ee: 3d:88:9b:9e:36:87:0e:dc:ff:73:b1:7c:eb:3a:30: cc:fe:db:01:44:14:54:94:83:27:76:8f:c4:2c:63: b4:1f:89:07:19:bb:f6:ce:f9:01:b4:fd:33:35:b9: 27:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:CD:8F:42:D3:5D:E4:DE:FA:53:28:6F:5D:2E:CC:FD:A5:A1:FE:19 X509v3 Authority Key Identifier: keyid:01:A2:34:9B:25:C1:8B:C1:56:CE:E5:3A:EA:E6:3E:E3:01:09:10:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/01A2349B25C18BC156CEE53AEAE63EE3010910E2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/01A2349B25C18BC156CEE53AEAE63EE3010910E2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/3136302e31392e3135372e302f32342d3234203d3e20313532373638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.157.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:8c:c1:ac:9b:40:a2:94:8e:9e:4d:b2:1c:7a:e9:4d:d2:9b: de:ea:f9:14:41:4c:3f:8c:9b:d2:ae:5d:ab:a5:90:e9:dc:4d: f4:f7:64:85:65:92:3d:23:e7:21:a0:42:af:b0:93:6e:d4:55: 4b:41:21:30:3f:82:54:57:52:26:fb:47:f0:34:66:5e:fe:be: e0:5b:b3:4d:4e:ea:45:5f:1e:03:96:a7:5c:49:f4:10:ee:5b: 2c:97:42:f1:91:87:52:0c:b0:3e:e6:99:12:31:0e:fd:29:37: 6e:20:71:e1:05:0d:db:f9:0b:cb:72:9c:1d:3e:c6:29:a7:7b: 07:40:10:b0:c9:2a:3d:e5:ca:b2:e0:ce:05:47:fb:88:84:86: c5:22:7d:33:0e:44:fd:55:e7:05:6b:6c:2c:3b:7c:c1:c5:e6: e1:04:b7:b8:48:19:90:8c:a4:a7:92:e1:5f:da:c6:70:73:d8: b9:e0:a4:e0:bd:ee:61:09:bf:a1:5a:13:c1:25:26:05:ba:16: 0b:f8:ae:de:b9:dc:7c:f4:80:b1:c9:5d:06:18:1b:ad:29:44: b6:13:e2:e3:23:af:fe:c0:8c:11:21:5d:5c:4f:31:2f:b0:07: 84:7d:f5:17:90:f6:a0:00:ba:30:9d:72:08:86:d0:47:95:39: ca:87:5b:fd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDyqxvweRduMbB/GQ9DJcqjoiZPswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDFBMjM0OUIyNUMxOEJDMTU2Q0VFNTNBRUFFNjNFRTMw MTA5MTBFMjAeFw0yNDA3MDQxODI2NTVaFw0yNTA3MDMxODMxNTVaMDMxMTAvBgNV BAMTKERFQ0Q4RjQyRDM1REU0REVGQTUzMjg2RjVEMkVDQ0ZEQTVBMUZFMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCNLDEJoVMpxKgh7BVKpqQ+qrg U9KunYW/a8PJjYJwLOjPqvoCb578shPejf3OtXPSbzmMYET5ALjfFm7Y+QfLr0AC ixV/RZE/qI2WZMRbrMlGlNx1zFAzOsMKWrDSb5b6LC5d8XafyZBJWAMTkrSdKXbG eQRi+cmbnKaCBPnPjmrnDs/BVDdDATk1AoCTOtFl/wdw7z3UWYs2HT/Y5c/BLowk l18yBkuDPtdFunVbMa31m3W6PSZ00dV8QBjnJeOTLYd6zdLzs6f+KyryPLHR7j2I m542hw7c/3OxfOs6MMz+2wFEFFSUgyd2j8QsY7QfiQcZu/bO+QG0/TM1uSdlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3s2PQtNd5N76UyhvXS7M/aWh/hkwHwYDVR0j BBgwFoAUAaI0myXBi8FWzuU66uY+4wEJEOIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MmY4MDhhNC05ZGIzLTQ2OTgtYTA3Yi00NzY5ZGNlMThlYzcvMC8wMUEyMzQ5QjI1 QzE4QkMxNTZDRUU1M0FFQUU2M0VFMzAxMDkxMEUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMDFBMjM0OUIyNUMxOEJDMTU2Q0VFNTNBRUFFNjNFRTMwMTA5 MTBFMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEyZjgwOGE0LTlkYjMtNDY5OC1h MDdiLTQ3NjlkY2UxOGVjNy8wLzMxMzYzMDJlMzEzOTJlMzEzNTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBOdMA0GCSqG SIb3DQEBCwUAA4IBAQB/jMGsm0CilI6eTbIceulN0pve6vkUQUw/jJvSrl2rpZDp 3E3092SFZZI9I+choEKvsJNu1FVLQSEwP4JUV1Im+0fwNGZe/r7gW7NNTupFXx4D lqdcSfQQ7lssl0LxkYdSDLA+5pkSMQ79KTduIHHhBQ3b+QvLcpwdPsYpp3sHQBCw ySo95cqy4M4FR/uIhIbFIn0zDkT9VecFa2wsO3zBxebhBLe4SBmQjKSnkuFf2sZw c9i54KTgve5hCb+hWhPBJSYFuhYL+K7eudx89ICxyV0GGButKUS2E+LjI6/+wIwR IV1cTzEvsAeEffUXkPagALownXIIhtBHlTnKh1v9 -----END CERTIFICATE-----Generated at Fri Nov 22 15:22:18 2024 by rpki-client on console-fra.rpki-client.org