$ rpki-client -vvf repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/3136302e32322e32362e302f32342d3234203d3e20313532383036.roa File: 3136302e32322e32362e302f32342d3234203d3e20313532383036.roa (raw, json) Hash identifier: FEhjZkMiGLlLLnkMlvhdRq66NHYMIVeWK07ZVTOZp+M= Subject key identifier: 86:F1:A6:B3:E4:9C:7E:BD:31:C9:96:BD:4A:0D:9E:72:A7:CC:65:7E Certificate issuer: /CN=BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C Certificate serial: 0BB471DA7E19C2F9BBB2C7B87D5071735DBCE312 Authority key identifier: BE:41:FE:7D:C7:71:48:07:9E:A1:CA:C4:C9:00:5D:EB:68:84:BB:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/3136302e32322e32362e302f32342d3234203d3e20313532383036.roa Signing time: Mon 10 Jun 2024 18:57:33 +0000 ROA not before: Mon 10 Jun 2024 18:52:33 +0000 ROA not after: Mon 09 Jun 2025 18:57:33 +0000 asID: 152806 IP address blocks: 160.22.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C.crl rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:b4:71:da:7e:19:c2:f9:bb:b2:c7:b8:7d:50:71:73:5d:bc:e3:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C Validity Not Before: Jun 10 18:52:33 2024 GMT Not After : Jun 9 18:57:33 2025 GMT Subject: CN=86F1A6B3E49C7EBD31C996BD4A0D9E72A7CC657E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:69:23:b7:0d:97:20:51:8b:2f:4b:bd:3e:2d: 2b:ca:b9:77:71:3e:4b:cd:b0:aa:77:92:21:f8:56: 33:4f:e7:77:8e:b3:23:3f:07:c6:bc:af:2d:c8:64: fc:84:fd:32:8f:27:24:7a:8d:5a:b1:e3:fc:2e:99: 56:bb:aa:e8:f3:c5:2e:a4:7e:f2:ab:a1:42:65:0d: 49:ea:bf:20:22:94:2a:62:96:6f:36:3d:0d:52:ca: 82:6d:b5:b2:61:da:3a:bf:b0:a3:fd:12:62:b0:30: 8f:be:4e:05:c3:1a:81:37:ae:2e:6e:28:44:5c:25: 2c:ac:68:3d:22:38:df:1d:f3:51:ff:b5:9f:50:a2: 0e:4c:ff:cc:b8:e0:96:81:66:83:cd:99:8e:08:1c: 3b:bc:d3:9c:ea:cd:f5:dc:51:2b:91:8b:6b:35:df: b1:ef:ac:9d:f0:8d:de:05:8f:d1:be:97:e9:e3:66: cc:a9:18:a7:2e:fd:18:f4:6b:59:dd:cb:d9:2d:39: 8d:2f:1f:bb:c9:13:47:31:31:dd:9f:27:50:93:61: 27:97:ed:77:45:90:ae:1d:2d:92:22:c1:9c:31:90: 36:05:b2:72:3f:42:7a:86:11:df:d4:b7:b6:f6:9c: b7:94:0a:99:7e:47:75:fc:d4:27:90:8a:b1:1d:ec: bb:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:F1:A6:B3:E4:9C:7E:BD:31:C9:96:BD:4A:0D:9E:72:A7:CC:65:7E X509v3 Authority Key Identifier: keyid:BE:41:FE:7D:C7:71:48:07:9E:A1:CA:C4:C9:00:5D:EB:68:84:BB:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/3136302e32322e32362e302f32342d3234203d3e20313532383036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.26.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:41:6c:9e:92:5b:e9:22:60:be:16:68:fa:4f:f0:0d:54:92: 50:60:9b:93:80:d4:2b:34:fb:8d:ea:dd:29:ad:8e:19:1d:1c: 27:21:00:8e:79:7c:9e:fb:fd:1c:2b:05:de:5e:c6:c4:d1:a3: 77:ae:97:5a:e2:14:a0:ce:ba:72:8f:0a:0d:e4:f6:c7:73:22: ec:ac:fa:7c:8c:fa:50:0c:19:2e:fa:af:58:bb:84:f0:49:0d: 17:fd:8e:a6:c7:c7:08:ad:55:92:94:4d:61:18:e0:b8:d3:1f: d9:60:53:9f:77:d7:b8:bf:54:18:97:fd:30:ba:a6:3a:9e:ad: 3a:a3:87:78:ee:2d:1e:f0:35:ad:54:65:d7:4f:c1:79:a4:12: 3d:82:bf:3a:e3:8d:ae:52:64:f6:c2:d5:b4:98:ab:83:c8:a6: 14:4f:77:ef:f7:8b:2f:34:c7:08:d4:21:b4:9c:0f:26:6e:8e: 89:1e:fe:63:82:8a:c3:b3:29:60:33:eb:14:69:19:76:b1:29: 06:43:64:14:e1:85:b7:57:eb:a0:c4:6f:7b:e4:16:45:c3:e5: ea:2b:45:1b:5f:9c:dd:7d:59:c6:6a:55:18:8d:e4:f4:04:e4: 53:4c:ba:67:a6:e7:1e:d8:91:95:c8:b6:5d:cc:62:f7:c2:f4: 0e:26:23:90 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUC7Rx2n4Zwvm7sse4fVBxc1284xIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU0MUZFN0RDNzcxNDgwNzlFQTFDQUM0QzkwMDVERUI2 ODg0QkI4QzAeFw0yNDA2MTAxODUyMzNaFw0yNTA2MDkxODU3MzNaMDMxMTAvBgNV BAMTKDg2RjFBNkIzRTQ5QzdFQkQzMUM5OTZCRDRBMEQ5RTcyQTdDQzY1N0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiaSO3DZcgUYsvS70+LSvKuXdx PkvNsKp3kiH4VjNP53eOsyM/B8a8ry3IZPyE/TKPJyR6jVqx4/wumVa7qujzxS6k fvKroUJlDUnqvyAilCpilm82PQ1SyoJttbJh2jq/sKP9EmKwMI++TgXDGoE3ri5u KERcJSysaD0iON8d81H/tZ9Qog5M/8y44JaBZoPNmY4IHDu805zqzfXcUSuRi2s1 37HvrJ3wjd4Fj9G+l+njZsypGKcu/Rj0a1ndy9ktOY0vH7vJE0cxMd2fJ1CTYSeX 7XdFkK4dLZIiwZwxkDYFsnI/QnqGEd/Ut7b2nLeUCpl+R3X81CeQirEd7LuzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUhvGms+Scfr0xyZa9Sg2ecqfMZX4wHwYDVR0j BBgwFoAUvkH+fcdxSAeeocrEyQBd62iEu4wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YmRjZTM5MS1hNWQzLTQxMWItYTk3Yi1lODYyZmJmNTYzMWMvMC9CRTQxRkU3REM3 NzE0ODA3OUVBMUNBQzRDOTAwNURFQjY4ODRCQjhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkU0MUZFN0RDNzcxNDgwNzlFQTFDQUM0QzkwMDVERUI2ODg0 QkI4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiZGNlMzkxLWE1ZDMtNDExYi1h OTdiLWU4NjJmYmY1NjMxYy8wLzMxMzYzMDJlMzIzMjJlMzIzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAWGjANBgkqhkiG 9w0BAQsFAAOCAQEAf0FsnpJb6SJgvhZo+k/wDVSSUGCbk4DUKzT7jerdKa2OGR0c JyEAjnl8nvv9HCsF3l7GxNGjd66XWuIUoM66co8KDeT2x3Mi7Kz6fIz6UAwZLvqv WLuE8EkNF/2OpsfHCK1VkpRNYRjguNMf2WBTn3fXuL9UGJf9MLqmOp6tOqOHeO4t HvA1rVRl10/BeaQSPYK/OuONrlJk9sLVtJirg8imFE937/eLLzTHCNQhtJwPJm6O iR7+Y4KKw7MpYDPrFGkZdrEpBkNkFOGFt1froMRve+QWRcPl6itFG1+c3X1ZxmpV GI3k9ATkU0y6Z6bnHtiRlci2Xcxi98L0DiYjkA== -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org