$ rpki-client -vvf repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/3136302e32322e32372e302f32342d3234203d3e20313532383036.roa File: 3136302e32322e32372e302f32342d3234203d3e20313532383036.roa (raw, json) Hash identifier: /98MLFLi0kiWuGxGiywhSbj3ZdX9t0rrFDtPGZH2n4Q= Subject key identifier: 3F:2E:31:1C:54:11:51:E1:14:0E:A8:3F:67:9B:34:34:D9:D5:95:5D Certificate issuer: /CN=BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C Certificate serial: 6ED8415F84904263E4F4647FB65ADD6512684A17 Authority key identifier: BE:41:FE:7D:C7:71:48:07:9E:A1:CA:C4:C9:00:5D:EB:68:84:BB:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/3136302e32322e32372e302f32342d3234203d3e20313532383036.roa Signing time: Mon 10 Jun 2024 18:58:13 +0000 ROA not before: Mon 10 Jun 2024 18:53:13 +0000 ROA not after: Mon 09 Jun 2025 18:58:13 +0000 asID: 152806 IP address blocks: 160.22.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C.crl rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:d8:41:5f:84:90:42:63:e4:f4:64:7f:b6:5a:dd:65:12:68:4a:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C Validity Not Before: Jun 10 18:53:13 2024 GMT Not After : Jun 9 18:58:13 2025 GMT Subject: CN=3F2E311C541151E1140EA83F679B3434D9D5955D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ef:c4:1a:75:5f:76:05:a2:77:6a:2e:65:2c: cc:b5:3a:69:e5:3e:dc:db:d5:67:94:39:48:25:38: 9b:2b:59:ca:1b:42:88:b3:bc:92:ad:12:d5:ee:2a: cf:c8:98:4b:0d:ef:2b:88:26:5e:e1:3a:66:03:c1: ea:2e:dc:08:cf:4c:62:c0:9f:00:dd:9b:a6:08:26: 04:67:a2:f9:f9:aa:96:d9:84:13:8d:8f:3e:f3:86: cc:67:7f:21:4e:57:28:57:d8:5e:c2:a0:9c:60:2f: 8c:b4:bd:24:b2:4e:fd:1e:2d:b8:ad:f0:14:75:58: 4a:d3:eb:a1:9d:ec:65:6c:c1:4d:20:fe:21:21:db: ec:a9:28:b9:b2:19:de:4b:d5:b8:c1:29:c3:08:d6: 82:61:f9:b5:16:3c:37:94:4d:ca:5b:da:19:43:5a: 42:ed:f1:51:75:b1:de:91:bc:44:0a:e2:37:8b:0c: ff:ed:cc:24:80:47:3d:2c:c1:5b:9d:50:17:0d:00: 53:2b:7b:33:b1:a4:ed:03:f3:cd:68:14:dc:fd:34: 81:4d:aa:91:7a:00:85:43:5a:f8:0a:cd:d2:75:1a: 50:f0:6e:2d:21:c5:6c:ef:d6:82:11:37:1d:90:c1: e7:74:4b:7f:12:38:ac:45:5c:3b:64:73:2e:22:79: 14:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:2E:31:1C:54:11:51:E1:14:0E:A8:3F:67:9B:34:34:D9:D5:95:5D X509v3 Authority Key Identifier: keyid:BE:41:FE:7D:C7:71:48:07:9E:A1:CA:C4:C9:00:5D:EB:68:84:BB:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/3136302e32322e32372e302f32342d3234203d3e20313532383036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.27.0/24 Signature Algorithm: sha256WithRSAEncryption 54:59:3b:01:8e:eb:75:04:ef:b1:3b:b7:ab:a9:c1:e4:1d:af: db:9b:ee:5d:d1:7a:cb:51:3f:d3:1d:cd:13:c7:67:be:5f:4d: 2d:0d:f1:75:0e:8a:06:6a:12:ea:de:b4:f0:44:83:56:33:db: 30:95:6e:6d:0e:1a:02:af:57:e3:9a:b9:ec:a8:02:4d:e4:d1: 83:b4:de:23:55:a8:b4:dd:cf:1f:30:fa:e4:20:45:b0:5a:9a: bf:e4:d4:ca:66:39:d4:38:a2:c1:76:f2:c8:ec:04:de:69:43: 2f:d3:ba:6c:88:93:d4:1e:30:6e:5d:ef:41:ee:73:02:69:8c: af:16:a2:93:aa:f7:ab:25:7f:b1:ee:59:a0:ea:1f:06:e0:79: ea:5e:3b:a4:03:a3:42:72:6a:be:2d:ac:95:4b:a1:c7:79:0c: 68:d5:5e:ce:9a:b5:ea:8d:99:87:cd:13:3a:e6:0d:19:54:d5: 6a:a3:8d:46:2d:c7:ab:d1:c6:ab:1f:4d:47:b0:1c:a9:49:c0: 05:16:4c:06:c1:ac:47:db:88:f6:6a:c3:3f:56:a9:1c:5c:5c: c2:fb:bf:e2:82:41:93:fb:da:e2:80:30:85:e3:60:6f:ce:d9: da:65:03:1d:89:2d:6b:2d:33:4f:fc:13:94:97:4a:f1:e1:f7: d2:59:ea:4d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbthBX4SQQmPk9GR/tlrdZRJoShcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU0MUZFN0RDNzcxNDgwNzlFQTFDQUM0QzkwMDVERUI2 ODg0QkI4QzAeFw0yNDA2MTAxODUzMTNaFw0yNTA2MDkxODU4MTNaMDMxMTAvBgNV BAMTKDNGMkUzMTFDNTQxMTUxRTExNDBFQTgzRjY3OUIzNDM0RDlENTk1NUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq78QadV92BaJ3ai5lLMy1Omnl Ptzb1WeUOUglOJsrWcobQoizvJKtEtXuKs/ImEsN7yuIJl7hOmYDweou3AjPTGLA nwDdm6YIJgRnovn5qpbZhBONjz7zhsxnfyFOVyhX2F7CoJxgL4y0vSSyTv0eLbit 8BR1WErT66Gd7GVswU0g/iEh2+ypKLmyGd5L1bjBKcMI1oJh+bUWPDeUTcpb2hlD WkLt8VF1sd6RvEQK4jeLDP/tzCSARz0swVudUBcNAFMrezOxpO0D881oFNz9NIFN qpF6AIVDWvgKzdJ1GlDwbi0hxWzv1oIRNx2Qwed0S38SOKxFXDtkcy4ieRQDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUPy4xHFQRUeEUDqg/Z5s0NNnVlV0wHwYDVR0j BBgwFoAUvkH+fcdxSAeeocrEyQBd62iEu4wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YmRjZTM5MS1hNWQzLTQxMWItYTk3Yi1lODYyZmJmNTYzMWMvMC9CRTQxRkU3REM3 NzE0ODA3OUVBMUNBQzRDOTAwNURFQjY4ODRCQjhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkU0MUZFN0RDNzcxNDgwNzlFQTFDQUM0QzkwMDVERUI2ODg0 QkI4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiZGNlMzkxLWE1ZDMtNDExYi1h OTdiLWU4NjJmYmY1NjMxYy8wLzMxMzYzMDJlMzIzMjJlMzIzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAWGzANBgkqhkiG 9w0BAQsFAAOCAQEAVFk7AY7rdQTvsTu3q6nB5B2v25vuXdF6y1E/0x3NE8dnvl9N LQ3xdQ6KBmoS6t608ESDVjPbMJVubQ4aAq9X45q57KgCTeTRg7TeI1WotN3PHzD6 5CBFsFqav+TUymY51DiiwXbyyOwE3mlDL9O6bIiT1B4wbl3vQe5zAmmMrxaik6r3 qyV/se5ZoOofBuB56l47pAOjQnJqvi2slUuhx3kMaNVezpq16o2Zh80TOuYNGVTV aqONRi3Hq9HGqx9NR7AcqUnABRZMBsGsR9uI9mrDP1apHFxcwvu/4oJBk/va4oAw heNgb87Z2mUDHYktay0zT/wTlJdK8eH30lnqTQ== -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:25 2024 by rpki-client on console-fra.rpki-client.org