$ rpki-client -vvf repo-rpki.idnic.net/repo/1e855e8a-3ff8-47ff-aaec-48d8b380a904/0/3136302e3139312e3130362e302f32332d3234203d3e20313533313433.roa File: 3136302e3139312e3130362e302f32332d3234203d3e20313533313433.roa (raw, json) Hash identifier: iw17DMpgfD2nYIWjQL2ZNOlw/a2YjINch68eFMNeuo0= Subject key identifier: 01:2D:CC:4A:40:DF:F0:43:34:16:FC:B4:81:E3:8F:A5:34:91:69:A5 Certificate issuer: /CN=DC0680824B7F80117B62C239676444B0691128B8 Certificate serial: 543D1ED811F7377EE4B0D3BFBC4CCC869C35F9A2 Authority key identifier: DC:06:80:82:4B:7F:80:11:7B:62:C2:39:67:64:44:B0:69:11:28:B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DC0680824B7F80117B62C239676444B0691128B8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e855e8a-3ff8-47ff-aaec-48d8b380a904/0/3136302e3139312e3130362e302f32332d3234203d3e20313533313433.roa Signing time: Wed 20 Nov 2024 03:34:20 +0000 ROA not before: Wed 20 Nov 2024 03:29:20 +0000 ROA not after: Wed 19 Nov 2025 03:34:20 +0000 asID: 153143 IP address blocks: 160.191.106.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e855e8a-3ff8-47ff-aaec-48d8b380a904/0/DC0680824B7F80117B62C239676444B0691128B8.crl rsync://repo-rpki.idnic.net/repo/1e855e8a-3ff8-47ff-aaec-48d8b380a904/0/DC0680824B7F80117B62C239676444B0691128B8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DC0680824B7F80117B62C239676444B0691128B8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:3d:1e:d8:11:f7:37:7e:e4:b0:d3:bf:bc:4c:cc:86:9c:35:f9:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC0680824B7F80117B62C239676444B0691128B8 Validity Not Before: Nov 20 03:29:20 2024 GMT Not After : Nov 19 03:34:20 2025 GMT Subject: CN=012DCC4A40DFF0433416FCB481E38FA5349169A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:86:8f:68:d8:d3:43:65:f3:12:01:8e:3c:24: f4:73:19:17:61:e5:8d:62:ae:63:1f:92:64:90:ab: 4d:29:de:f9:f8:51:bb:30:d5:1c:c9:57:35:d3:e8: 9e:97:d4:e7:2a:e9:7e:bf:97:0a:a9:e5:dc:00:7a: bd:ba:3d:63:27:30:02:d7:16:ea:4c:ef:6b:c6:72: 03:9d:57:1f:15:42:f4:34:d9:61:16:5a:24:75:47: aa:c1:f4:1e:e8:c8:f1:e6:8e:24:49:a4:5a:b0:bc: 66:95:4c:04:c2:bb:57:50:2e:5b:d4:1a:f9:51:a8: 77:7a:5f:16:23:3f:f5:1f:e6:3f:75:e5:70:96:10: 32:e1:ed:7b:9d:60:7a:4b:ed:fa:bb:07:9a:42:f7: 34:2a:f9:fa:7a:c1:ec:e0:76:74:05:2e:51:67:c0: f6:78:d0:27:1e:23:af:92:cf:44:cf:c9:8f:10:b5: b4:f4:82:e9:b4:54:bd:4c:7b:e7:38:35:78:93:bb: fc:38:75:c7:40:9c:5f:9f:61:7b:e5:fc:26:f7:74: 94:52:48:0d:af:dd:25:6f:b9:c7:4a:6c:32:6b:4a: df:f0:69:df:be:cb:4b:0e:1d:00:43:89:81:0f:90: 51:11:2c:ab:91:f0:df:d4:4d:5c:6b:d3:89:39:2d: 89:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:2D:CC:4A:40:DF:F0:43:34:16:FC:B4:81:E3:8F:A5:34:91:69:A5 X509v3 Authority Key Identifier: keyid:DC:06:80:82:4B:7F:80:11:7B:62:C2:39:67:64:44:B0:69:11:28:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e855e8a-3ff8-47ff-aaec-48d8b380a904/0/DC0680824B7F80117B62C239676444B0691128B8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DC0680824B7F80117B62C239676444B0691128B8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e855e8a-3ff8-47ff-aaec-48d8b380a904/0/3136302e3139312e3130362e302f32332d3234203d3e20313533313433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.191.106.0/23 Signature Algorithm: sha256WithRSAEncryption 2f:87:a7:86:e1:90:d5:1c:07:b2:24:70:7e:9b:c1:89:88:83: 00:5e:80:1e:ff:20:a1:b7:ad:b7:f2:3d:1e:f4:b1:13:95:36: bf:57:d5:d7:9f:a2:60:19:8d:1f:f0:70:ee:16:45:53:3d:35: 27:98:99:bb:5b:a8:43:54:7d:fa:02:d1:e2:b8:98:7b:8c:46: ea:9e:4c:72:a8:c8:39:a0:20:70:0e:49:01:57:bb:8f:c5:ff: 75:2c:5a:ce:c7:14:94:6e:4c:97:1d:1b:dc:16:9a:52:1e:e3: 30:80:ce:d7:e7:f8:a9:6f:dd:e2:df:0e:80:7b:7f:ec:75:e7: de:6e:a4:da:cb:e8:ef:e1:2a:e6:fe:01:72:e6:5b:69:a2:55: b8:32:3e:da:3a:fd:92:ad:b3:db:df:99:4b:45:24:7b:c5:50: 0e:ba:f8:bf:9f:de:25:73:9a:97:05:a8:41:53:ae:f1:a1:4c: c5:32:e2:b0:c7:3a:b7:d2:84:3c:f4:62:61:7a:ad:0f:1f:f3: 0d:fe:26:06:99:88:92:be:5c:cd:4b:6f:0c:31:9d:43:4f:50: 86:cc:87:b8:02:9e:89:17:05:10:a2:41:16:34:07:ab:24:f0: c6:13:6f:1a:35:dc:79:19:49:6d:4e:90:86:ee:60:b2:9f:de: f0:1b:02:4d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVD0e2BH3N37ksNO/vEzMhpw1+aIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREMwNjgwODI0QjdGODAxMTdCNjJDMjM5Njc2NDQ0QjA2 OTExMjhCODAeFw0yNDExMjAwMzI5MjBaFw0yNTExMTkwMzM0MjBaMDMxMTAvBgNV BAMTKDAxMkRDQzRBNDBERkYwNDMzNDE2RkNCNDgxRTM4RkE1MzQ5MTY5QTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEho9o2NNDZfMSAY48JPRzGRdh 5Y1irmMfkmSQq00p3vn4Ubsw1RzJVzXT6J6X1Ocq6X6/lwqp5dwAer26PWMnMALX FupM72vGcgOdVx8VQvQ02WEWWiR1R6rB9B7oyPHmjiRJpFqwvGaVTATCu1dQLlvU GvlRqHd6XxYjP/Uf5j915XCWEDLh7XudYHpL7fq7B5pC9zQq+fp6wezgdnQFLlFn wPZ40CceI6+Sz0TPyY8QtbT0gum0VL1Me+c4NXiTu/w4dcdAnF+fYXvl/Cb3dJRS SA2v3SVvucdKbDJrSt/wad++y0sOHQBDiYEPkFERLKuR8N/UTVxr04k5LYlbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUAS3MSkDf8EM0Fvy0geOPpTSRaaUwHwYDVR0j BBgwFoAU3AaAgkt/gBF7YsI5Z2REsGkRKLgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTg1NWU4YS0zZmY4LTQ3ZmYtYWFlYy00OGQ4YjM4MGE5MDQvMC9EQzA2ODA4MjRC N0Y4MDExN0I2MkMyMzk2NzY0NDRCMDY5MTEyOEI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvREMwNjgwODI0QjdGODAxMTdCNjJDMjM5Njc2NDQ0QjA2OTEx MjhCOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlODU1ZThhLTNmZjgtNDdmZi1h YWVjLTQ4ZDhiMzgwYTkwNC8wLzMxMzYzMDJlMzEzOTMxMmUzMTMwMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM1MzMzMTM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGgv2owDQYJ KoZIhvcNAQELBQADggEBAC+Hp4bhkNUcB7IkcH6bwYmIgwBegB7/IKG3rbfyPR70 sROVNr9X1defomAZjR/wcO4WRVM9NSeYmbtbqENUffoC0eK4mHuMRuqeTHKoyDmg IHAOSQFXu4/F/3UsWs7HFJRuTJcdG9wWmlIe4zCAztfn+Klv3eLfDoB7f+x1595u pNrL6O/hKub+AXLmW2miVbgyPto6/ZKts9vfmUtFJHvFUA66+L+f3iVzmpcFqEFT rvGhTMUy4rDHOrfShDz0YmF6rQ8f8w3+JgaZiJK+XM1LbwwxnUNPUIbMh7gCnokX BRCiQRY0B6sk8MYTbxo13HkZSW1OkIbuYLKf3vAbAk0= -----END CERTIFICATE-----Generated at Fri Nov 22 09:29:42 2024 by rpki-client on console-fra.rpki-client.org