$ rpki-client -vvf repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/3136302e3139312e32362e302f32332d3234203d3e20313533313239.roa File: 3136302e3139312e32362e302f32332d3234203d3e20313533313239.roa (raw, json) Hash identifier: WF2EQ4NoWy0FUwj/4wZEsZYgK5I+o6WegPxbWofx25Q= Subject key identifier: 86:EC:A9:69:BF:AB:EC:10:AA:FD:64:2C:74:F4:FD:60:BD:10:2C:DB Certificate issuer: /CN=9D01A7EAAD74D818C4071C1F4AC3284F0A018182 Certificate serial: 13C7469EFABAF9C566AD4544003631105349ED2A Authority key identifier: 9D:01:A7:EA:AD:74:D8:18:C4:07:1C:1F:4A:C3:28:4F:0A:01:81:82 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/3136302e3139312e32362e302f32332d3234203d3e20313533313239.roa Signing time: Wed 23 Oct 2024 04:03:49 +0000 ROA not before: Wed 23 Oct 2024 03:58:49 +0000 ROA not after: Wed 22 Oct 2025 04:03:49 +0000 asID: 153129 IP address blocks: 160.191.26.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.crl rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:c7:46:9e:fa:ba:f9:c5:66:ad:45:44:00:36:31:10:53:49:ed:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D01A7EAAD74D818C4071C1F4AC3284F0A018182 Validity Not Before: Oct 23 03:58:49 2024 GMT Not After : Oct 22 04:03:49 2025 GMT Subject: CN=86ECA969BFABEC10AAFD642C74F4FD60BD102CDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:25:41:26:a5:7e:32:a3:d0:74:10:86:7f:87: ee:d3:70:c1:cf:a1:05:ad:00:38:eb:9b:47:ba:04: b4:fb:bc:ca:61:a5:05:e2:64:6b:d2:e3:47:3f:68: 3b:5c:48:82:6d:e1:aa:d2:35:54:41:d2:32:aa:78: 0a:a7:a1:7c:30:9d:75:e7:99:cb:63:ef:f2:3e:ec: 71:11:81:e4:3c:99:29:17:8e:bf:2b:a9:e2:76:5e: 5f:6f:d7:a6:03:b2:41:ac:e5:ee:a9:fb:ef:43:72: 48:02:0e:df:2d:c4:16:13:e2:ff:f9:81:ad:5f:82: 36:db:04:9e:f5:85:ff:4e:85:63:0d:85:e5:b9:1f: cd:da:6f:07:cb:51:a6:97:b2:54:4e:03:62:08:55: 97:b6:a2:82:c8:27:03:9a:29:5f:73:8e:72:0d:05: a6:48:64:7c:28:00:ba:57:c0:5b:23:63:cc:50:de: 37:3a:8e:27:a2:41:58:ec:15:38:25:ff:75:33:92: 1c:03:f5:e1:0d:4b:b3:8e:16:07:49:30:2c:33:0c: 28:c3:4d:0c:6e:91:48:36:35:cb:56:f2:5a:fa:b0: c3:1d:94:ac:f5:3c:43:2b:3d:14:c8:f0:93:0b:b6: 35:6f:4d:a1:5d:b8:6e:23:12:48:99:19:25:c0:53: 5f:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:EC:A9:69:BF:AB:EC:10:AA:FD:64:2C:74:F4:FD:60:BD:10:2C:DB X509v3 Authority Key Identifier: keyid:9D:01:A7:EA:AD:74:D8:18:C4:07:1C:1F:4A:C3:28:4F:0A:01:81:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/3136302e3139312e32362e302f32332d3234203d3e20313533313239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.191.26.0/23 Signature Algorithm: sha256WithRSAEncryption 41:7c:87:5a:e4:76:c7:16:14:0e:fd:17:96:5e:f1:74:9a:6d: 79:a8:84:97:18:6e:58:e6:49:f0:ce:ea:7b:d5:c3:bc:b7:7f: 1c:58:fd:bf:ed:6d:5d:86:92:e0:a2:a0:7b:9c:ba:a5:80:1e: 80:7e:e7:c6:43:ce:a6:17:3f:22:13:2f:db:2a:72:92:68:81: 99:14:ef:a6:44:4f:72:c4:c3:9c:39:75:1d:40:be:5a:92:3b: bf:51:17:d9:3e:2d:7d:06:7f:ba:d8:c7:97:60:dc:3c:22:52: 52:e5:0a:60:cf:36:59:c2:68:b0:9f:83:04:68:ef:bf:97:70: 74:9d:8c:08:e8:79:16:76:56:c3:e7:fb:b8:59:bc:8d:ce:a0: 60:37:81:37:52:87:0c:4d:16:d2:b9:aa:80:46:db:75:71:6c: a0:00:34:f0:5c:dd:58:b5:86:fa:5c:f9:ed:a2:61:6a:e5:fc: 1b:11:4d:2b:03:c1:83:08:55:23:ee:6d:e2:50:af:3d:86:12: 41:66:93:79:97:42:93:a3:35:2f:40:10:2c:34:f3:40:3b:d7: f2:76:99:2c:e3:24:3d:ca:f4:ae:38:d4:74:5e:2a:5b:ad:fc: 7c:38:53:5a:81:de:5c:9c:c2:ce:5a:26:8e:77:3a:dd:9d:c8: 2c:d7:ef:f9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUE8dGnvq6+cVmrUVEADYxEFNJ7SowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQwMUE3RUFBRDc0RDgxOEM0MDcxQzFGNEFDMzI4NEYw QTAxODE4MjAeFw0yNDEwMjMwMzU4NDlaFw0yNTEwMjIwNDAzNDlaMDMxMTAvBgNV BAMTKDg2RUNBOTY5QkZBQkVDMTBBQUZENjQyQzc0RjRGRDYwQkQxMDJDREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4JUEmpX4yo9B0EIZ/h+7TcMHP oQWtADjrm0e6BLT7vMphpQXiZGvS40c/aDtcSIJt4arSNVRB0jKqeAqnoXwwnXXn mctj7/I+7HERgeQ8mSkXjr8rqeJ2Xl9v16YDskGs5e6p++9DckgCDt8txBYT4v/5 ga1fgjbbBJ71hf9OhWMNheW5H83abwfLUaaXslROA2IIVZe2ooLIJwOaKV9zjnIN BaZIZHwoALpXwFsjY8xQ3jc6jieiQVjsFTgl/3UzkhwD9eENS7OOFgdJMCwzDCjD TQxukUg2NctW8lr6sMMdlKz1PEMrPRTI8JMLtjVvTaFduG4jEkiZGSXAU19NAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhuypab+r7BCq/WQsdPT9YL0QLNswHwYDVR0j BBgwFoAUnQGn6q102BjEBxwfSsMoTwoBgYIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDM5NjM4OC0yZDZiLTQ3NmUtOTYzZC0xY2MzODEzNzRiMWMvMC85RDAxQTdFQUFE NzREODE4QzQwNzFDMUY0QUMzMjg0RjBBMDE4MTgyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUQwMUE3RUFBRDc0RDgxOEM0MDcxQzFGNEFDMzI4NEYwQTAx ODE4Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMzk2Mzg4LTJkNmItNDc2ZS05 NjNkLTFjYzM4MTM3NGIxYy8wLzMxMzYzMDJlMzEzOTMxMmUzMjM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMzMzEzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoL8aMA0GCSqG SIb3DQEBCwUAA4IBAQBBfIda5HbHFhQO/ReWXvF0mm15qISXGG5Y5knwzup71cO8 t38cWP2/7W1dhpLgoqB7nLqlgB6AfufGQ86mFz8iEy/bKnKSaIGZFO+mRE9yxMOc OXUdQL5akju/URfZPi19Bn+62MeXYNw8IlJS5QpgzzZZwmiwn4MEaO+/l3B0nYwI 6HkWdlbD5/u4WbyNzqBgN4E3UocMTRbSuaqARtt1cWygADTwXN1YtYb6XPntomFq 5fwbEU0rA8GDCFUj7m3iUK89hhJBZpN5l0KTozUvQBAsNPNAO9fydpks4yQ9yvSu ONR0Xipbrfx8OFNagd5cnMLOWiaOdzrdncgs1+/5 -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:02 2024 by rpki-client on console-ams.rpki-client.org