$ rpki-client -vvf repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/3136302e3139312e32362e302f32342d3234203d3e20313533313239.roa File: 3136302e3139312e32362e302f32342d3234203d3e20313533313239.roa (raw, json) Hash identifier: qQpFLnjSrZjdy07FM2TviIie4W5UxekPgT0NJm9BT0c= Subject key identifier: 21:85:35:8D:66:9D:4F:B2:F5:74:19:20:57:15:2D:8E:CE:3A:43:3D Certificate issuer: /CN=9D01A7EAAD74D818C4071C1F4AC3284F0A018182 Certificate serial: 014A4D66B73991F2D0A0481210FB1207E2298B69 Authority key identifier: 9D:01:A7:EA:AD:74:D8:18:C4:07:1C:1F:4A:C3:28:4F:0A:01:81:82 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/3136302e3139312e32362e302f32342d3234203d3e20313533313239.roa Signing time: Wed 23 Oct 2024 04:04:14 +0000 ROA not before: Wed 23 Oct 2024 03:59:14 +0000 ROA not after: Wed 22 Oct 2025 04:04:14 +0000 asID: 153129 IP address blocks: 160.191.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.crl rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:4a:4d:66:b7:39:91:f2:d0:a0:48:12:10:fb:12:07:e2:29:8b:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D01A7EAAD74D818C4071C1F4AC3284F0A018182 Validity Not Before: Oct 23 03:59:14 2024 GMT Not After : Oct 22 04:04:14 2025 GMT Subject: CN=2185358D669D4FB2F574192057152D8ECE3A433D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:ed:bf:ff:43:70:dc:d7:4e:cd:29:9c:56:6d: 82:50:a6:d4:c0:4e:30:ba:c7:8a:88:e7:c0:20:55: 71:b9:f9:c5:66:1b:72:94:56:58:39:0e:76:73:54: 82:2f:1b:b5:83:68:45:55:c8:ad:67:db:c8:6e:d5: ac:1c:5d:37:d5:2a:ae:21:b7:1c:fc:fd:5d:5b:31: 85:27:dc:e6:cd:cd:21:24:1e:e4:de:ab:a4:69:c4: 1a:da:f0:17:48:3e:85:17:82:34:85:bb:59:41:7a: 2a:b2:fb:f9:49:51:f7:38:a2:ff:59:0f:3e:ae:eb: 00:0c:3b:1b:de:84:8c:26:c7:4a:15:0c:c2:ca:80: 88:1d:6e:77:7a:7f:c7:3e:86:6e:f7:60:b2:25:06: 97:97:42:54:1c:b4:10:b3:90:28:57:6b:3f:0f:49: 5a:c1:93:7e:e3:32:6d:14:e4:75:08:fd:4a:4f:dd: f2:8c:c4:cc:37:6f:7d:ca:fa:c1:1a:b9:ea:71:10: d2:8d:18:08:68:76:9c:85:66:90:05:b0:87:af:79: 6c:97:f1:31:2d:96:78:e2:e5:f7:57:8e:41:2b:46: d1:c4:64:02:bf:14:25:ee:f9:ff:ff:2d:1c:82:fd: 1e:c2:b4:83:9c:41:54:1b:36:81:f3:b7:d3:da:c1: e9:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:85:35:8D:66:9D:4F:B2:F5:74:19:20:57:15:2D:8E:CE:3A:43:3D X509v3 Authority Key Identifier: keyid:9D:01:A7:EA:AD:74:D8:18:C4:07:1C:1F:4A:C3:28:4F:0A:01:81:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/3136302e3139312e32362e302f32342d3234203d3e20313533313239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.191.26.0/24 Signature Algorithm: sha256WithRSAEncryption 27:17:bd:47:9f:f6:d0:51:6d:3a:b4:f3:6f:80:ce:7b:f9:b5: 6a:e6:d1:73:0b:23:18:99:6f:19:6d:93:69:c2:77:a2:c6:f9: bd:89:0b:44:45:21:56:94:93:87:e9:ec:f8:27:bc:44:2a:2e: 49:df:e4:c1:5d:20:24:07:78:d1:7b:13:bd:f5:32:33:df:92: f6:6d:9b:d4:30:da:13:c6:59:b0:da:dc:69:3d:e1:21:c9:f8: 0d:df:be:34:91:5a:e5:14:94:74:e1:d5:6b:d6:da:61:53:14: a9:db:0f:bd:3b:40:d6:6d:1d:64:1f:ef:56:02:46:ec:b5:6f: 48:24:de:7e:7b:7d:b4:57:58:20:fb:32:a2:63:ad:8d:40:da: 47:e0:7e:9b:dc:0a:33:0b:cf:9b:fd:3d:17:4f:4e:47:fd:12: 2b:0e:cc:92:38:75:eb:1d:ee:78:fd:c5:6c:03:06:1d:d3:90: 9e:3e:cc:63:7a:cf:a4:31:bd:55:9f:45:2f:e0:87:ff:0d:14: 05:84:0d:cc:78:62:a8:e1:e7:57:e3:65:cf:13:1c:e9:d8:aa: 09:02:40:84:78:71:f3:52:49:97:77:8f:77:bc:3f:6e:c0:83: f5:32:7d:61:27:70:cd:23:d3:e5:db:63:19:af:f2:92:39:2e: 15:47:55:83 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAUpNZrc5kfLQoEgSEPsSB+Ipi2kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQwMUE3RUFBRDc0RDgxOEM0MDcxQzFGNEFDMzI4NEYw QTAxODE4MjAeFw0yNDEwMjMwMzU5MTRaFw0yNTEwMjIwNDA0MTRaMDMxMTAvBgNV BAMTKDIxODUzNThENjY5RDRGQjJGNTc0MTkyMDU3MTUyRDhFQ0UzQTQzM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDj7b//Q3Dc107NKZxWbYJQptTA TjC6x4qI58AgVXG5+cVmG3KUVlg5DnZzVIIvG7WDaEVVyK1n28hu1awcXTfVKq4h txz8/V1bMYUn3ObNzSEkHuTeq6RpxBra8BdIPoUXgjSFu1lBeiqy+/lJUfc4ov9Z Dz6u6wAMOxvehIwmx0oVDMLKgIgdbnd6f8c+hm73YLIlBpeXQlQctBCzkChXaz8P SVrBk37jMm0U5HUI/UpP3fKMxMw3b33K+sEauepxENKNGAhodpyFZpAFsIeveWyX 8TEtlnji5fdXjkErRtHEZAK/FCXu+f//LRyC/R7CtIOcQVQbNoHzt9PawekPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUIYU1jWadT7L1dBkgVxUtjs46Qz0wHwYDVR0j BBgwFoAUnQGn6q102BjEBxwfSsMoTwoBgYIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDM5NjM4OC0yZDZiLTQ3NmUtOTYzZC0xY2MzODEzNzRiMWMvMC85RDAxQTdFQUFE NzREODE4QzQwNzFDMUY0QUMzMjg0RjBBMDE4MTgyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUQwMUE3RUFBRDc0RDgxOEM0MDcxQzFGNEFDMzI4NEYwQTAx ODE4Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMzk2Mzg4LTJkNmItNDc2ZS05 NjNkLTFjYzM4MTM3NGIxYy8wLzMxMzYzMDJlMzEzOTMxMmUzMjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzEzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoL8aMA0GCSqG SIb3DQEBCwUAA4IBAQAnF71Hn/bQUW06tPNvgM57+bVq5tFzCyMYmW8ZbZNpwnei xvm9iQtERSFWlJOH6ez4J7xEKi5J3+TBXSAkB3jRexO99TIz35L2bZvUMNoTxlmw 2txpPeEhyfgN3740kVrlFJR04dVr1tphUxSp2w+9O0DWbR1kH+9WAkbstW9IJN5+ e320V1gg+zKiY62NQNpH4H6b3AozC8+b/T0XT05H/RIrDsySOHXrHe54/cVsAwYd 05CePsxjes+kMb1Vn0Uv4If/DRQFhA3MeGKo4edX42XPExzp2KoJAkCEeHHzUkmX d493vD9uwIP1Mn1hJ3DNI9Pl22MZr/KSOS4VR1WD -----END CERTIFICATE-----Generated at Thu Nov 21 06:48:39 2024 by rpki-client on console-fra.rpki-client.org