$ rpki-client -vvf repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/3136302e3139312e32372e302f32342d3234203d3e20313533313239.roa File: 3136302e3139312e32372e302f32342d3234203d3e20313533313239.roa (raw, json) Hash identifier: iMRx2/fycoUNnADpURoZKgG+Fnid0mUKuiDUMMFE+zs= Subject key identifier: BD:A4:10:7F:DD:6D:F7:55:2E:DF:B2:8D:95:88:4E:27:53:F4:DB:77 Certificate issuer: /CN=9D01A7EAAD74D818C4071C1F4AC3284F0A018182 Certificate serial: 5F29334F75455608978E2E98928D7C74A27844E7 Authority key identifier: 9D:01:A7:EA:AD:74:D8:18:C4:07:1C:1F:4A:C3:28:4F:0A:01:81:82 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/3136302e3139312e32372e302f32342d3234203d3e20313533313239.roa Signing time: Wed 23 Oct 2024 04:04:36 +0000 ROA not before: Wed 23 Oct 2024 03:59:36 +0000 ROA not after: Wed 22 Oct 2025 04:04:36 +0000 asID: 153129 IP address blocks: 160.191.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.crl rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:29:33:4f:75:45:56:08:97:8e:2e:98:92:8d:7c:74:a2:78:44:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D01A7EAAD74D818C4071C1F4AC3284F0A018182 Validity Not Before: Oct 23 03:59:36 2024 GMT Not After : Oct 22 04:04:36 2025 GMT Subject: CN=BDA4107FDD6DF7552EDFB28D95884E2753F4DB77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:7d:71:0b:5c:c8:99:66:ad:a1:f3:d0:12:a7: 41:37:c8:8f:38:f2:fb:84:f8:24:2e:01:27:b8:0a: ef:1f:3c:23:bc:b4:c3:55:77:d3:39:e7:05:b0:ee: f3:de:a7:e7:58:23:cb:cb:87:0a:2a:11:b1:a2:2d: be:de:c6:11:4b:5d:69:26:8b:c4:ce:a1:3f:c9:94: 0c:4b:32:59:56:26:a0:2a:db:b8:ad:d0:7a:17:22: 3c:5a:88:34:e9:93:70:02:41:91:75:22:e7:c9:42: 35:d7:d8:19:50:2a:69:e7:ce:87:81:0b:23:7d:62: 2d:bf:56:19:9a:4a:e9:72:8c:88:09:5a:ca:3d:e8: 7f:2c:a7:f1:af:56:1e:34:26:9f:0e:24:34:25:f8: e0:82:92:55:57:49:f8:41:01:a6:99:89:f3:0e:98: 4c:69:cf:fa:c5:fe:e8:01:00:4a:3b:ab:11:2c:f4: 18:f1:7f:c0:7b:77:30:5f:2c:1b:3b:bb:90:d6:9a: de:c9:16:76:3a:ec:7f:29:a4:b8:63:54:34:81:49: d6:4d:03:39:e3:b2:39:c7:dd:8a:f3:76:6e:2b:e1: 67:9d:40:f5:c9:c7:db:72:06:56:db:d9:8b:ef:95: eb:64:c8:b2:d8:0d:7f:bb:2a:7b:51:08:f3:93:48: 2a:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:A4:10:7F:DD:6D:F7:55:2E:DF:B2:8D:95:88:4E:27:53:F4:DB:77 X509v3 Authority Key Identifier: keyid:9D:01:A7:EA:AD:74:D8:18:C4:07:1C:1F:4A:C3:28:4F:0A:01:81:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/3136302e3139312e32372e302f32342d3234203d3e20313533313239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.191.27.0/24 Signature Algorithm: sha256WithRSAEncryption 82:b8:79:aa:61:a0:6b:68:b3:db:5b:da:20:f3:24:97:1a:5d: f0:3b:12:09:ad:af:9f:9d:d9:51:e7:d5:28:88:3f:47:f4:35: 3a:7c:89:1e:df:4d:f6:4c:ef:6c:a3:d8:44:d0:4a:c6:76:f4: 2b:ef:e5:38:d5:93:63:29:9d:b2:69:15:db:4b:b4:07:8e:c9: 7c:9e:7c:d2:21:46:4e:14:62:47:1b:b5:2c:63:3c:44:11:51: 77:c2:21:07:ad:28:e7:47:0b:13:ca:79:e4:e9:de:d3:bd:11: ab:fd:6d:8e:be:24:b7:e0:ba:97:f5:34:6a:2e:82:c1:5e:e0: 6d:4b:d7:bc:a3:fb:92:cc:88:59:a7:b1:ad:ed:99:4a:0b:62: b3:05:4d:2e:92:b0:d7:55:9f:1c:c6:57:e9:da:76:0b:31:af: b8:a2:24:19:3f:05:f7:89:b5:28:6d:83:c7:ca:00:f8:5f:f5: 7e:2f:3d:a9:29:52:af:f1:3c:1c:60:c9:bd:17:5c:6b:68:9c: e2:4a:63:72:ef:c3:4c:0e:df:ee:68:e8:84:08:b4:9e:f0:9f: 5e:85:2d:22:c0:10:d9:83:ec:50:25:64:42:85:be:52:44:e6: 4d:a2:ee:1d:8b:2e:95:6e:67:3b:1d:00:1c:a7:72:9b:e5:09: ba:30:a2:87 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXykzT3VFVgiXji6Yko18dKJ4ROcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQwMUE3RUFBRDc0RDgxOEM0MDcxQzFGNEFDMzI4NEYw QTAxODE4MjAeFw0yNDEwMjMwMzU5MzZaFw0yNTEwMjIwNDA0MzZaMDMxMTAvBgNV BAMTKEJEQTQxMDdGREQ2REY3NTUyRURGQjI4RDk1ODg0RTI3NTNGNERCNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUfXELXMiZZq2h89ASp0E3yI84 8vuE+CQuASe4Cu8fPCO8tMNVd9M55wWw7vPep+dYI8vLhwoqEbGiLb7exhFLXWkm i8TOoT/JlAxLMllWJqAq27it0HoXIjxaiDTpk3ACQZF1IufJQjXX2BlQKmnnzoeB CyN9Yi2/VhmaSulyjIgJWso96H8sp/GvVh40Jp8OJDQl+OCCklVXSfhBAaaZifMO mExpz/rF/ugBAEo7qxEs9Bjxf8B7dzBfLBs7u5DWmt7JFnY67H8ppLhjVDSBSdZN AznjsjnH3Yrzdm4r4WedQPXJx9tyBlbb2YvvletkyLLYDX+7KntRCPOTSCrdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvaQQf91t91Uu37KNlYhOJ1P023cwHwYDVR0j BBgwFoAUnQGn6q102BjEBxwfSsMoTwoBgYIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDM5NjM4OC0yZDZiLTQ3NmUtOTYzZC0xY2MzODEzNzRiMWMvMC85RDAxQTdFQUFE NzREODE4QzQwNzFDMUY0QUMzMjg0RjBBMDE4MTgyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUQwMUE3RUFBRDc0RDgxOEM0MDcxQzFGNEFDMzI4NEYwQTAx ODE4Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMzk2Mzg4LTJkNmItNDc2ZS05 NjNkLTFjYzM4MTM3NGIxYy8wLzMxMzYzMDJlMzEzOTMxMmUzMjM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzEzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoL8bMA0GCSqG SIb3DQEBCwUAA4IBAQCCuHmqYaBraLPbW9og8ySXGl3wOxIJra+fndlR59UoiD9H 9DU6fIke3032TO9so9hE0ErGdvQr7+U41ZNjKZ2yaRXbS7QHjsl8nnzSIUZOFGJH G7UsYzxEEVF3wiEHrSjnRwsTynnk6d7TvRGr/W2OviS34LqX9TRqLoLBXuBtS9e8 o/uSzIhZp7Gt7ZlKC2KzBU0ukrDXVZ8cxlfp2nYLMa+4oiQZPwX3ibUobYPHygD4 X/V+Lz2pKVKv8TwcYMm9F1xraJziSmNy78NMDt/uaOiECLSe8J9ehS0iwBDZg+xQ JWRChb5SROZNou4diy6Vbmc7HQAcp3Kb5Qm6MKKH -----END CERTIFICATE-----Generated at Thu Nov 21 06:48:39 2024 by rpki-client on console-fra.rpki-client.org