$ rpki-client -vvf repo-rpki.idnic.net/repo/281ef440-5a5f-4a4f-b509-b103245c5cf1/0/3136302e32302e33362e302f32332d3234203d3e20313532373631.roa File: 3136302e32302e33362e302f32332d3234203d3e20313532373631.roa (raw, json) Hash identifier: avjOhQMHcwWGlDF7WDzZoOiS3u3B2hy6xJEOi4n8Cr0= Subject key identifier: F3:B4:34:8F:C2:75:C3:A0:AD:C3:D2:F3:5E:75:19:86:A5:9E:C4:03 Certificate issuer: /CN=A71BAA66623847B7BD9EA7C40BCBCA855E52E8EB Certificate serial: 3E5647C60DB78F4BE71EA9CC55D359F39CA52570 Authority key identifier: A7:1B:AA:66:62:38:47:B7:BD:9E:A7:C4:0B:CB:CA:85:5E:52:E8:EB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A71BAA66623847B7BD9EA7C40BCBCA855E52E8EB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/281ef440-5a5f-4a4f-b509-b103245c5cf1/0/3136302e32302e33362e302f32332d3234203d3e20313532373631.roa Signing time: Fri 16 Aug 2024 10:35:17 +0000 ROA not before: Fri 16 Aug 2024 10:30:17 +0000 ROA not after: Fri 15 Aug 2025 10:35:17 +0000 asID: 152761 IP address blocks: 160.20.36.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/281ef440-5a5f-4a4f-b509-b103245c5cf1/0/A71BAA66623847B7BD9EA7C40BCBCA855E52E8EB.crl rsync://repo-rpki.idnic.net/repo/281ef440-5a5f-4a4f-b509-b103245c5cf1/0/A71BAA66623847B7BD9EA7C40BCBCA855E52E8EB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A71BAA66623847B7BD9EA7C40BCBCA855E52E8EB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:56:47:c6:0d:b7:8f:4b:e7:1e:a9:cc:55:d3:59:f3:9c:a5:25:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A71BAA66623847B7BD9EA7C40BCBCA855E52E8EB Validity Not Before: Aug 16 10:30:17 2024 GMT Not After : Aug 15 10:35:17 2025 GMT Subject: CN=F3B4348FC275C3A0ADC3D2F35E751986A59EC403 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:2e:0f:f1:42:b5:ea:5f:0d:d1:06:5d:86:73: 50:0b:55:f0:ae:d2:2d:0e:44:6d:31:8f:f3:21:22: 46:3d:80:cc:d8:30:8d:e4:06:98:f2:6c:c8:38:80: 18:06:08:e9:07:c4:a1:d0:64:95:e3:5b:c7:69:95: 73:19:36:b2:4c:e4:75:28:dc:4d:c9:ed:7d:c4:1f: 00:80:3f:13:10:92:5b:32:45:79:da:b6:04:76:31: ae:fe:58:e6:7d:f0:ed:4f:84:f0:47:01:0e:13:13: 7a:4a:c5:e9:81:5d:eb:05:c5:15:9f:45:44:b2:b6: 04:30:88:1e:ed:33:76:99:43:f3:cd:1b:b5:69:50: f0:83:0d:81:65:9d:76:48:49:e5:ad:d9:c5:5a:af: 62:7e:60:dc:6e:e5:94:50:ce:6e:0e:a6:00:7d:bb: 8a:fc:07:cd:5e:d5:35:f2:88:25:13:3f:75:fa:9a: 58:db:50:01:7d:d8:a1:b2:80:aa:47:f0:ba:52:69: 47:65:03:f3:5e:4d:06:c5:37:2a:bb:5d:e3:c3:f6: a8:65:e6:23:75:c2:51:26:20:12:bc:48:8a:cc:eb: e3:78:69:ed:58:a0:09:2d:d1:2e:d7:a2:12:00:5f: f9:4a:81:95:a1:d4:6d:68:e6:d4:73:20:bb:7b:d0: 33:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:B4:34:8F:C2:75:C3:A0:AD:C3:D2:F3:5E:75:19:86:A5:9E:C4:03 X509v3 Authority Key Identifier: keyid:A7:1B:AA:66:62:38:47:B7:BD:9E:A7:C4:0B:CB:CA:85:5E:52:E8:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/281ef440-5a5f-4a4f-b509-b103245c5cf1/0/A71BAA66623847B7BD9EA7C40BCBCA855E52E8EB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A71BAA66623847B7BD9EA7C40BCBCA855E52E8EB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/281ef440-5a5f-4a4f-b509-b103245c5cf1/0/3136302e32302e33362e302f32332d3234203d3e20313532373631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.20.36.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:97:27:47:7b:97:82:f8:23:6d:99:9f:87:06:6b:75:93:1c: da:29:51:2c:12:8f:19:62:5d:b9:66:94:24:10:98:04:57:f3: c1:a2:15:81:ea:27:0c:ed:20:9b:8f:c3:81:c5:b9:af:c6:db: 7c:ca:18:51:c9:4c:d1:c3:0c:1b:95:59:54:40:4b:40:05:3a: f7:54:a0:ff:2c:ca:92:e9:0a:d9:c2:f4:22:44:b8:e3:5e:07: ad:e2:fc:57:96:6f:f3:9b:ff:38:f9:07:ca:0a:80:60:10:ab: e5:17:68:3d:a0:46:dc:56:3c:33:99:21:41:83:d4:48:0f:7c: 37:4a:f1:c1:93:a2:7f:b1:34:cd:07:e0:59:15:15:ca:a2:e8: 33:d4:9d:49:89:a8:6b:d8:df:43:4d:ec:7d:07:78:df:63:45: 70:38:5f:95:18:de:fd:28:df:83:ff:3e:a2:53:9b:05:98:bd: 09:9d:70:e5:cc:3f:46:9a:c4:21:22:8b:7a:ae:ab:3f:a2:38: 24:c9:33:50:66:ec:24:bb:ae:a0:be:5e:33:d6:e7:0f:9a:cf: 61:99:ad:4a:c2:4c:39:96:94:84:ac:68:9a:b0:dd:93:d7:70: a6:fc:8a:bd:ab:c7:1b:5b:a7:35:07:55:86:0b:15:1a:23:1f: ab:7e:ee:d5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPlZHxg23j0vnHqnMVdNZ85ylJXAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTcxQkFBNjY2MjM4NDdCN0JEOUVBN0M0MEJDQkNBODU1 RTUyRThFQjAeFw0yNDA4MTYxMDMwMTdaFw0yNTA4MTUxMDM1MTdaMDMxMTAvBgNV BAMTKEYzQjQzNDhGQzI3NUMzQTBBREMzRDJGMzVFNzUxOTg2QTU5RUM0MDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2Lg/xQrXqXw3RBl2Gc1ALVfCu 0i0ORG0xj/MhIkY9gMzYMI3kBpjybMg4gBgGCOkHxKHQZJXjW8dplXMZNrJM5HUo 3E3J7X3EHwCAPxMQklsyRXnatgR2Ma7+WOZ98O1PhPBHAQ4TE3pKxemBXesFxRWf RUSytgQwiB7tM3aZQ/PNG7VpUPCDDYFlnXZISeWt2cVar2J+YNxu5ZRQzm4OpgB9 u4r8B81e1TXyiCUTP3X6mljbUAF92KGygKpH8LpSaUdlA/NeTQbFNyq7XePD9qhl 5iN1wlEmIBK8SIrM6+N4ae1YoAkt0S7XohIAX/lKgZWh1G1o5tRzILt70DMbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU87Q0j8J1w6Ctw9LzXnUZhqWexAMwHwYDVR0j BBgwFoAUpxuqZmI4R7e9nqfEC8vKhV5S6OswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ODFlZjQ0MC01YTVmLTRhNGYtYjUwOS1iMTAzMjQ1YzVjZjEvMC9BNzFCQUE2NjYy Mzg0N0I3QkQ5RUE3QzQwQkNCQ0E4NTVFNTJFOEVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQTcxQkFBNjY2MjM4NDdCN0JEOUVBN0M0MEJDQkNBODU1RTUy RThFQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI4MWVmNDQwLTVhNWYtNGE0Zi1i NTA5LWIxMDMyNDVjNWNmMS8wLzMxMzYzMDJlMzIzMDJlMzMzNjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjM3MzYzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaAUJDANBgkqhkiG 9w0BAQsFAAOCAQEAXZcnR3uXgvgjbZmfhwZrdZMc2ilRLBKPGWJduWaUJBCYBFfz waIVgeonDO0gm4/DgcW5r8bbfMoYUclM0cMMG5VZVEBLQAU691Sg/yzKkukK2cL0 IkS4414HreL8V5Zv85v/OPkHygqAYBCr5RdoPaBG3FY8M5khQYPUSA98N0rxwZOi f7E0zQfgWRUVyqLoM9SdSYmoa9jfQ03sfQd432NFcDhflRje/Sjfg/8+olObBZi9 CZ1w5cw/RprEISKLeq6rP6I4JMkzUGbsJLuuoL5eM9bnD5rPYZmtSsJMOZaUhKxo mrDdk9dwpvyKvavHG1unNQdVhgsVGiMfq37u1Q== -----END CERTIFICATE-----Generated at Wed Nov 20 15:56:07 2024 by rpki-client on console-ams.rpki-client.org