$ rpki-client -vvf repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/3136302e3139312e36352e302f32342d3234203d3e20313533313438.roa File: 3136302e3139312e36352e302f32342d3234203d3e20313533313438.roa (raw, json) Hash identifier: 66g0GBTdSeAme2H37nLc01yyifW6eVqeoyuhCfgsCgA= Subject key identifier: 42:FD:31:60:AB:E9:D0:CB:76:44:77:5E:F7:A7:F0:0A:00:BF:7F:56 Certificate issuer: /CN=A9D663C6EBCD250AA8927EA094627C9415DEE7FC Certificate serial: 39616575E35F8D9827E89C53432924A522EC5B58 Authority key identifier: A9:D6:63:C6:EB:CD:25:0A:A8:92:7E:A0:94:62:7C:94:15:DE:E7:FC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/3136302e3139312e36352e302f32342d3234203d3e20313533313438.roa Signing time: Wed 11 Dec 2024 07:04:27 +0000 ROA not before: Wed 11 Dec 2024 06:59:27 +0000 ROA not after: Wed 10 Dec 2025 07:04:27 +0000 asID: 153148 IP address blocks: 160.191.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.crl rsync://repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 21:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:61:65:75:e3:5f:8d:98:27:e8:9c:53:43:29:24:a5:22:ec:5b:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9D663C6EBCD250AA8927EA094627C9415DEE7FC Validity Not Before: Dec 11 06:59:27 2024 GMT Not After : Dec 10 07:04:27 2025 GMT Subject: CN=42FD3160ABE9D0CB7644775EF7A7F00A00BF7F56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:10:06:a0:47:7c:8e:b5:c3:b8:fc:79:3e:2c: a5:ec:29:9b:ea:37:2b:79:36:e7:a7:6d:73:11:c2: a9:6b:3f:2b:f8:bc:ca:f8:6b:af:bb:2f:e6:64:c8: 05:9a:38:4b:1a:de:01:8a:da:ae:be:72:26:b1:91: 59:d1:dc:9a:24:49:3a:08:db:46:e4:97:c6:ae:08: d0:aa:68:09:fb:69:6c:b3:39:a5:0f:8a:2a:3b:ea: bf:a2:68:c4:c2:4d:58:31:d7:54:1e:5c:3f:4f:c6: b6:6b:e1:9f:7a:a5:53:98:74:16:87:49:19:a4:b3: bf:11:c0:ea:15:c0:d8:7c:09:96:b2:c7:ae:c1:5e: c4:d6:11:20:7e:8e:07:dd:85:aa:18:ee:2c:66:be: 9b:04:68:f9:f4:d7:82:e8:2e:54:a0:3b:bf:d6:6a: 4b:85:07:5e:ab:fd:71:cf:fd:23:70:3d:54:e8:ff: 01:5d:27:9c:11:28:16:f8:76:7b:a5:89:f0:4b:dd: 76:9d:2b:8b:da:bc:c0:df:e3:ca:7e:b3:d6:1b:02: 0a:b1:a1:a2:fc:a4:87:ec:99:53:40:01:cb:cc:2a: 52:e3:83:f3:58:5c:c2:22:fc:9c:32:b4:50:14:cc: 34:4e:d0:08:40:f3:0b:19:4f:aa:dc:0b:6a:86:c8: c4:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:FD:31:60:AB:E9:D0:CB:76:44:77:5E:F7:A7:F0:0A:00:BF:7F:56 X509v3 Authority Key Identifier: keyid:A9:D6:63:C6:EB:CD:25:0A:A8:92:7E:A0:94:62:7C:94:15:DE:E7:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/3136302e3139312e36352e302f32342d3234203d3e20313533313438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.191.65.0/24 Signature Algorithm: sha256WithRSAEncryption 35:b3:c8:9e:4d:ef:80:33:c7:67:06:30:cc:11:2b:cb:96:65: a3:f7:ca:c1:97:8e:4b:9d:55:19:ef:10:a3:a2:2d:10:b1:20: ea:04:a7:91:6c:e3:b9:94:13:fb:c3:db:d1:7a:71:ee:ec:8e: 7b:72:f6:a3:86:37:d1:88:f4:d8:b4:82:6c:d8:dd:64:c3:c3: 8e:2f:10:1e:00:bb:83:0c:63:a3:a2:7a:a3:a7:c1:da:60:d0: 3e:a1:7e:a8:7f:cc:da:41:28:37:7d:4c:b3:ae:d5:67:6a:ae: 5b:69:81:f3:9a:9d:3f:ef:a3:dc:3c:e9:bf:47:e4:84:0a:b9: 8a:42:73:cf:75:1e:1e:5b:17:1c:64:d9:25:e2:15:04:37:ea: 08:0b:03:31:e8:81:4f:8d:23:c5:0e:34:21:0a:b5:71:7c:e0: f5:32:d7:d0:ae:8c:c4:08:bf:b0:bf:89:4b:6d:a7:36:1e:e2: 5d:52:ff:40:3a:99:57:7c:c0:93:73:f7:51:4f:36:3c:3d:a5: 82:f6:23:e4:e0:20:e4:c8:7f:89:60:f5:9f:d8:a1:c8:81:8c: ea:52:fb:31:ce:c5:67:14:dc:1b:e2:cc:62:15:5e:1e:f6:1f: 15:73:fd:33:8e:59:cf:93:48:40:da:5e:97:3f:c7:90:a9:b4: 96:51:0d:09 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOWFldeNfjZgn6JxTQykkpSLsW1gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlENjYzQzZFQkNEMjUwQUE4OTI3RUEwOTQ2MjdDOTQx NURFRTdGQzAeFw0yNDEyMTEwNjU5MjdaFw0yNTEyMTAwNzA0MjdaMDMxMTAvBgNV BAMTKDQyRkQzMTYwQUJFOUQwQ0I3NjQ0Nzc1RUY3QTdGMDBBMDBCRjdGNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlEAagR3yOtcO4/Hk+LKXsKZvq Nyt5NuenbXMRwqlrPyv4vMr4a6+7L+ZkyAWaOEsa3gGK2q6+ciaxkVnR3JokSToI 20bkl8auCNCqaAn7aWyzOaUPiio76r+iaMTCTVgx11QeXD9PxrZr4Z96pVOYdBaH SRmks78RwOoVwNh8CZayx67BXsTWESB+jgfdhaoY7ixmvpsEaPn014LoLlSgO7/W akuFB16r/XHP/SNwPVTo/wFdJ5wRKBb4dnulifBL3XadK4vavMDf48p+s9YbAgqx oaL8pIfsmVNAAcvMKlLjg/NYXMIi/JwytFAUzDRO0AhA8wsZT6rcC2qGyMRLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQv0xYKvp0Mt2RHde96fwCgC/f1YwHwYDVR0j BBgwFoAUqdZjxuvNJQqokn6glGJ8lBXe5/wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ODJhOWJkOS0xNjZmLTQ1M2UtYjNjMC1lNmIzZWY5MmE1NDAvMC9BOUQ2NjNDNkVC Q0QyNTBBQTg5MjdFQTA5NDYyN0M5NDE1REVFN0ZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQTlENjYzQzZFQkNEMjUwQUE4OTI3RUEwOTQ2MjdDOTQxNURF RTdGQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI4MmE5YmQ5LTE2NmYtNDUzZS1i M2MwLWU2YjNlZjkyYTU0MC8wLzMxMzYzMDJlMzEzOTMxMmUzNjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzEzNDM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoL9BMA0GCSqG SIb3DQEBCwUAA4IBAQA1s8ieTe+AM8dnBjDMESvLlmWj98rBl45LnVUZ7xCjoi0Q sSDqBKeRbOO5lBP7w9vRenHu7I57cvajhjfRiPTYtIJs2N1kw8OOLxAeALuDDGOj onqjp8HaYNA+oX6of8zaQSg3fUyzrtVnaq5baYHzmp0/76PcPOm/R+SECrmKQnPP dR4eWxccZNkl4hUEN+oICwMx6IFPjSPFDjQhCrVxfOD1MtfQrozECL+wv4lLbac2 HuJdUv9AOplXfMCTc/dRTzY8PaWC9iPk4CDkyH+JYPWf2KHIgYzqUvsxzsVnFNwb 4sxiFV4e9h8Vc/0zjlnPk0hA2l6XP8eQqbSWUQ0J -----END CERTIFICATE-----Generated at Tue Apr 8 00:50:14 2025 by rpki-client