$ rpki-client -vvf repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3136302e32322e3132382e302f32332d3233203d3e20313532383138.roa File: 3136302e32322e3132382e302f32332d3233203d3e20313532383138.roa (raw, json) Hash identifier: yVwxFDu5QrQ2T1+WLHNp8JACowsZOzdgNvDquhZexvY= Subject key identifier: AB:06:6C:C5:EC:06:48:96:CC:42:BF:DC:73:78:2C:36:00:30:B1:3F Certificate issuer: /CN=3157B9BE6F369A1CA38738FFD64D6113C75C0E2D Certificate serial: 6E83008AC86276CF1BE9196A5186F1A7E245D973 Authority key identifier: 31:57:B9:BE:6F:36:9A:1C:A3:87:38:FF:D6:4D:61:13:C7:5C:0E:2D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3136302e32322e3132382e302f32332d3233203d3e20313532383138.roa Signing time: Wed 02 Oct 2024 13:43:49 +0000 ROA not before: Wed 02 Oct 2024 13:38:49 +0000 ROA not after: Wed 01 Oct 2025 13:43:49 +0000 asID: 152818 IP address blocks: 160.22.128.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.crl rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:83:00:8a:c8:62:76:cf:1b:e9:19:6a:51:86:f1:a7:e2:45:d9:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3157B9BE6F369A1CA38738FFD64D6113C75C0E2D Validity Not Before: Oct 2 13:38:49 2024 GMT Not After : Oct 1 13:43:49 2025 GMT Subject: CN=AB066CC5EC064896CC42BFDC73782C360030B13F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b6:45:a8:23:65:c3:7d:0b:c8:a9:d5:80:e8: 16:d1:c8:93:1f:97:8c:c5:f6:f4:3d:39:a8:c4:89: 9f:84:e5:7e:c0:11:6c:67:6c:7a:69:a6:9c:9c:8e: a6:6b:53:6f:56:cc:89:df:e2:4d:aa:36:34:e7:b8: ed:e6:09:1f:c3:8f:ed:71:de:43:34:60:94:4f:af: 47:34:65:4e:d6:da:f6:95:c8:0b:c4:3f:c3:65:7f: 4f:ae:62:28:c5:47:86:06:80:e3:64:a4:cb:e2:3f: d5:d4:e1:54:7b:e3:9a:38:8e:06:37:55:d2:ef:88: 3b:16:a3:19:6f:d5:8e:5d:4c:a8:9f:30:57:a7:a7: 2b:8c:68:56:d0:93:e0:d4:5d:e9:73:a7:56:82:01: b5:24:08:55:c0:d2:c3:28:b1:f7:07:8d:4e:e7:20: d2:b7:ff:83:47:04:54:5b:85:02:25:e3:cd:e9:48: 55:74:87:fe:a3:55:78:c6:a3:57:82:8c:3c:0a:9f: 1e:30:83:11:3f:7d:3a:3a:bd:ba:9d:67:10:10:ef: b3:9c:f9:56:60:2e:c0:d2:fb:43:c5:d3:ec:05:fe: 1c:6f:3a:7d:ab:81:b4:a7:cd:ec:6b:9b:93:d4:cd: 4a:f0:8b:97:28:fb:1e:1c:e4:47:67:57:c3:8f:dc: 43:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:06:6C:C5:EC:06:48:96:CC:42:BF:DC:73:78:2C:36:00:30:B1:3F X509v3 Authority Key Identifier: keyid:31:57:B9:BE:6F:36:9A:1C:A3:87:38:FF:D6:4D:61:13:C7:5C:0E:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3136302e32322e3132382e302f32332d3233203d3e20313532383138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.128.0/23 Signature Algorithm: sha256WithRSAEncryption cc:53:70:ec:a6:fd:aa:fa:b8:17:7f:df:df:c3:ac:f0:3d:51: a2:8b:61:05:05:4b:b6:47:b4:3c:4b:73:1c:64:4d:8c:a7:2b: 29:94:3c:5b:6b:f9:34:1a:39:95:e3:bc:34:2c:40:73:23:63: 58:26:24:c9:0f:75:a8:4e:e6:23:92:dd:1d:21:d3:7d:bb:73: d5:41:27:19:ed:1c:1a:c6:a7:57:94:ea:fc:22:23:2f:42:40: 82:1a:3d:e4:dc:98:1b:0f:1e:ba:45:8e:d5:19:15:14:0e:a4: e3:30:56:47:03:0e:7f:41:e1:11:2b:b3:c2:c2:e1:50:69:9a: 51:be:f0:a3:a9:97:c1:06:ea:4c:83:e2:00:b7:4d:4b:44:db: 1e:73:4b:9a:4f:1a:c8:aa:88:c3:4e:78:4f:0a:57:8d:63:40: 8e:0c:de:de:24:e1:9a:9b:49:0b:7e:f0:fe:c5:c4:67:70:41: 4f:ca:2f:f5:f6:d0:33:6d:a4:2f:e8:b2:42:fe:27:41:71:0b: d2:4f:b3:fb:66:2b:ec:3f:5f:17:cd:b7:ad:a8:c3:75:88:c4: 3d:c6:88:ad:90:37:d0:3e:ea:fb:b5:37:9f:2f:46:26:48:73: 9b:e8:10:5c:69:5b:49:a7:37:ee:03:e1:37:2a:84:31:7c:5a: c8:df:ce:ca -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUboMAishids8b6RlqUYbxp+JF2XMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzE1N0I5QkU2RjM2OUExQ0EzODczOEZGRDY0RDYxMTND NzVDMEUyRDAeFw0yNDEwMDIxMzM4NDlaFw0yNTEwMDExMzQzNDlaMDMxMTAvBgNV BAMTKEFCMDY2Q0M1RUMwNjQ4OTZDQzQyQkZEQzczNzgyQzM2MDAzMEIxM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCutkWoI2XDfQvIqdWA6BbRyJMf l4zF9vQ9OajEiZ+E5X7AEWxnbHppppycjqZrU29WzInf4k2qNjTnuO3mCR/Dj+1x 3kM0YJRPr0c0ZU7W2vaVyAvEP8Nlf0+uYijFR4YGgONkpMviP9XU4VR745o4jgY3 VdLviDsWoxlv1Y5dTKifMFenpyuMaFbQk+DUXelzp1aCAbUkCFXA0sMosfcHjU7n INK3/4NHBFRbhQIl483pSFV0h/6jVXjGo1eCjDwKnx4wgxE/fTo6vbqdZxAQ77Oc +VZgLsDS+0PF0+wF/hxvOn2rgbSnzexrm5PUzUrwi5co+x4c5EdnV8OP3ENXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUqwZsxewGSJbMQr/cc3gsNgAwsT8wHwYDVR0j BBgwFoAUMVe5vm82mhyjhzj/1k1hE8dcDi0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MGZiNzhhOS1jZDY4LTQ0ZmQtODVhYS02YzZiMDhjYjIzNDYvMC8zMTU3QjlCRTZG MzY5QTFDQTM4NzM4RkZENjRENjExM0M3NUMwRTJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMzE1N0I5QkU2RjM2OUExQ0EzODczOEZGRDY0RDYxMTNDNzVD MEUyRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwZmI3OGE5LWNkNjgtNDRmZC04 NWFhLTZjNmIwOGNiMjM0Ni8wLzMxMzYzMDJlMzIzMjJlMzEzMjM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzgzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBaAMA0GCSqG SIb3DQEBCwUAA4IBAQDMU3Dspv2q+rgXf9/fw6zwPVGii2EFBUu2R7Q8S3McZE2M pysplDxba/k0GjmV47w0LEBzI2NYJiTJD3WoTuYjkt0dIdN9u3PVQScZ7RwaxqdX lOr8IiMvQkCCGj3k3JgbDx66RY7VGRUUDqTjMFZHAw5/QeERK7PCwuFQaZpRvvCj qZfBBupMg+IAt01LRNsec0uaTxrIqojDTnhPCleNY0CODN7eJOGam0kLfvD+xcRn cEFPyi/19tAzbaQv6LJC/idBcQvST7P7ZivsP18XzbetqMN1iMQ9xoitkDfQPur7 tTefL0YmSHOb6BBcaVtJpzfuA+E3KoQxfFrI387K -----END CERTIFICATE-----Generated at Wed Nov 20 12:07:34 2024 by rpki-client on console-fra.rpki-client.org