$ rpki-client -vvf repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3136302e32322e3132382e302f32342d3234203d3e20313532383138.roa File: 3136302e32322e3132382e302f32342d3234203d3e20313532383138.roa (raw, json) Hash identifier: yI21TQhgzhyCtoyvgeWwpQGfBfqGzJmTftAUrnTEbC8= Subject key identifier: 5A:CE:41:E8:08:2B:11:C5:0B:C4:F1:A6:94:26:51:E9:2E:20:BB:C1 Certificate issuer: /CN=3157B9BE6F369A1CA38738FFD64D6113C75C0E2D Certificate serial: 2794B92CC64805B2DCBCBC1A5831ABD3FC8EB7AA Authority key identifier: 31:57:B9:BE:6F:36:9A:1C:A3:87:38:FF:D6:4D:61:13:C7:5C:0E:2D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3136302e32322e3132382e302f32342d3234203d3e20313532383138.roa Signing time: Wed 02 Oct 2024 13:44:48 +0000 ROA not before: Wed 02 Oct 2024 13:39:48 +0000 ROA not after: Wed 01 Oct 2025 13:44:48 +0000 asID: 152818 IP address blocks: 160.22.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.crl rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:94:b9:2c:c6:48:05:b2:dc:bc:bc:1a:58:31:ab:d3:fc:8e:b7:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3157B9BE6F369A1CA38738FFD64D6113C75C0E2D Validity Not Before: Oct 2 13:39:48 2024 GMT Not After : Oct 1 13:44:48 2025 GMT Subject: CN=5ACE41E8082B11C50BC4F1A6942651E92E20BBC1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:84:40:59:6c:f5:58:51:f4:00:2e:31:e4:53: 57:17:a8:04:49:2b:76:52:08:77:44:de:e7:e8:78: 50:d0:36:85:7a:27:98:dc:21:2b:f0:19:9d:29:51: f5:5f:10:41:89:65:50:06:3e:ff:17:ea:78:3d:44: e7:b1:63:46:7c:b3:bf:2b:aa:85:ef:9a:50:85:c3: 18:71:1a:0e:9a:36:0a:74:9e:71:d8:83:9f:72:ac: 31:53:77:a1:c2:2b:da:44:f4:e5:3d:bb:ac:ee:44: 1a:b6:8e:69:46:88:af:20:91:9b:67:89:81:97:8e: c9:c9:60:0f:a9:c5:c6:98:16:de:2d:0a:81:41:65: a2:f6:3d:49:18:11:91:fb:fd:1e:ab:3f:38:d5:e9: fc:7e:69:de:49:46:7b:32:5e:e2:b1:fb:e8:7d:9b: c3:3f:a0:68:15:59:85:8d:21:4f:40:84:6e:6d:bb: ee:d5:ef:a0:f6:a0:e9:02:c0:f9:22:15:46:41:73: 0f:e4:fd:d5:e6:c9:f2:a6:6e:51:c6:21:b6:dc:98: 9c:16:d7:e7:b8:28:c5:8b:b3:8d:cc:e3:e7:18:63: ff:53:5b:b7:e5:2c:05:68:b6:43:1f:1d:41:0a:53: eb:19:71:53:d1:ef:ac:0d:78:8c:e8:cd:1a:8c:ea: 52:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:CE:41:E8:08:2B:11:C5:0B:C4:F1:A6:94:26:51:E9:2E:20:BB:C1 X509v3 Authority Key Identifier: keyid:31:57:B9:BE:6F:36:9A:1C:A3:87:38:FF:D6:4D:61:13:C7:5C:0E:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3136302e32322e3132382e302f32342d3234203d3e20313532383138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.128.0/24 Signature Algorithm: sha256WithRSAEncryption db:73:f4:af:a8:d8:ab:66:4d:c5:53:bb:fe:2f:d1:6c:0b:51: 32:71:4b:e1:29:15:d5:79:cc:0b:22:90:3a:4a:c2:73:d7:f0: f2:46:d5:ee:a0:5e:e0:c3:c0:d8:37:c3:da:25:3c:56:02:3e: 9a:46:20:14:55:bf:96:0e:cc:dc:ad:e8:9f:4d:8c:f7:96:34: c5:a8:a6:ba:06:f3:03:9e:0a:96:d6:a3:95:6f:05:76:ec:6b: a3:84:65:1d:b8:d9:fa:1a:e6:6a:79:74:9f:3b:d9:eb:c0:4a: e4:23:ca:02:ce:ad:bd:00:50:c4:ab:50:96:73:b7:ac:49:37: 6b:8e:41:0d:39:18:9f:da:ab:d7:88:bb:f0:98:35:e7:4c:c9: 38:e4:11:62:d7:dd:c9:89:7b:c3:56:47:5b:cf:f7:dd:53:3e: 29:5f:44:be:5b:eb:c4:52:fd:e2:13:7f:f9:0f:32:f3:1b:13: 8d:e8:a6:b3:4e:a7:2a:65:de:dc:eb:96:a9:7f:af:38:91:6c: b2:f7:3f:34:90:bd:6c:4f:3e:85:51:57:88:ce:3c:a3:d0:6e: 81:27:1e:84:52:29:d8:67:20:69:a4:61:d8:36:05:85:5c:9f: e8:9b:24:ff:62:8d:e6:90:05:d7:b1:8a:fc:de:56:47:7a:5a: 11:89:10:7d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJ5S5LMZIBbLcvLwaWDGr0/yOt6owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzE1N0I5QkU2RjM2OUExQ0EzODczOEZGRDY0RDYxMTND NzVDMEUyRDAeFw0yNDEwMDIxMzM5NDhaFw0yNTEwMDExMzQ0NDhaMDMxMTAvBgNV BAMTKDVBQ0U0MUU4MDgyQjExQzUwQkM0RjFBNjk0MjY1MUU5MkUyMEJCQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLhEBZbPVYUfQALjHkU1cXqARJ K3ZSCHdE3ufoeFDQNoV6J5jcISvwGZ0pUfVfEEGJZVAGPv8X6ng9ROexY0Z8s78r qoXvmlCFwxhxGg6aNgp0nnHYg59yrDFTd6HCK9pE9OU9u6zuRBq2jmlGiK8gkZtn iYGXjsnJYA+pxcaYFt4tCoFBZaL2PUkYEZH7/R6rPzjV6fx+ad5JRnsyXuKx++h9 m8M/oGgVWYWNIU9AhG5tu+7V76D2oOkCwPkiFUZBcw/k/dXmyfKmblHGIbbcmJwW 1+e4KMWLs43M4+cYY/9TW7flLAVotkMfHUEKU+sZcVPR76wNeIzozRqM6lIRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWs5B6AgrEcULxPGmlCZR6S4gu8EwHwYDVR0j BBgwFoAUMVe5vm82mhyjhzj/1k1hE8dcDi0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MGZiNzhhOS1jZDY4LTQ0ZmQtODVhYS02YzZiMDhjYjIzNDYvMC8zMTU3QjlCRTZG MzY5QTFDQTM4NzM4RkZENjRENjExM0M3NUMwRTJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMzE1N0I5QkU2RjM2OUExQ0EzODczOEZGRDY0RDYxMTNDNzVD MEUyRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwZmI3OGE5LWNkNjgtNDRmZC04 NWFhLTZjNmIwOGNiMjM0Ni8wLzMxMzYzMDJlMzIzMjJlMzEzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBaAMA0GCSqG SIb3DQEBCwUAA4IBAQDbc/SvqNirZk3FU7v+L9FsC1EycUvhKRXVecwLIpA6SsJz 1/DyRtXuoF7gw8DYN8PaJTxWAj6aRiAUVb+WDszcreifTYz3ljTFqKa6BvMDngqW 1qOVbwV27GujhGUduNn6GuZqeXSfO9nrwErkI8oCzq29AFDEq1CWc7esSTdrjkEN ORif2qvXiLvwmDXnTMk45BFi193JiXvDVkdbz/fdUz4pX0S+W+vEUv3iE3/5DzLz GxON6KazTqcqZd7c65apf684kWyy9z80kL1sTz6FUVeIzjyj0G6BJx6EUinYZyBp pGHYNgWFXJ/omyT/Yo3mkAXXsYr83lZHeloRiRB9 -----END CERTIFICATE-----Generated at Wed Nov 20 13:43:32 2024 by rpki-client on console-ams.rpki-client.org