$ rpki-client -vvf repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3136302e32322e3132392e302f32342d3234203d3e20313532383138.roa File: 3136302e32322e3132392e302f32342d3234203d3e20313532383138.roa (raw, json) Hash identifier: 8c6wILZx8DuCL6PHpfE6A2+8YPuPEhrlv7dD3qJR3mQ= Subject key identifier: A4:61:45:39:A4:BA:BA:26:B8:D3:FE:34:B2:44:6E:C9:DD:B9:3E:D4 Certificate issuer: /CN=3157B9BE6F369A1CA38738FFD64D6113C75C0E2D Certificate serial: 4CC9A403A6CBFD98DFD49F32D990D400C9845525 Authority key identifier: 31:57:B9:BE:6F:36:9A:1C:A3:87:38:FF:D6:4D:61:13:C7:5C:0E:2D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3136302e32322e3132392e302f32342d3234203d3e20313532383138.roa Signing time: Wed 02 Oct 2024 13:45:08 +0000 ROA not before: Wed 02 Oct 2024 13:40:08 +0000 ROA not after: Wed 01 Oct 2025 13:45:08 +0000 asID: 152818 IP address blocks: 160.22.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.crl rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:c9:a4:03:a6:cb:fd:98:df:d4:9f:32:d9:90:d4:00:c9:84:55:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3157B9BE6F369A1CA38738FFD64D6113C75C0E2D Validity Not Before: Oct 2 13:40:08 2024 GMT Not After : Oct 1 13:45:08 2025 GMT Subject: CN=A4614539A4BABA26B8D3FE34B2446EC9DDB93ED4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:43:cb:8f:a6:e8:d3:d7:b3:ed:c1:6c:ce:4f: 52:f4:8e:29:f1:12:e8:e7:f4:72:95:b8:36:69:68: 2d:17:e8:11:8f:ef:e9:f9:f2:bc:17:64:59:73:63: 2f:24:87:15:fd:20:b5:b6:e1:c5:18:70:e3:1f:3d: 93:82:1b:00:d0:69:74:b4:00:60:09:51:79:67:b5: 9e:e9:eb:1b:dd:52:ce:bf:88:b7:d1:1f:19:38:d9: 33:b8:b5:42:f8:4c:7b:b1:1a:37:ba:69:ea:85:09: 44:90:d0:8d:53:73:aa:6e:3a:8a:e3:6e:9e:aa:d5: 0a:f7:15:2b:57:9c:af:49:0c:5b:ad:0f:93:fb:c2: 3e:c4:42:12:60:b0:c6:84:84:fa:3a:c6:24:ca:e3: 6e:0f:39:2c:27:b3:5e:25:b6:cc:fd:65:7e:89:e8: 8c:57:22:ac:93:b0:99:1a:e1:f9:34:0a:28:a3:a3: ef:65:1c:d7:86:df:78:b6:e9:5e:da:c7:1a:bb:da: d6:2d:5d:9a:57:40:05:d9:67:c5:18:19:c6:b7:b7: ed:46:bc:78:15:93:f4:75:03:19:9f:59:f7:d6:41: 01:83:67:88:7a:1b:79:d6:8a:ba:80:4f:c9:7c:65: 13:ba:5f:6b:3a:51:a0:fb:5e:2f:b6:b5:03:ad:d2: 99:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:61:45:39:A4:BA:BA:26:B8:D3:FE:34:B2:44:6E:C9:DD:B9:3E:D4 X509v3 Authority Key Identifier: keyid:31:57:B9:BE:6F:36:9A:1C:A3:87:38:FF:D6:4D:61:13:C7:5C:0E:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3136302e32322e3132392e302f32342d3234203d3e20313532383138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.129.0/24 Signature Algorithm: sha256WithRSAEncryption 22:39:79:ff:04:8c:f4:fa:ea:4b:1e:d2:a7:87:69:bf:45:9a: d3:15:ab:7b:3f:fe:39:6f:d5:0c:04:0a:95:b8:7f:fc:3b:8a: 12:0f:67:0d:bd:0e:e5:58:b9:ef:85:11:dd:f1:1f:fa:61:84: 94:bc:df:7c:0b:f9:06:1b:f3:3e:52:71:e7:02:3d:15:0b:b4: f8:b9:1b:66:fe:67:ab:8a:cc:be:be:2e:0d:c3:fe:9b:b9:f9: d1:92:14:5f:c7:fb:cd:79:11:db:2f:23:2e:db:28:2a:a7:29: 63:bd:90:b5:ba:28:ab:23:1a:e8:6f:d7:2a:47:53:7b:22:52: dd:cb:17:53:3a:4d:76:95:19:70:fb:29:73:30:b0:bf:b3:5e: a1:9b:5a:70:5b:dc:43:5c:67:f2:06:6a:17:a4:22:72:cf:32: 38:68:7d:3c:51:4a:b1:a8:d9:7f:72:f6:aa:05:57:cc:a9:8a: 05:3d:2f:bf:ab:3d:1c:b8:39:c3:e7:24:38:ce:56:97:76:06: 99:2d:b4:0f:a1:37:19:d0:9e:9a:cb:40:40:3b:aa:b0:56:92: 64:28:89:9c:1e:3e:04:26:8f:d1:08:9d:14:19:7f:e4:84:70: 7a:20:f5:b3:e7:b2:a2:ff:8f:6f:08:4f:16:a9:c5:b8:67:79: b9:92:72:a2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTMmkA6bL/Zjf1J8y2ZDUAMmEVSUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzE1N0I5QkU2RjM2OUExQ0EzODczOEZGRDY0RDYxMTND NzVDMEUyRDAeFw0yNDEwMDIxMzQwMDhaFw0yNTEwMDExMzQ1MDhaMDMxMTAvBgNV BAMTKEE0NjE0NTM5QTRCQUJBMjZCOEQzRkUzNEIyNDQ2RUM5RERCOTNFRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrQ8uPpujT17PtwWzOT1L0jinx Eujn9HKVuDZpaC0X6BGP7+n58rwXZFlzYy8khxX9ILW24cUYcOMfPZOCGwDQaXS0 AGAJUXlntZ7p6xvdUs6/iLfRHxk42TO4tUL4THuxGje6aeqFCUSQ0I1Tc6puOorj bp6q1Qr3FStXnK9JDFutD5P7wj7EQhJgsMaEhPo6xiTK424POSwns14ltsz9ZX6J 6IxXIqyTsJka4fk0Ciijo+9lHNeG33i26V7axxq72tYtXZpXQAXZZ8UYGca3t+1G vHgVk/R1AxmfWffWQQGDZ4h6G3nWirqAT8l8ZRO6X2s6UaD7Xi+2tQOt0pnvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUpGFFOaS6uia40/40skRuyd25PtQwHwYDVR0j BBgwFoAUMVe5vm82mhyjhzj/1k1hE8dcDi0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MGZiNzhhOS1jZDY4LTQ0ZmQtODVhYS02YzZiMDhjYjIzNDYvMC8zMTU3QjlCRTZG MzY5QTFDQTM4NzM4RkZENjRENjExM0M3NUMwRTJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMzE1N0I5QkU2RjM2OUExQ0EzODczOEZGRDY0RDYxMTNDNzVD MEUyRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwZmI3OGE5LWNkNjgtNDRmZC04 NWFhLTZjNmIwOGNiMjM0Ni8wLzMxMzYzMDJlMzIzMjJlMzEzMjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBaBMA0GCSqG SIb3DQEBCwUAA4IBAQAiOXn/BIz0+upLHtKnh2m/RZrTFat7P/45b9UMBAqVuH/8 O4oSD2cNvQ7lWLnvhRHd8R/6YYSUvN98C/kGG/M+UnHnAj0VC7T4uRtm/merisy+ vi4Nw/6bufnRkhRfx/vNeRHbLyMu2ygqpyljvZC1uiirIxrob9cqR1N7IlLdyxdT Ok12lRlw+ylzMLC/s16hm1pwW9xDXGfyBmoXpCJyzzI4aH08UUqxqNl/cvaqBVfM qYoFPS+/qz0cuDnD5yQ4zlaXdgaZLbQPoTcZ0J6ay0BAO6qwVpJkKImcHj4EJo/R CJ0UGX/khHB6IPWz57Ki/49vCE8WqcW4Z3m5knKi -----END CERTIFICATE-----Generated at Wed Nov 20 13:43:32 2024 by rpki-client on console-ams.rpki-client.org