$ rpki-client -vvf repo-rpki.idnic.net/repo/3144d97a-e3fb-4ffc-b7f7-f7b8b6659ac4/0/3136302e31392e38362e302f32342d3234203d3e20313431363030.roa File: 3136302e31392e38362e302f32342d3234203d3e20313431363030.roa (raw, json) Hash identifier: nNBKEktVr9A2xOgxY2L/OFz+wOS0Vx4v39iGjYuuiPI= Subject key identifier: 3E:24:C8:E5:EB:40:DE:8A:46:3B:D6:95:29:24:1A:08:2E:8A:A5:0B Certificate issuer: /CN=340A98C1E96A3909CEB0BEB588C40CFBDD3CA295 Certificate serial: 4CA97F526C89024B8A85C217E3FF6BBD59C06477 Authority key identifier: 34:0A:98:C1:E9:6A:39:09:CE:B0:BE:B5:88:C4:0C:FB:DD:3C:A2:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/340A98C1E96A3909CEB0BEB588C40CFBDD3CA295.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3144d97a-e3fb-4ffc-b7f7-f7b8b6659ac4/0/3136302e31392e38362e302f32342d3234203d3e20313431363030.roa Signing time: Fri 17 May 2024 06:25:44 +0000 ROA not before: Fri 17 May 2024 06:20:44 +0000 ROA not after: Fri 16 May 2025 06:25:44 +0000 asID: 141600 IP address blocks: 160.19.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3144d97a-e3fb-4ffc-b7f7-f7b8b6659ac4/0/340A98C1E96A3909CEB0BEB588C40CFBDD3CA295.crl rsync://repo-rpki.idnic.net/repo/3144d97a-e3fb-4ffc-b7f7-f7b8b6659ac4/0/340A98C1E96A3909CEB0BEB588C40CFBDD3CA295.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/340A98C1E96A3909CEB0BEB588C40CFBDD3CA295.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:a9:7f:52:6c:89:02:4b:8a:85:c2:17:e3:ff:6b:bd:59:c0:64:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=340A98C1E96A3909CEB0BEB588C40CFBDD3CA295 Validity Not Before: May 17 06:20:44 2024 GMT Not After : May 16 06:25:44 2025 GMT Subject: CN=3E24C8E5EB40DE8A463BD69529241A082E8AA50B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b9:a0:0c:a3:1b:36:91:08:df:da:e5:fc:7f: 7f:33:ae:18:70:a6:e7:66:fe:cd:cc:f4:d1:1d:86: db:ff:eb:17:55:a0:84:83:25:58:87:10:8b:71:58: c1:4f:a8:70:c3:10:e1:aa:35:ad:60:b4:b6:09:ef: 97:52:dd:aa:2b:01:8e:c3:36:e8:99:cc:a6:61:82: 56:15:04:6d:d5:5b:13:94:fc:59:b1:d6:b6:3b:df: 01:d8:5c:1e:17:63:e7:53:f7:d5:e5:10:33:6e:67: cf:63:be:4f:48:b7:79:36:ec:7a:43:b7:db:81:30: a8:79:1d:fa:0b:f2:93:79:bf:46:84:d9:74:d9:5e: 04:c7:db:e9:c7:88:5c:3b:19:59:1e:8b:79:9b:25: 52:0b:7f:52:32:e6:49:96:65:b8:72:ee:17:4e:5a: c1:90:51:11:82:03:23:c4:1f:2a:6e:6a:02:f4:de: eb:f1:c4:e5:0a:56:77:ac:85:38:cb:47:5a:c7:3d: ce:b7:5f:8e:e5:75:77:62:a5:48:76:ab:15:86:2c: 09:f2:5f:0a:85:5d:63:83:0b:47:1c:fd:d9:72:47: 4b:f3:15:fb:71:ea:54:29:6c:72:67:28:84:28:eb: 22:cd:f0:84:31:cb:69:1e:ad:31:e5:51:5e:65:24: 57:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:24:C8:E5:EB:40:DE:8A:46:3B:D6:95:29:24:1A:08:2E:8A:A5:0B X509v3 Authority Key Identifier: keyid:34:0A:98:C1:E9:6A:39:09:CE:B0:BE:B5:88:C4:0C:FB:DD:3C:A2:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3144d97a-e3fb-4ffc-b7f7-f7b8b6659ac4/0/340A98C1E96A3909CEB0BEB588C40CFBDD3CA295.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/340A98C1E96A3909CEB0BEB588C40CFBDD3CA295.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3144d97a-e3fb-4ffc-b7f7-f7b8b6659ac4/0/3136302e31392e38362e302f32342d3234203d3e20313431363030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.86.0/24 Signature Algorithm: sha256WithRSAEncryption 04:f3:b9:e0:6a:5a:e1:51:ad:86:d7:59:56:0b:62:49:0e:60: 17:84:fa:e9:df:bd:ab:fc:c2:83:a0:d8:43:46:cc:c4:51:62: a6:5f:8c:d1:17:9e:35:cd:63:ae:0f:da:d9:b7:11:28:79:5b: 8e:f6:f1:f2:55:c0:44:44:36:2b:5d:4e:2a:30:4e:e2:5a:74: 74:9a:90:c3:c2:09:43:0e:a6:54:10:e0:d2:26:12:a4:7b:32: ac:13:88:f2:cc:30:c6:67:49:7a:c0:0b:46:71:13:d1:8b:0f: 96:3c:d8:46:cc:ce:10:28:b5:b7:c0:1c:f1:4d:73:76:d9:d2: 87:18:53:69:b7:c8:a1:f7:bd:82:5e:62:5d:ca:f1:68:d8:53: 76:38:7e:e3:bc:a1:07:13:19:dc:01:ea:36:7b:2f:ad:77:5e: 47:ec:a7:c0:64:a4:a0:64:65:0e:6b:f6:70:47:7f:ba:12:92: 93:a7:dc:20:9e:d3:61:31:d7:f4:32:61:1a:d3:6a:4e:7c:db: 0a:b8:8b:72:9e:1c:39:73:c5:7d:ce:e6:f6:a3:0f:67:46:72: 94:d3:24:21:13:8c:58:e9:7f:51:65:ff:24:0a:96:99:0d:25: 6f:4c:17:40:dd:4c:2b:84:3c:db:1e:5b:24:98:21:d0:58:f8: 64:d8:9a:1f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTKl/UmyJAkuKhcIX4/9rvVnAZHcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQwQTk4QzFFOTZBMzkwOUNFQjBCRUI1ODhDNDBDRkJE RDNDQTI5NTAeFw0yNDA1MTcwNjIwNDRaFw0yNTA1MTYwNjI1NDRaMDMxMTAvBgNV BAMTKDNFMjRDOEU1RUI0MERFOEE0NjNCRDY5NTI5MjQxQTA4MkU4QUE1MEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJuaAMoxs2kQjf2uX8f38zrhhw pudm/s3M9NEdhtv/6xdVoISDJViHEItxWMFPqHDDEOGqNa1gtLYJ75dS3aorAY7D NuiZzKZhglYVBG3VWxOU/Fmx1rY73wHYXB4XY+dT99XlEDNuZ89jvk9It3k27HpD t9uBMKh5HfoL8pN5v0aE2XTZXgTH2+nHiFw7GVkei3mbJVILf1Iy5kmWZbhy7hdO WsGQURGCAyPEHypuagL03uvxxOUKVneshTjLR1rHPc63X47ldXdipUh2qxWGLAny XwqFXWODC0cc/dlyR0vzFftx6lQpbHJnKIQo6yLN8IQxy2kerTHlUV5lJFflAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUPiTI5etA3opGO9aVKSQaCC6KpQswHwYDVR0j BBgwFoAUNAqYwelqOQnOsL61iMQM+908opUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MTQ0ZDk3YS1lM2ZiLTRmZmMtYjdmNy1mN2I4YjY2NTlhYzQvMC8zNDBBOThDMUU5 NkEzOTA5Q0VCMEJFQjU4OEM0MENGQkREM0NBMjk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMzQwQTk4QzFFOTZBMzkwOUNFQjBCRUI1ODhDNDBDRkJERDND QTI5NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMxNDRkOTdhLWUzZmItNGZmYy1i N2Y3LWY3YjhiNjY1OWFjNC8wLzMxMzYzMDJlMzEzOTJlMzgzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTM2MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKATVjANBgkqhkiG 9w0BAQsFAAOCAQEABPO54Gpa4VGthtdZVgtiSQ5gF4T66d+9q/zCg6DYQ0bMxFFi pl+M0ReeNc1jrg/a2bcRKHlbjvbx8lXAREQ2K11OKjBO4lp0dJqQw8IJQw6mVBDg 0iYSpHsyrBOI8swwxmdJesALRnET0YsPljzYRszOECi1t8Ac8U1zdtnShxhTabfI ofe9gl5iXcrxaNhTdjh+47yhBxMZ3AHqNnsvrXdeR+ynwGSkoGRlDmv2cEd/uhKS k6fcIJ7TYTHX9DJhGtNqTnzbCriLcp4cOXPFfc7m9qMPZ0ZylNMkIROMWOl/UWX/ JAqWmQ0lb0wXQN1MK4Q82x5bJJgh0Fj4ZNiaHw== -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:53 2024 by rpki-client on console-fra.rpki-client.org