$ rpki-client -vvf repo-rpki.idnic.net/repo/356e42e6-c6cd-4ccd-bda7-5ae9a246044a/0/3136302e32322e3230362e302f32342d3234203d3e20313532383235.roa File: 3136302e32322e3230362e302f32342d3234203d3e20313532383235.roa (raw, json) Hash identifier: MVPunuL0q7ij3NQ6Rm2ZsfoQMcIAKWrLDjcXzxD0ul4= Subject key identifier: 36:8B:13:9B:77:02:C1:85:5E:9D:BE:B6:72:2C:82:49:79:D4:15:B7 Certificate issuer: /CN=9C948BB5F7C6539DB5D4585DBEEAF35AE23DDCA5 Certificate serial: 4FB96C85C2E95ED706AD9CD226B005D9C731906E Authority key identifier: 9C:94:8B:B5:F7:C6:53:9D:B5:D4:58:5D:BE:EA:F3:5A:E2:3D:DC:A5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9C948BB5F7C6539DB5D4585DBEEAF35AE23DDCA5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/356e42e6-c6cd-4ccd-bda7-5ae9a246044a/0/3136302e32322e3230362e302f32342d3234203d3e20313532383235.roa Signing time: Thu 04 Jul 2024 18:11:16 +0000 ROA not before: Thu 04 Jul 2024 18:06:16 +0000 ROA not after: Thu 03 Jul 2025 18:11:16 +0000 asID: 152825 IP address blocks: 160.22.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/356e42e6-c6cd-4ccd-bda7-5ae9a246044a/0/9C948BB5F7C6539DB5D4585DBEEAF35AE23DDCA5.crl rsync://repo-rpki.idnic.net/repo/356e42e6-c6cd-4ccd-bda7-5ae9a246044a/0/9C948BB5F7C6539DB5D4585DBEEAF35AE23DDCA5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9C948BB5F7C6539DB5D4585DBEEAF35AE23DDCA5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 01:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:b9:6c:85:c2:e9:5e:d7:06:ad:9c:d2:26:b0:05:d9:c7:31:90:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9C948BB5F7C6539DB5D4585DBEEAF35AE23DDCA5 Validity Not Before: Jul 4 18:06:16 2024 GMT Not After : Jul 3 18:11:16 2025 GMT Subject: CN=368B139B7702C1855E9DBEB6722C824979D415B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:df:93:af:69:9a:cb:68:0d:a4:70:41:a2:99: f3:8b:09:ab:7a:80:02:c7:e5:ca:1d:dd:e4:08:16: 25:41:98:15:77:54:67:0d:44:12:17:46:33:55:8e: 27:2d:cb:37:93:ee:f8:00:e6:ec:9e:e5:c3:6c:05: 19:43:43:2a:70:38:cf:18:0f:4a:a5:f7:eb:26:95: 52:67:21:1e:14:2f:06:73:8e:3a:fe:34:dd:9e:ca: c1:7f:ae:a9:34:04:e0:e4:54:99:33:6b:cd:8e:64: 91:ac:2f:e0:bf:02:b7:0f:c2:66:26:f3:ac:02:b7: e9:4c:09:30:03:2c:ee:47:3d:1a:33:1a:81:a5:bb: 5d:0e:5a:2b:47:a1:b9:a1:0d:8b:2f:78:b5:a8:cd: 23:f7:2a:27:33:68:53:e3:dc:8a:89:92:d2:c1:02: a0:ca:5e:6e:90:eb:fc:a3:17:b2:c8:94:57:18:8b: 8c:2a:f3:f2:a7:22:c1:7d:f2:34:c7:4e:78:59:87: e7:fb:8f:ac:42:71:eb:c4:7b:7a:e3:04:22:86:81: c5:d6:b3:c7:dd:2b:4b:0d:f6:cf:61:0c:5e:03:4b: 9b:5b:f9:20:cc:8a:6e:56:1f:a8:ef:33:49:f1:b3: f8:3c:4e:78:24:f5:fc:de:af:6e:31:6a:a9:9d:95: 63:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:8B:13:9B:77:02:C1:85:5E:9D:BE:B6:72:2C:82:49:79:D4:15:B7 X509v3 Authority Key Identifier: keyid:9C:94:8B:B5:F7:C6:53:9D:B5:D4:58:5D:BE:EA:F3:5A:E2:3D:DC:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/356e42e6-c6cd-4ccd-bda7-5ae9a246044a/0/9C948BB5F7C6539DB5D4585DBEEAF35AE23DDCA5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9C948BB5F7C6539DB5D4585DBEEAF35AE23DDCA5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/356e42e6-c6cd-4ccd-bda7-5ae9a246044a/0/3136302e32322e3230362e302f32342d3234203d3e20313532383235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.206.0/24 Signature Algorithm: sha256WithRSAEncryption 41:3f:2f:4a:f8:97:02:77:7f:f4:81:af:82:29:18:d2:4a:af: 14:d1:89:bc:45:e6:38:89:9d:31:88:57:36:b7:8a:f7:41:28: d6:ae:4b:12:7f:3b:de:8b:83:92:67:2a:72:0f:fd:7a:94:1b: 23:bb:01:6c:ba:3f:b2:dd:dd:63:9c:64:4e:5e:a9:fd:27:88: 2e:75:69:ae:11:62:26:92:1c:ba:45:ef:21:f3:a8:4b:7a:f0: 4d:6d:67:40:ca:8c:52:f0:49:e9:d0:0e:c9:64:42:00:97:65: c5:a6:26:85:15:6f:05:0b:44:e2:da:53:66:ef:e1:3e:43:a0: e4:81:58:51:04:3f:11:83:95:41:fe:f8:23:eb:da:ba:6f:bb: 0c:8b:4c:ff:b8:08:86:9d:ba:ae:ed:d8:12:a0:fb:a3:0f:c5: 12:f8:d7:0d:e3:5f:80:5d:e2:c1:6e:c9:5e:3c:21:cd:dd:84: e7:5a:e1:2f:f9:6c:97:05:67:8c:3b:3d:db:78:67:e4:e1:f1: f1:d6:80:e7:6c:21:87:e5:85:4e:25:d8:9b:3c:bf:00:be:2f: b8:f2:36:21:6b:fd:44:58:24:2b:23:c9:b8:13:c6:ee:a3:7e: 20:84:eb:e8:cf:91:c8:96:54:fe:e9:e4:ec:ee:9c:6e:5a:dd: 88:aa:bd:08 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUT7lshcLpXtcGrZzSJrAF2ccxkG4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUM5NDhCQjVGN0M2NTM5REI1RDQ1ODVEQkVFQUYzNUFF MjNERENBNTAeFw0yNDA3MDQxODA2MTZaFw0yNTA3MDMxODExMTZaMDMxMTAvBgNV BAMTKDM2OEIxMzlCNzcwMkMxODU1RTlEQkVCNjcyMkM4MjQ5NzlENDE1QjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC435OvaZrLaA2kcEGimfOLCat6 gALH5cod3eQIFiVBmBV3VGcNRBIXRjNVjictyzeT7vgA5uye5cNsBRlDQypwOM8Y D0ql9+smlVJnIR4ULwZzjjr+NN2eysF/rqk0BODkVJkza82OZJGsL+C/ArcPwmYm 86wCt+lMCTADLO5HPRozGoGlu10OWitHobmhDYsveLWozSP3KiczaFPj3IqJktLB AqDKXm6Q6/yjF7LIlFcYi4wq8/KnIsF98jTHTnhZh+f7j6xCcevEe3rjBCKGgcXW s8fdK0sN9s9hDF4DS5tb+SDMim5WH6jvM0nxs/g8Tngk9fzer24xaqmdlWN/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNosTm3cCwYVenb62ciyCSXnUFbcwHwYDVR0j BBgwFoAUnJSLtffGU5211FhdvurzWuI93KUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NTZlNDJlNi1jNmNkLTRjY2QtYmRhNy01YWU5YTI0NjA0NGEvMC85Qzk0OEJCNUY3 QzY1MzlEQjVENDU4NURCRUVBRjM1QUUyM0REQ0E1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUM5NDhCQjVGN0M2NTM5REI1RDQ1ODVEQkVFQUYzNUFFMjNE RENBNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM1NmU0MmU2LWM2Y2QtNGNjZC1i ZGE3LTVhZTlhMjQ2MDQ0YS8wLzMxMzYzMDJlMzIzMjJlMzIzMDM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBbOMA0GCSqG SIb3DQEBCwUAA4IBAQBBPy9K+JcCd3/0ga+CKRjSSq8U0Ym8ReY4iZ0xiFc2t4r3 QSjWrksSfzvei4OSZypyD/16lBsjuwFsuj+y3d1jnGROXqn9J4gudWmuEWImkhy6 Re8h86hLevBNbWdAyoxS8Enp0A7JZEIAl2XFpiaFFW8FC0Ti2lNm7+E+Q6DkgVhR BD8Rg5VB/vgj69q6b7sMi0z/uAiGnbqu7dgSoPujD8US+NcN41+AXeLBbslePCHN 3YTnWuEv+WyXBWeMOz3beGfk4fHx1oDnbCGH5YVOJdibPL8Avi+48jYha/1EWCQr I8m4E8buo34ghOvoz5HIllT+6eTs7pxuWt2Iqr0I -----END CERTIFICATE-----Generated at Mon Nov 25 00:59:32 2024 by rpki-client on console-ams.rpki-client.org