$ rpki-client -vvf repo-rpki.idnic.net/repo/35a20077-fc53-43a3-bda7-f39956d9926d/0/3136302e32322e37302e302f32332d3234203d3e203538333831.roa File: 3136302e32322e37302e302f32332d3234203d3e203538333831.roa (raw, json) Hash identifier: SZF4Z9v3eKneOkuBlAob2+u92vsQYFHYdvhfR0N4D0s= Subject key identifier: 65:4B:FD:D7:90:F1:59:D8:07:D0:EA:C0:A8:06:D6:07:2E:B4:11:24 Certificate issuer: /CN=5BB7E8A3ABF6DF6D46C3D5F91EC3B77870CE6C61 Certificate serial: 2015C4F5448B3C9619E8F1912E84464D0C023D65 Authority key identifier: 5B:B7:E8:A3:AB:F6:DF:6D:46:C3:D5:F9:1E:C3:B7:78:70:CE:6C:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5BB7E8A3ABF6DF6D46C3D5F91EC3B77870CE6C61.cer Subject info access: rsync://repo-rpki.idnic.net/repo/35a20077-fc53-43a3-bda7-f39956d9926d/0/3136302e32322e37302e302f32332d3234203d3e203538333831.roa Signing time: Wed 19 Jun 2024 05:12:56 +0000 ROA not before: Wed 19 Jun 2024 05:07:56 +0000 ROA not after: Wed 18 Jun 2025 05:12:56 +0000 asID: 58381 IP address blocks: 160.22.70.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/35a20077-fc53-43a3-bda7-f39956d9926d/0/5BB7E8A3ABF6DF6D46C3D5F91EC3B77870CE6C61.crl rsync://repo-rpki.idnic.net/repo/35a20077-fc53-43a3-bda7-f39956d9926d/0/5BB7E8A3ABF6DF6D46C3D5F91EC3B77870CE6C61.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5BB7E8A3ABF6DF6D46C3D5F91EC3B77870CE6C61.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:15:c4:f5:44:8b:3c:96:19:e8:f1:91:2e:84:46:4d:0c:02:3d:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BB7E8A3ABF6DF6D46C3D5F91EC3B77870CE6C61 Validity Not Before: Jun 19 05:07:56 2024 GMT Not After : Jun 18 05:12:56 2025 GMT Subject: CN=654BFDD790F159D807D0EAC0A806D6072EB41124 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:2f:7b:eb:8b:79:e2:29:12:46:d2:8a:c0:c8: a4:3f:b2:24:bc:1e:70:5e:cf:97:b9:e2:c9:5c:4d: 8c:fb:61:1d:52:b4:0d:be:c0:63:6f:dc:b9:78:b9: 28:a5:4f:41:60:6e:e4:00:7c:74:a9:bc:9f:71:19: da:8c:57:9c:a7:66:c8:87:6b:c4:0d:f5:40:fe:41: 3a:48:f8:5b:3b:0d:63:ef:a0:d5:81:d4:90:c3:17: f4:23:6b:28:6d:d7:13:25:8c:ea:96:81:8b:3f:47: 2d:60:6b:25:84:fe:a1:90:19:e0:0d:1f:bb:e9:48: 44:65:6e:20:c6:f7:90:aa:e9:c7:d3:bc:8a:33:88: 65:08:3f:70:d5:5d:f7:45:95:ad:1b:12:e7:68:37: 8c:54:2f:fe:41:fe:74:88:f3:0d:80:15:cb:61:17: db:20:53:f2:79:98:89:f8:45:be:87:d6:09:b2:d4: 98:2e:4f:20:cd:fc:5f:93:6c:b8:6e:ff:35:76:4a: 01:14:71:6d:61:11:6d:e5:68:d0:d6:1d:58:6a:77: 6b:94:c6:03:9c:76:35:d9:89:eb:d0:7b:70:ba:c1: 54:67:d4:ab:21:ff:cc:40:df:7f:28:f6:e7:6a:67: 69:df:39:79:a5:4f:bb:38:4a:00:af:5c:ff:06:81: da:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:4B:FD:D7:90:F1:59:D8:07:D0:EA:C0:A8:06:D6:07:2E:B4:11:24 X509v3 Authority Key Identifier: keyid:5B:B7:E8:A3:AB:F6:DF:6D:46:C3:D5:F9:1E:C3:B7:78:70:CE:6C:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/35a20077-fc53-43a3-bda7-f39956d9926d/0/5BB7E8A3ABF6DF6D46C3D5F91EC3B77870CE6C61.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5BB7E8A3ABF6DF6D46C3D5F91EC3B77870CE6C61.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/35a20077-fc53-43a3-bda7-f39956d9926d/0/3136302e32322e37302e302f32332d3234203d3e203538333831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.70.0/23 Signature Algorithm: sha256WithRSAEncryption 15:94:5a:e6:22:29:91:dc:d6:eb:09:3b:17:30:e8:35:e8:8d: d0:ea:c9:ea:8a:7b:b0:94:66:21:de:35:65:b0:10:b9:46:40: 47:e4:33:eb:c2:ff:e3:52:13:47:3f:f5:50:94:ff:e4:be:70: c6:5e:6d:66:9c:2e:d8:19:4f:1e:0f:7b:d8:01:e5:b2:1a:4a: 50:72:32:b3:56:51:27:c5:9f:2d:78:c4:fc:2c:8f:6f:93:dc: 29:13:be:7c:fd:e0:1f:31:ce:2b:51:5e:02:14:31:7f:46:86: d5:e7:45:bf:17:27:57:07:5a:c2:30:84:68:bf:40:26:35:33: 01:b9:28:29:7b:b4:a6:79:b7:5e:f6:8b:6c:68:22:3e:f6:dc: 65:63:99:1d:17:47:fb:41:98:e8:75:3f:f8:1a:93:d7:d6:05: 70:2d:e6:e4:69:96:3c:c9:06:c1:67:2f:54:e7:7b:05:1c:cc: 97:ad:53:6b:e0:3e:07:3a:14:83:37:08:56:2a:1b:5a:4b:5f: 45:5d:05:a2:2d:f3:4f:9b:81:90:46:36:99:26:3a:ad:7d:f5: 99:3d:69:3e:24:ef:ff:a8:04:04:7d:bf:77:38:b9:bf:2f:da: 39:cc:66:bb:ea:2d:94:86:de:b0:32:0b:d3:26:cc:81:75:5e: 83:b8:e3:43 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUIBXE9USLPJYZ6PGRLoRGTQwCPWUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJCN0U4QTNBQkY2REY2RDQ2QzNENUY5MUVDM0I3Nzg3 MENFNkM2MTAeFw0yNDA2MTkwNTA3NTZaFw0yNTA2MTgwNTEyNTZaMDMxMTAvBgNV BAMTKDY1NEJGREQ3OTBGMTU5RDgwN0QwRUFDMEE4MDZENjA3MkVCNDExMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUL3vri3niKRJG0orAyKQ/siS8 HnBez5e54slcTYz7YR1StA2+wGNv3Ll4uSilT0FgbuQAfHSpvJ9xGdqMV5ynZsiH a8QN9UD+QTpI+Fs7DWPvoNWB1JDDF/Qjayht1xMljOqWgYs/Ry1gayWE/qGQGeAN H7vpSERlbiDG95Cq6cfTvIoziGUIP3DVXfdFla0bEudoN4xUL/5B/nSI8w2AFcth F9sgU/J5mIn4Rb6H1gmy1JguTyDN/F+TbLhu/zV2SgEUcW1hEW3laNDWHVhqd2uU xgOcdjXZievQe3C6wVRn1Ksh/8xA338o9udqZ2nfOXmlT7s4SgCvXP8GgdobAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUZUv915DxWdgH0OrAqAbWBy60ESQwHwYDVR0j BBgwFoAUW7foo6v2321Gw9X5HsO3eHDObGEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NWEyMDA3Ny1mYzUzLTQzYTMtYmRhNy1mMzk5NTZkOTkyNmQvMC81QkI3RThBM0FC RjZERjZENDZDM0Q1RjkxRUMzQjc3ODcwQ0U2QzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNUJCN0U4QTNBQkY2REY2RDQ2QzNENUY5MUVDM0I3Nzg3MENF NkM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM1YTIwMDc3LWZjNTMtNDNhMy1i ZGE3LWYzOTk1NmQ5OTI2ZC8wLzMxMzYzMDJlMzIzMjJlMzczMDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDM1MzgzMzM4MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGgFkYwDQYJKoZIhvcN AQELBQADggEBABWUWuYiKZHc1usJOxcw6DXojdDqyeqKe7CUZiHeNWWwELlGQEfk M+vC/+NSE0c/9VCU/+S+cMZebWacLtgZTx4Pe9gB5bIaSlByMrNWUSfFny14xPws j2+T3CkTvnz94B8xzitRXgIUMX9GhtXnRb8XJ1cHWsIwhGi/QCY1MwG5KCl7tKZ5 t172i2xoIj723GVjmR0XR/tBmOh1P/gak9fWBXAt5uRpljzJBsFnL1TnewUczJet U2vgPgc6FIM3CFYqG1pLX0VdBaIt80+bgZBGNpkmOq199Zk9aT4k7/+oBAR9v3c4 ub8v2jnMZrvqLZSG3rAyC9MmzIF1XoO440M= -----END CERTIFICATE-----Generated at Wed Nov 20 18:59:25 2024 by rpki-client on console-ams.rpki-client.org