$ rpki-client -vvf repo-rpki.idnic.net/repo/38913893-5f64-4a5e-a8d2-5d51ebde473f/0/3136302e3138372e33372e302f32342d3234203d3e20313533333237.roa File: 3136302e3138372e33372e302f32342d3234203d3e20313533333237.roa (raw, json) Hash identifier: 2s2hT2RFc51pEXZc8X5XI589aylunZVhY45QaHon1Ao= Subject key identifier: 68:C0:83:F6:40:3C:C6:86:BD:C5:59:52:EA:B7:03:48:E5:02:05:24 Certificate issuer: /CN=B1F0A7585ED1882783C6AF802B826607ABB92671 Certificate serial: 61034FA933DAE5D10AF8D85CAC9C09A6AC1DD4E2 Authority key identifier: B1:F0:A7:58:5E:D1:88:27:83:C6:AF:80:2B:82:66:07:AB:B9:26:71 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B1F0A7585ED1882783C6AF802B826607ABB92671.cer Subject info access: rsync://repo-rpki.idnic.net/repo/38913893-5f64-4a5e-a8d2-5d51ebde473f/0/3136302e3138372e33372e302f32342d3234203d3e20313533333237.roa Signing time: Mon 07 Oct 2024 02:09:54 +0000 ROA not before: Mon 07 Oct 2024 02:04:54 +0000 ROA not after: Mon 06 Oct 2025 02:09:54 +0000 asID: 153327 IP address blocks: 160.187.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/38913893-5f64-4a5e-a8d2-5d51ebde473f/0/B1F0A7585ED1882783C6AF802B826607ABB92671.crl rsync://repo-rpki.idnic.net/repo/38913893-5f64-4a5e-a8d2-5d51ebde473f/0/B1F0A7585ED1882783C6AF802B826607ABB92671.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B1F0A7585ED1882783C6AF802B826607ABB92671.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:03:4f:a9:33:da:e5:d1:0a:f8:d8:5c:ac:9c:09:a6:ac:1d:d4:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B1F0A7585ED1882783C6AF802B826607ABB92671 Validity Not Before: Oct 7 02:04:54 2024 GMT Not After : Oct 6 02:09:54 2025 GMT Subject: CN=68C083F6403CC686BDC55952EAB70348E5020524 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c1:3b:7b:11:95:71:93:2b:ac:a3:df:c7:9b: 72:f5:c8:08:4d:a7:3d:e8:59:5a:43:f3:47:fa:c2: bf:1f:76:d0:ad:c0:4b:b3:2d:b8:47:08:b6:27:82: 62:2d:57:d6:16:89:18:86:29:bd:fc:f5:a2:53:03: 69:ac:98:23:8e:73:3c:3f:09:ab:9f:54:75:c8:ea: 5a:b9:03:31:3d:d3:49:25:4e:75:45:1d:f8:42:b8: 2a:d2:c7:4e:5e:4a:cf:e1:a4:56:e0:26:dc:b5:66: ea:ee:31:06:97:a9:af:80:eb:6b:3c:e3:5d:c9:3b: ce:2b:cb:e5:6e:8b:c1:6c:be:04:7d:23:c3:a9:fd: e5:51:60:37:a4:d6:8d:59:48:10:51:52:09:f5:bd: 00:fd:13:0b:37:27:47:b8:3f:6d:b3:06:94:0c:41: 52:ad:0d:bc:15:e7:b5:2d:31:78:e3:82:cb:46:c0: 40:78:e5:4c:43:30:6b:1f:14:d0:7f:eb:3a:a2:51: db:b2:34:e1:2f:47:7b:85:ba:34:1a:39:ec:76:dc: 21:13:2b:60:6f:94:47:4e:43:18:b5:94:f5:6e:0a: b9:d4:a3:01:31:2d:84:e8:a1:9e:3d:c8:d0:b2:a0: 0b:9b:ef:c7:cb:23:ad:ce:23:c7:5a:a8:55:fe:de: 98:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:C0:83:F6:40:3C:C6:86:BD:C5:59:52:EA:B7:03:48:E5:02:05:24 X509v3 Authority Key Identifier: keyid:B1:F0:A7:58:5E:D1:88:27:83:C6:AF:80:2B:82:66:07:AB:B9:26:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/38913893-5f64-4a5e-a8d2-5d51ebde473f/0/B1F0A7585ED1882783C6AF802B826607ABB92671.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B1F0A7585ED1882783C6AF802B826607ABB92671.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/38913893-5f64-4a5e-a8d2-5d51ebde473f/0/3136302e3138372e33372e302f32342d3234203d3e20313533333237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.37.0/24 Signature Algorithm: sha256WithRSAEncryption bc:3d:7c:bb:42:bd:eb:da:84:41:f7:2e:80:d8:35:06:a7:b0: f8:c0:26:4f:ac:00:34:97:3c:e1:ea:b0:17:d3:ef:66:c4:a8: ae:d8:72:5e:7a:64:08:d5:25:d0:74:83:2e:2d:80:cf:2d:9e: e3:12:94:92:48:dd:8e:74:53:d0:80:40:3e:b4:8a:24:e9:af: a5:39:b1:48:a0:d7:cc:46:9f:66:b8:54:65:e2:21:a5:d1:c6: bd:ea:70:ae:77:3b:09:fd:f2:b3:7c:76:bf:35:39:47:44:16: cc:e7:86:1a:46:29:1d:75:7a:b6:7e:c0:b3:3a:c2:94:fc:93: e9:02:47:4d:3d:4d:a3:6a:75:c9:b7:f2:4f:69:cc:77:ec:b6: 06:bf:d3:06:57:40:90:e9:c8:95:02:62:98:23:84:88:8f:40: 33:4e:15:b0:b6:90:3e:3f:eb:0d:15:3f:cf:c0:94:1f:12:91: da:fc:63:ed:c3:86:9d:55:ad:93:a2:31:d5:bb:72:9e:ac:64: f8:5e:1f:d5:3b:02:2d:4f:f1:66:b3:2c:6d:c3:ab:87:20:91: 14:27:d9:81:94:27:a9:78:36:c4:25:93:71:cf:97:f8:95:a5: 61:bd:52:17:57:df:35:8e:0f:c6:0d:b2:67:0a:cc:3a:f6:7b: b2:d7:85:5e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYQNPqTPa5dEK+NhcrJwJpqwd1OIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjFGMEE3NTg1RUQxODgyNzgzQzZBRjgwMkI4MjY2MDdB QkI5MjY3MTAeFw0yNDEwMDcwMjA0NTRaFw0yNTEwMDYwMjA5NTRaMDMxMTAvBgNV BAMTKDY4QzA4M0Y2NDAzQ0M2ODZCREM1NTk1MkVBQjcwMzQ4RTUwMjA1MjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgwTt7EZVxkyuso9/Hm3L1yAhN pz3oWVpD80f6wr8fdtCtwEuzLbhHCLYngmItV9YWiRiGKb389aJTA2msmCOOczw/ CaufVHXI6lq5AzE900klTnVFHfhCuCrSx05eSs/hpFbgJty1ZuruMQaXqa+A62s8 413JO84ry+Vui8FsvgR9I8Op/eVRYDek1o1ZSBBRUgn1vQD9Ews3J0e4P22zBpQM QVKtDbwV57UtMXjjgstGwEB45UxDMGsfFNB/6zqiUduyNOEvR3uFujQaOex23CET K2BvlEdOQxi1lPVuCrnUowExLYTooZ49yNCyoAub78fLI63OI8daqFX+3phDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUaMCD9kA8xoa9xVlS6rcDSOUCBSQwHwYDVR0j BBgwFoAUsfCnWF7RiCeDxq+AK4JmB6u5JnEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODkxMzg5My01ZjY0LTRhNWUtYThkMi01ZDUxZWJkZTQ3M2YvMC9CMUYwQTc1ODVF RDE4ODI3ODNDNkFGODAyQjgyNjYwN0FCQjkyNjcxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQjFGMEE3NTg1RUQxODgyNzgzQzZBRjgwMkI4MjY2MDdBQkI5 MjY3MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4OTEzODkzLTVmNjQtNGE1ZS1h OGQyLTVkNTFlYmRlNDczZi8wLzMxMzYzMDJlMzEzODM3MmUzMzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzMzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoLslMA0GCSqG SIb3DQEBCwUAA4IBAQC8PXy7Qr3r2oRB9y6A2DUGp7D4wCZPrAA0lzzh6rAX0+9m xKiu2HJeemQI1SXQdIMuLYDPLZ7jEpSSSN2OdFPQgEA+tIok6a+lObFIoNfMRp9m uFRl4iGl0ca96nCudzsJ/fKzfHa/NTlHRBbM54YaRikddXq2fsCzOsKU/JPpAkdN PU2janXJt/JPacx37LYGv9MGV0CQ6ciVAmKYI4SIj0AzThWwtpA+P+sNFT/PwJQf EpHa/GPtw4adVa2TojHVu3KerGT4Xh/VOwItT/Fmsyxtw6uHIJEUJ9mBlCepeDbE JZNxz5f4laVhvVIXV981jg/GDbJnCsw69nuy14Ve -----END CERTIFICATE-----Generated at Thu Nov 21 05:34:31 2024 by rpki-client on console-ams.rpki-client.org