$ rpki-client -vvf repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/3136302e3138372e3133362e302f32342d3234203d3e20313533313233.roa File: 3136302e3138372e3133362e302f32342d3234203d3e20313533313233.roa (raw, json) Hash identifier: MrL5ngdoehaZ0S9ZzYnojIzhLodzexCxemBrK2FNZbg= Subject key identifier: 17:26:7D:CC:DD:66:BE:39:45:F6:AB:86:00:4B:9B:DE:71:3B:7B:60 Certificate issuer: /CN=7C4DFD78914DC1F66130F256AE69D9FA843948DC Certificate serial: 26C8D34625B6B1E84EEA24A67D4C95DAF2813C59 Authority key identifier: 7C:4D:FD:78:91:4D:C1:F6:61:30:F2:56:AE:69:D9:FA:84:39:48:DC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7C4DFD78914DC1F66130F256AE69D9FA843948DC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/3136302e3138372e3133362e302f32342d3234203d3e20313533313233.roa Signing time: Tue 12 Nov 2024 09:58:45 +0000 ROA not before: Tue 12 Nov 2024 09:53:45 +0000 ROA not after: Tue 11 Nov 2025 09:58:45 +0000 asID: 153123 IP address blocks: 160.187.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/7C4DFD78914DC1F66130F256AE69D9FA843948DC.crl rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/7C4DFD78914DC1F66130F256AE69D9FA843948DC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7C4DFD78914DC1F66130F256AE69D9FA843948DC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:c8:d3:46:25:b6:b1:e8:4e:ea:24:a6:7d:4c:95:da:f2:81:3c:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7C4DFD78914DC1F66130F256AE69D9FA843948DC Validity Not Before: Nov 12 09:53:45 2024 GMT Not After : Nov 11 09:58:45 2025 GMT Subject: CN=17267DCCDD66BE3945F6AB86004B9BDE713B7B60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:18:c7:38:a0:59:09:cb:51:54:e0:80:14:69: 1d:e9:01:b1:51:18:1d:14:96:9b:ed:63:98:2b:13: 85:43:fe:5e:44:3e:c4:cb:9d:5a:bd:ca:28:de:52: df:57:07:45:6e:8d:03:bc:65:75:ff:be:7f:bf:73: 12:8b:9c:79:a4:53:eb:e2:56:7b:ea:4a:bb:d3:66: 9f:5b:6b:2c:9b:8e:a0:7d:01:36:cc:a3:ab:79:58: 62:a6:de:1e:8c:d0:ba:f2:d2:f6:85:c1:cd:87:ee: 60:5b:bf:52:51:a7:9a:4c:4a:b1:6e:77:77:b7:72: 32:15:3c:21:b0:c5:48:3d:fd:4d:67:c5:f0:e5:29: 41:44:c9:80:6d:c1:1a:cc:20:23:98:c2:f4:15:15: 41:91:86:56:af:a6:88:98:53:fa:65:3e:c6:e4:21: 40:65:a6:18:3f:ac:e3:76:77:a8:96:5a:b9:cb:f3: 18:0e:8f:55:cc:87:b1:6c:65:26:88:53:40:c4:00: 42:13:c9:16:91:f7:bb:68:cd:73:fc:8b:71:59:89: 24:b3:56:1c:5f:7b:e2:83:28:4b:b0:c7:9a:18:05: 75:64:ad:0c:1c:5b:7e:76:25:96:6f:e1:d1:4f:16: 1f:0b:18:57:b3:b0:43:ae:36:79:d1:e6:7b:55:d8: ca:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:26:7D:CC:DD:66:BE:39:45:F6:AB:86:00:4B:9B:DE:71:3B:7B:60 X509v3 Authority Key Identifier: keyid:7C:4D:FD:78:91:4D:C1:F6:61:30:F2:56:AE:69:D9:FA:84:39:48:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/7C4DFD78914DC1F66130F256AE69D9FA843948DC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7C4DFD78914DC1F66130F256AE69D9FA843948DC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/3136302e3138372e3133362e302f32342d3234203d3e20313533313233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.136.0/24 Signature Algorithm: sha256WithRSAEncryption 48:65:5d:04:14:a8:d4:5c:77:ae:4a:48:e8:c8:21:9c:6d:44: 12:77:fc:20:54:a9:66:af:b0:ab:aa:c4:86:7d:77:ec:01:b8: 87:a5:ff:a3:36:f8:9d:0a:5a:8e:74:99:b5:16:ac:f7:ed:36: 3d:36:94:e7:d4:8a:36:df:9a:0a:bf:9a:c9:f4:0c:3c:e1:c4: 9e:3e:7d:cb:e3:8e:ee:c0:4c:cc:15:1e:a6:b9:14:7f:6f:9c: 00:8a:be:29:b2:73:a1:e5:24:4d:22:3a:de:ab:5a:0e:d4:0e: 15:70:e7:d5:69:09:9e:c2:4d:88:1a:9b:de:46:ba:9a:0f:5c: a4:9e:f3:63:bd:98:b9:ae:f1:ec:22:86:e9:a8:21:67:c6:7a: 31:63:8f:1f:92:e7:b9:25:c9:df:18:38:7a:99:cf:e0:2f:a7: be:76:f2:b0:7b:bb:e1:45:91:e1:31:91:87:99:39:8c:b3:6c: 5f:28:62:d9:e3:81:d3:1d:f7:94:ba:df:5b:b6:90:2e:56:03: 24:c7:9f:8d:7c:f2:2d:71:30:77:ed:ce:76:0d:90:de:eb:95: e7:df:fe:98:aa:5b:c4:ff:9a:d9:00:65:95:2e:41:3d:ac:44: 97:5a:db:06:72:cf:e4:56:c1:29:c3:65:00:7a:db:2a:1a:82: f1:1f:d3:0d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJsjTRiW2sehO6iSmfUyV2vKBPFkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0M0REZENzg5MTREQzFGNjYxMzBGMjU2QUU2OUQ5RkE4 NDM5NDhEQzAeFw0yNDExMTIwOTUzNDVaFw0yNTExMTEwOTU4NDVaMDMxMTAvBgNV BAMTKDE3MjY3RENDREQ2NkJFMzk0NUY2QUI4NjAwNEI5QkRFNzEzQjdCNjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOGMc4oFkJy1FU4IAUaR3pAbFR GB0UlpvtY5grE4VD/l5EPsTLnVq9yijeUt9XB0VujQO8ZXX/vn+/cxKLnHmkU+vi VnvqSrvTZp9bayybjqB9ATbMo6t5WGKm3h6M0Lry0vaFwc2H7mBbv1JRp5pMSrFu d3e3cjIVPCGwxUg9/U1nxfDlKUFEyYBtwRrMICOYwvQVFUGRhlavpoiYU/plPsbk IUBlphg/rON2d6iWWrnL8xgOj1XMh7FsZSaIU0DEAEITyRaR97tozXP8i3FZiSSz Vhxfe+KDKEuwx5oYBXVkrQwcW352JZZv4dFPFh8LGFezsEOuNnnR5ntV2MpJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUFyZ9zN1mvjlF9quGAEub3nE7e2AwHwYDVR0j BBgwFoAUfE39eJFNwfZhMPJWrmnZ+oQ5SNwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTkyMzM5Ny04Y2Y4LTRjZWYtODg1Ni0wZDI2OGQ3M2VkYjEvMC83QzRERkQ3ODkx NERDMUY2NjEzMEYyNTZBRTY5RDlGQTg0Mzk0OERDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0M0REZENzg5MTREQzFGNjYxMzBGMjU2QUU2OUQ5RkE4NDM5 NDhEQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhOTIzMzk3LThjZjgtNGNlZi04 ODU2LTBkMjY4ZDczZWRiMS8wLzMxMzYzMDJlMzEzODM3MmUzMTMzMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzMzMTMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACgu4gwDQYJ KoZIhvcNAQELBQADggEBAEhlXQQUqNRcd65KSOjIIZxtRBJ3/CBUqWavsKuqxIZ9 d+wBuIel/6M2+J0KWo50mbUWrPftNj02lOfUijbfmgq/msn0DDzhxJ4+fcvjju7A TMwVHqa5FH9vnACKvimyc6HlJE0iOt6rWg7UDhVw59VpCZ7CTYgam95GupoPXKSe 82O9mLmu8ewihumoIWfGejFjjx+S57klyd8YOHqZz+Avp7528rB7u+FFkeExkYeZ OYyzbF8oYtnjgdMd95S631u2kC5WAyTHn4188i1xMHftznYNkN7rleff/piqW8T/ mtkAZZUuQT2sRJda2wZyz+RWwSnDZQB62yoagvEf0w0= -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:05 2024 by rpki-client on console-fra.rpki-client.org