$ rpki-client -vvf repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/3136302e3138372e3133372e302f32342d3234203d3e20313533313233.roa File: 3136302e3138372e3133372e302f32342d3234203d3e20313533313233.roa (raw, json) Hash identifier: ZDx0xyXfz8V3hHIDOslVv9LJtnCps0fuaLFLXmLV1tE= Subject key identifier: DC:80:28:D2:B4:4A:7B:3B:EB:51:64:E4:73:DA:64:24:F6:48:88:CA Certificate issuer: /CN=7C4DFD78914DC1F66130F256AE69D9FA843948DC Certificate serial: 4C440B81229BD1AB984D92C695517A2D17B473B6 Authority key identifier: 7C:4D:FD:78:91:4D:C1:F6:61:30:F2:56:AE:69:D9:FA:84:39:48:DC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7C4DFD78914DC1F66130F256AE69D9FA843948DC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/3136302e3138372e3133372e302f32342d3234203d3e20313533313233.roa Signing time: Tue 12 Nov 2024 09:59:07 +0000 ROA not before: Tue 12 Nov 2024 09:54:07 +0000 ROA not after: Tue 11 Nov 2025 09:59:07 +0000 asID: 153123 IP address blocks: 160.187.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/7C4DFD78914DC1F66130F256AE69D9FA843948DC.crl rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/7C4DFD78914DC1F66130F256AE69D9FA843948DC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7C4DFD78914DC1F66130F256AE69D9FA843948DC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:44:0b:81:22:9b:d1:ab:98:4d:92:c6:95:51:7a:2d:17:b4:73:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7C4DFD78914DC1F66130F256AE69D9FA843948DC Validity Not Before: Nov 12 09:54:07 2024 GMT Not After : Nov 11 09:59:07 2025 GMT Subject: CN=DC8028D2B44A7B3BEB5164E473DA6424F64888CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:22:79:d6:a2:28:a7:00:ff:78:0b:a5:1a:17: 15:bc:b3:8b:9c:c7:0f:bd:c2:87:7f:f3:db:0b:64: 3c:99:35:ee:fa:b4:79:ea:d1:41:7e:6e:38:6f:7b: a7:6b:dc:82:14:80:0c:19:da:84:49:2c:c0:33:11: 5f:f4:9c:10:3e:b4:ac:4a:ca:bd:cf:ce:a6:70:3e: 6f:7b:fb:b3:a3:93:42:61:95:b0:25:11:d9:96:8b: e7:12:2d:c5:41:75:c6:35:91:be:70:96:4f:c6:5d: ff:72:6d:12:5b:67:95:07:3d:ba:60:52:57:48:df: 84:28:01:b4:c9:6a:7e:52:b9:ba:18:11:85:64:1f: 90:49:94:11:3c:8a:c3:b7:5f:58:7f:e7:69:97:05: 1d:ac:4b:c0:cf:90:8d:56:73:3a:41:66:63:89:8a: a5:f7:49:17:6c:7a:75:3c:f3:76:58:03:4b:63:06: 14:62:6a:3d:3f:3b:05:77:1c:4f:2a:e4:7d:4f:e1: de:78:54:9c:06:8c:dd:85:7a:e6:2e:7c:2a:cf:32: 02:40:0e:a4:e9:21:57:38:35:29:a1:41:ad:d5:ae: e2:2f:0d:ed:88:a7:f2:5d:41:75:6e:10:c9:9b:91: b7:05:66:3e:d6:01:ad:41:16:54:8c:c8:61:cd:ff: 8a:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:80:28:D2:B4:4A:7B:3B:EB:51:64:E4:73:DA:64:24:F6:48:88:CA X509v3 Authority Key Identifier: keyid:7C:4D:FD:78:91:4D:C1:F6:61:30:F2:56:AE:69:D9:FA:84:39:48:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/7C4DFD78914DC1F66130F256AE69D9FA843948DC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7C4DFD78914DC1F66130F256AE69D9FA843948DC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/3136302e3138372e3133372e302f32342d3234203d3e20313533313233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.137.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:a1:d9:07:0b:0b:c4:7e:3a:05:9e:7b:b3:84:2c:dc:5f:b5: 1c:9d:7c:56:4c:bd:4f:a1:1f:b8:eb:c2:77:0f:36:d6:a0:34: 44:17:33:7a:13:29:ee:02:cd:12:91:e5:fe:cb:e7:88:09:b8: 99:47:7b:8d:53:a0:74:14:e5:af:8c:03:f9:e4:9a:67:6d:a5: ec:17:23:4f:2a:e9:3e:f0:c0:b3:5c:a5:f3:e2:10:e8:c9:a9: 65:15:19:18:09:3d:e7:d5:cd:cb:b5:ba:e0:e1:2d:90:f7:a2: 8e:06:72:c3:d4:9a:a5:45:db:5e:a4:e3:6a:cb:9f:8f:2e:11: 3a:a4:e5:af:8b:c7:92:5a:02:00:5c:4f:48:95:93:94:ce:3b: fb:e5:19:3a:4b:2a:1b:67:9b:49:88:b0:95:57:62:95:d2:84: 28:c5:01:7e:f4:6f:a4:ac:aa:aa:b2:eb:90:ff:ef:39:f1:20: cd:6e:f8:cd:2e:47:30:c5:70:c6:bf:b1:2d:57:af:a9:09:b7: 32:04:f5:c1:b0:f2:8b:ed:88:4e:50:82:e6:8e:44:5d:60:ad: 4f:12:9c:cf:6d:23:ef:c3:00:2c:34:25:20:6e:9b:49:86:4f: b3:1b:70:6d:95:1f:c2:25:96:17:5d:32:1e:6a:7e:1c:c3:7d: a6:de:3d:20 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTEQLgSKb0auYTZLGlVF6LRe0c7YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0M0REZENzg5MTREQzFGNjYxMzBGMjU2QUU2OUQ5RkE4 NDM5NDhEQzAeFw0yNDExMTIwOTU0MDdaFw0yNTExMTEwOTU5MDdaMDMxMTAvBgNV BAMTKERDODAyOEQyQjQ0QTdCM0JFQjUxNjRFNDczREE2NDI0RjY0ODg4Q0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRInnWoiinAP94C6UaFxW8s4uc xw+9wod/89sLZDyZNe76tHnq0UF+bjhve6dr3IIUgAwZ2oRJLMAzEV/0nBA+tKxK yr3PzqZwPm97+7Ojk0JhlbAlEdmWi+cSLcVBdcY1kb5wlk/GXf9ybRJbZ5UHPbpg UldI34QoAbTJan5SuboYEYVkH5BJlBE8isO3X1h/52mXBR2sS8DPkI1WczpBZmOJ iqX3SRdsenU883ZYA0tjBhRiaj0/OwV3HE8q5H1P4d54VJwGjN2FeuYufCrPMgJA DqTpIVc4NSmhQa3VruIvDe2Ip/JdQXVuEMmbkbcFZj7WAa1BFlSMyGHN/4qtAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU3IAo0rRKezvrUWTkc9pkJPZIiMowHwYDVR0j BBgwFoAUfE39eJFNwfZhMPJWrmnZ+oQ5SNwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTkyMzM5Ny04Y2Y4LTRjZWYtODg1Ni0wZDI2OGQ3M2VkYjEvMC83QzRERkQ3ODkx NERDMUY2NjEzMEYyNTZBRTY5RDlGQTg0Mzk0OERDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0M0REZENzg5MTREQzFGNjYxMzBGMjU2QUU2OUQ5RkE4NDM5 NDhEQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhOTIzMzk3LThjZjgtNGNlZi04 ODU2LTBkMjY4ZDczZWRiMS8wLzMxMzYzMDJlMzEzODM3MmUzMTMzMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzMzMTMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACgu4kwDQYJ KoZIhvcNAQELBQADggEBAGqh2QcLC8R+OgWee7OELNxftRydfFZMvU+hH7jrwncP NtagNEQXM3oTKe4CzRKR5f7L54gJuJlHe41ToHQU5a+MA/nkmmdtpewXI08q6T7w wLNcpfPiEOjJqWUVGRgJPefVzcu1uuDhLZD3oo4GcsPUmqVF216k42rLn48uETqk 5a+Lx5JaAgBcT0iVk5TOO/vlGTpLKhtnm0mIsJVXYpXShCjFAX70b6Ssqqqy65D/ 7znxIM1u+M0uRzDFcMa/sS1Xr6kJtzIE9cGw8ovtiE5QguaORF1grU8SnM9tI+/D ACw0JSBum0mGT7MbcG2VH8IllhddMh5qfhzDfabePSA= -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:51 2024 by rpki-client on console-ams.rpki-client.org