$ rpki-client -vvf repo-rpki.idnic.net/repo/481d54cb-57a9-4a16-a70e-c5f6024e139d/0/3136302e3138372e3231382e302f32332d3233203d3e20313533313332.roa File: 3136302e3138372e3231382e302f32332d3233203d3e20313533313332.roa (raw, json) Hash identifier: sdFf65pWHqDguzQodheeefSyOGT0g0gjcknsFa81ar4= Subject key identifier: C5:E3:29:95:C0:E8:51:11:33:7F:AE:A5:C8:E8:31:A5:30:22:11:73 Certificate issuer: /CN=C08E65A250AEDC93967004D660D25DB8293AB419 Certificate serial: 20B1D153409BABBB6FD415EEDC31DBA15F1AFE76 Authority key identifier: C0:8E:65:A2:50:AE:DC:93:96:70:04:D6:60:D2:5D:B8:29:3A:B4:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C08E65A250AEDC93967004D660D25DB8293AB419.cer Subject info access: rsync://repo-rpki.idnic.net/repo/481d54cb-57a9-4a16-a70e-c5f6024e139d/0/3136302e3138372e3231382e302f32332d3233203d3e20313533313332.roa Signing time: Thu 31 Oct 2024 03:42:28 +0000 ROA not before: Thu 31 Oct 2024 03:37:28 +0000 ROA not after: Thu 30 Oct 2025 03:42:28 +0000 asID: 153132 IP address blocks: 160.187.218.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/481d54cb-57a9-4a16-a70e-c5f6024e139d/0/C08E65A250AEDC93967004D660D25DB8293AB419.crl rsync://repo-rpki.idnic.net/repo/481d54cb-57a9-4a16-a70e-c5f6024e139d/0/C08E65A250AEDC93967004D660D25DB8293AB419.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C08E65A250AEDC93967004D660D25DB8293AB419.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:b1:d1:53:40:9b:ab:bb:6f:d4:15:ee:dc:31:db:a1:5f:1a:fe:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C08E65A250AEDC93967004D660D25DB8293AB419 Validity Not Before: Oct 31 03:37:28 2024 GMT Not After : Oct 30 03:42:28 2025 GMT Subject: CN=C5E32995C0E85111337FAEA5C8E831A530221173 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:0f:7b:fa:dd:a0:d0:38:9b:e4:42:89:f3:7b: ea:bb:52:c5:ff:f2:1f:75:75:60:0e:5a:74:d0:0c: f4:5d:e1:6b:66:cd:b9:c0:81:3b:c9:e1:39:7e:8f: 98:a1:2b:19:b4:77:6e:dd:74:06:c5:64:7e:8a:d4: aa:38:b7:a3:d8:a5:6d:d0:aa:8c:2f:db:83:db:4c: 41:11:15:19:ed:39:39:f5:a3:aa:39:ad:32:61:16: 77:01:77:86:41:a9:b4:b0:ce:0e:03:e1:0c:bf:44: 16:d8:ba:ce:ae:58:39:9a:de:86:e8:89:15:63:19: 77:ce:98:8e:f6:66:0f:45:6b:b6:bf:5f:2d:ee:6f: f1:e5:27:b7:4f:1e:16:64:16:c4:e0:50:63:13:9e: ea:25:af:db:59:50:77:f1:3f:e9:8b:82:35:ba:ed: 14:4f:e0:58:cb:30:b5:9f:00:0c:e5:42:02:95:a9: 0c:5a:7b:5f:28:2f:fe:55:72:21:ea:22:80:25:63: 1c:0c:36:3c:29:1e:01:ce:d2:d9:31:c0:1b:5b:f5: cb:f7:6d:fe:49:79:13:c6:6d:7d:1b:44:f1:bb:22: 01:26:5c:7d:1a:3c:02:4d:ba:ca:a7:6f:14:cb:99: 38:6c:00:f6:22:6f:87:6f:2c:e5:76:cd:69:9f:55: 73:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:E3:29:95:C0:E8:51:11:33:7F:AE:A5:C8:E8:31:A5:30:22:11:73 X509v3 Authority Key Identifier: keyid:C0:8E:65:A2:50:AE:DC:93:96:70:04:D6:60:D2:5D:B8:29:3A:B4:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/481d54cb-57a9-4a16-a70e-c5f6024e139d/0/C08E65A250AEDC93967004D660D25DB8293AB419.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C08E65A250AEDC93967004D660D25DB8293AB419.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/481d54cb-57a9-4a16-a70e-c5f6024e139d/0/3136302e3138372e3231382e302f32332d3233203d3e20313533313332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.218.0/23 Signature Algorithm: sha256WithRSAEncryption d0:68:4a:09:9c:bf:28:5b:1d:4a:4f:64:7b:75:83:f6:fa:ed: 8a:e1:71:33:e1:fb:d5:f9:01:18:66:13:37:18:e5:1b:6f:cf: 3d:21:3d:1f:57:a5:0d:36:b0:30:38:d0:10:07:6d:8b:3d:7b: 59:d9:8e:ec:e9:12:72:cc:b9:da:c3:50:a5:58:27:4e:2f:30: 98:ca:b7:fa:06:e9:df:d5:2c:54:66:0f:6f:08:27:79:8e:42: 95:5a:73:6a:71:79:e6:7c:09:41:32:4d:7b:d1:98:43:d1:4e: a8:7b:68:60:7b:df:2d:07:38:f2:d5:87:19:f2:b3:fd:aa:72: 69:d6:8e:b8:a9:05:70:5d:ef:f5:90:9e:4c:20:08:3f:3e:6e: 60:83:0a:cc:9c:10:c8:62:6a:5e:c7:90:73:2a:8a:cf:ef:cb: 7a:3b:b9:5d:a1:5a:6e:98:c6:bc:87:7d:be:a6:57:5b:3f:3b: 6a:a7:76:ff:19:46:0b:63:db:ad:da:5a:38:5f:8e:07:2c:bb: ce:96:dc:3f:f2:ae:78:3e:07:d3:91:34:66:17:df:1e:0d:18: 48:5d:7f:cd:e5:15:12:51:a6:f4:b5:c8:c6:15:75:49:a4:91: 8b:69:fc:71:b3:84:7f:4d:4b:be:b8:62:21:20:e6:68:4e:99: 1f:0b:91:73 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUILHRU0Cbq7tv1BXu3DHboV8a/nYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzA4RTY1QTI1MEFFREM5Mzk2NzAwNEQ2NjBEMjVEQjgy OTNBQjQxOTAeFw0yNDEwMzEwMzM3MjhaFw0yNTEwMzAwMzQyMjhaMDMxMTAvBgNV BAMTKEM1RTMyOTk1QzBFODUxMTEzMzdGQUVBNUM4RTgzMUE1MzAyMjExNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmD3v63aDQOJvkQonze+q7UsX/ 8h91dWAOWnTQDPRd4WtmzbnAgTvJ4Tl+j5ihKxm0d27ddAbFZH6K1Ko4t6PYpW3Q qowv24PbTEERFRntOTn1o6o5rTJhFncBd4ZBqbSwzg4D4Qy/RBbYus6uWDma3obo iRVjGXfOmI72Zg9Fa7a/Xy3ub/HlJ7dPHhZkFsTgUGMTnuolr9tZUHfxP+mLgjW6 7RRP4FjLMLWfAAzlQgKVqQxae18oL/5VciHqIoAlYxwMNjwpHgHO0tkxwBtb9cv3 bf5JeRPGbX0bRPG7IgEmXH0aPAJNusqnbxTLmThsAPYib4dvLOV2zWmfVXMxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUxeMplcDoUREzf66lyOgxpTAiEXMwHwYDVR0j BBgwFoAUwI5lolCu3JOWcATWYNJduCk6tBkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ODFkNTRjYi01N2E5LTRhMTYtYTcwZS1jNWY2MDI0ZTEzOWQvMC9DMDhFNjVBMjUw QUVEQzkzOTY3MDA0RDY2MEQyNURCODI5M0FCNDE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzA4RTY1QTI1MEFFREM5Mzk2NzAwNEQ2NjBEMjVEQjgyOTNB QjQxOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ4MWQ1NGNiLTU3YTktNGExNi1h NzBlLWM1ZjYwMjRlMTM5ZC8wLzMxMzYzMDJlMzEzODM3MmUzMjMxMzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM1MzMzMTMzMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGgu9owDQYJ KoZIhvcNAQELBQADggEBANBoSgmcvyhbHUpPZHt1g/b67YrhcTPh+9X5ARhmEzcY 5Rtvzz0hPR9XpQ02sDA40BAHbYs9e1nZjuzpEnLMudrDUKVYJ04vMJjKt/oG6d/V LFRmD28IJ3mOQpVac2pxeeZ8CUEyTXvRmEPRTqh7aGB73y0HOPLVhxnys/2qcmnW jripBXBd7/WQnkwgCD8+bmCDCsycEMhial7HkHMqis/vy3o7uV2hWm6YxryHfb6m V1s/O2qndv8ZRgtj263aWjhfjgcsu86W3D/yrng+B9ORNGYX3x4NGEhdf83lFRJR pvS1yMYVdUmkkYtp/HGzhH9NS764YiEg5mhOmR8LkXM= -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:43 2024 by rpki-client on console-fra.rpki-client.org