$ rpki-client -vvf repo-rpki.idnic.net/repo/481d54cb-57a9-4a16-a70e-c5f6024e139d/0/3136302e3138372e3231392e302f32342d3234203d3e20313533313332.roa File: 3136302e3138372e3231392e302f32342d3234203d3e20313533313332.roa (raw, json) Hash identifier: TxTC2v3sBGuNzD/7pAwJq8+hVg6iPYD1W71+E9F+XzU= Subject key identifier: 97:B3:E0:BE:38:46:08:3E:E2:C5:92:25:F1:88:EF:43:85:61:2D:F2 Certificate issuer: /CN=C08E65A250AEDC93967004D660D25DB8293AB419 Certificate serial: 13128452B1F5E7638883E3B7A78F3DC4BB8D0418 Authority key identifier: C0:8E:65:A2:50:AE:DC:93:96:70:04:D6:60:D2:5D:B8:29:3A:B4:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C08E65A250AEDC93967004D660D25DB8293AB419.cer Subject info access: rsync://repo-rpki.idnic.net/repo/481d54cb-57a9-4a16-a70e-c5f6024e139d/0/3136302e3138372e3231392e302f32342d3234203d3e20313533313332.roa Signing time: Mon 04 Nov 2024 12:53:25 +0000 ROA not before: Mon 04 Nov 2024 12:48:25 +0000 ROA not after: Mon 03 Nov 2025 12:53:25 +0000 asID: 153132 IP address blocks: 160.187.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/481d54cb-57a9-4a16-a70e-c5f6024e139d/0/C08E65A250AEDC93967004D660D25DB8293AB419.crl rsync://repo-rpki.idnic.net/repo/481d54cb-57a9-4a16-a70e-c5f6024e139d/0/C08E65A250AEDC93967004D660D25DB8293AB419.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C08E65A250AEDC93967004D660D25DB8293AB419.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:12:84:52:b1:f5:e7:63:88:83:e3:b7:a7:8f:3d:c4:bb:8d:04:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C08E65A250AEDC93967004D660D25DB8293AB419 Validity Not Before: Nov 4 12:48:25 2024 GMT Not After : Nov 3 12:53:25 2025 GMT Subject: CN=97B3E0BE3846083EE2C59225F188EF4385612DF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:9a:0d:7e:03:9a:43:f8:1e:5e:f4:b4:0d:f3: 7c:a6:2e:35:d6:4f:6a:fc:d3:19:9a:c9:f0:69:75: e6:50:fc:d1:f9:c3:8f:98:7d:fe:5a:38:c4:94:41: 15:54:bf:c1:35:0f:2a:22:ec:fb:61:75:c9:4e:4b: 7f:97:2a:c3:a0:f2:6c:a2:22:0a:e6:01:76:ba:33: 9d:32:ee:eb:33:24:79:80:db:79:96:14:70:92:da: 2f:f2:6f:ee:59:45:82:87:d5:ad:4d:54:ea:f6:89: 85:5e:1b:0d:79:ab:b6:f2:5b:c7:a5:07:d2:19:bd: 0b:e9:e4:50:e6:30:cd:c8:74:88:db:a2:36:e1:a4: 9f:9f:48:66:e3:3c:75:94:0b:e0:9f:e3:b2:96:e3: 18:73:c0:02:a9:33:b2:e6:07:a3:19:f8:7f:c1:26: 7c:98:43:15:76:a0:ee:fe:68:53:b4:a7:66:b1:05: f9:ef:99:b9:7a:e0:d5:9e:67:10:d0:77:3e:90:47: 08:b3:57:23:98:9c:4b:5d:5b:f6:65:09:89:51:bb: 6e:e7:be:fe:16:28:a7:dd:11:c2:5c:68:a4:87:fb: 09:7f:fc:74:0a:54:e5:c0:dc:02:c8:d5:6a:cb:98: 84:bc:75:6c:e8:f7:ad:05:90:e8:d7:bd:54:92:a3: a6:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:B3:E0:BE:38:46:08:3E:E2:C5:92:25:F1:88:EF:43:85:61:2D:F2 X509v3 Authority Key Identifier: keyid:C0:8E:65:A2:50:AE:DC:93:96:70:04:D6:60:D2:5D:B8:29:3A:B4:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/481d54cb-57a9-4a16-a70e-c5f6024e139d/0/C08E65A250AEDC93967004D660D25DB8293AB419.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C08E65A250AEDC93967004D660D25DB8293AB419.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/481d54cb-57a9-4a16-a70e-c5f6024e139d/0/3136302e3138372e3231392e302f32342d3234203d3e20313533313332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.219.0/24 Signature Algorithm: sha256WithRSAEncryption 79:4a:58:06:80:19:e9:fd:fd:f3:ab:a9:21:72:e1:eb:b4:13: d4:b5:20:1d:58:03:95:d2:b1:d7:75:b5:01:14:33:15:19:97: e0:3f:36:62:b8:b7:fe:59:2b:2a:c4:1d:be:52:ad:6e:4e:d3: 8f:ac:49:32:0b:a1:a9:b7:48:de:ea:04:f0:0e:57:5c:ae:36: 17:03:4f:41:95:cd:c8:bf:8f:1c:db:02:48:10:e4:95:bf:20: cf:97:b5:df:36:30:ce:85:03:db:0e:56:eb:18:8a:53:39:7c: b0:22:3d:c7:6e:4b:46:d7:d7:f2:ed:9a:bf:1a:85:ce:91:ec: aa:60:b6:72:d4:06:96:8a:15:04:97:10:60:e2:50:2b:a0:3a: 80:16:91:7e:37:65:a7:d6:b2:3b:62:28:fd:46:93:90:80:dc: ea:a4:11:6a:5e:e4:cd:90:31:bf:e3:5e:0b:39:46:39:3f:5b: a6:03:4f:a6:18:04:f1:0c:ca:b3:98:8a:51:6c:0a:ee:1f:cd: 62:53:96:d1:16:90:6f:3e:8e:1b:5d:02:75:76:aa:d2:23:e4: 08:36:b8:85:27:ec:b7:b5:c4:b3:27:83:4e:94:4c:b4:e4:fe: cc:6d:25:da:78:0b:dc:c9:9f:02:f7:48:b4:50:48:7c:44:20: c1:80:36:f2 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUExKEUrH152OIg+O3p489xLuNBBgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzA4RTY1QTI1MEFFREM5Mzk2NzAwNEQ2NjBEMjVEQjgy OTNBQjQxOTAeFw0yNDExMDQxMjQ4MjVaFw0yNTExMDMxMjUzMjVaMDMxMTAvBgNV BAMTKDk3QjNFMEJFMzg0NjA4M0VFMkM1OTIyNUYxODhFRjQzODU2MTJERjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgmg1+A5pD+B5e9LQN83ymLjXW T2r80xmayfBpdeZQ/NH5w4+Yff5aOMSUQRVUv8E1Dyoi7PthdclOS3+XKsOg8myi IgrmAXa6M50y7uszJHmA23mWFHCS2i/yb+5ZRYKH1a1NVOr2iYVeGw15q7byW8el B9IZvQvp5FDmMM3IdIjbojbhpJ+fSGbjPHWUC+Cf47KW4xhzwAKpM7LmB6MZ+H/B JnyYQxV2oO7+aFO0p2axBfnvmbl64NWeZxDQdz6QRwizVyOYnEtdW/ZlCYlRu27n vv4WKKfdEcJcaKSH+wl//HQKVOXA3ALI1WrLmIS8dWzo960FkOjXvVSSo6aBAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUl7PgvjhGCD7ixZIl8YjvQ4VhLfIwHwYDVR0j BBgwFoAUwI5lolCu3JOWcATWYNJduCk6tBkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ODFkNTRjYi01N2E5LTRhMTYtYTcwZS1jNWY2MDI0ZTEzOWQvMC9DMDhFNjVBMjUw QUVEQzkzOTY3MDA0RDY2MEQyNURCODI5M0FCNDE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzA4RTY1QTI1MEFFREM5Mzk2NzAwNEQ2NjBEMjVEQjgyOTNB QjQxOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ4MWQ1NGNiLTU3YTktNGExNi1h NzBlLWM1ZjYwMjRlMTM5ZC8wLzMxMzYzMDJlMzEzODM3MmUzMjMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzMzMTMzMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACgu9swDQYJ KoZIhvcNAQELBQADggEBAHlKWAaAGen9/fOrqSFy4eu0E9S1IB1YA5XSsdd1tQEU MxUZl+A/NmK4t/5ZKyrEHb5SrW5O04+sSTILoam3SN7qBPAOV1yuNhcDT0GVzci/ jxzbAkgQ5JW/IM+Xtd82MM6FA9sOVusYilM5fLAiPcduS0bX1/Ltmr8ahc6R7Kpg tnLUBpaKFQSXEGDiUCugOoAWkX43ZafWsjtiKP1Gk5CA3OqkEWpe5M2QMb/jXgs5 Rjk/W6YDT6YYBPEMyrOYilFsCu4fzWJTltEWkG8+jhtdAnV2qtIj5Ag2uIUn7Le1 xLMng06UTLTk/sxtJdp4C9zJnwL3SLRQSHxEIMGANvI= -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:43 2024 by rpki-client on console-fra.rpki-client.org