$ rpki-client -vvf repo-rpki.idnic.net/repo/4e374d48-5a70-4c7f-bdfd-d8052ebaf0ab/0/3136302e31392e38342e302f32332d3233203d3e20313532373534.roa File: 3136302e31392e38342e302f32332d3233203d3e20313532373534.roa (raw, json) Hash identifier: Yid8frpvCMkMf1ma76Hg9B9Pe7bRisQmq2+wHrZy8PM= Subject key identifier: 28:3A:E6:59:03:0D:98:5D:B4:84:6F:EC:15:91:EB:06:B9:9B:65:50 Certificate issuer: /CN=C184D0BBA0CD1944C199BF20D0EBA51A9FB47ADD Certificate serial: 311233D034C88C6D1E1F4CB1CAD2CB40A077C45B Authority key identifier: C1:84:D0:BB:A0:CD:19:44:C1:99:BF:20:D0:EB:A5:1A:9F:B4:7A:DD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C184D0BBA0CD1944C199BF20D0EBA51A9FB47ADD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4e374d48-5a70-4c7f-bdfd-d8052ebaf0ab/0/3136302e31392e38342e302f32332d3233203d3e20313532373534.roa Signing time: Tue 14 May 2024 05:12:20 +0000 ROA not before: Tue 14 May 2024 05:07:20 +0000 ROA not after: Tue 13 May 2025 05:12:20 +0000 asID: 152754 IP address blocks: 160.19.84.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4e374d48-5a70-4c7f-bdfd-d8052ebaf0ab/0/C184D0BBA0CD1944C199BF20D0EBA51A9FB47ADD.crl rsync://repo-rpki.idnic.net/repo/4e374d48-5a70-4c7f-bdfd-d8052ebaf0ab/0/C184D0BBA0CD1944C199BF20D0EBA51A9FB47ADD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C184D0BBA0CD1944C199BF20D0EBA51A9FB47ADD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 13:51:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:12:33:d0:34:c8:8c:6d:1e:1f:4c:b1:ca:d2:cb:40:a0:77:c4:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C184D0BBA0CD1944C199BF20D0EBA51A9FB47ADD Validity Not Before: May 14 05:07:20 2024 GMT Not After : May 13 05:12:20 2025 GMT Subject: CN=283AE659030D985DB4846FEC1591EB06B99B6550 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:64:f9:ae:34:b0:d5:9a:7a:77:55:4c:29:ce: e4:ab:f0:f6:7c:04:aa:88:90:e4:b3:6a:0b:8f:23: 31:71:8c:d8:62:b4:66:38:60:0b:fa:24:fd:d5:4d: 73:6d:cd:79:39:24:b2:fd:ce:7b:40:3e:f5:09:ff: b5:5e:3a:35:c4:f9:df:67:ef:2f:e6:d3:0e:6e:5d: 6a:e4:59:a6:ff:d9:24:bb:a6:f8:a0:8f:b0:af:77: 9c:65:40:01:52:7c:66:18:f6:c4:7c:39:b9:21:7a: 63:f9:4c:97:0f:84:22:b6:d5:43:6e:6b:86:c9:f4: 16:7b:20:39:4b:d6:cd:51:d1:7d:d1:fd:ff:48:78: ee:3b:91:c0:0a:c2:38:2d:ea:6b:28:c7:d2:97:1c: c2:a3:c0:1d:aa:f8:2e:3e:41:48:71:ca:98:83:1f: 5d:b1:11:24:d2:75:f2:1e:35:8b:86:a7:e3:64:0f: 18:79:76:b2:52:5c:51:e5:26:c1:cb:28:58:35:a6: e3:10:09:73:17:d1:fb:b5:d8:ee:29:4e:1e:ad:87: 3c:8d:5b:7a:82:a8:93:fb:f1:d2:c2:fd:9f:3f:12: e5:8c:a8:d7:66:50:9f:57:3a:ef:97:0a:69:d1:35: 15:72:d0:cd:f8:36:12:d3:1d:7b:6b:fa:de:f9:e6: bf:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:3A:E6:59:03:0D:98:5D:B4:84:6F:EC:15:91:EB:06:B9:9B:65:50 X509v3 Authority Key Identifier: keyid:C1:84:D0:BB:A0:CD:19:44:C1:99:BF:20:D0:EB:A5:1A:9F:B4:7A:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4e374d48-5a70-4c7f-bdfd-d8052ebaf0ab/0/C184D0BBA0CD1944C199BF20D0EBA51A9FB47ADD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C184D0BBA0CD1944C199BF20D0EBA51A9FB47ADD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4e374d48-5a70-4c7f-bdfd-d8052ebaf0ab/0/3136302e31392e38342e302f32332d3233203d3e20313532373534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.84.0/23 Signature Algorithm: sha256WithRSAEncryption 22:c8:ab:82:30:18:86:bb:90:2e:02:b3:76:59:ee:21:6a:77: 89:4b:a3:e6:dc:20:e0:5b:f1:50:d1:c5:d7:f6:ba:11:2c:99: 2a:1a:41:77:ce:87:92:9a:78:e2:e1:11:a8:42:76:b5:3f:f7: 5d:60:96:40:09:55:b1:65:d4:bf:9e:e1:98:28:69:8f:91:fc: 6c:22:fb:1d:2c:fb:e8:c2:10:fa:8a:a2:02:fe:c2:b3:07:91: fa:b6:45:96:a6:fa:bd:9f:eb:e1:4a:97:12:51:38:44:4e:8f: 95:f4:c8:a6:b4:04:6c:de:c8:ed:a4:6a:50:89:91:57:fd:1c: b5:71:25:ad:b2:13:7f:31:93:c1:89:dc:1c:ee:a2:20:5f:a3: 0b:f6:75:6f:60:9d:05:5c:6d:a7:52:52:9a:ba:9e:11:70:0d: 04:78:84:a3:8a:07:01:57:c7:f5:91:b5:a9:d0:1c:2c:a8:0d: 26:51:73:33:f8:9b:be:f2:7f:56:20:8e:f4:1d:2c:08:6a:43: 70:79:2f:35:9e:d8:1c:6a:d5:39:d1:33:ff:63:f6:59:4f:45: 71:26:74:5b:ae:09:bd:17:1b:3b:c0:f6:16:ff:10:85:a2:e6: f1:eb:ea:e5:25:4b:f9:9b:9c:18:f3:a0:c8:e4:5b:d4:bb:9e: d1:cc:be:0a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMRIz0DTIjG0eH0yxytLLQKB3xFswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE4NEQwQkJBMENEMTk0NEMxOTlCRjIwRDBFQkE1MUE5 RkI0N0FERDAeFw0yNDA1MTQwNTA3MjBaFw0yNTA1MTMwNTEyMjBaMDMxMTAvBgNV BAMTKDI4M0FFNjU5MDMwRDk4NURCNDg0NkZFQzE1OTFFQjA2Qjk5QjY1NTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5ZPmuNLDVmnp3VUwpzuSr8PZ8 BKqIkOSzaguPIzFxjNhitGY4YAv6JP3VTXNtzXk5JLL9zntAPvUJ/7VeOjXE+d9n 7y/m0w5uXWrkWab/2SS7pvigj7Cvd5xlQAFSfGYY9sR8ObkhemP5TJcPhCK21UNu a4bJ9BZ7IDlL1s1R0X3R/f9IeO47kcAKwjgt6msox9KXHMKjwB2q+C4+QUhxypiD H12xESTSdfIeNYuGp+NkDxh5drJSXFHlJsHLKFg1puMQCXMX0fu12O4pTh6thzyN W3qCqJP78dLC/Z8/EuWMqNdmUJ9XOu+XCmnRNRVy0M34NhLTHXtr+t755r+TAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUKDrmWQMNmF20hG/sFZHrBrmbZVAwHwYDVR0j BBgwFoAUwYTQu6DNGUTBmb8g0OulGp+0et0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZTM3NGQ0OC01YTcwLTRjN2YtYmRmZC1kODA1MmViYWYwYWIvMC9DMTg0RDBCQkEw Q0QxOTQ0QzE5OUJGMjBEMEVCQTUxQTlGQjQ3QURELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzE4NEQwQkJBMENEMTk0NEMxOTlCRjIwRDBFQkE1MUE5RkI0 N0FERC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRlMzc0ZDQ4LTVhNzAtNGM3Zi1i ZGZkLWQ4MDUyZWJhZjBhYi8wLzMxMzYzMDJlMzEzOTJlMzgzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMjM3MzUzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaATVDANBgkqhkiG 9w0BAQsFAAOCAQEAIsirgjAYhruQLgKzdlnuIWp3iUuj5twg4FvxUNHF1/a6ESyZ KhpBd86Hkpp44uERqEJ2tT/3XWCWQAlVsWXUv57hmChpj5H8bCL7HSz76MIQ+oqi Av7CsweR+rZFlqb6vZ/r4UqXElE4RE6PlfTIprQEbN7I7aRqUImRV/0ctXElrbIT fzGTwYncHO6iIF+jC/Z1b2CdBVxtp1JSmrqeEXANBHiEo4oHAVfH9ZG1qdAcLKgN JlFzM/ibvvJ/ViCO9B0sCGpDcHkvNZ7YHGrVOdEz/2P2WU9FcSZ0W64JvRcbO8D2 Fv8QhaLm8evq5SVL+ZucGPOgyORb1Lue0cy+Cg== -----END CERTIFICATE-----Generated at Wed Nov 27 02:15:53 2024 by rpki-client on console-fra.rpki-client.org