$ rpki-client -vvf repo-rpki.idnic.net/repo/4e374d48-5a70-4c7f-bdfd-d8052ebaf0ab/0/3136302e31392e38342e302f32342d3234203d3e20313532373534.roa File: 3136302e31392e38342e302f32342d3234203d3e20313532373534.roa (raw, json) Hash identifier: A6lmT+4re8NJP6RZrWP6uSLhDKlk3n2nKGBixAMUJac= Subject key identifier: 09:07:8A:DD:17:98:04:0F:E5:5F:A3:56:35:7A:AC:14:9F:46:A5:CB Certificate issuer: /CN=C184D0BBA0CD1944C199BF20D0EBA51A9FB47ADD Certificate serial: 543C621D6BF8C386564E543E5A27177057116B13 Authority key identifier: C1:84:D0:BB:A0:CD:19:44:C1:99:BF:20:D0:EB:A5:1A:9F:B4:7A:DD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C184D0BBA0CD1944C199BF20D0EBA51A9FB47ADD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4e374d48-5a70-4c7f-bdfd-d8052ebaf0ab/0/3136302e31392e38342e302f32342d3234203d3e20313532373534.roa Signing time: Tue 14 May 2024 05:14:33 +0000 ROA not before: Tue 14 May 2024 05:09:33 +0000 ROA not after: Tue 13 May 2025 05:14:33 +0000 asID: 152754 IP address blocks: 160.19.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4e374d48-5a70-4c7f-bdfd-d8052ebaf0ab/0/C184D0BBA0CD1944C199BF20D0EBA51A9FB47ADD.crl rsync://repo-rpki.idnic.net/repo/4e374d48-5a70-4c7f-bdfd-d8052ebaf0ab/0/C184D0BBA0CD1944C199BF20D0EBA51A9FB47ADD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C184D0BBA0CD1944C199BF20D0EBA51A9FB47ADD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 12:10:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:3c:62:1d:6b:f8:c3:86:56:4e:54:3e:5a:27:17:70:57:11:6b:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C184D0BBA0CD1944C199BF20D0EBA51A9FB47ADD Validity Not Before: May 14 05:09:33 2024 GMT Not After : May 13 05:14:33 2025 GMT Subject: CN=09078ADD1798040FE55FA356357AAC149F46A5CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d4:13:d2:0f:b6:65:16:06:c7:dc:6f:fe:4f: ef:51:a8:d0:78:2b:e0:75:e3:1a:8f:e4:b8:0c:92: c0:c3:c4:e7:c1:d0:2d:ab:d3:8c:b2:7f:81:e1:e5: af:d2:61:14:52:e7:32:b3:f3:c9:83:da:5d:e3:f0: 3e:e9:58:f4:d1:29:86:f3:66:46:49:38:66:3c:5b: d6:53:45:6c:c5:88:1c:74:eb:59:9d:5b:64:2c:9a: 4a:c7:14:b6:fa:ff:01:be:15:db:10:a4:56:f6:51: 04:56:0a:1e:b0:91:e5:55:93:b5:b3:97:b4:df:f2: 59:24:a0:fc:00:4e:8c:95:0e:af:5a:78:ce:dd:1a: ac:27:87:eb:ef:bb:b3:4f:d1:ae:ee:1d:da:42:62: 9e:39:40:92:62:e2:e4:09:40:06:4e:76:ea:6f:43: 74:d5:52:64:0d:0f:24:cd:01:3a:e8:c0:59:13:4b: e9:20:29:95:01:02:23:ff:f2:bf:53:4e:95:07:0d: 7a:13:3e:50:c1:63:36:a9:e7:ed:52:7c:a7:e2:f5: a9:8f:fe:2e:82:84:8f:c6:91:7b:96:70:99:5e:08: 77:52:84:00:a1:1d:7c:b4:1a:d9:5e:b9:a6:52:db: da:c6:71:c8:0c:7f:6d:72:b6:37:60:86:bb:d1:c2: b4:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:07:8A:DD:17:98:04:0F:E5:5F:A3:56:35:7A:AC:14:9F:46:A5:CB X509v3 Authority Key Identifier: keyid:C1:84:D0:BB:A0:CD:19:44:C1:99:BF:20:D0:EB:A5:1A:9F:B4:7A:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4e374d48-5a70-4c7f-bdfd-d8052ebaf0ab/0/C184D0BBA0CD1944C199BF20D0EBA51A9FB47ADD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C184D0BBA0CD1944C199BF20D0EBA51A9FB47ADD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4e374d48-5a70-4c7f-bdfd-d8052ebaf0ab/0/3136302e31392e38342e302f32342d3234203d3e20313532373534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.84.0/24 Signature Algorithm: sha256WithRSAEncryption 28:0e:13:92:12:bd:89:f4:24:c1:ab:d8:d6:3a:25:51:79:bd: 6c:fb:18:6b:2c:90:aa:a7:6c:62:f9:59:30:58:ba:5f:7a:de: b0:6f:e9:e0:09:6c:45:d7:b9:23:fa:b8:a6:2c:c7:de:bc:44: d7:21:fa:15:3d:ec:f1:9f:ca:1a:5f:e3:1e:99:ab:03:09:25: 52:8e:58:db:7d:a3:00:6f:1b:74:c4:58:fd:39:c6:f9:fa:eb: da:96:67:83:91:aa:19:ed:a0:7c:f9:e5:c9:c6:f2:5c:46:b9: 60:41:4f:0e:bf:61:51:63:e9:4f:f2:2e:ee:67:dc:0f:13:0a: 23:7c:45:df:b4:01:c8:48:c5:ca:60:ff:70:76:a2:1e:77:c0: f0:74:71:ba:7a:28:20:23:7b:c1:06:72:5d:fd:5c:13:c9:c2: a1:02:24:dd:8c:a6:49:9f:34:77:15:20:c8:bc:52:0a:49:c9: db:91:e5:17:ed:1a:3e:07:20:81:60:ef:71:e3:42:fb:24:48: 37:2d:36:31:4f:ea:4c:4f:9a:b2:79:93:a9:bc:11:20:b0:38: 53:34:b5:63:ae:e1:f0:90:bb:89:65:7e:3a:26:cc:94:cc:81: 84:d0:39:64:3d:4f:8f:dc:7e:08:4a:87:e7:d1:64:19:48:ee: c2:b3:44:82 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVDxiHWv4w4ZWTlQ+WicXcFcRaxMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE4NEQwQkJBMENEMTk0NEMxOTlCRjIwRDBFQkE1MUE5 RkI0N0FERDAeFw0yNDA1MTQwNTA5MzNaFw0yNTA1MTMwNTE0MzNaMDMxMTAvBgNV BAMTKDA5MDc4QUREMTc5ODA0MEZFNTVGQTM1NjM1N0FBQzE0OUY0NkE1Q0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy1BPSD7ZlFgbH3G/+T+9RqNB4 K+B14xqP5LgMksDDxOfB0C2r04yyf4Hh5a/SYRRS5zKz88mD2l3j8D7pWPTRKYbz ZkZJOGY8W9ZTRWzFiBx061mdW2QsmkrHFLb6/wG+FdsQpFb2UQRWCh6wkeVVk7Wz l7Tf8lkkoPwAToyVDq9aeM7dGqwnh+vvu7NP0a7uHdpCYp45QJJi4uQJQAZOdupv Q3TVUmQNDyTNATrowFkTS+kgKZUBAiP/8r9TTpUHDXoTPlDBYzap5+1SfKfi9amP /i6ChI/GkXuWcJleCHdShAChHXy0GtleuaZS29rGccgMf21ytjdghrvRwrSNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUCQeK3ReYBA/lX6NWNXqsFJ9GpcswHwYDVR0j BBgwFoAUwYTQu6DNGUTBmb8g0OulGp+0et0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZTM3NGQ0OC01YTcwLTRjN2YtYmRmZC1kODA1MmViYWYwYWIvMC9DMTg0RDBCQkEw Q0QxOTQ0QzE5OUJGMjBEMEVCQTUxQTlGQjQ3QURELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzE4NEQwQkJBMENEMTk0NEMxOTlCRjIwRDBFQkE1MUE5RkI0 N0FERC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRlMzc0ZDQ4LTVhNzAtNGM3Zi1i ZGZkLWQ4MDUyZWJhZjBhYi8wLzMxMzYzMDJlMzEzOTJlMzgzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM3MzUzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKATVDANBgkqhkiG 9w0BAQsFAAOCAQEAKA4TkhK9ifQkwavY1jolUXm9bPsYayyQqqdsYvlZMFi6X3re sG/p4AlsRde5I/q4pizH3rxE1yH6FT3s8Z/KGl/jHpmrAwklUo5Y232jAG8bdMRY /TnG+frr2pZng5GqGe2gfPnlycbyXEa5YEFPDr9hUWPpT/Iu7mfcDxMKI3xF37QB yEjFymD/cHaiHnfA8HRxunooICN7wQZyXf1cE8nCoQIk3YymSZ80dxUgyLxSCknJ 25HlF+0aPgcggWDvceNC+yRINy02MU/qTE+asnmTqbwRILA4UzS1Y67h8JC7iWV+ OibMlMyBhNA5ZD1Pj9x+CEqH59FkGUjuwrNEgg== -----END CERTIFICATE-----Generated at Fri Nov 29 10:53:25 2024 by rpki-client on console-ams.rpki-client.org