$ rpki-client -vvf repo-rpki.idnic.net/repo/5582fca9-3222-45b6-b422-ff2c6a9fd247/0/3136302e31392e3136372e302f32342d3234203d3e20313338313135.roa File: 3136302e31392e3136372e302f32342d3234203d3e20313338313135.roa (raw, json) Hash identifier: nZZMov2ZHv9xvPqDQJLudYEweQtD3cCvDGFJ8VCvd1s= Subject key identifier: 10:0C:24:DE:11:A7:F0:3B:80:C3:A4:5E:00:70:70:BA:34:CB:00:B0 Certificate issuer: /CN=566A7EC3EFCDEB4ABFA2A96ABE93EC3317A0D2E1 Certificate serial: 0E44964F23B7F42855D3C979088CCDAF6F6D8881 Authority key identifier: 56:6A:7E:C3:EF:CD:EB:4A:BF:A2:A9:6A:BE:93:EC:33:17:A0:D2:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/566A7EC3EFCDEB4ABFA2A96ABE93EC3317A0D2E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5582fca9-3222-45b6-b422-ff2c6a9fd247/0/3136302e31392e3136372e302f32342d3234203d3e20313338313135.roa Signing time: Mon 20 May 2024 06:27:17 +0000 ROA not before: Mon 20 May 2024 06:22:17 +0000 ROA not after: Mon 19 May 2025 06:27:17 +0000 asID: 138115 IP address blocks: 160.19.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5582fca9-3222-45b6-b422-ff2c6a9fd247/0/566A7EC3EFCDEB4ABFA2A96ABE93EC3317A0D2E1.crl rsync://repo-rpki.idnic.net/repo/5582fca9-3222-45b6-b422-ff2c6a9fd247/0/566A7EC3EFCDEB4ABFA2A96ABE93EC3317A0D2E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/566A7EC3EFCDEB4ABFA2A96ABE93EC3317A0D2E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:44:96:4f:23:b7:f4:28:55:d3:c9:79:08:8c:cd:af:6f:6d:88:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=566A7EC3EFCDEB4ABFA2A96ABE93EC3317A0D2E1 Validity Not Before: May 20 06:22:17 2024 GMT Not After : May 19 06:27:17 2025 GMT Subject: CN=100C24DE11A7F03B80C3A45E007070BA34CB00B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:fe:8d:df:3a:5d:80:89:74:d9:b0:d6:42:06: 38:76:ee:d0:71:bc:49:17:89:26:13:2e:6a:5a:77: 49:39:ee:65:da:79:17:1e:5a:e9:db:3b:96:c1:ef: b1:72:69:6f:e8:af:24:58:5a:98:7f:de:0f:71:04: 54:f2:92:84:bd:9d:1e:ed:92:8a:85:23:92:46:fa: 42:2a:6c:4f:9a:45:79:8c:73:33:4e:6b:11:f9:05: c2:b4:fa:26:c2:5d:44:fc:8a:ab:6c:c5:4c:3c:94: b4:ea:a2:2e:06:8e:98:ea:17:84:5a:fd:6b:36:48: c9:1c:c5:7a:25:d8:5b:b0:24:23:de:8e:e2:b4:ec: 80:16:11:88:f6:53:5a:c3:ec:b1:7e:8a:f3:73:2e: 0e:19:cd:7a:98:ce:25:a8:a9:84:33:f9:07:2e:75: 3f:0f:83:8e:ca:94:f9:58:a9:29:91:b0:60:d0:b2: 93:11:3f:56:6d:f3:b6:ba:f0:88:64:48:60:0c:86: a2:d0:7d:e1:b9:35:0b:79:30:4d:66:33:c4:c7:4b: ec:32:a6:47:99:86:42:46:40:da:0c:73:57:33:04: ea:c8:48:ca:89:89:40:69:f5:5c:75:b8:b8:66:f7: 06:f2:76:b9:fc:55:52:44:25:76:a1:65:a5:ea:d9: 11:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:0C:24:DE:11:A7:F0:3B:80:C3:A4:5E:00:70:70:BA:34:CB:00:B0 X509v3 Authority Key Identifier: keyid:56:6A:7E:C3:EF:CD:EB:4A:BF:A2:A9:6A:BE:93:EC:33:17:A0:D2:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5582fca9-3222-45b6-b422-ff2c6a9fd247/0/566A7EC3EFCDEB4ABFA2A96ABE93EC3317A0D2E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/566A7EC3EFCDEB4ABFA2A96ABE93EC3317A0D2E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5582fca9-3222-45b6-b422-ff2c6a9fd247/0/3136302e31392e3136372e302f32342d3234203d3e20313338313135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.167.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:75:4b:e5:9b:a4:d6:a0:12:78:d5:e1:63:c4:eb:b8:49:33: de:12:3a:62:25:1a:63:2d:5e:d2:56:37:2a:46:6e:18:53:6c: ea:97:ab:9a:6d:85:d8:ef:e8:64:17:d9:05:4a:fc:4a:4a:9e: d0:b7:23:8b:6a:8e:68:c3:0f:05:31:1d:7f:5d:b0:64:78:a0: b5:ce:22:7c:ce:8f:a5:6d:3d:0a:c6:8f:f1:9d:da:16:b0:14: 14:30:27:1e:6d:c3:a1:c4:64:c8:d9:75:20:d4:dd:0a:ed:86: cb:65:7d:66:a3:e1:91:59:62:2b:41:24:7f:49:5a:63:0f:d6: a9:a2:67:25:c9:64:51:42:78:a2:39:a6:74:f6:32:8f:db:f2: b4:7a:93:1d:38:32:f6:9a:e8:a8:a4:44:67:f8:ca:07:7a:ea: 24:ce:2c:f5:23:97:2d:17:db:60:c6:6c:3a:e3:50:45:52:21: 02:0a:4e:50:13:b0:6d:a9:bb:e1:c9:4a:29:18:da:e2:52:f6: 15:0a:27:1b:45:bb:97:03:b9:14:94:91:11:ee:0a:52:ee:e7: 5c:fd:50:7f:64:52:7c:83:3d:2c:79:e6:56:12:fb:c5:d7:75: 6b:ae:ca:ec:3d:cf:f8:b8:6b:f5:12:52:6a:80:47:36:4b:26: da:da:26:e5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDkSWTyO39ChV08l5CIzNr29tiIEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTY2QTdFQzNFRkNERUI0QUJGQTJBOTZBQkU5M0VDMzMx N0EwRDJFMTAeFw0yNDA1MjAwNjIyMTdaFw0yNTA1MTkwNjI3MTdaMDMxMTAvBgNV BAMTKDEwMEMyNERFMTFBN0YwM0I4MEMzQTQ1RTAwNzA3MEJBMzRDQjAwQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE/o3fOl2AiXTZsNZCBjh27tBx vEkXiSYTLmpad0k57mXaeRceWunbO5bB77FyaW/oryRYWph/3g9xBFTykoS9nR7t koqFI5JG+kIqbE+aRXmMczNOaxH5BcK0+ibCXUT8iqtsxUw8lLTqoi4GjpjqF4Ra /Ws2SMkcxXol2FuwJCPejuK07IAWEYj2U1rD7LF+ivNzLg4ZzXqYziWoqYQz+Qcu dT8Pg47KlPlYqSmRsGDQspMRP1Zt87a68IhkSGAMhqLQfeG5NQt5ME1mM8THS+wy pkeZhkJGQNoMc1czBOrISMqJiUBp9Vx1uLhm9wbydrn8VVJEJXahZaXq2RElAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUEAwk3hGn8DuAw6ReAHBwujTLALAwHwYDVR0j BBgwFoAUVmp+w+/N60q/oqlqvpPsMxeg0uEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NTgyZmNhOS0zMjIyLTQ1YjYtYjQyMi1mZjJjNmE5ZmQyNDcvMC81NjZBN0VDM0VG Q0RFQjRBQkZBMkE5NkFCRTkzRUMzMzE3QTBEMkUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNTY2QTdFQzNFRkNERUI0QUJGQTJBOTZBQkU5M0VDMzMxN0Ew RDJFMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1ODJmY2E5LTMyMjItNDViNi1i NDIyLWZmMmM2YTlmZDI0Ny8wLzMxMzYzMDJlMzEzOTJlMzEzNjM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBOnMA0GCSqG SIb3DQEBCwUAA4IBAQB+dUvlm6TWoBJ41eFjxOu4STPeEjpiJRpjLV7SVjcqRm4Y U2zql6uabYXY7+hkF9kFSvxKSp7QtyOLao5oww8FMR1/XbBkeKC1ziJ8zo+lbT0K xo/xndoWsBQUMCcebcOhxGTI2XUg1N0K7YbLZX1mo+GRWWIrQSR/SVpjD9apomcl yWRRQniiOaZ09jKP2/K0epMdODL2muiopERn+MoHeuokziz1I5ctF9tgxmw641BF UiECCk5QE7BtqbvhyUopGNriUvYVCicbRbuXA7kUlJER7gpS7udc/VB/ZFJ8gz0s eeZWEvvF13VrrsrsPc/4uGv1ElJqgEc2Syba2ibl -----END CERTIFICATE-----Generated at Fri Nov 22 22:20:41 2024 by rpki-client on console-fra.rpki-client.org