$ rpki-client -vvf repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/3136302e32322e39322e302f32342d3234203d3e20313532383335.roa File: 3136302e32322e39322e302f32342d3234203d3e20313532383335.roa (raw, json) Hash identifier: oo6mbVmnsw7e/0gjMVSA14EiHwAIiPeTDgFb+zR54Og= Subject key identifier: 30:42:2A:DE:77:19:AE:20:91:F7:46:C8:06:B8:85:0E:99:00:91:B7 Certificate issuer: /CN=BD6731D05CD61815BC0A711C659F17313EF0F5EB Certificate serial: 7D0675B26354F992798C5568907D595C12DDA8EA Authority key identifier: BD:67:31:D0:5C:D6:18:15:BC:0A:71:1C:65:9F:17:31:3E:F0:F5:EB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD6731D05CD61815BC0A711C659F17313EF0F5EB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/3136302e32322e39322e302f32342d3234203d3e20313532383335.roa Signing time: Mon 25 Nov 2024 10:01:44 +0000 ROA not before: Mon 25 Nov 2024 09:56:44 +0000 ROA not after: Mon 24 Nov 2025 10:01:44 +0000 asID: 152835 IP address blocks: 160.22.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.crl rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD6731D05CD61815BC0A711C659F17313EF0F5EB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Feb 2025 00:07:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:06:75:b2:63:54:f9:92:79:8c:55:68:90:7d:59:5c:12:dd:a8:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD6731D05CD61815BC0A711C659F17313EF0F5EB Validity Not Before: Nov 25 09:56:44 2024 GMT Not After : Nov 24 10:01:44 2025 GMT Subject: CN=30422ADE7719AE2091F746C806B8850E990091B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:bc:db:60:8e:9d:7c:52:75:a0:8c:67:b0:d1: 1b:ab:8c:0b:4b:e8:be:a6:83:ba:49:02:c6:81:b1: 3f:47:b8:30:d9:63:dd:f2:56:c4:0a:1b:32:bc:18: 4d:cd:ca:73:ab:e9:6b:5a:86:71:cc:37:dd:a1:d6: 1a:52:38:81:96:e7:ee:8e:6f:25:d5:f5:64:e7:7c: 0a:85:47:dc:cc:ec:64:85:da:ed:a6:88:02:c3:cd: 39:5e:e5:f5:53:b6:b6:71:8a:a2:08:bb:0f:7a:f0: 3e:40:dc:0f:1e:3e:dc:ca:5b:35:87:b7:fb:85:17: 2f:82:bb:2d:ce:3b:69:5a:32:0d:ef:85:25:14:3d: 02:72:65:0a:30:7d:c0:1a:76:61:77:1b:e2:17:1b: b3:0e:dd:1b:10:11:c2:15:88:c0:34:1b:89:18:37: 68:95:b2:d5:6a:be:e8:3a:e5:7d:5d:c3:e8:f8:d1: 9f:20:c2:d0:cd:e2:1f:48:95:b6:09:2a:71:ac:f9: 52:c6:4f:24:3a:61:fe:7d:dd:6c:40:b1:a3:b9:b4: 69:f5:c2:57:40:2e:a3:a6:17:79:e3:61:b8:38:81: be:ed:31:0e:2d:98:5f:e1:3d:ec:54:42:ba:82:b5: a9:ba:e4:f2:ca:b7:b4:e7:30:8d:cc:ee:92:9e:88: bf:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:42:2A:DE:77:19:AE:20:91:F7:46:C8:06:B8:85:0E:99:00:91:B7 X509v3 Authority Key Identifier: keyid:BD:67:31:D0:5C:D6:18:15:BC:0A:71:1C:65:9F:17:31:3E:F0:F5:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD6731D05CD61815BC0A711C659F17313EF0F5EB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/3136302e32322e39322e302f32342d3234203d3e20313532383335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.92.0/24 Signature Algorithm: sha256WithRSAEncryption 47:23:3b:db:55:04:f6:8e:22:26:95:46:90:93:6c:08:41:12: 8b:68:1f:c0:ea:8d:d8:34:5a:6c:7b:dc:ef:9f:b9:43:dd:0a: 99:58:7a:19:64:36:25:55:a0:9b:8a:4f:d5:f3:55:fa:2e:2a: 05:c7:bb:0b:90:b6:18:34:03:e2:af:a8:97:21:5a:dc:c5:5b: 2d:84:97:35:13:d8:de:f5:88:f5:94:b0:de:ce:2c:27:2b:94: d9:62:a0:0d:2f:fa:02:85:5c:76:51:0c:bc:74:b5:e5:66:24: b6:ff:f2:d0:04:fb:63:a5:ed:6b:0e:30:d4:22:7d:3a:47:e7: 05:f0:5b:a7:1b:1b:fa:3f:52:92:91:c3:0c:dd:1c:cc:b7:ea: cf:92:98:6f:a6:2b:d5:74:27:16:c1:bc:9e:41:c5:34:93:92: 2b:b4:66:c1:5b:ee:7b:64:02:93:e8:13:b8:65:86:c6:4b:52: 01:5b:36:20:32:8a:7a:0a:4c:d4:0e:7d:a1:c8:a8:12:1e:bf: 51:28:f1:45:21:1c:f5:21:11:f2:92:7f:8a:f5:e4:15:6b:ec: 9a:54:e0:b1:30:47:92:41:66:ae:d0:94:04:77:32:67:61:b6: c1:e7:43:79:c9:95:8c:55:c1:4d:cd:00:83:53:19:e0:f2:0c: 07:37:f5:22 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfQZ1smNU+ZJ5jFVokH1ZXBLdqOowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ2NzMxRDA1Q0Q2MTgxNUJDMEE3MTFDNjU5RjE3MzEz RUYwRjVFQjAeFw0yNDExMjUwOTU2NDRaFw0yNTExMjQxMDAxNDRaMDMxMTAvBgNV BAMTKDMwNDIyQURFNzcxOUFFMjA5MUY3NDZDODA2Qjg4NTBFOTkwMDkxQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCovNtgjp18UnWgjGew0RurjAtL 6L6mg7pJAsaBsT9HuDDZY93yVsQKGzK8GE3NynOr6WtahnHMN92h1hpSOIGW5+6O byXV9WTnfAqFR9zM7GSF2u2miALDzTle5fVTtrZxiqIIuw968D5A3A8ePtzKWzWH t/uFFy+Cuy3OO2laMg3vhSUUPQJyZQowfcAadmF3G+IXG7MO3RsQEcIViMA0G4kY N2iVstVqvug65X1dw+j40Z8gwtDN4h9IlbYJKnGs+VLGTyQ6Yf593WxAsaO5tGn1 wldALqOmF3njYbg4gb7tMQ4tmF/hPexUQrqCtam65PLKt7TnMI3M7pKeiL8dAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUMEIq3ncZriCR90bIBriFDpkAkbcwHwYDVR0j BBgwFoAUvWcx0FzWGBW8CnEcZZ8XMT7w9eswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MmQyOWIzMi0zYTI5LTRhMTQtYmM5Yi1jNzZhMDA3Y2EwMzIvMC9CRDY3MzFEMDVD RDYxODE1QkMwQTcxMUM2NTlGMTczMTNFRjBGNUVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkQ2NzMxRDA1Q0Q2MTgxNUJDMEE3MTFDNjU5RjE3MzEzRUYw RjVFQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYyZDI5YjMyLTNhMjktNGExNC1i YzliLWM3NmEwMDdjYTAzMi8wLzMxMzYzMDJlMzIzMjJlMzkzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzMzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAWXDANBgkqhkiG 9w0BAQsFAAOCAQEARyM721UE9o4iJpVGkJNsCEESi2gfwOqN2DRabHvc75+5Q90K mVh6GWQ2JVWgm4pP1fNV+i4qBce7C5C2GDQD4q+olyFa3MVbLYSXNRPY3vWI9ZSw 3s4sJyuU2WKgDS/6AoVcdlEMvHS15WYktv/y0AT7Y6Xtaw4w1CJ9OkfnBfBbpxsb +j9SkpHDDN0czLfqz5KYb6Yr1XQnFsG8nkHFNJOSK7RmwVvue2QCk+gTuGWGxktS AVs2IDKKegpM1A59ocioEh6/USjxRSEc9SER8pJ/ivXkFWvsmlTgsTBHkkFmrtCU BHcyZ2G2wedDecmVjFXBTc0Ag1MZ4PIMBzf1Ig== -----END CERTIFICATE-----Generated at Sat Feb 22 04:32:57 2025 by rpki-client