$ rpki-client -vvf repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/3136302e32322e39332e302f32342d3234203d3e20313532383335.roa File: 3136302e32322e39332e302f32342d3234203d3e20313532383335.roa (raw, json) Hash identifier: WHnXa3+l2BVF9pDA34p2y5MPrgNJ1xOLxXqgijc3bbM= Subject key identifier: 46:24:CE:E8:D4:52:FC:6A:E7:9F:CB:F2:C0:DF:33:3F:1F:BF:8C:43 Certificate issuer: /CN=BD6731D05CD61815BC0A711C659F17313EF0F5EB Certificate serial: 32FE74F8408F4D49CB5BE691DC6FA43F13AC9A17 Authority key identifier: BD:67:31:D0:5C:D6:18:15:BC:0A:71:1C:65:9F:17:31:3E:F0:F5:EB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD6731D05CD61815BC0A711C659F17313EF0F5EB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/3136302e32322e39332e302f32342d3234203d3e20313532383335.roa Signing time: Mon 25 Nov 2024 10:34:29 +0000 ROA not before: Mon 25 Nov 2024 10:29:29 +0000 ROA not after: Mon 24 Nov 2025 10:34:29 +0000 asID: 152835 IP address blocks: 160.22.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.crl rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD6731D05CD61815BC0A711C659F17313EF0F5EB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Feb 2025 00:07:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:fe:74:f8:40:8f:4d:49:cb:5b:e6:91:dc:6f:a4:3f:13:ac:9a:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD6731D05CD61815BC0A711C659F17313EF0F5EB Validity Not Before: Nov 25 10:29:29 2024 GMT Not After : Nov 24 10:34:29 2025 GMT Subject: CN=4624CEE8D452FC6AE79FCBF2C0DF333F1FBF8C43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b1:e3:bb:20:6a:54:88:2c:cd:23:c2:db:56: a5:0d:ac:9e:38:4f:a7:db:63:50:04:c5:ab:e7:d4: bd:ee:38:26:23:62:80:4f:ba:d7:2a:36:b2:b2:84: a4:6b:5e:54:76:f2:e0:3e:af:ad:55:b9:03:00:da: 32:6c:d5:ad:fc:e6:b2:08:9c:4f:c0:c1:4d:71:73: 28:ac:eb:4b:ca:6b:eb:46:8b:00:c7:11:88:2e:3d: 2a:7d:ad:c4:02:5d:af:2a:13:5f:f1:d8:a2:cf:9c: 26:61:4e:1a:58:af:14:a9:90:97:5b:7b:8b:60:8d: 42:c9:05:ad:82:f3:ad:11:5b:81:e2:be:c1:d2:d6: ba:f6:2a:53:2a:58:31:20:38:d8:0c:5c:a7:cf:8d: 1e:41:f7:c6:f7:71:5e:53:06:3c:e7:3c:e5:81:61: 22:fd:6a:c0:db:39:76:f9:e4:b6:1c:2d:ff:ca:12: 03:ae:5f:01:fc:a4:42:56:d3:d6:86:82:d1:e9:8b: 44:b2:5a:ee:c3:61:8c:0a:83:3c:9d:0e:02:89:66: 44:da:d2:f2:2a:ce:c4:4d:c1:9c:99:8a:ac:9a:bd: 74:6f:7b:d0:3e:82:24:c4:9a:b5:89:a3:e7:0e:63: ed:22:c1:ed:5e:84:73:01:28:2a:72:e1:54:ed:e3: c9:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:24:CE:E8:D4:52:FC:6A:E7:9F:CB:F2:C0:DF:33:3F:1F:BF:8C:43 X509v3 Authority Key Identifier: keyid:BD:67:31:D0:5C:D6:18:15:BC:0A:71:1C:65:9F:17:31:3E:F0:F5:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD6731D05CD61815BC0A711C659F17313EF0F5EB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/3136302e32322e39332e302f32342d3234203d3e20313532383335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.93.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:88:f9:3f:5c:c5:23:2a:9c:b2:fd:e8:40:47:14:ce:35:38: dc:ea:8c:e9:97:35:ea:8a:ea:b3:af:05:96:be:90:06:c3:4d: 79:69:fb:09:85:cc:6a:72:f8:b5:07:d4:50:55:4f:68:6d:f8: 1d:ae:5c:8c:ca:e5:f0:f8:8f:e1:6c:e2:8e:88:23:af:3f:5d: 3e:86:06:dd:32:b5:db:67:a1:3f:59:7e:4b:c0:98:1c:34:57: 7b:0a:34:20:62:2f:2d:6a:3e:8b:3d:b6:81:28:14:5e:fc:5c: ff:c7:36:b0:81:6b:70:ec:37:dc:90:20:7d:f1:2d:f6:d3:26: e6:38:48:fd:e2:b5:56:a6:b3:85:8e:82:de:c1:10:ea:39:5d: 3b:f3:39:c4:fa:34:e6:5c:56:fe:c4:b4:4c:5a:69:77:64:4f: 0a:a6:6e:0a:0f:d5:a3:26:6a:2c:1d:a4:49:69:24:0c:5e:54: 14:89:7c:e2:c5:e1:73:23:e2:5a:24:a3:71:31:50:09:bd:94: b8:ce:1c:fa:79:72:7f:c5:18:c0:ac:4a:44:b9:be:d6:ff:97: 95:82:11:90:ff:0a:0d:e8:4e:5b:2f:95:bf:d1:0c:97:f1:78: 1d:f9:e3:97:af:7e:3f:4c:78:f5:63:c6:5c:ef:a2:c5:8b:e8: d6:c7:15:a6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMv50+ECPTUnLW+aR3G+kPxOsmhcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ2NzMxRDA1Q0Q2MTgxNUJDMEE3MTFDNjU5RjE3MzEz RUYwRjVFQjAeFw0yNDExMjUxMDI5MjlaFw0yNTExMjQxMDM0MjlaMDMxMTAvBgNV BAMTKDQ2MjRDRUU4RDQ1MkZDNkFFNzlGQ0JGMkMwREYzMzNGMUZCRjhDNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2seO7IGpUiCzNI8LbVqUNrJ44 T6fbY1AExavn1L3uOCYjYoBPutcqNrKyhKRrXlR28uA+r61VuQMA2jJs1a385rII nE/AwU1xcyis60vKa+tGiwDHEYguPSp9rcQCXa8qE1/x2KLPnCZhThpYrxSpkJdb e4tgjULJBa2C860RW4HivsHS1rr2KlMqWDEgONgMXKfPjR5B98b3cV5TBjznPOWB YSL9asDbOXb55LYcLf/KEgOuXwH8pEJW09aGgtHpi0SyWu7DYYwKgzydDgKJZkTa 0vIqzsRNwZyZiqyavXRve9A+giTEmrWJo+cOY+0iwe1ehHMBKCpy4VTt48lpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURiTO6NRS/Grnn8vywN8zPx+/jEMwHwYDVR0j BBgwFoAUvWcx0FzWGBW8CnEcZZ8XMT7w9eswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MmQyOWIzMi0zYTI5LTRhMTQtYmM5Yi1jNzZhMDA3Y2EwMzIvMC9CRDY3MzFEMDVD RDYxODE1QkMwQTcxMUM2NTlGMTczMTNFRjBGNUVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkQ2NzMxRDA1Q0Q2MTgxNUJDMEE3MTFDNjU5RjE3MzEzRUYw RjVFQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYyZDI5YjMyLTNhMjktNGExNC1i YzliLWM3NmEwMDdjYTAzMi8wLzMxMzYzMDJlMzIzMjJlMzkzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzMzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAWXTANBgkqhkiG 9w0BAQsFAAOCAQEAaoj5P1zFIyqcsv3oQEcUzjU43OqM6Zc16orqs68Flr6QBsNN eWn7CYXManL4tQfUUFVPaG34Ha5cjMrl8PiP4Wzijogjrz9dPoYG3TK122ehP1l+ S8CYHDRXewo0IGIvLWo+iz22gSgUXvxc/8c2sIFrcOw33JAgffEt9tMm5jhI/eK1 VqazhY6C3sEQ6jldO/M5xPo05lxW/sS0TFppd2RPCqZuCg/VoyZqLB2kSWkkDF5U FIl84sXhcyPiWiSjcTFQCb2UuM4c+nlyf8UYwKxKRLm+1v+XlYIRkP8KDehOWy+V v9EMl/F4Hfnjl69+P0x49WPGXO+ixYvo1scVpg== -----END CERTIFICATE-----Generated at Sat Feb 22 04:28:29 2025 by rpki-client