$ rpki-client -vvf repo-rpki.idnic.net/repo/71403409-bf04-42e9-9567-b06ec823d901/0/3136302e31392e31372e302f32342d3234203d3e20313532303733.roa File: 3136302e31392e31372e302f32342d3234203d3e20313532303733.roa (raw, json) Hash identifier: qNZxxj3XGNYDcu0xzhnA7lMuAWUr43b7ggcT7jMPIzo= Subject key identifier: 44:BC:A1:3B:B0:34:A5:35:51:B7:F1:10:D2:5F:DF:A3:6D:EC:B4:F2 Certificate issuer: /CN=8910B51FCAA7F54124A76AF839CE19F4055A1061 Certificate serial: B76E9DB2BE5235BA20F72C1ECDB4DAEB71597F Authority key identifier: 89:10:B5:1F:CA:A7:F5:41:24:A7:6A:F8:39:CE:19:F4:05:5A:10:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8910B51FCAA7F54124A76AF839CE19F4055A1061.cer Subject info access: rsync://repo-rpki.idnic.net/repo/71403409-bf04-42e9-9567-b06ec823d901/0/3136302e31392e31372e302f32342d3234203d3e20313532303733.roa Signing time: Fri 05 Jul 2024 06:52:29 +0000 ROA not before: Fri 05 Jul 2024 06:47:29 +0000 ROA not after: Fri 04 Jul 2025 06:52:29 +0000 asID: 152073 IP address blocks: 160.19.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/71403409-bf04-42e9-9567-b06ec823d901/0/8910B51FCAA7F54124A76AF839CE19F4055A1061.crl rsync://repo-rpki.idnic.net/repo/71403409-bf04-42e9-9567-b06ec823d901/0/8910B51FCAA7F54124A76AF839CE19F4055A1061.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8910B51FCAA7F54124A76AF839CE19F4055A1061.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 08:43:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: b7:6e:9d:b2:be:52:35:ba:20:f7:2c:1e:cd:b4:da:eb:71:59:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8910B51FCAA7F54124A76AF839CE19F4055A1061 Validity Not Before: Jul 5 06:47:29 2024 GMT Not After : Jul 4 06:52:29 2025 GMT Subject: CN=44BCA13BB034A53551B7F110D25FDFA36DECB4F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:15:77:47:c8:24:33:61:d4:9a:80:a9:43:68: 79:59:a9:21:9b:d5:21:ab:23:0d:d6:96:5d:c7:48: 3b:d0:8e:49:93:1c:f2:43:5c:32:7b:23:91:28:1b: 3b:04:95:75:56:19:bd:84:77:ff:1a:ee:f4:89:25: 90:52:a2:4d:b3:a8:84:dc:32:08:f6:67:23:f4:0d: 2e:3a:77:d3:91:d9:3a:d4:07:d8:7e:94:1a:65:e8: e3:81:14:28:f7:cd:ee:c1:4b:16:8f:56:0f:a2:6c: 40:16:3c:45:94:bf:20:08:e9:88:03:35:60:2b:0f: 92:8c:ab:66:02:5d:c8:d6:d6:c9:58:d4:ca:a0:76: 0d:74:d7:87:68:84:d9:c7:3f:32:35:89:c3:0c:7a: b0:db:a5:12:e5:2e:21:7e:56:a0:a6:51:45:ee:ba: 55:f9:53:a3:2c:69:43:02:2c:b8:82:6c:5f:e6:aa: e8:42:f4:8f:20:cb:04:b2:9b:df:a3:16:ea:08:54: fb:fb:03:2c:82:99:13:a3:0f:5c:16:aa:c0:f3:89: b5:9e:fd:83:01:89:64:12:d0:c7:24:48:55:c7:09: dc:d0:9b:8e:05:de:12:5e:c0:b9:e0:53:04:3e:37: 77:3e:04:ed:4d:c9:c7:33:cd:1a:32:9c:42:9b:17: b5:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:BC:A1:3B:B0:34:A5:35:51:B7:F1:10:D2:5F:DF:A3:6D:EC:B4:F2 X509v3 Authority Key Identifier: keyid:89:10:B5:1F:CA:A7:F5:41:24:A7:6A:F8:39:CE:19:F4:05:5A:10:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/71403409-bf04-42e9-9567-b06ec823d901/0/8910B51FCAA7F54124A76AF839CE19F4055A1061.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8910B51FCAA7F54124A76AF839CE19F4055A1061.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/71403409-bf04-42e9-9567-b06ec823d901/0/3136302e31392e31372e302f32342d3234203d3e20313532303733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.17.0/24 Signature Algorithm: sha256WithRSAEncryption d3:31:c6:88:31:ed:c2:fd:16:19:4f:8f:6c:de:be:73:5a:cc: d3:e8:c1:78:bb:1d:e0:7c:db:de:f2:3f:56:1b:7c:1f:aa:70: fa:ce:4e:c0:1d:f8:23:88:59:7e:e8:42:f4:58:89:39:2e:a2: 16:a6:5e:14:45:ee:20:4f:91:87:ff:8a:59:0d:5f:54:dc:e3: 6e:ca:6b:17:79:11:3f:b0:9d:8b:e2:38:2d:d5:f4:43:21:18: f6:25:f1:7a:bc:16:61:ca:e0:4f:59:be:ee:a4:2a:34:61:9a: e0:e4:65:6a:d4:a7:ed:96:63:41:7a:90:b8:6b:3c:76:a5:37: 12:af:f7:d1:79:77:f8:2c:e0:81:b1:bb:17:d2:fa:72:a1:10: 99:15:b4:17:c5:34:04:45:ad:71:e3:32:56:b9:06:d1:6d:a3: aa:00:b1:c6:d5:bf:0b:b6:bf:25:c9:51:9a:d6:d7:ca:b5:23: 01:66:70:c6:68:c2:bd:82:8d:61:08:02:dc:1c:90:da:62:71: 59:4e:bc:c6:d5:de:7e:3f:05:9f:92:0f:6e:38:bc:40:33:4e: 44:51:82:c6:3e:bf:64:30:92:82:fc:52:f7:de:45:7e:c7:34: e5:81:48:4d:85:56:12:2f:75:17:7f:fb:32:aa:f5:ce:da:b2: 9e:21:70:08 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUALdunbK+UjW6IPcsHs202utxWX8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODkxMEI1MUZDQUE3RjU0MTI0QTc2QUY4MzlDRTE5RjQw NTVBMTA2MTAeFw0yNDA3MDUwNjQ3MjlaFw0yNTA3MDQwNjUyMjlaMDMxMTAvBgNV BAMTKDQ0QkNBMTNCQjAzNEE1MzU1MUI3RjExMEQyNUZERkEzNkRFQ0I0RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpFXdHyCQzYdSagKlDaHlZqSGb 1SGrIw3Wll3HSDvQjkmTHPJDXDJ7I5EoGzsElXVWGb2Ed/8a7vSJJZBSok2zqITc Mgj2ZyP0DS46d9OR2TrUB9h+lBpl6OOBFCj3ze7BSxaPVg+ibEAWPEWUvyAI6YgD NWArD5KMq2YCXcjW1slY1Mqgdg1014dohNnHPzI1icMMerDbpRLlLiF+VqCmUUXu ulX5U6MsaUMCLLiCbF/mquhC9I8gywSym9+jFuoIVPv7AyyCmROjD1wWqsDzibWe /YMBiWQS0MckSFXHCdzQm44F3hJewLngUwQ+N3c+BO1NycczzRoynEKbF7WRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURLyhO7A0pTVRt/EQ0l/fo23stPIwHwYDVR0j BBgwFoAUiRC1H8qn9UEkp2r4Oc4Z9AVaEGEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MTQwMzQwOS1iZjA0LTQyZTktOTU2Ny1iMDZlYzgyM2Q5MDEvMC84OTEwQjUxRkNB QTdGNTQxMjRBNzZBRjgzOUNFMTlGNDA1NUExMDYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODkxMEI1MUZDQUE3RjU0MTI0QTc2QUY4MzlDRTE5RjQwNTVB MTA2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcxNDAzNDA5LWJmMDQtNDJlOS05 NTY3LWIwNmVjODIzZDkwMS8wLzMxMzYzMDJlMzEzOTJlMzEzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKATETANBgkqhkiG 9w0BAQsFAAOCAQEA0zHGiDHtwv0WGU+PbN6+c1rM0+jBeLsd4Hzb3vI/Vht8H6pw +s5OwB34I4hZfuhC9FiJOS6iFqZeFEXuIE+Rh/+KWQ1fVNzjbsprF3kRP7Cdi+I4 LdX0QyEY9iXxerwWYcrgT1m+7qQqNGGa4ORlatSn7ZZjQXqQuGs8dqU3Eq/30Xl3 +CzggbG7F9L6cqEQmRW0F8U0BEWtceMyVrkG0W2jqgCxxtW/C7a/JclRmtbXyrUj AWZwxmjCvYKNYQgC3ByQ2mJxWU68xtXefj8Fn5IPbji8QDNORFGCxj6/ZDCSgvxS 995Ffsc05YFITYVWEi91F3/7Mqr1ztqyniFwCA== -----END CERTIFICATE-----Generated at Mon Nov 25 00:59:33 2024 by rpki-client on console-ams.rpki-client.org