$ rpki-client -vvf repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/3136302e32322e3139322e302f32332d3233203d3e20313532383330.roa File: 3136302e32322e3139322e302f32332d3233203d3e20313532383330.roa (raw, json) Hash identifier: S37RXDSRwFckaVAXXa2L/pmaBR5uDTckFqN12JhVmHQ= Subject key identifier: 06:45:7C:33:25:D2:C9:C9:91:6E:5D:49:B8:32:A4:D6:00:41:BF:BE Certificate issuer: /CN=9FEECC44761A13EA26CA368508BB6A48C00FC6F5 Certificate serial: 4FA02D3A21CF4F90646E9450589D53D401011C47 Authority key identifier: 9F:EE:CC:44:76:1A:13:EA:26:CA:36:85:08:BB:6A:48:C0:0F:C6:F5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/3136302e32322e3139322e302f32332d3233203d3e20313532383330.roa Signing time: Mon 26 Aug 2024 11:03:52 +0000 ROA not before: Mon 26 Aug 2024 10:58:52 +0000 ROA not after: Mon 25 Aug 2025 11:03:52 +0000 asID: 152830 IP address blocks: 160.22.192.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.crl rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:a0:2d:3a:21:cf:4f:90:64:6e:94:50:58:9d:53:d4:01:01:1c:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FEECC44761A13EA26CA368508BB6A48C00FC6F5 Validity Not Before: Aug 26 10:58:52 2024 GMT Not After : Aug 25 11:03:52 2025 GMT Subject: CN=06457C3325D2C9C9916E5D49B832A4D60041BFBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:22:14:bd:af:01:2e:0e:ea:c7:33:0b:cc:ad: 07:2a:c8:a6:21:0c:ee:30:13:65:5a:7c:d6:85:cb: 80:52:18:16:34:27:89:4c:19:e4:5b:5e:31:ff:58: c6:5e:22:f7:a3:d8:9b:83:bc:07:7a:78:86:10:aa: e3:3d:51:84:c9:66:92:ed:e6:b4:0b:97:2a:f3:5e: 64:b2:fd:7e:ef:68:ea:d4:7b:24:8f:67:d8:9c:ed: 00:6c:cb:c1:e7:39:cf:67:54:70:5c:52:ab:b7:fc: 2f:00:26:ae:38:1a:a7:56:34:c9:94:fd:08:a1:ac: 51:ca:72:c2:5e:3c:d9:bd:b3:33:38:d1:3d:7d:95: 67:b9:99:eb:85:94:b5:67:35:a3:bd:ce:df:d1:f1: 3f:a3:93:16:d5:6a:0a:cf:25:0c:3f:80:a2:56:2f: 5e:51:07:12:7a:9a:fe:2a:ac:f5:fc:31:16:23:87: 68:ac:f9:f1:9c:0e:b5:d9:c5:c0:27:28:e9:e2:a8: 18:ff:01:58:f6:b7:25:be:7b:c2:21:f3:27:13:94: f3:9e:1e:57:b2:fe:6a:bf:6c:23:03:6f:66:b0:2d: d7:55:c2:b2:07:c2:30:e2:32:82:0b:33:5e:6d:59: 74:92:9d:3a:27:6d:a0:cc:79:4d:30:8e:f9:ba:3b: a1:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:45:7C:33:25:D2:C9:C9:91:6E:5D:49:B8:32:A4:D6:00:41:BF:BE X509v3 Authority Key Identifier: keyid:9F:EE:CC:44:76:1A:13:EA:26:CA:36:85:08:BB:6A:48:C0:0F:C6:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/3136302e32322e3139322e302f32332d3233203d3e20313532383330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.192.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:a4:21:68:a5:d1:f5:2b:da:1e:d4:d9:31:5d:d9:1c:89:11: ee:87:e4:66:5b:ea:16:8f:f8:ed:75:62:d2:db:dc:92:89:fc: 23:e0:7c:9c:90:61:48:cc:02:cc:11:3e:e4:5b:a1:92:86:8f: 93:9d:ce:a8:e7:c1:bd:e6:da:c2:48:1f:a3:78:f5:fb:3c:57: c2:90:80:89:9e:d6:7a:df:3c:76:2b:e9:b0:ca:96:1a:28:5b: a1:97:4c:04:17:62:09:dc:48:f9:4a:d6:b0:eb:c7:20:87:59: 6c:7a:65:67:5a:92:ed:11:49:ba:e2:56:ab:75:e1:9a:af:61: cd:e4:6f:5f:57:be:36:4b:05:ac:a6:4e:9d:6a:c4:ac:da:90: d3:82:3b:f9:37:45:09:ba:26:2e:cc:f9:25:b2:7c:87:7f:d6: 5b:ad:f4:19:54:75:0f:b3:ef:0d:d8:c3:7b:1e:a6:f2:0f:19: a6:ef:44:53:fc:a9:6e:ce:2c:fd:f7:47:ea:9c:3a:7f:30:90: 0c:36:4f:92:11:2b:d4:35:f7:82:10:6f:f1:02:50:36:e5:70: a2:d3:97:cb:2d:1a:0e:2b:a0:26:68:93:cd:81:85:81:93:c7: 6a:46:f6:dc:9e:7a:d3:de:cc:8e:52:b4:f9:54:b1:10:8a:ef: 9f:41:f4:db -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUT6AtOiHPT5BkbpRQWJ1T1AEBHEcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZFRUNDNDQ3NjFBMTNFQTI2Q0EzNjg1MDhCQjZBNDhD MDBGQzZGNTAeFw0yNDA4MjYxMDU4NTJaFw0yNTA4MjUxMTAzNTJaMDMxMTAvBgNV BAMTKDA2NDU3QzMzMjVEMkM5Qzk5MTZFNUQ0OUI4MzJBNEQ2MDA0MUJGQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5IhS9rwEuDurHMwvMrQcqyKYh DO4wE2VafNaFy4BSGBY0J4lMGeRbXjH/WMZeIvej2JuDvAd6eIYQquM9UYTJZpLt 5rQLlyrzXmSy/X7vaOrUeySPZ9ic7QBsy8HnOc9nVHBcUqu3/C8AJq44GqdWNMmU /QihrFHKcsJePNm9szM40T19lWe5meuFlLVnNaO9zt/R8T+jkxbVagrPJQw/gKJW L15RBxJ6mv4qrPX8MRYjh2is+fGcDrXZxcAnKOniqBj/AVj2tyW+e8Ih8ycTlPOe Hley/mq/bCMDb2awLddVwrIHwjDiMoILM15tWXSSnTonbaDMeU0wjvm6O6H3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBkV8MyXSycmRbl1JuDKk1gBBv74wHwYDVR0j BBgwFoAUn+7MRHYaE+omyjaFCLtqSMAPxvUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTAyMTBiMy1jY2EyLTQzYzUtODlmOS01YTkwODZhNjA3MDMvMC85RkVFQ0M0NDc2 MUExM0VBMjZDQTM2ODUwOEJCNkE0OEMwMEZDNkY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUZFRUNDNDQ3NjFBMTNFQTI2Q0EzNjg1MDhCQjZBNDhDMDBG QzZGNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdhMDIxMGIzLWNjYTItNDNjNS04 OWY5LTVhOTA4NmE2MDcwMy8wLzMxMzYzMDJlMzIzMjJlMzEzOTMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzgzMzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBbAMA0GCSqG SIb3DQEBCwUAA4IBAQCPpCFopdH1K9oe1NkxXdkciRHuh+RmW+oWj/jtdWLS29yS ifwj4HyckGFIzALMET7kW6GSho+Tnc6o58G95trCSB+jePX7PFfCkICJntZ63zx2 K+mwypYaKFuhl0wEF2IJ3Ej5Staw68cgh1lsemVnWpLtEUm64lardeGar2HN5G9f V742SwWspk6dasSs2pDTgjv5N0UJuiYuzPklsnyHf9ZbrfQZVHUPs+8N2MN7Hqby Dxmm70RT/Kluziz990fqnDp/MJAMNk+SESvUNfeCEG/xAlA25XCi05fLLRoOK6Am aJPNgYWBk8dqRvbcnnrT3syOUrT5VLEQiu+fQfTb -----END CERTIFICATE-----Generated at Thu Nov 21 01:24:17 2024 by rpki-client on console-ams.rpki-client.org