$ rpki-client -vvf repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/3136302e32322e3139322e302f32342d3234203d3e20313532383330.roa File: 3136302e32322e3139322e302f32342d3234203d3e20313532383330.roa (raw, json) Hash identifier: oFpzvK/Po5EcbGA/2a5hh8S0BSXSuROMsPqn6lKBhiU= Subject key identifier: 5F:CD:40:82:52:3C:9C:2F:A3:BE:11:88:64:F0:97:C1:85:98:85:02 Certificate issuer: /CN=9FEECC44761A13EA26CA368508BB6A48C00FC6F5 Certificate serial: 02A6B24BBEA48D5A1858294CFE4E8A382BC635C8 Authority key identifier: 9F:EE:CC:44:76:1A:13:EA:26:CA:36:85:08:BB:6A:48:C0:0F:C6:F5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/3136302e32322e3139322e302f32342d3234203d3e20313532383330.roa Signing time: Mon 26 Aug 2024 11:04:19 +0000 ROA not before: Mon 26 Aug 2024 10:59:19 +0000 ROA not after: Mon 25 Aug 2025 11:04:19 +0000 asID: 152830 IP address blocks: 160.22.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.crl rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:a6:b2:4b:be:a4:8d:5a:18:58:29:4c:fe:4e:8a:38:2b:c6:35:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FEECC44761A13EA26CA368508BB6A48C00FC6F5 Validity Not Before: Aug 26 10:59:19 2024 GMT Not After : Aug 25 11:04:19 2025 GMT Subject: CN=5FCD4082523C9C2FA3BE118864F097C185988502 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:65:b2:c6:f0:79:be:cc:75:e1:19:75:23:09: 10:23:ec:e0:c6:0b:f4:85:e1:e4:ab:59:f0:fc:b7: bf:08:cd:b1:e7:bc:b3:3a:23:7e:65:47:cf:27:bf: 6e:b7:75:10:c9:5a:b5:a7:00:ed:7a:f0:4a:7f:f6: 66:7e:98:c6:40:5d:21:3e:68:c3:82:e7:e8:48:d1: 34:3a:ca:a8:78:64:86:ac:d8:22:d5:e2:2c:8a:d4: 2c:eb:23:a8:fa:b4:9e:38:34:56:62:f8:f9:59:9a: 58:f5:3e:9b:12:44:cd:23:06:71:b2:d5:d9:15:dd: 6b:13:7a:48:7d:aa:0e:4b:af:e3:36:07:90:ca:6e: 54:86:16:7c:c1:ef:94:81:c0:c8:47:e6:7e:55:93: 13:c4:56:3b:27:a4:d2:b9:aa:41:1b:e7:7b:8c:c4: dc:f6:6f:a1:89:9e:56:bb:b9:30:54:7f:42:14:e6: 99:6e:08:33:1e:df:d2:18:e7:51:0e:36:59:05:1a: d1:ac:d4:9b:b7:b4:c2:0e:22:3b:09:09:0b:68:d6: 18:fe:e3:bd:2e:41:ac:ac:85:d0:9e:3b:46:44:f0: 83:ae:e8:10:e8:bc:e7:b8:05:21:68:43:4f:9d:46: d4:a9:71:9b:d8:91:f9:29:e2:1a:ac:1b:98:fa:0c: 47:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:CD:40:82:52:3C:9C:2F:A3:BE:11:88:64:F0:97:C1:85:98:85:02 X509v3 Authority Key Identifier: keyid:9F:EE:CC:44:76:1A:13:EA:26:CA:36:85:08:BB:6A:48:C0:0F:C6:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/3136302e32322e3139322e302f32342d3234203d3e20313532383330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.192.0/24 Signature Algorithm: sha256WithRSAEncryption 28:8f:01:f3:51:e0:d4:38:dc:5b:ed:52:a6:49:b7:1d:3c:f4: 77:ec:2d:41:53:3f:c8:da:7d:75:89:02:ab:0d:7c:7d:cc:d9: 3a:b2:25:8a:f6:79:d8:a5:5c:e0:1d:82:21:d9:79:80:66:fc: e1:16:7b:2b:aa:37:6e:07:e8:03:92:ac:e5:8e:c4:54:e1:49: 7f:11:7b:70:88:9e:62:7e:40:15:72:4e:6d:7b:f8:34:74:da: 67:c4:c2:5c:37:d2:9e:92:34:8b:e5:60:7c:66:5d:35:0c:0d: 56:b8:85:29:32:0b:0b:90:7c:70:12:62:45:ec:71:f0:8c:45: 2e:51:52:28:e9:0b:70:c5:f1:0e:80:ad:ae:73:5c:aa:9d:78: 79:54:bb:10:5f:c1:bf:8e:e7:c2:0f:a6:42:76:59:14:76:8f: e1:0f:4c:77:40:fc:a7:0c:64:92:4d:2d:69:e6:9b:25:c6:09: c3:d8:7e:3b:ca:45:8b:0a:4b:a0:1e:8d:90:08:10:41:0b:34: 1d:9f:be:e8:39:17:a9:c6:51:8d:1c:7a:04:09:31:89:9a:62: 30:4d:45:9b:35:53:1a:35:e4:d0:2d:67:53:49:f5:60:ae:3b: b1:95:a8:0f:2c:be:a5:0d:7d:71:71:94:4c:c4:bf:92:a7:3b: 63:0c:5d:2b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAqayS76kjVoYWClM/k6KOCvGNcgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZFRUNDNDQ3NjFBMTNFQTI2Q0EzNjg1MDhCQjZBNDhD MDBGQzZGNTAeFw0yNDA4MjYxMDU5MTlaFw0yNTA4MjUxMTA0MTlaMDMxMTAvBgNV BAMTKDVGQ0Q0MDgyNTIzQzlDMkZBM0JFMTE4ODY0RjA5N0MxODU5ODg1MDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEZbLG8Hm+zHXhGXUjCRAj7ODG C/SF4eSrWfD8t78IzbHnvLM6I35lR88nv263dRDJWrWnAO168Ep/9mZ+mMZAXSE+ aMOC5+hI0TQ6yqh4ZIas2CLV4iyK1CzrI6j6tJ44NFZi+PlZmlj1PpsSRM0jBnGy 1dkV3WsTekh9qg5Lr+M2B5DKblSGFnzB75SBwMhH5n5VkxPEVjsnpNK5qkEb53uM xNz2b6GJnla7uTBUf0IU5pluCDMe39IY51EONlkFGtGs1Ju3tMIOIjsJCQto1hj+ 470uQayshdCeO0ZE8IOu6BDovOe4BSFoQ0+dRtSpcZvYkfkp4hqsG5j6DEeZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUX81AglI8nC+jvhGIZPCXwYWYhQIwHwYDVR0j BBgwFoAUn+7MRHYaE+omyjaFCLtqSMAPxvUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTAyMTBiMy1jY2EyLTQzYzUtODlmOS01YTkwODZhNjA3MDMvMC85RkVFQ0M0NDc2 MUExM0VBMjZDQTM2ODUwOEJCNkE0OEMwMEZDNkY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUZFRUNDNDQ3NjFBMTNFQTI2Q0EzNjg1MDhCQjZBNDhDMDBG QzZGNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdhMDIxMGIzLWNjYTItNDNjNS04 OWY5LTVhOTA4NmE2MDcwMy8wLzMxMzYzMDJlMzIzMjJlMzEzOTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBbAMA0GCSqG SIb3DQEBCwUAA4IBAQAojwHzUeDUONxb7VKmSbcdPPR37C1BUz/I2n11iQKrDXx9 zNk6siWK9nnYpVzgHYIh2XmAZvzhFnsrqjduB+gDkqzljsRU4Ul/EXtwiJ5ifkAV ck5te/g0dNpnxMJcN9KekjSL5WB8Zl01DA1WuIUpMgsLkHxwEmJF7HHwjEUuUVIo 6QtwxfEOgK2uc1yqnXh5VLsQX8G/jufCD6ZCdlkUdo/hD0x3QPynDGSSTS1p5psl xgnD2H47ykWLCkugHo2QCBBBCzQdn77oORepxlGNHHoECTGJmmIwTUWbNVMaNeTQ LWdTSfVgrjuxlagPLL6lDX1xcZRMxL+SpztjDF0r -----END CERTIFICATE-----Generated at Thu Nov 21 01:29:57 2024 by rpki-client on console-fra.rpki-client.org