$ rpki-client -vvf repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/3136302e32322e3139332e302f32342d3234203d3e20313532383330.roa File: 3136302e32322e3139332e302f32342d3234203d3e20313532383330.roa (raw, json) Hash identifier: m+35hyOj2Nnoj6pj71T7+3XP5y/lbF8MsVayMmQM9SM= Subject key identifier: DF:19:AD:E4:42:0A:55:34:FF:A4:25:AB:30:8F:03:DA:4D:D6:9C:00 Certificate issuer: /CN=9FEECC44761A13EA26CA368508BB6A48C00FC6F5 Certificate serial: 13FFF3B96733FAA7D755A5AC08899E7958C2B165 Authority key identifier: 9F:EE:CC:44:76:1A:13:EA:26:CA:36:85:08:BB:6A:48:C0:0F:C6:F5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/3136302e32322e3139332e302f32342d3234203d3e20313532383330.roa Signing time: Mon 26 Aug 2024 11:04:31 +0000 ROA not before: Mon 26 Aug 2024 10:59:31 +0000 ROA not after: Mon 25 Aug 2025 11:04:31 +0000 asID: 152830 IP address blocks: 160.22.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.crl rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:ff:f3:b9:67:33:fa:a7:d7:55:a5:ac:08:89:9e:79:58:c2:b1:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FEECC44761A13EA26CA368508BB6A48C00FC6F5 Validity Not Before: Aug 26 10:59:31 2024 GMT Not After : Aug 25 11:04:31 2025 GMT Subject: CN=DF19ADE4420A5534FFA425AB308F03DA4DD69C00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:4f:97:4e:ec:66:a5:35:a1:fa:84:37:5d:f3: eb:90:a3:77:07:24:1d:76:5f:cc:0f:b8:57:f7:7a: f3:de:c8:94:19:b8:ca:99:55:88:76:31:e5:f4:f2: 13:a2:84:55:ba:0a:d3:27:5f:3e:41:62:db:0a:62: e4:0b:3e:f6:32:61:3f:62:52:be:ed:1b:98:a1:0f: a0:7d:c6:00:62:2a:fa:c5:84:fa:8b:6d:f1:5d:18: a3:aa:8f:f4:e5:ba:b9:5b:89:76:2b:0b:52:3e:df: 4a:f2:53:3b:1d:42:6f:3c:56:ff:86:c5:a2:00:db: b4:d2:ed:f7:3d:a0:2b:26:90:1a:dc:fc:31:5f:12: 31:81:80:4a:c5:76:f7:48:f8:2f:65:2f:ca:07:c5: 0c:91:42:14:8e:43:a0:98:3c:15:cf:89:cb:fe:94: a0:2a:4f:fa:c7:e3:64:06:5c:66:d9:5e:1f:0e:af: 41:75:4f:ca:19:8c:a6:4b:c5:37:1f:39:36:00:39: 51:27:09:be:78:5f:e0:d0:74:49:27:1e:b4:56:ff: 00:b0:04:5c:13:92:9b:d9:d1:5e:e8:66:b2:c3:3c: e5:26:51:c9:dc:c5:46:3f:df:13:fb:4c:50:ba:52: b3:b8:93:30:bc:03:93:ed:d5:35:f6:05:ba:d2:43: 11:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:19:AD:E4:42:0A:55:34:FF:A4:25:AB:30:8F:03:DA:4D:D6:9C:00 X509v3 Authority Key Identifier: keyid:9F:EE:CC:44:76:1A:13:EA:26:CA:36:85:08:BB:6A:48:C0:0F:C6:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/3136302e32322e3139332e302f32342d3234203d3e20313532383330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.193.0/24 Signature Algorithm: sha256WithRSAEncryption ae:4d:ec:74:17:89:e8:ab:2e:f8:7a:b1:55:57:a4:de:27:d2: d2:68:1a:47:05:ce:e6:45:a3:cb:81:8f:48:c0:39:49:51:66: c3:d8:70:31:30:a9:3f:c2:e5:3f:3e:e5:cf:89:1f:37:50:c9: e5:c9:ed:66:09:af:b6:90:48:9e:a7:c0:1a:b5:eb:fe:fa:85: d7:ff:8e:74:8c:4e:38:80:02:8a:65:78:72:0e:e9:e0:de:37: bc:54:33:6e:a2:e4:6e:66:dc:3d:a9:cc:44:21:30:fd:74:dc: 87:f5:7b:70:55:33:1f:2f:12:64:4a:13:25:13:f7:46:6c:5c: 02:f9:a3:55:80:36:09:ca:ad:7f:27:ae:c2:60:2a:71:5f:63: da:54:dd:63:62:fd:a5:d5:69:c4:12:18:5e:65:48:61:dc:2d: 22:a8:aa:73:5b:f9:66:58:eb:aa:2f:2e:af:35:a6:10:8a:66: ee:8e:ce:0f:78:18:89:f1:50:8a:57:2c:ae:63:7c:3f:21:12: 4e:fe:02:9d:94:79:89:9b:cc:b0:18:9f:e7:29:fb:20:50:0a: 0c:ae:bf:96:6e:63:bf:53:7a:3a:d3:fd:cd:79:86:32:47:08: cd:33:40:96:62:09:60:01:1b:9b:46:d3:a4:a2:20:96:d1:2c: a7:45:6b:f2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUE//zuWcz+qfXVaWsCImeeVjCsWUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZFRUNDNDQ3NjFBMTNFQTI2Q0EzNjg1MDhCQjZBNDhD MDBGQzZGNTAeFw0yNDA4MjYxMDU5MzFaFw0yNTA4MjUxMTA0MzFaMDMxMTAvBgNV BAMTKERGMTlBREU0NDIwQTU1MzRGRkE0MjVBQjMwOEYwM0RBNERENjlDMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsT5dO7GalNaH6hDdd8+uQo3cH JB12X8wPuFf3evPeyJQZuMqZVYh2MeX08hOihFW6CtMnXz5BYtsKYuQLPvYyYT9i Ur7tG5ihD6B9xgBiKvrFhPqLbfFdGKOqj/TlurlbiXYrC1I+30ryUzsdQm88Vv+G xaIA27TS7fc9oCsmkBrc/DFfEjGBgErFdvdI+C9lL8oHxQyRQhSOQ6CYPBXPicv+ lKAqT/rH42QGXGbZXh8Or0F1T8oZjKZLxTcfOTYAOVEnCb54X+DQdEknHrRW/wCw BFwTkpvZ0V7oZrLDPOUmUcncxUY/3xP7TFC6UrO4kzC8A5Pt1TX2BbrSQxGXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3xmt5EIKVTT/pCWrMI8D2k3WnAAwHwYDVR0j BBgwFoAUn+7MRHYaE+omyjaFCLtqSMAPxvUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTAyMTBiMy1jY2EyLTQzYzUtODlmOS01YTkwODZhNjA3MDMvMC85RkVFQ0M0NDc2 MUExM0VBMjZDQTM2ODUwOEJCNkE0OEMwMEZDNkY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUZFRUNDNDQ3NjFBMTNFQTI2Q0EzNjg1MDhCQjZBNDhDMDBG QzZGNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdhMDIxMGIzLWNjYTItNDNjNS04 OWY5LTVhOTA4NmE2MDcwMy8wLzMxMzYzMDJlMzIzMjJlMzEzOTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBbBMA0GCSqG SIb3DQEBCwUAA4IBAQCuTex0F4noqy74erFVV6TeJ9LSaBpHBc7mRaPLgY9IwDlJ UWbD2HAxMKk/wuU/PuXPiR83UMnlye1mCa+2kEiep8Aatev++oXX/450jE44gAKK ZXhyDung3je8VDNuouRuZtw9qcxEITD9dNyH9XtwVTMfLxJkShMlE/dGbFwC+aNV gDYJyq1/J67CYCpxX2PaVN1jYv2l1WnEEhheZUhh3C0iqKpzW/lmWOuqLy6vNaYQ imbujs4PeBiJ8VCKVyyuY3w/IRJO/gKdlHmJm8ywGJ/nKfsgUAoMrr+WbmO/U3o6 0/3NeYYyRwjNM0CWYglgARubRtOkoiCW0SynRWvy -----END CERTIFICATE-----Generated at Thu Nov 21 01:24:17 2024 by rpki-client on console-ams.rpki-client.org