$ rpki-client -vvf repo-rpki.idnic.net/repo/7d9f98f3-72f0-4006-be99-b9a9e8d9d2bf/0/3136302e32322e3138372e302f32342d3234203d3e20313532383233.roa File: 3136302e32322e3138372e302f32342d3234203d3e20313532383233.roa (raw, json) Hash identifier: cvyj6LKtTOVBTWTHZighgw+CFWQteArr8dC6m6wOVeI= Subject key identifier: 00:FA:08:1D:1C:EF:0D:7C:B5:81:00:DB:7D:DB:19:5B:94:C5:3C:F0 Certificate issuer: /CN=D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0 Certificate serial: 6C8EE948375F0662BC4A26AFC06368B0BEF83B89 Authority key identifier: D3:B0:DD:BB:8E:07:FC:D9:8A:39:9C:90:C5:B3:FC:32:B4:FA:28:F0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d9f98f3-72f0-4006-be99-b9a9e8d9d2bf/0/3136302e32322e3138372e302f32342d3234203d3e20313532383233.roa Signing time: Tue 12 Nov 2024 11:17:04 +0000 ROA not before: Tue 12 Nov 2024 11:12:04 +0000 ROA not after: Tue 11 Nov 2025 11:17:04 +0000 asID: 152823 IP address blocks: 160.22.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d9f98f3-72f0-4006-be99-b9a9e8d9d2bf/0/D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0.crl rsync://repo-rpki.idnic.net/repo/7d9f98f3-72f0-4006-be99-b9a9e8d9d2bf/0/D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:8e:e9:48:37:5f:06:62:bc:4a:26:af:c0:63:68:b0:be:f8:3b:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0 Validity Not Before: Nov 12 11:12:04 2024 GMT Not After : Nov 11 11:17:04 2025 GMT Subject: CN=00FA081D1CEF0D7CB58100DB7DDB195B94C53CF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:1b:59:9c:97:92:54:10:b7:4a:a1:39:19:cd: 33:90:0e:8b:3c:85:95:bc:8d:ed:cb:6d:e0:35:9b: 2d:fc:77:9b:e2:62:db:f0:84:f1:e3:cd:89:d9:71: dc:c7:58:e8:86:9a:54:55:f6:bd:9a:4f:a5:19:59: 67:c8:62:22:7a:50:48:fc:7e:9e:c5:67:9f:09:68: 88:0c:ea:9f:0c:6d:b1:36:6a:ca:27:f8:51:2b:89: 13:7b:81:cf:9c:99:36:8c:3f:2e:95:4b:57:af:40: 26:45:4c:4b:6f:7f:88:e9:ab:17:84:23:22:6a:52: 97:3d:99:21:dd:60:0d:7c:1b:ab:28:83:dd:31:ad: b2:ce:0b:10:54:da:bd:1e:41:d1:f3:0c:06:be:00: 60:0a:b7:ee:df:6d:5c:7f:0f:62:7e:4f:cc:71:63: 9b:63:c0:3a:18:c5:3d:05:96:0e:d3:6a:7e:9f:9d: 0b:a8:d6:3d:a2:68:61:6f:cb:95:ca:b9:13:0b:2b: d0:1f:d5:d1:bc:c9:4b:58:a0:76:36:47:d8:68:5c: 62:78:b1:0b:07:83:24:ca:ca:11:99:36:62:0f:99: 45:c1:e8:ea:25:74:00:4e:1a:19:56:aa:55:d8:4c: a6:fb:a0:9f:4f:bb:0a:c2:c9:1e:03:8e:30:a0:f7: 34:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:FA:08:1D:1C:EF:0D:7C:B5:81:00:DB:7D:DB:19:5B:94:C5:3C:F0 X509v3 Authority Key Identifier: keyid:D3:B0:DD:BB:8E:07:FC:D9:8A:39:9C:90:C5:B3:FC:32:B4:FA:28:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d9f98f3-72f0-4006-be99-b9a9e8d9d2bf/0/D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d9f98f3-72f0-4006-be99-b9a9e8d9d2bf/0/3136302e32322e3138372e302f32342d3234203d3e20313532383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.187.0/24 Signature Algorithm: sha256WithRSAEncryption 08:28:30:ee:72:19:d2:b9:a2:72:34:b0:cc:93:fd:de:54:ec: da:24:4e:79:c6:37:19:c1:53:f4:df:4d:2b:aa:0a:b9:c4:02: 19:35:7a:e3:a4:19:c3:b9:41:24:44:c3:3d:5d:5d:00:89:1b: 55:00:16:e0:84:47:9f:7d:6b:35:62:e2:91:92:d3:8d:59:a9: 54:07:bb:0a:69:80:06:ec:81:cb:df:76:cf:22:dc:b7:37:00: 78:af:b1:37:33:3e:de:ae:ef:51:aa:52:ee:55:bd:88:65:4d: 53:91:fe:83:90:51:b0:11:1d:0f:df:f4:47:ec:a9:3b:f1:15: 18:15:e9:93:4f:64:05:8c:4e:a6:0b:82:a7:03:da:c0:a1:cf: d4:44:87:78:1c:53:c7:65:79:95:73:fe:31:62:73:12:57:65: 58:b9:62:82:8e:38:db:b0:3d:5d:22:ab:8c:64:d0:be:7f:6d: 0c:77:25:38:66:c5:05:dc:f5:76:23:82:54:7c:18:ef:81:3b: 94:f9:7c:8e:d6:7f:a9:56:0b:76:0e:a8:c1:6d:94:19:5e:d1: 1a:03:82:9c:c3:42:23:5e:46:f0:9d:07:1e:fc:f2:1f:68:b5: 7b:e7:07:78:66:d5:60:c1:00:cf:15:80:5c:0f:f5:1c:97:dd: 22:a1:5e:af -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbI7pSDdfBmK8SiavwGNosL74O4kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNCMEREQkI4RTA3RkNEOThBMzk5QzkwQzVCM0ZDMzJC NEZBMjhGMDAeFw0yNDExMTIxMTEyMDRaFw0yNTExMTExMTE3MDRaMDMxMTAvBgNV BAMTKDAwRkEwODFEMUNFRjBEN0NCNTgxMDBEQjdEREIxOTVCOTRDNTNDRjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQG1mcl5JUELdKoTkZzTOQDos8 hZW8je3LbeA1my38d5viYtvwhPHjzYnZcdzHWOiGmlRV9r2aT6UZWWfIYiJ6UEj8 fp7FZ58JaIgM6p8MbbE2ason+FEriRN7gc+cmTaMPy6VS1evQCZFTEtvf4jpqxeE IyJqUpc9mSHdYA18G6sog90xrbLOCxBU2r0eQdHzDAa+AGAKt+7fbVx/D2J+T8xx Y5tjwDoYxT0Flg7Tan6fnQuo1j2iaGFvy5XKuRMLK9Af1dG8yUtYoHY2R9hoXGJ4 sQsHgyTKyhGZNmIPmUXB6OoldABOGhlWqlXYTKb7oJ9PuwrCyR4DjjCg9zRdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUAPoIHRzvDXy1gQDbfdsZW5TFPPAwHwYDVR0j BBgwFoAU07Ddu44H/NmKOZyQxbP8MrT6KPAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDlmOThmMy03MmYwLTQwMDYtYmU5OS1iOWE5ZThkOWQyYmYvMC9EM0IwRERCQjhF MDdGQ0Q5OEEzOTlDOTBDNUIzRkMzMkI0RkEyOEYwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDNCMEREQkI4RTA3RkNEOThBMzk5QzkwQzVCM0ZDMzJCNEZB MjhGMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkOWY5OGYzLTcyZjAtNDAwNi1i ZTk5LWI5YTllOGQ5ZDJiZi8wLzMxMzYzMDJlMzIzMjJlMzEzODM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBa7MA0GCSqG SIb3DQEBCwUAA4IBAQAIKDDuchnSuaJyNLDMk/3eVOzaJE55xjcZwVP0300rqgq5 xAIZNXrjpBnDuUEkRMM9XV0AiRtVABbghEeffWs1YuKRktONWalUB7sKaYAG7IHL 33bPIty3NwB4r7E3Mz7eru9RqlLuVb2IZU1Tkf6DkFGwER0P3/RH7Kk78RUYFemT T2QFjE6mC4KnA9rAoc/URId4HFPHZXmVc/4xYnMSV2VYuWKCjjjbsD1dIquMZNC+ f20MdyU4ZsUF3PV2I4JUfBjvgTuU+XyO1n+pVgt2DqjBbZQZXtEaA4Kcw0IjXkbw nQce/PIfaLV75wd4ZtVgwQDPFYBcD/Ucl90ioV6v -----END CERTIFICATE-----Generated at Thu Nov 21 15:45:24 2024 by rpki-client on console-ams.rpki-client.org