$ rpki-client -vvf repo-rpki.idnic.net/repo/7fc5a1cc-cc5e-4e58-8df4-f886718313aa/0/3136302e32302e3234302e302f32342d3234203d3e20313532383035.roa File: 3136302e32302e3234302e302f32342d3234203d3e20313532383035.roa (raw, json) Hash identifier: j4rqvpCQiLF+pEFMZmXH9k9jEc3UXa+qBLPNLtNJ5rQ= Subject key identifier: E8:E9:7F:3E:F5:77:E9:3E:43:12:A9:B5:C6:E8:F6:16:D9:0A:4A:7A Certificate issuer: /CN=142A78CA51D88042BA512A1BB46D6DF44F63BBD7 Certificate serial: 07FFE8A5770CBDCAF860825303560C5833D2C9E3 Authority key identifier: 14:2A:78:CA:51:D8:80:42:BA:51:2A:1B:B4:6D:6D:F4:4F:63:BB:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/142A78CA51D88042BA512A1BB46D6DF44F63BBD7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7fc5a1cc-cc5e-4e58-8df4-f886718313aa/0/3136302e32302e3234302e302f32342d3234203d3e20313532383035.roa Signing time: Tue 30 Jul 2024 01:30:54 +0000 ROA not before: Tue 30 Jul 2024 01:25:54 +0000 ROA not after: Tue 29 Jul 2025 01:30:54 +0000 asID: 152805 IP address blocks: 160.20.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7fc5a1cc-cc5e-4e58-8df4-f886718313aa/0/142A78CA51D88042BA512A1BB46D6DF44F63BBD7.crl rsync://repo-rpki.idnic.net/repo/7fc5a1cc-cc5e-4e58-8df4-f886718313aa/0/142A78CA51D88042BA512A1BB46D6DF44F63BBD7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/142A78CA51D88042BA512A1BB46D6DF44F63BBD7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:ff:e8:a5:77:0c:bd:ca:f8:60:82:53:03:56:0c:58:33:d2:c9:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=142A78CA51D88042BA512A1BB46D6DF44F63BBD7 Validity Not Before: Jul 30 01:25:54 2024 GMT Not After : Jul 29 01:30:54 2025 GMT Subject: CN=E8E97F3EF577E93E4312A9B5C6E8F616D90A4A7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f4:5a:63:9c:08:49:9e:8c:34:97:62:c6:07: 4a:98:77:3e:e5:3f:fe:66:d7:80:77:cd:28:4e:49: 68:87:9b:6e:c7:1b:c1:1c:5f:e7:a8:15:13:bd:ec: 9d:40:19:32:f0:bb:f4:a4:45:8b:b0:ce:20:f9:b2: b7:73:30:7a:d4:d7:f1:e6:3d:d2:ea:34:23:ad:0b: eb:47:0f:08:3c:b8:c6:6e:fe:01:c1:a3:16:bd:99: 80:e5:5d:5e:51:d6:4b:d9:ec:5d:c6:db:09:4f:3f: c4:aa:f7:dd:d7:c0:e6:f4:52:af:7c:56:bc:4d:2d: 71:86:03:e9:24:c7:2a:d7:7b:ac:79:86:77:df:08: cf:b6:15:06:73:bb:5a:24:b2:37:86:71:12:1f:02: 0d:02:fb:c4:07:ab:90:64:1b:6f:4a:79:8b:aa:35: 94:f7:bb:07:c6:c3:cc:fb:d0:06:b9:1e:96:ac:a2: 24:ea:9e:ec:34:74:37:2a:c5:51:c2:08:f8:ec:87: 8c:96:88:41:22:2d:c9:9f:7d:46:31:75:33:a0:51: 2a:01:6f:0d:3c:60:41:3a:f5:45:35:7e:ca:8f:3d: c7:62:09:d3:0a:96:49:2b:63:c7:b6:e0:7e:dc:39: a9:ec:66:d4:1a:f0:89:0c:bf:85:3f:88:d8:6b:17: 7c:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:E9:7F:3E:F5:77:E9:3E:43:12:A9:B5:C6:E8:F6:16:D9:0A:4A:7A X509v3 Authority Key Identifier: keyid:14:2A:78:CA:51:D8:80:42:BA:51:2A:1B:B4:6D:6D:F4:4F:63:BB:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7fc5a1cc-cc5e-4e58-8df4-f886718313aa/0/142A78CA51D88042BA512A1BB46D6DF44F63BBD7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/142A78CA51D88042BA512A1BB46D6DF44F63BBD7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7fc5a1cc-cc5e-4e58-8df4-f886718313aa/0/3136302e32302e3234302e302f32342d3234203d3e20313532383035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.20.240.0/24 Signature Algorithm: sha256WithRSAEncryption 68:bd:d1:09:4e:97:7f:81:a7:52:87:3e:7f:b6:64:34:0b:15: 1b:87:29:76:96:9b:35:e4:42:1f:ee:d6:1f:40:74:d3:ec:92: e1:17:0a:15:93:80:bf:12:b6:32:07:aa:cb:e6:22:04:3b:85: d3:bb:44:5b:c7:8d:02:48:17:11:f5:26:16:1c:5d:e3:88:63: 67:21:5c:93:61:29:38:6a:ab:8b:26:1a:4b:4f:5d:16:f2:ef: 4d:55:45:23:b7:23:55:d9:de:b3:6f:11:90:fc:08:06:71:1e: 03:27:c1:a4:a1:85:f0:31:8e:d6:5c:e3:85:6c:f2:25:5c:95: c1:fb:36:d1:f0:5b:83:b8:97:c5:e7:10:b9:c3:31:b5:ae:c3: 3c:bf:3c:a2:a4:eb:f7:d3:93:b1:9e:f5:d8:54:d4:1d:0f:d0: bc:98:55:8a:11:ac:38:fd:cb:fb:41:d9:0b:19:56:6a:2a:fd: b8:3f:f3:b1:b6:44:60:59:cf:9e:12:69:11:d9:8d:b7:f4:30: 7e:6d:dc:9e:31:33:a1:0a:03:9c:0f:b5:07:79:4e:df:fc:a5: 99:11:c5:76:35:fa:6b:ad:cd:e2:8f:1d:9a:56:be:2f:7c:4f: 99:bf:8d:9c:b2:f2:41:fc:69:f2:70:ce:79:17:a1:79:71:ec: cf:04:10:36 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUB//opXcMvcr4YIJTA1YMWDPSyeMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTQyQTc4Q0E1MUQ4ODA0MkJBNTEyQTFCQjQ2RDZERjQ0 RjYzQkJENzAeFw0yNDA3MzAwMTI1NTRaFw0yNTA3MjkwMTMwNTRaMDMxMTAvBgNV BAMTKEU4RTk3RjNFRjU3N0U5M0U0MzEyQTlCNUM2RThGNjE2RDkwQTRBN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT9FpjnAhJnow0l2LGB0qYdz7l P/5m14B3zShOSWiHm27HG8EcX+eoFRO97J1AGTLwu/SkRYuwziD5srdzMHrU1/Hm PdLqNCOtC+tHDwg8uMZu/gHBoxa9mYDlXV5R1kvZ7F3G2wlPP8Sq993XwOb0Uq98 VrxNLXGGA+kkxyrXe6x5hnffCM+2FQZzu1oksjeGcRIfAg0C+8QHq5BkG29KeYuq NZT3uwfGw8z70Aa5HpasoiTqnuw0dDcqxVHCCPjsh4yWiEEiLcmffUYxdTOgUSoB bw08YEE69UU1fsqPPcdiCdMKlkkrY8e24H7cOansZtQa8IkMv4U/iNhrF3wVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6Ol/PvV36T5DEqm1xuj2FtkKSnowHwYDVR0j BBgwFoAUFCp4ylHYgEK6USobtG1t9E9ju9cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmM1YTFjYy1jYzVlLTRlNTgtOGRmNC1mODg2NzE4MzEzYWEvMC8xNDJBNzhDQTUx RDg4MDQyQkE1MTJBMUJCNDZENkRGNDRGNjNCQkQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMTQyQTc4Q0E1MUQ4ODA0MkJBNTEyQTFCQjQ2RDZERjQ0RjYz QkJENy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmYzVhMWNjLWNjNWUtNGU1OC04 ZGY0LWY4ODY3MTgzMTNhYS8wLzMxMzYzMDJlMzIzMDJlMzIzNDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBTwMA0GCSqG SIb3DQEBCwUAA4IBAQBovdEJTpd/gadShz5/tmQ0CxUbhyl2lps15EIf7tYfQHTT 7JLhFwoVk4C/ErYyB6rL5iIEO4XTu0Rbx40CSBcR9SYWHF3jiGNnIVyTYSk4aquL JhpLT10W8u9NVUUjtyNV2d6zbxGQ/AgGcR4DJ8GkoYXwMY7WXOOFbPIlXJXB+zbR 8FuDuJfF5xC5wzG1rsM8vzyipOv305OxnvXYVNQdD9C8mFWKEaw4/cv7QdkLGVZq Kv24P/OxtkRgWc+eEmkR2Y239DB+bdyeMTOhCgOcD7UHeU7f/KWZEcV2Nfprrc3i jx2aVr4vfE+Zv42csvJB/GnycM55F6F5cezPBBA2 -----END CERTIFICATE-----Generated at Thu Nov 21 01:24:17 2024 by rpki-client on console-ams.rpki-client.org