$ rpki-client -vvf repo-rpki.idnic.net/repo/81c09c9e-fe8a-4989-b5bb-ae419338f873/0/3136302e32302e37362e302f32332d3234203d3e20313532383133.roa File: 3136302e32302e37362e302f32332d3234203d3e20313532383133.roa (raw, json) Hash identifier: 4kXINOSVtSGjG6eeRCPr1tzpMPx3xypkpdeYlchZ0eU= Subject key identifier: E8:2D:67:93:33:CA:82:40:A1:92:25:9A:F4:4F:2E:8C:23:86:46:48 Certificate issuer: /CN=8137472FE4C7D48501352601D84D624E0EC41C19 Certificate serial: 27CB6ACF5BE1FF8F016DBB185024B392FB3D9665 Authority key identifier: 81:37:47:2F:E4:C7:D4:85:01:35:26:01:D8:4D:62:4E:0E:C4:1C:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8137472FE4C7D48501352601D84D624E0EC41C19.cer Subject info access: rsync://repo-rpki.idnic.net/repo/81c09c9e-fe8a-4989-b5bb-ae419338f873/0/3136302e32302e37362e302f32332d3234203d3e20313532383133.roa Signing time: Wed 11 Sep 2024 06:42:49 +0000 ROA not before: Wed 11 Sep 2024 06:37:49 +0000 ROA not after: Wed 10 Sep 2025 06:42:49 +0000 asID: 152813 IP address blocks: 160.20.76.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/81c09c9e-fe8a-4989-b5bb-ae419338f873/0/8137472FE4C7D48501352601D84D624E0EC41C19.crl rsync://repo-rpki.idnic.net/repo/81c09c9e-fe8a-4989-b5bb-ae419338f873/0/8137472FE4C7D48501352601D84D624E0EC41C19.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8137472FE4C7D48501352601D84D624E0EC41C19.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:cb:6a:cf:5b:e1:ff:8f:01:6d:bb:18:50:24:b3:92:fb:3d:96:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8137472FE4C7D48501352601D84D624E0EC41C19 Validity Not Before: Sep 11 06:37:49 2024 GMT Not After : Sep 10 06:42:49 2025 GMT Subject: CN=E82D679333CA8240A192259AF44F2E8C23864648 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:b7:f6:26:86:1e:38:96:28:60:27:08:39:33: d0:54:7f:1e:b8:60:69:57:cc:ed:25:57:29:e8:06: 5b:1f:dc:01:15:1a:5a:21:7c:f7:49:9f:0a:ec:93: 6a:c3:0d:93:42:aa:ae:1c:62:72:6b:86:36:de:2b: 06:a3:0e:4d:82:4e:b9:73:b3:7c:21:6f:a8:ed:32: e7:b5:7c:b6:ff:e1:b7:60:11:cb:32:39:04:90:d1: 05:94:23:75:47:95:27:74:59:59:e7:36:7a:55:d4: 69:17:f9:94:56:df:46:fc:b9:a8:fb:a4:9d:83:f3: 69:40:15:6e:69:98:81:50:a0:f8:9f:a1:9b:a3:0c: 9e:86:cb:76:b9:e2:78:39:41:75:9b:48:f4:2b:59: 57:f5:6f:60:8e:ea:e3:4e:c8:3e:66:8f:bc:e3:5c: f1:d0:d1:cc:e9:61:b1:ef:03:cc:35:d0:83:58:b6: 73:f7:cd:ea:6c:75:61:d5:68:6f:32:b4:52:1c:2a: 5e:6f:9c:45:70:c1:f7:12:ad:60:e4:95:8a:9f:4f: 2f:46:78:ca:79:ec:03:b2:4a:2a:bc:b4:ec:52:39: fa:18:04:cf:26:5e:23:e9:9c:d2:54:98:05:6d:28: 80:16:44:ed:53:59:83:4d:0b:f1:31:8f:12:7e:13: 26:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:2D:67:93:33:CA:82:40:A1:92:25:9A:F4:4F:2E:8C:23:86:46:48 X509v3 Authority Key Identifier: keyid:81:37:47:2F:E4:C7:D4:85:01:35:26:01:D8:4D:62:4E:0E:C4:1C:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/81c09c9e-fe8a-4989-b5bb-ae419338f873/0/8137472FE4C7D48501352601D84D624E0EC41C19.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8137472FE4C7D48501352601D84D624E0EC41C19.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/81c09c9e-fe8a-4989-b5bb-ae419338f873/0/3136302e32302e37362e302f32332d3234203d3e20313532383133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.20.76.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:ef:39:22:90:9c:57:7a:58:a1:62:8f:b1:9a:8b:86:28:c9: fc:c8:47:40:af:7c:91:22:55:44:cc:99:51:22:1b:3c:ac:a6: 3e:e2:ef:18:bd:6b:fb:2a:66:6e:1b:56:6d:ac:bb:65:99:04: 16:1d:c8:9c:1d:e4:50:f7:ad:37:23:9b:9a:77:fe:77:3e:cc: d4:78:f6:8d:f9:77:a2:67:8b:4b:7c:76:f0:46:49:0c:06:8f: b6:7b:5a:d1:eb:77:15:1f:e3:da:89:c8:df:d8:db:b6:e7:25: dc:34:90:b4:7a:fd:c7:50:2c:c4:54:8b:bc:14:98:d9:69:e4: 24:2b:98:cc:82:3a:18:54:c6:32:1b:2d:4d:d1:cc:57:2d:ec: 73:bc:63:36:28:e5:87:47:3f:49:38:75:a5:96:52:74:34:16: ac:06:35:c8:6e:80:35:58:21:8a:d1:ab:b7:7f:c1:61:d6:2b: 79:80:de:c0:55:da:a8:e6:8d:18:bf:ae:b4:83:09:77:1c:ab: 63:ed:1e:b8:66:0f:61:9d:fd:2c:34:93:2b:bc:a9:e2:cc:78: 7c:7d:6e:e8:a9:db:15:47:81:38:d2:ea:21:c8:d0:b3:e7:e6: a4:80:bf:3c:b5:c0:11:1d:89:9a:19:4f:b9:cb:03:39:28:bb: e4:c4:ca:d1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJ8tqz1vh/48BbbsYUCSzkvs9lmUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODEzNzQ3MkZFNEM3RDQ4NTAxMzUyNjAxRDg0RDYyNEUw RUM0MUMxOTAeFw0yNDA5MTEwNjM3NDlaFw0yNTA5MTAwNjQyNDlaMDMxMTAvBgNV BAMTKEU4MkQ2NzkzMzNDQTgyNDBBMTkyMjU5QUY0NEYyRThDMjM4NjQ2NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXt/Ymhh44lihgJwg5M9BUfx64 YGlXzO0lVynoBlsf3AEVGlohfPdJnwrsk2rDDZNCqq4cYnJrhjbeKwajDk2CTrlz s3whb6jtMue1fLb/4bdgEcsyOQSQ0QWUI3VHlSd0WVnnNnpV1GkX+ZRW30b8uaj7 pJ2D82lAFW5pmIFQoPifoZujDJ6Gy3a54ng5QXWbSPQrWVf1b2CO6uNOyD5mj7zj XPHQ0czpYbHvA8w10INYtnP3zepsdWHVaG8ytFIcKl5vnEVwwfcSrWDklYqfTy9G eMp57AOySiq8tOxSOfoYBM8mXiPpnNJUmAVtKIAWRO1TWYNNC/ExjxJ+EyYHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU6C1nkzPKgkChkiWa9E8ujCOGRkgwHwYDVR0j BBgwFoAUgTdHL+TH1IUBNSYB2E1iTg7EHBkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MWMwOWM5ZS1mZThhLTQ5ODktYjViYi1hZTQxOTMzOGY4NzMvMC84MTM3NDcyRkU0 QzdENDg1MDEzNTI2MDFEODRENjI0RTBFQzQxQzE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODEzNzQ3MkZFNEM3RDQ4NTAxMzUyNjAxRDg0RDYyNEUwRUM0 MUMxOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgxYzA5YzllLWZlOGEtNDk4OS1i NWJiLWFlNDE5MzM4Zjg3My8wLzMxMzYzMDJlMzIzMDJlMzczNjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzEzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaAUTDANBgkqhkiG 9w0BAQsFAAOCAQEAb+85IpCcV3pYoWKPsZqLhijJ/MhHQK98kSJVRMyZUSIbPKym PuLvGL1r+ypmbhtWbay7ZZkEFh3InB3kUPetNyObmnf+dz7M1Hj2jfl3omeLS3x2 8EZJDAaPtnta0et3FR/j2onI39jbtucl3DSQtHr9x1AsxFSLvBSY2WnkJCuYzII6 GFTGMhstTdHMVy3sc7xjNijlh0c/STh1pZZSdDQWrAY1yG6ANVghitGrt3/BYdYr eYDewFXaqOaNGL+utIMJdxyrY+0euGYPYZ39LDSTK7yp4sx4fH1u6KnbFUeBONLq IcjQs+fmpIC/PLXAER2JmhlPucsDOSi75MTK0Q== -----END CERTIFICATE-----Generated at Sat Nov 23 18:47:51 2024 by rpki-client on console-fra.rpki-client.org