$ rpki-client -vvf repo-rpki.idnic.net/repo/8b29e912-35c6-480f-b869-2a0f8aef30d2/0/3136302e32322e3232322e302f32342d3234203d3e20313533303633.roa File: 3136302e32322e3232322e302f32342d3234203d3e20313533303633.roa (raw, json) Hash identifier: Gcco8HMc4fDeDY6SNOtuEepeCd4wmhRWtDSSXTsyywU= Subject key identifier: 34:8A:54:7E:1D:9F:9A:C6:A7:58:0C:75:18:16:6E:97:09:57:B7:21 Certificate issuer: /CN=9FFCF0ADAECDBD1CC56CFEB68D9DCAF9535A1017 Certificate serial: 66F365F3386D9FF0A6C62659C19B1D5C702C18EB Authority key identifier: 9F:FC:F0:AD:AE:CD:BD:1C:C5:6C:FE:B6:8D:9D:CA:F9:53:5A:10:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9FFCF0ADAECDBD1CC56CFEB68D9DCAF9535A1017.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b29e912-35c6-480f-b869-2a0f8aef30d2/0/3136302e32322e3232322e302f32342d3234203d3e20313533303633.roa Signing time: Thu 18 Jul 2024 19:31:59 +0000 ROA not before: Thu 18 Jul 2024 19:26:59 +0000 ROA not after: Thu 17 Jul 2025 19:31:59 +0000 asID: 153063 IP address blocks: 160.22.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b29e912-35c6-480f-b869-2a0f8aef30d2/0/9FFCF0ADAECDBD1CC56CFEB68D9DCAF9535A1017.crl rsync://repo-rpki.idnic.net/repo/8b29e912-35c6-480f-b869-2a0f8aef30d2/0/9FFCF0ADAECDBD1CC56CFEB68D9DCAF9535A1017.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9FFCF0ADAECDBD1CC56CFEB68D9DCAF9535A1017.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:f3:65:f3:38:6d:9f:f0:a6:c6:26:59:c1:9b:1d:5c:70:2c:18:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FFCF0ADAECDBD1CC56CFEB68D9DCAF9535A1017 Validity Not Before: Jul 18 19:26:59 2024 GMT Not After : Jul 17 19:31:59 2025 GMT Subject: CN=348A547E1D9F9AC6A7580C7518166E970957B721 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d8:c0:ad:08:14:e1:a4:9c:34:4c:3d:a2:4b: 08:1c:5d:33:1a:df:9f:b0:e3:19:24:db:5c:9b:dc: 4f:87:12:7a:59:21:e1:d7:57:72:52:36:72:85:b5: 31:36:7c:d0:8a:e6:d1:a3:57:27:40:dc:30:ca:b9: 77:3d:76:88:12:15:b8:c8:5f:68:a0:79:36:e1:d9: d4:b3:f1:84:56:43:ac:00:2b:2b:74:61:5b:f2:04: 76:96:71:1e:03:0b:35:41:06:09:bd:bf:9c:23:d6: 86:1e:38:fc:26:c7:63:1c:45:4f:0d:a7:37:45:8d: df:86:8d:de:70:7c:c2:17:c7:63:8b:48:ac:8e:bc: 16:20:ef:1a:d0:e7:17:7e:7c:72:f2:88:f3:91:1a: 66:d5:b8:00:07:a7:9d:ac:53:b1:43:36:7b:89:44: 5e:a5:44:78:f6:cf:9d:67:3d:22:9c:cb:88:0c:f4: 24:55:48:f5:d3:a4:81:46:18:f7:b6:04:fa:9b:72: 27:76:48:c9:96:fa:87:52:c0:53:d2:70:9c:aa:11: 84:63:d3:0e:d9:0c:40:90:d9:45:9f:93:ef:c6:8d: fe:57:d9:c8:33:71:5a:76:c2:8d:77:9d:16:1a:d3: ab:cf:c7:17:62:09:a3:98:e7:0b:03:e2:95:ad:07: c8:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:8A:54:7E:1D:9F:9A:C6:A7:58:0C:75:18:16:6E:97:09:57:B7:21 X509v3 Authority Key Identifier: keyid:9F:FC:F0:AD:AE:CD:BD:1C:C5:6C:FE:B6:8D:9D:CA:F9:53:5A:10:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b29e912-35c6-480f-b869-2a0f8aef30d2/0/9FFCF0ADAECDBD1CC56CFEB68D9DCAF9535A1017.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9FFCF0ADAECDBD1CC56CFEB68D9DCAF9535A1017.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b29e912-35c6-480f-b869-2a0f8aef30d2/0/3136302e32322e3232322e302f32342d3234203d3e20313533303633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.222.0/24 Signature Algorithm: sha256WithRSAEncryption 84:d8:35:0a:d8:da:76:c3:d0:37:46:92:fe:ee:9e:da:74:06: f6:27:e1:1d:21:2d:47:4b:e9:5f:ca:f3:7f:9a:fe:cc:b1:48: 29:73:2f:41:05:31:8b:b1:c6:d0:0d:c5:f5:4b:82:6c:67:98: 09:50:28:64:bc:c1:74:b3:e1:e9:1e:fe:8a:a0:55:c5:cf:40: 37:dc:db:8b:ae:a1:6c:87:8e:55:c4:66:80:2a:10:85:c8:cc: c7:af:fb:56:30:a3:ff:a1:54:99:17:cf:65:12:77:34:8e:9e: 68:57:f1:e6:d0:20:36:05:b0:99:75:e6:da:de:96:52:31:f0: 46:3f:57:d0:8e:f2:a8:73:4a:6e:00:8d:ee:c1:00:6d:5c:16: d3:0c:e8:6d:25:70:2e:c8:e0:d5:6e:a5:bd:06:aa:0a:5c:26: b8:5f:9d:7a:70:9e:a6:17:8d:87:5c:cd:8c:f6:d6:24:d2:9d: 7b:7b:88:b4:c9:31:01:ba:2f:20:3b:a8:e3:28:be:38:72:f5: 6b:1e:85:de:68:0f:e5:00:a5:50:3b:a8:2d:7d:ea:03:eb:10: 06:2d:e7:e3:b8:ce:f7:98:97:a1:7d:bf:ec:97:e1:fe:c1:a1: 91:99:fb:f9:6a:0e:f1:43:ae:7e:65:26:90:b1:e5:dc:22:57: 4e:4d:b8:0f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZvNl8zhtn/CmxiZZwZsdXHAsGOswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZGQ0YwQURBRUNEQkQxQ0M1NkNGRUI2OEQ5RENBRjk1 MzVBMTAxNzAeFw0yNDA3MTgxOTI2NTlaFw0yNTA3MTcxOTMxNTlaMDMxMTAvBgNV BAMTKDM0OEE1NDdFMUQ5RjlBQzZBNzU4MEM3NTE4MTY2RTk3MDk1N0I3MjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC52MCtCBThpJw0TD2iSwgcXTMa 35+w4xkk21yb3E+HEnpZIeHXV3JSNnKFtTE2fNCK5tGjVydA3DDKuXc9dogSFbjI X2igeTbh2dSz8YRWQ6wAKyt0YVvyBHaWcR4DCzVBBgm9v5wj1oYeOPwmx2McRU8N pzdFjd+Gjd5wfMIXx2OLSKyOvBYg7xrQ5xd+fHLyiPORGmbVuAAHp52sU7FDNnuJ RF6lRHj2z51nPSKcy4gM9CRVSPXTpIFGGPe2BPqbcid2SMmW+odSwFPScJyqEYRj 0w7ZDECQ2UWfk+/Gjf5X2cgzcVp2wo13nRYa06vPxxdiCaOY5wsD4pWtB8gtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNIpUfh2fmsanWAx1GBZulwlXtyEwHwYDVR0j BBgwFoAUn/zwra7NvRzFbP62jZ3K+VNaEBcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjI5ZTkxMi0zNWM2LTQ4MGYtYjg2OS0yYTBmOGFlZjMwZDIvMC85RkZDRjBBREFF Q0RCRDFDQzU2Q0ZFQjY4RDlEQ0FGOTUzNUExMDE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUZGQ0YwQURBRUNEQkQxQ0M1NkNGRUI2OEQ5RENBRjk1MzVB MTAxNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiMjllOTEyLTM1YzYtNDgwZi1i ODY5LTJhMGY4YWVmMzBkMi8wLzMxMzYzMDJlMzIzMjJlMzIzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzNjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBbeMA0GCSqG SIb3DQEBCwUAA4IBAQCE2DUK2Np2w9A3RpL+7p7adAb2J+EdIS1HS+lfyvN/mv7M sUgpcy9BBTGLscbQDcX1S4JsZ5gJUChkvMF0s+HpHv6KoFXFz0A33NuLrqFsh45V xGaAKhCFyMzHr/tWMKP/oVSZF89lEnc0jp5oV/Hm0CA2BbCZdeba3pZSMfBGP1fQ jvKoc0puAI3uwQBtXBbTDOhtJXAuyODVbqW9BqoKXCa4X516cJ6mF42HXM2M9tYk 0p17e4i0yTEBui8gO6jjKL44cvVrHoXeaA/lAKVQO6gtfeoD6xAGLefjuM73mJeh fb/sl+H+waGRmfv5ag7xQ65+ZSaQseXcIldOTbgP -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org