$ rpki-client -vvf repo-rpki.idnic.net/repo/8b29e912-35c6-480f-b869-2a0f8aef30d2/0/3136302e32322e3232332e302f32342d3234203d3e20313533303633.roa File: 3136302e32322e3232332e302f32342d3234203d3e20313533303633.roa (raw, json) Hash identifier: gyWJHanxNQG1DzFhuDTy0RtjXEo+5iUbOZzhyP1gSA0= Subject key identifier: 6B:DC:6B:F2:A9:29:E5:0A:0B:9A:C1:8D:B2:64:14:95:DF:E7:80:ED Certificate issuer: /CN=9FFCF0ADAECDBD1CC56CFEB68D9DCAF9535A1017 Certificate serial: 16D0D1CBDD35C1C355DD5911264DF8CED868CA26 Authority key identifier: 9F:FC:F0:AD:AE:CD:BD:1C:C5:6C:FE:B6:8D:9D:CA:F9:53:5A:10:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9FFCF0ADAECDBD1CC56CFEB68D9DCAF9535A1017.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b29e912-35c6-480f-b869-2a0f8aef30d2/0/3136302e32322e3232332e302f32342d3234203d3e20313533303633.roa Signing time: Thu 18 Jul 2024 19:32:27 +0000 ROA not before: Thu 18 Jul 2024 19:27:27 +0000 ROA not after: Thu 17 Jul 2025 19:32:27 +0000 asID: 153063 IP address blocks: 160.22.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b29e912-35c6-480f-b869-2a0f8aef30d2/0/9FFCF0ADAECDBD1CC56CFEB68D9DCAF9535A1017.crl rsync://repo-rpki.idnic.net/repo/8b29e912-35c6-480f-b869-2a0f8aef30d2/0/9FFCF0ADAECDBD1CC56CFEB68D9DCAF9535A1017.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9FFCF0ADAECDBD1CC56CFEB68D9DCAF9535A1017.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:d0:d1:cb:dd:35:c1:c3:55:dd:59:11:26:4d:f8:ce:d8:68:ca:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FFCF0ADAECDBD1CC56CFEB68D9DCAF9535A1017 Validity Not Before: Jul 18 19:27:27 2024 GMT Not After : Jul 17 19:32:27 2025 GMT Subject: CN=6BDC6BF2A929E50A0B9AC18DB2641495DFE780ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:d9:3d:b5:26:71:44:d7:f7:02:fd:7a:f3:4d: 80:d4:7d:fb:50:19:ab:ac:d3:fd:76:cb:4f:62:5e: 12:67:b4:9a:1f:29:1e:16:d0:82:29:07:3e:90:12: 4a:ef:e6:30:62:49:0e:8f:4f:6c:f6:cc:61:32:ac: e4:2a:1c:f9:16:c5:29:07:44:82:e5:f2:29:3e:e6: 11:b9:9f:b7:b7:cb:6e:95:26:42:14:a2:76:80:14: cf:7d:bf:fa:cf:8a:5d:6b:81:e3:bf:68:0b:bf:44: a3:a4:4e:d7:4e:18:86:3e:0f:92:c6:7e:de:d8:1b: d0:56:95:46:8c:14:71:cd:d0:e6:3d:d4:72:25:c9: 28:3b:c9:c9:44:7f:d7:01:2b:2e:55:70:3a:86:f3: a1:66:7b:37:b2:a6:4e:0f:a4:fe:48:b0:de:6c:d8: b4:87:14:97:ec:d4:00:06:ae:98:0f:5c:03:ba:8f: 87:67:1d:5b:34:72:e6:3d:6c:bf:fa:0e:80:33:48: a9:fd:76:61:83:7a:d5:c2:c5:ec:26:d8:17:1a:d0: f1:89:bb:fb:64:bc:2f:9d:f2:5d:cb:d1:09:10:f6: 19:c8:49:02:37:ea:cf:0f:1b:13:19:8b:80:09:39: 37:db:10:7f:8d:da:10:ab:4f:1a:fe:e3:cd:a4:d6: d8:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:DC:6B:F2:A9:29:E5:0A:0B:9A:C1:8D:B2:64:14:95:DF:E7:80:ED X509v3 Authority Key Identifier: keyid:9F:FC:F0:AD:AE:CD:BD:1C:C5:6C:FE:B6:8D:9D:CA:F9:53:5A:10:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b29e912-35c6-480f-b869-2a0f8aef30d2/0/9FFCF0ADAECDBD1CC56CFEB68D9DCAF9535A1017.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9FFCF0ADAECDBD1CC56CFEB68D9DCAF9535A1017.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b29e912-35c6-480f-b869-2a0f8aef30d2/0/3136302e32322e3232332e302f32342d3234203d3e20313533303633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.223.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:e1:66:ed:c8:ae:86:07:d3:c7:54:49:be:74:0d:a5:c3:dd: 54:41:7e:d1:5e:ea:9b:a4:9e:fe:15:f4:a4:18:04:ac:6c:e7: ad:5f:ca:35:0a:57:f8:21:9a:de:f1:06:85:b0:25:2c:dd:17: b4:6e:93:84:e7:ae:ec:fd:45:a1:62:76:45:a0:ef:25:1b:4a: 8c:5b:0f:4a:d4:0e:80:66:40:b6:27:fd:c1:4f:0d:b6:7c:ea: 98:59:79:a5:b6:62:4f:61:1a:32:74:25:0b:34:1f:10:69:99: a8:fa:1f:5f:ef:6a:52:59:11:e0:c9:41:32:db:d3:87:53:12: c0:67:0f:ce:46:80:a9:8a:37:aa:82:59:1e:bd:a1:09:87:c0: cb:29:0d:ef:e9:f6:4e:96:cc:14:1d:9f:f8:8b:17:cd:04:22: ca:e7:27:bf:f5:f9:0c:0a:fd:a4:bf:1e:a6:9f:b8:63:87:19: aa:69:75:69:6b:5f:47:86:9f:6c:e8:fe:1b:9f:7e:66:b7:ee: bb:17:29:75:00:05:47:ac:08:6d:b3:74:5f:cc:a5:a0:08:7d: bd:d0:8d:bb:7c:a3:c2:1e:3d:ef:c0:8a:df:dc:4e:35:8f:bc: 18:8c:3a:e5:3b:7e:e2:04:00:e0:34:ef:b6:94:0b:5e:ce:48: 1d:9e:2c:0c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFtDRy901wcNV3VkRJk34zthoyiYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZGQ0YwQURBRUNEQkQxQ0M1NkNGRUI2OEQ5RENBRjk1 MzVBMTAxNzAeFw0yNDA3MTgxOTI3MjdaFw0yNTA3MTcxOTMyMjdaMDMxMTAvBgNV BAMTKDZCREM2QkYyQTkyOUU1MEEwQjlBQzE4REIyNjQxNDk1REZFNzgwRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCb2T21JnFE1/cC/XrzTYDUfftQ Gaus0/12y09iXhJntJofKR4W0IIpBz6QEkrv5jBiSQ6PT2z2zGEyrOQqHPkWxSkH RILl8ik+5hG5n7e3y26VJkIUonaAFM99v/rPil1rgeO/aAu/RKOkTtdOGIY+D5LG ft7YG9BWlUaMFHHN0OY91HIlySg7yclEf9cBKy5VcDqG86Fmezeypk4PpP5IsN5s 2LSHFJfs1AAGrpgPXAO6j4dnHVs0cuY9bL/6DoAzSKn9dmGDetXCxewm2Bca0PGJ u/tkvC+d8l3L0QkQ9hnISQI36s8PGxMZi4AJOTfbEH+N2hCrTxr+482k1tiXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUa9xr8qkp5QoLmsGNsmQUld/ngO0wHwYDVR0j BBgwFoAUn/zwra7NvRzFbP62jZ3K+VNaEBcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjI5ZTkxMi0zNWM2LTQ4MGYtYjg2OS0yYTBmOGFlZjMwZDIvMC85RkZDRjBBREFF Q0RCRDFDQzU2Q0ZFQjY4RDlEQ0FGOTUzNUExMDE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUZGQ0YwQURBRUNEQkQxQ0M1NkNGRUI2OEQ5RENBRjk1MzVB MTAxNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiMjllOTEyLTM1YzYtNDgwZi1i ODY5LTJhMGY4YWVmMzBkMi8wLzMxMzYzMDJlMzIzMjJlMzIzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzNjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBbfMA0GCSqG SIb3DQEBCwUAA4IBAQAq4WbtyK6GB9PHVEm+dA2lw91UQX7RXuqbpJ7+FfSkGASs bOetX8o1Clf4IZre8QaFsCUs3Re0bpOE567s/UWhYnZFoO8lG0qMWw9K1A6AZkC2 J/3BTw22fOqYWXmltmJPYRoydCULNB8QaZmo+h9f72pSWRHgyUEy29OHUxLAZw/O RoCpijeqglkevaEJh8DLKQ3v6fZOlswUHZ/4ixfNBCLK5ye/9fkMCv2kvx6mn7hj hxmqaXVpa19Hhp9s6P4bn35mt+67Fyl1AAVHrAhts3RfzKWgCH290I27fKPCHj3v wIrf3E41j7wYjDrlO37iBADgNO+2lAtezkgdniwM -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org