$ rpki-client -vvf repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/3136302e32322e33362e302f32342d3234203d3e20313532373933.roa File: 3136302e32322e33362e302f32342d3234203d3e20313532373933.roa (raw, json) Hash identifier: ctntkAXUI57UCQ3sU6b5QuN5R1MB/23qibMUlSwHY7g= Subject key identifier: 1E:17:00:A4:7F:70:B2:88:9E:94:82:BC:5C:D1:E7:BE:EE:D7:88:16 Certificate issuer: /CN=A950C0F5B830659E499444729038D5D2047859FB Certificate serial: 0C68DEC1C90E6A2ED5AB9E11F4CC6A0CB41DA3CC Authority key identifier: A9:50:C0:F5:B8:30:65:9E:49:94:44:72:90:38:D5:D2:04:78:59:FB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A950C0F5B830659E499444729038D5D2047859FB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/3136302e32322e33362e302f32342d3234203d3e20313532373933.roa Signing time: Tue 11 Jun 2024 16:11:37 +0000 ROA not before: Tue 11 Jun 2024 16:06:37 +0000 ROA not after: Tue 10 Jun 2025 16:11:37 +0000 asID: 152793 IP address blocks: 160.22.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/A950C0F5B830659E499444729038D5D2047859FB.crl rsync://repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/A950C0F5B830659E499444729038D5D2047859FB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A950C0F5B830659E499444729038D5D2047859FB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:68:de:c1:c9:0e:6a:2e:d5:ab:9e:11:f4:cc:6a:0c:b4:1d:a3:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A950C0F5B830659E499444729038D5D2047859FB Validity Not Before: Jun 11 16:06:37 2024 GMT Not After : Jun 10 16:11:37 2025 GMT Subject: CN=1E1700A47F70B2889E9482BC5CD1E7BEEED78816 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:5b:0b:49:c8:a6:b9:19:da:7c:21:a2:67:c2: a4:c7:01:cc:3e:6e:59:41:a3:30:94:5e:95:3b:bc: d8:0b:c5:60:6d:28:7c:a1:24:79:91:32:81:46:ee: c1:59:ee:be:d7:a1:71:25:70:4c:72:a4:99:0b:c2: b9:74:0d:aa:3d:11:00:77:55:93:bd:64:89:eb:62: c1:ff:10:2f:37:e1:c1:3a:92:86:49:eb:a4:89:bf: 74:4b:ad:bd:71:3c:75:92:1d:2c:2a:6b:93:4d:e9: 01:a8:72:27:f5:5d:aa:c5:ad:91:46:82:3e:13:5c: f1:8f:3a:33:13:7f:a3:38:63:1f:2b:19:23:18:8f: c9:ac:cd:40:b8:ed:0a:08:aa:85:93:04:84:82:4b: aa:89:d0:c8:e1:c5:9f:7d:a0:48:92:f1:2a:e3:56: e6:31:72:60:ec:08:ce:41:bd:d9:8e:66:04:99:9c: e8:97:33:e2:84:13:b2:31:24:89:ae:75:74:6c:ad: 3b:4d:54:33:d4:ff:31:e9:9d:00:2e:ca:20:49:90: e5:dc:ac:83:af:0b:19:a5:59:76:0f:eb:d2:a4:89: 20:e9:c7:dd:1c:f7:4a:1b:08:ef:f7:5f:8f:7a:fa: bb:35:2b:a0:36:44:b7:22:3c:4b:77:7c:41:f9:87: 92:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:17:00:A4:7F:70:B2:88:9E:94:82:BC:5C:D1:E7:BE:EE:D7:88:16 X509v3 Authority Key Identifier: keyid:A9:50:C0:F5:B8:30:65:9E:49:94:44:72:90:38:D5:D2:04:78:59:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/A950C0F5B830659E499444729038D5D2047859FB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A950C0F5B830659E499444729038D5D2047859FB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/3136302e32322e33362e302f32342d3234203d3e20313532373933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.36.0/24 Signature Algorithm: sha256WithRSAEncryption 02:bc:b7:55:80:08:68:03:55:f9:04:eb:56:89:04:28:be:5b: 2f:21:17:76:05:b7:43:02:99:2e:3b:55:73:34:f6:c8:7d:a6: 9f:4c:d4:aa:96:08:48:91:63:1e:fc:eb:ac:9c:0b:bc:d4:6a: e2:de:1a:d8:06:fd:de:41:ec:84:c3:cb:65:ca:81:87:ff:c4: df:0b:76:bf:c2:83:64:0f:53:b5:83:19:ff:f7:2f:23:3d:03: 95:2c:f2:c3:e2:15:4a:7e:18:a3:1c:fe:86:75:fa:2a:da:c7: 3c:25:0f:67:d8:5f:27:b9:2d:aa:d5:46:a9:0b:66:7a:3d:73: 41:37:cd:ec:e8:df:9e:82:13:08:01:b9:fd:2c:ab:9b:96:8e: 72:f5:a7:1e:ee:07:10:26:7e:ff:2e:69:94:6a:c8:52:8b:f8: de:f0:9a:36:55:af:13:a4:32:9f:d8:d4:a4:ad:e9:b5:86:9b: ea:4d:62:a6:23:6e:e5:02:d1:b7:c0:4d:c2:63:49:7a:1a:a4: 34:4c:a6:11:fe:72:05:63:24:df:93:b2:fa:21:9d:7e:bf:32: fd:f3:ef:d8:2e:40:19:b9:a6:eb:17:37:16:72:f1:6d:a3:04: 6f:92:4e:58:47:a9:69:31:09:47:7d:a3:2c:73:11:ae:c3:cf: 14:c6:12:25 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDGjewckOai7Vq54R9MxqDLQdo8wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTk1MEMwRjVCODMwNjU5RTQ5OTQ0NDcyOTAzOEQ1RDIw NDc4NTlGQjAeFw0yNDA2MTExNjA2MzdaFw0yNTA2MTAxNjExMzdaMDMxMTAvBgNV BAMTKDFFMTcwMEE0N0Y3MEIyODg5RTk0ODJCQzVDRDFFN0JFRUVENzg4MTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaWwtJyKa5Gdp8IaJnwqTHAcw+ bllBozCUXpU7vNgLxWBtKHyhJHmRMoFG7sFZ7r7XoXElcExypJkLwrl0Dao9EQB3 VZO9ZInrYsH/EC834cE6koZJ66SJv3RLrb1xPHWSHSwqa5NN6QGocif1XarFrZFG gj4TXPGPOjMTf6M4Yx8rGSMYj8mszUC47QoIqoWTBISCS6qJ0MjhxZ99oEiS8Srj VuYxcmDsCM5BvdmOZgSZnOiXM+KEE7IxJImudXRsrTtNVDPU/zHpnQAuyiBJkOXc rIOvCxmlWXYP69KkiSDpx90c90obCO/3X496+rs1K6A2RLciPEt3fEH5h5KVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUHhcApH9wsoielIK8XNHnvu7XiBYwHwYDVR0j BBgwFoAUqVDA9bgwZZ5JlERykDjV0gR4WfswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZjU4MmYyYi04NjI1LTRmMzgtYjI2ZS00MmZiZDNjMjFjZjAvMC9BOTUwQzBGNUI4 MzA2NTlFNDk5NDQ0NzI5MDM4RDVEMjA0Nzg1OUZCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQTk1MEMwRjVCODMwNjU5RTQ5OTQ0NDcyOTAzOEQ1RDIwNDc4 NTlGQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhmNTgyZjJiLTg2MjUtNGYzOC1i MjZlLTQyZmJkM2MyMWNmMC8wLzMxMzYzMDJlMzIzMjJlMzMzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM3MzkzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAWJDANBgkqhkiG 9w0BAQsFAAOCAQEAAry3VYAIaANV+QTrVokEKL5bLyEXdgW3QwKZLjtVczT2yH2m n0zUqpYISJFjHvzrrJwLvNRq4t4a2Ab93kHshMPLZcqBh//E3wt2v8KDZA9TtYMZ //cvIz0DlSzyw+IVSn4Yoxz+hnX6KtrHPCUPZ9hfJ7ktqtVGqQtmej1zQTfN7Ojf noITCAG5/Syrm5aOcvWnHu4HECZ+/y5plGrIUov43vCaNlWvE6Qyn9jUpK3ptYab 6k1ipiNu5QLRt8BNwmNJehqkNEymEf5yBWMk35Oy+iGdfr8y/fPv2C5AGbmm6xc3 FnLxbaMEb5JOWEepaTEJR32jLHMRrsPPFMYSJQ== -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org