$ rpki-client -vvf repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/3136302e32322e33372e302f32342d3234203d3e20313532373933.roa File: 3136302e32322e33372e302f32342d3234203d3e20313532373933.roa (raw, json) Hash identifier: J3T8X7ZJVcf+xL7seKPOkVeZWHPjQGRxd1iPkjH4nwA= Subject key identifier: 54:F1:5C:B7:7C:BE:0C:1F:70:96:D2:20:B5:92:41:EE:96:55:85:87 Certificate issuer: /CN=A950C0F5B830659E499444729038D5D2047859FB Certificate serial: 4F0FC7AFC381ADB46B38022AEF29C5033C9490D6 Authority key identifier: A9:50:C0:F5:B8:30:65:9E:49:94:44:72:90:38:D5:D2:04:78:59:FB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A950C0F5B830659E499444729038D5D2047859FB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/3136302e32322e33372e302f32342d3234203d3e20313532373933.roa Signing time: Tue 11 Jun 2024 16:12:07 +0000 ROA not before: Tue 11 Jun 2024 16:07:07 +0000 ROA not after: Tue 10 Jun 2025 16:12:07 +0000 asID: 152793 IP address blocks: 160.22.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/A950C0F5B830659E499444729038D5D2047859FB.crl rsync://repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/A950C0F5B830659E499444729038D5D2047859FB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A950C0F5B830659E499444729038D5D2047859FB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:0f:c7:af:c3:81:ad:b4:6b:38:02:2a:ef:29:c5:03:3c:94:90:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A950C0F5B830659E499444729038D5D2047859FB Validity Not Before: Jun 11 16:07:07 2024 GMT Not After : Jun 10 16:12:07 2025 GMT Subject: CN=54F15CB77CBE0C1F7096D220B59241EE96558587 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:89:75:c5:93:ce:15:4a:06:b1:d8:37:dc:57: 99:34:2e:a1:1b:01:1f:96:38:59:46:12:b5:ba:4d: 08:f7:d8:71:a5:ec:9d:b2:47:70:62:83:d7:75:53: 7f:ee:15:76:90:b0:a3:6a:07:34:c7:3b:4d:40:d6: 1e:4a:d9:e8:ee:38:b1:c0:d4:48:91:c9:d0:8f:76: a5:63:06:3a:c2:a9:17:99:4c:7f:bf:d8:bb:a0:c8: 9a:70:6d:55:ab:93:c3:47:be:72:15:5e:91:c0:c5: b5:27:c1:7a:a7:fa:37:10:b4:7b:54:e4:e8:dd:d9: 9e:3f:2a:85:fa:52:1c:cf:9c:49:36:19:d3:41:b8: 9c:61:94:9b:df:d4:05:1e:7d:9b:09:96:99:47:d3: f8:b5:43:a2:ce:4e:dd:77:d6:13:f6:8e:26:8f:a9: b7:db:a9:c0:25:e8:c5:ed:f2:2b:bd:5f:13:e0:91: 4d:62:39:a4:5b:3e:5a:d7:71:1f:e7:ef:cd:bf:75: 23:ff:64:d7:dc:6e:f4:0c:b6:ad:03:e2:bd:06:9b: f2:72:a7:82:02:3e:9c:98:3e:95:96:08:ac:c2:26: 36:db:4e:dd:1a:ee:40:66:4a:3e:1d:3d:37:56:3a: 86:82:f4:97:97:f9:b6:e2:9b:0c:8e:12:05:a0:d0: 53:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:F1:5C:B7:7C:BE:0C:1F:70:96:D2:20:B5:92:41:EE:96:55:85:87 X509v3 Authority Key Identifier: keyid:A9:50:C0:F5:B8:30:65:9E:49:94:44:72:90:38:D5:D2:04:78:59:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/A950C0F5B830659E499444729038D5D2047859FB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A950C0F5B830659E499444729038D5D2047859FB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/3136302e32322e33372e302f32342d3234203d3e20313532373933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.37.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:0b:1c:09:a8:e1:ec:0e:8b:ec:82:aa:17:db:66:da:66:5c: 63:02:05:d1:19:48:3d:84:3d:b8:3c:d8:54:a0:1e:62:59:6d: 5f:5f:d4:6c:1a:6a:c7:6a:2a:4d:1a:05:83:e7:83:7c:18:29: c6:5d:fb:49:bc:91:3f:88:97:d3:9e:97:ef:6a:c8:0a:b3:c4: b0:24:bb:97:b3:e8:a3:0c:d7:d5:89:02:b6:8a:37:37:ea:77: 0a:ad:6f:58:84:ba:b0:2d:46:59:44:df:ed:5c:ec:d8:11:3a: 8a:b7:e1:45:96:30:6a:fe:d3:00:d7:07:44:7e:c7:1a:f1:99: 28:2f:54:c7:78:c3:eb:d5:ce:61:21:de:e7:ff:74:e7:0f:5b: 92:ec:c7:d7:1c:f1:10:bb:06:e3:f0:89:8e:08:6f:85:cb:89: 61:fe:ed:87:b7:f7:fe:4a:18:41:3c:b8:04:98:71:a1:5c:a3: ff:0a:20:ad:f7:14:b5:00:79:c2:e7:a7:c0:63:9b:4f:1c:7d: 8d:67:9b:6c:48:ce:65:af:85:8a:1b:0b:bf:cc:8f:e0:9d:eb: f3:20:0c:4d:ae:80:7f:a6:31:d0:38:df:06:30:76:77:0a:02: 85:82:19:fa:0e:26:89:12:fa:ba:4f:ad:b5:47:5d:d0:95:93: 8b:10:ec:98 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTw/Hr8OBrbRrOAIq7ynFAzyUkNYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTk1MEMwRjVCODMwNjU5RTQ5OTQ0NDcyOTAzOEQ1RDIw NDc4NTlGQjAeFw0yNDA2MTExNjA3MDdaFw0yNTA2MTAxNjEyMDdaMDMxMTAvBgNV BAMTKDU0RjE1Q0I3N0NCRTBDMUY3MDk2RDIyMEI1OTI0MUVFOTY1NTg1ODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCniXXFk84VSgax2DfcV5k0LqEb AR+WOFlGErW6TQj32HGl7J2yR3Big9d1U3/uFXaQsKNqBzTHO01A1h5K2ejuOLHA 1EiRydCPdqVjBjrCqReZTH+/2LugyJpwbVWrk8NHvnIVXpHAxbUnwXqn+jcQtHtU 5Ojd2Z4/KoX6UhzPnEk2GdNBuJxhlJvf1AUefZsJlplH0/i1Q6LOTt131hP2jiaP qbfbqcAl6MXt8iu9XxPgkU1iOaRbPlrXcR/n782/dSP/ZNfcbvQMtq0D4r0Gm/Jy p4ICPpyYPpWWCKzCJjbbTt0a7kBmSj4dPTdWOoaC9JeX+bbimwyOEgWg0FNBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUVPFct3y+DB9wltIgtZJB7pZVhYcwHwYDVR0j BBgwFoAUqVDA9bgwZZ5JlERykDjV0gR4WfswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZjU4MmYyYi04NjI1LTRmMzgtYjI2ZS00MmZiZDNjMjFjZjAvMC9BOTUwQzBGNUI4 MzA2NTlFNDk5NDQ0NzI5MDM4RDVEMjA0Nzg1OUZCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQTk1MEMwRjVCODMwNjU5RTQ5OTQ0NDcyOTAzOEQ1RDIwNDc4 NTlGQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhmNTgyZjJiLTg2MjUtNGYzOC1i MjZlLTQyZmJkM2MyMWNmMC8wLzMxMzYzMDJlMzIzMjJlMzMzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM3MzkzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAWJTANBgkqhkiG 9w0BAQsFAAOCAQEAmgscCajh7A6L7IKqF9tm2mZcYwIF0RlIPYQ9uDzYVKAeYllt X1/UbBpqx2oqTRoFg+eDfBgpxl37SbyRP4iX056X72rICrPEsCS7l7PoowzX1YkC too3N+p3Cq1vWIS6sC1GWUTf7Vzs2BE6irfhRZYwav7TANcHRH7HGvGZKC9Ux3jD 69XOYSHe5/905w9bkuzH1xzxELsG4/CJjghvhcuJYf7th7f3/koYQTy4BJhxoVyj /wogrfcUtQB5wuenwGObTxx9jWebbEjOZa+FihsLv8yP4J3r8yAMTa6Af6Yx0Djf BjB2dwoChYIZ+g4miRL6uk+ttUdd0JWTixDsmA== -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org