$ rpki-client -vvf repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/3136302e32322e3235302e302f32332d3233203d3e20313430343536.roa File: 3136302e32322e3235302e302f32332d3233203d3e20313430343536.roa (raw, json) Hash identifier: MO6/lQY/Nl8VnXin+gA+foQOLuvJOUz6SX7TNLs7MqE= Subject key identifier: 45:7E:7A:CD:46:24:7A:D1:CD:99:AE:98:07:FC:89:32:6C:C8:E7:A7 Certificate issuer: /CN=8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36 Certificate serial: 7FF82A6DB9A155F6EC264738D27451911E5FD1CB Authority key identifier: 8E:20:59:B2:D2:44:85:85:D1:1E:D2:B0:14:3F:EF:C0:E9:B2:DA:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.cer Subject info access: rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/3136302e32322e3235302e302f32332d3233203d3e20313430343536.roa Signing time: Fri 01 Nov 2024 06:00:03 +0000 ROA not before: Fri 01 Nov 2024 05:55:03 +0000 ROA not after: Fri 31 Oct 2025 06:00:03 +0000 asID: 140456 IP address blocks: 160.22.250.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.crl rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 16:43:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:f8:2a:6d:b9:a1:55:f6:ec:26:47:38:d2:74:51:91:1e:5f:d1:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36 Validity Not Before: Nov 1 05:55:03 2024 GMT Not After : Oct 31 06:00:03 2025 GMT Subject: CN=457E7ACD46247AD1CD99AE9807FC89326CC8E7A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:08:98:0c:40:ee:72:6e:56:9d:2f:c4:60:de: b7:5b:84:fe:56:c6:fe:bc:8b:ea:59:80:e2:eb:7f: bd:a3:52:e9:e6:ec:96:4d:ad:92:31:4b:42:56:b2: 8e:91:7f:77:7e:8e:4b:b4:fd:b2:d3:a4:e4:5e:b7: 04:7d:82:da:f8:2d:5b:3f:5f:e3:5c:c1:55:e6:6c: 5d:55:8a:10:6a:07:50:79:af:be:28:11:38:dc:d0: c5:e9:12:57:05:6f:6d:12:e3:41:a1:b2:1d:b1:54: ff:48:77:22:4b:b6:f8:8d:51:cc:6c:77:13:c6:19: 9b:7b:1b:bd:34:e2:0e:ae:ed:f1:32:b4:9c:b2:39: ae:52:f6:3c:5a:15:83:ef:45:5a:ab:24:49:b9:9a: c5:84:7e:ff:f8:47:a0:ca:2c:8e:4b:f5:c9:db:66: 09:f3:3c:de:e5:54:37:57:19:49:09:1a:c9:50:cb: 97:ed:43:f4:20:3a:a6:f6:34:9f:b8:ee:52:ca:53: b4:14:f3:fe:6d:4e:ae:1f:46:46:62:23:de:b3:1c: de:49:4f:39:93:dd:bb:59:dc:2e:29:ea:ca:0f:29: 43:b4:49:5c:33:aa:ed:90:cb:7e:eb:c6:69:77:b7: 91:b4:57:09:fc:2a:58:5b:e2:28:03:fc:4c:25:b4: 4d:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:7E:7A:CD:46:24:7A:D1:CD:99:AE:98:07:FC:89:32:6C:C8:E7:A7 X509v3 Authority Key Identifier: keyid:8E:20:59:B2:D2:44:85:85:D1:1E:D2:B0:14:3F:EF:C0:E9:B2:DA:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/3136302e32322e3235302e302f32332d3233203d3e20313430343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.250.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:9d:46:aa:0e:f0:d9:30:4b:bf:26:42:2d:cb:6b:01:e8:e6: 93:3e:ef:4c:ca:c3:38:c8:ef:a2:8b:1c:48:81:ab:6f:75:37: 25:6b:65:4a:fd:38:13:68:2f:a0:bc:5d:92:25:e5:55:a7:49: 61:10:65:ca:27:b4:2f:48:0c:3f:95:41:a8:bb:e5:97:bc:c8: 8c:d9:90:af:92:5a:37:1b:b7:98:fb:89:12:a0:11:7f:76:ae: 51:9c:9f:87:ec:80:57:2e:7f:63:24:df:52:ab:73:c9:db:82: c5:8b:f8:4f:4b:bc:15:ed:84:11:a7:64:1e:41:20:2e:fe:67: c7:b9:06:b1:f1:a4:d5:a7:5b:3c:7c:57:22:86:f9:80:fc:1a: 02:d8:0b:bc:3b:4b:d4:46:4b:4c:ec:bc:37:e9:4c:16:97:81: 1d:df:4a:dd:d6:8f:28:89:57:d7:08:c4:7f:52:27:70:c2:a3: cd:5d:27:23:0a:2a:de:d4:78:24:fc:2d:aa:a2:8e:60:63:96: 95:dc:f1:12:dd:8f:f0:db:16:8a:d8:e7:55:9b:ae:d6:7e:37: 73:2f:d8:11:61:70:fe:12:7c:31:f8:16:9f:21:82:27:01:45: 07:18:59:51:e5:b8:43:8a:48:02:ce:c4:2c:b0:5a:94:4e:0b: cb:1c:fb:47 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUf/gqbbmhVfbsJkc40nRRkR5f0cswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUyMDU5QjJEMjQ0ODU4NUQxMUVEMkIwMTQzRkVGQzBF OUIyREEzNjAeFw0yNDExMDEwNTU1MDNaFw0yNTEwMzEwNjAwMDNaMDMxMTAvBgNV BAMTKDQ1N0U3QUNENDYyNDdBRDFDRDk5QUU5ODA3RkM4OTMyNkNDOEU3QTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6CJgMQO5ybladL8Rg3rdbhP5W xv68i+pZgOLrf72jUunm7JZNrZIxS0JWso6Rf3d+jku0/bLTpORetwR9gtr4LVs/ X+NcwVXmbF1VihBqB1B5r74oETjc0MXpElcFb20S40Ghsh2xVP9IdyJLtviNUcxs dxPGGZt7G7004g6u7fEytJyyOa5S9jxaFYPvRVqrJEm5msWEfv/4R6DKLI5L9cnb ZgnzPN7lVDdXGUkJGslQy5ftQ/QgOqb2NJ+47lLKU7QU8/5tTq4fRkZiI96zHN5J TzmT3btZ3C4p6soPKUO0SVwzqu2Qy37rxml3t5G0Vwn8Klhb4igD/EwltE2RAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURX56zUYketHNma6YB/yJMmzI56cwHwYDVR0j BBgwFoAUjiBZstJEhYXRHtKwFD/vwOmy2jYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MDhhYjE1Ny1kODI3LTQ5YTgtYmI4Ni0yOGJlMTMxYzNkMjYvMC84RTIwNTlCMkQy NDQ4NTg1RDExRUQyQjAxNDNGRUZDMEU5QjJEQTM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOEUyMDU5QjJEMjQ0ODU4NUQxMUVEMkIwMTQzRkVGQzBFOUIy REEzNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkwOGFiMTU3LWQ4MjctNDlhOC1i Yjg2LTI4YmUxMzFjM2QyNi8wLzMxMzYzMDJlMzIzMjJlMzIzNTMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMwMzQzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBb6MA0GCSqG SIb3DQEBCwUAA4IBAQBfnUaqDvDZMEu/JkIty2sB6OaTPu9MysM4yO+iixxIgatv dTcla2VK/TgTaC+gvF2SJeVVp0lhEGXKJ7QvSAw/lUGou+WXvMiM2ZCvklo3G7eY +4kSoBF/dq5RnJ+H7IBXLn9jJN9Sq3PJ24LFi/hPS7wV7YQRp2QeQSAu/mfHuQax 8aTVp1s8fFcihvmA/BoC2Au8O0vURktM7Lw36UwWl4Ed30rd1o8oiVfXCMR/Uidw wqPNXScjCire1Hgk/C2qoo5gY5aV3PES3Y/w2xaK2OdVm67WfjdzL9gRYXD+Enwx +BafIYInAUUHGFlR5bhDikgCzsQssFqUTgvLHPtH -----END CERTIFICATE-----Generated at Fri Nov 22 15:22:19 2024 by rpki-client on console-fra.rpki-client.org