$ rpki-client -vvf repo-rpki.idnic.net/repo/9c1b4c38-7747-45fc-a590-cac52163d538/0/3136302e32322e3230342e302f32342d3234203d3e20313533313034.roa File: 3136302e32322e3230342e302f32342d3234203d3e20313533313034.roa (raw, json) Hash identifier: szMURNdFUqxYqnRoh3vpxUbYvQoQdMVwZ3qiHO0mD48= Subject key identifier: ED:61:BF:08:5C:DF:BD:2B:FB:46:51:6E:C7:88:74:EF:6E:C6:C2:47 Certificate issuer: /CN=0A1BFCE6761D8B7FB209F7CF9ED1B3DAF0603612 Certificate serial: 77A341D94396194B3CFC0A8FF54C21B83303ADE9 Authority key identifier: 0A:1B:FC:E6:76:1D:8B:7F:B2:09:F7:CF:9E:D1:B3:DA:F0:60:36:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0A1BFCE6761D8B7FB209F7CF9ED1B3DAF0603612.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9c1b4c38-7747-45fc-a590-cac52163d538/0/3136302e32322e3230342e302f32342d3234203d3e20313533313034.roa Signing time: Sat 24 Aug 2024 14:07:38 +0000 ROA not before: Sat 24 Aug 2024 14:02:38 +0000 ROA not after: Sat 23 Aug 2025 14:07:38 +0000 asID: 153104 IP address blocks: 160.22.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9c1b4c38-7747-45fc-a590-cac52163d538/0/0A1BFCE6761D8B7FB209F7CF9ED1B3DAF0603612.crl rsync://repo-rpki.idnic.net/repo/9c1b4c38-7747-45fc-a590-cac52163d538/0/0A1BFCE6761D8B7FB209F7CF9ED1B3DAF0603612.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0A1BFCE6761D8B7FB209F7CF9ED1B3DAF0603612.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 12:10:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:a3:41:d9:43:96:19:4b:3c:fc:0a:8f:f5:4c:21:b8:33:03:ad:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A1BFCE6761D8B7FB209F7CF9ED1B3DAF0603612 Validity Not Before: Aug 24 14:02:38 2024 GMT Not After : Aug 23 14:07:38 2025 GMT Subject: CN=ED61BF085CDFBD2BFB46516EC78874EF6EC6C247 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e4:87:a4:ed:69:0f:0b:48:46:d7:fc:6e:89: bc:8c:0c:93:a4:7e:6c:17:c7:e4:b4:f0:42:c4:71: 87:d2:7a:4c:58:f0:cb:72:b8:07:89:a1:49:cd:02: 43:c3:69:84:b6:a4:af:37:14:f1:91:a0:e4:eb:97: 5b:69:f5:71:de:18:e5:8a:96:f2:04:ca:17:6a:8e: 23:98:7d:a9:e1:6b:ce:35:0b:2e:e2:50:e0:14:3c: 58:31:f5:3e:e0:d6:2e:47:15:ff:4e:14:44:50:c7: da:c8:09:14:32:b2:57:81:31:d2:c9:83:45:27:f1: 8b:c1:ed:96:18:cb:90:e5:23:8b:47:23:ea:e8:03: f5:49:eb:e1:10:98:f1:a9:6e:9c:ab:07:fc:5d:f4: 92:1e:ee:2a:6e:36:2a:27:08:85:5a:8e:78:61:de: ee:92:3f:04:c4:00:d3:7d:b7:5a:1a:b3:b7:bc:5a: 1d:41:39:0a:c5:2f:3f:ef:f1:53:23:9e:70:7e:6c: 49:58:29:f7:fd:65:58:4e:a7:1f:35:77:bc:91:71: 29:99:47:bf:b1:bf:44:17:b5:d1:8d:26:bb:57:a1: 4d:59:fe:28:39:e3:02:bb:30:05:6f:40:c7:a3:97: 2c:74:97:f5:11:1e:5f:53:86:79:1c:94:9d:2f:d1: 57:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:61:BF:08:5C:DF:BD:2B:FB:46:51:6E:C7:88:74:EF:6E:C6:C2:47 X509v3 Authority Key Identifier: keyid:0A:1B:FC:E6:76:1D:8B:7F:B2:09:F7:CF:9E:D1:B3:DA:F0:60:36:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9c1b4c38-7747-45fc-a590-cac52163d538/0/0A1BFCE6761D8B7FB209F7CF9ED1B3DAF0603612.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0A1BFCE6761D8B7FB209F7CF9ED1B3DAF0603612.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9c1b4c38-7747-45fc-a590-cac52163d538/0/3136302e32322e3230342e302f32342d3234203d3e20313533313034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.204.0/24 Signature Algorithm: sha256WithRSAEncryption 79:17:76:42:a2:ff:da:76:9c:3e:46:f6:db:1a:eb:e8:13:56: 34:ec:6d:28:89:e8:cf:93:b0:c3:9f:76:40:6a:65:96:fc:41: ff:1e:e5:28:c3:78:a3:38:2e:c1:93:18:58:f6:9d:17:e5:05: 34:37:01:e2:7b:ab:9f:0f:5a:8e:81:b4:b6:53:91:d0:0f:21: f4:82:d6:ee:cc:e7:13:d3:92:eb:40:55:09:38:46:0d:f1:44: 8f:45:c3:2b:5f:37:32:19:d1:cf:f7:d2:b8:e8:4f:57:fb:9f: 0e:4d:d7:8f:07:d3:11:d7:13:1e:9c:46:9b:3b:97:c4:b7:3a: 9a:86:cb:85:0c:ee:e3:b1:5e:3e:03:7a:3a:e4:ea:20:1b:a6: ce:e7:95:7b:e8:8d:81:9d:25:01:b7:43:d8:2c:46:be:0a:23: a6:8b:69:3c:13:89:ec:61:9e:c6:77:23:79:84:41:e5:1f:2c: 86:ff:45:ac:a7:cd:b7:e1:10:93:d7:9e:36:5a:6b:7f:cc:31: 51:b7:85:9a:1d:89:6a:31:f0:16:ab:15:5c:7e:bb:87:99:e9: 00:3f:b6:19:ac:f4:5c:b3:9a:0f:2b:80:fd:52:f1:1f:05:59: 51:7c:8f:0e:16:35:24:eb:2b:5f:79:db:63:c9:94:3a:d2:06: f8:c3:47:64 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUd6NB2UOWGUs8/AqP9UwhuDMDrekwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEExQkZDRTY3NjFEOEI3RkIyMDlGN0NGOUVEMUIzREFG MDYwMzYxMjAeFw0yNDA4MjQxNDAyMzhaFw0yNTA4MjMxNDA3MzhaMDMxMTAvBgNV BAMTKEVENjFCRjA4NUNERkJEMkJGQjQ2NTE2RUM3ODg3NEVGNkVDNkMyNDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO5Iek7WkPC0hG1/xuibyMDJOk fmwXx+S08ELEcYfSekxY8MtyuAeJoUnNAkPDaYS2pK83FPGRoOTrl1tp9XHeGOWK lvIEyhdqjiOYfanha841Cy7iUOAUPFgx9T7g1i5HFf9OFERQx9rICRQysleBMdLJ g0Un8YvB7ZYYy5DlI4tHI+roA/VJ6+EQmPGpbpyrB/xd9JIe7ipuNionCIVajnhh 3u6SPwTEANN9t1oas7e8Wh1BOQrFLz/v8VMjnnB+bElYKff9ZVhOpx81d7yRcSmZ R7+xv0QXtdGNJrtXoU1Z/ig54wK7MAVvQMejlyx0l/URHl9ThnkclJ0v0Ve5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7WG/CFzfvSv7RlFux4h0727GwkcwHwYDVR0j BBgwFoAUChv85nYdi3+yCffPntGz2vBgNhIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YzFiNGMzOC03NzQ3LTQ1ZmMtYTU5MC1jYWM1MjE2M2Q1MzgvMC8wQTFCRkNFNjc2 MUQ4QjdGQjIwOUY3Q0Y5RUQxQjNEQUYwNjAzNjEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMEExQkZDRTY3NjFEOEI3RkIyMDlGN0NGOUVEMUIzREFGMDYw MzYxMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzljMWI0YzM4LTc3NDctNDVmYy1h NTkwLWNhYzUyMTYzZDUzOC8wLzMxMzYzMDJlMzIzMjJlMzIzMDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzEzMDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBbMMA0GCSqG SIb3DQEBCwUAA4IBAQB5F3ZCov/adpw+RvbbGuvoE1Y07G0oiejPk7DDn3ZAamWW /EH/HuUow3ijOC7BkxhY9p0X5QU0NwHie6ufD1qOgbS2U5HQDyH0gtbuzOcT05Lr QFUJOEYN8USPRcMrXzcyGdHP99K46E9X+58OTdePB9MR1xMenEabO5fEtzqahsuF DO7jsV4+A3o65OogG6bO55V76I2BnSUBt0PYLEa+CiOmi2k8E4nsYZ7GdyN5hEHl HyyG/0Wsp8234RCT1542Wmt/zDFRt4WaHYlqMfAWqxVcfruHmekAP7YZrPRcs5oP K4D9UvEfBVlRfI8OFjUk6ytfedtjyZQ60gb4w0dk -----END CERTIFICATE-----Generated at Thu Nov 28 16:11:08 2024 by rpki-client on console-fra.rpki-client.org