$ rpki-client -vvf repo-rpki.idnic.net/repo/9db927df-bc9c-4be6-a1fa-2e125c469f71/0/3136302e32322e36362e302f32342d3234203d3e20313532383134.roa File: 3136302e32322e36362e302f32342d3234203d3e20313532383134.roa (raw, json) Hash identifier: Nt9qLfTDr0UpJAVtWSyKuAtUsz1EA6jNL3P3TZGVw9Y= Subject key identifier: E6:94:DD:E7:AE:B5:0B:75:24:99:34:31:09:C9:84:3F:89:CD:A4:DC Certificate issuer: /CN=9EE9E8715DE7A995273D27BD16FBF33DC09CF652 Certificate serial: 0E29A6AD8C76A680861E89C84CB7BE92A0F0856A Authority key identifier: 9E:E9:E8:71:5D:E7:A9:95:27:3D:27:BD:16:FB:F3:3D:C0:9C:F6:52 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9EE9E8715DE7A995273D27BD16FBF33DC09CF652.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9db927df-bc9c-4be6-a1fa-2e125c469f71/0/3136302e32322e36362e302f32342d3234203d3e20313532383134.roa Signing time: Tue 16 Jul 2024 08:52:33 +0000 ROA not before: Tue 16 Jul 2024 08:47:33 +0000 ROA not after: Tue 15 Jul 2025 08:52:33 +0000 asID: 152814 IP address blocks: 160.22.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9db927df-bc9c-4be6-a1fa-2e125c469f71/0/9EE9E8715DE7A995273D27BD16FBF33DC09CF652.crl rsync://repo-rpki.idnic.net/repo/9db927df-bc9c-4be6-a1fa-2e125c469f71/0/9EE9E8715DE7A995273D27BD16FBF33DC09CF652.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9EE9E8715DE7A995273D27BD16FBF33DC09CF652.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:29:a6:ad:8c:76:a6:80:86:1e:89:c8:4c:b7:be:92:a0:f0:85:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9EE9E8715DE7A995273D27BD16FBF33DC09CF652 Validity Not Before: Jul 16 08:47:33 2024 GMT Not After : Jul 15 08:52:33 2025 GMT Subject: CN=E694DDE7AEB50B752499343109C9843F89CDA4DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:16:a5:92:db:b6:81:aa:9a:71:15:74:ad:68: 36:61:8d:bd:3b:8e:bc:1f:f3:73:06:13:cf:83:d1: e7:3d:8e:d0:c5:16:81:7b:c7:09:17:ba:8f:1f:20: 72:51:96:4d:37:59:63:09:4e:b1:83:17:55:eb:cf: ce:43:b9:6d:0f:8f:bc:dc:80:83:65:17:a1:e7:2a: e8:bf:ab:98:c0:22:9e:93:15:6f:43:45:c9:09:df: 8c:89:15:c3:f3:86:0b:7e:a8:dc:cf:99:4b:c7:10: 2f:31:50:c7:84:09:68:25:17:48:63:c4:6a:cf:ab: 25:f9:8f:a2:f2:c4:ef:77:56:9e:f5:84:1b:84:3d: cf:7c:20:9b:3c:81:5e:38:14:96:bd:5e:d9:33:7f: b1:ab:b4:94:3d:c2:48:c5:43:e3:54:57:ce:2e:b8: 77:28:72:5c:05:6e:c6:72:64:2c:dc:ec:3e:57:05: c7:33:ac:b9:fb:b3:53:a4:ee:b2:b5:63:70:da:19: a5:fc:f6:58:3d:5c:95:33:44:60:31:78:4c:b6:82: 40:15:76:ab:9b:e2:c0:30:20:0b:61:be:97:03:c3: bc:c4:a3:d2:d8:c7:b2:59:ae:9e:0b:1e:11:97:c4: 13:4c:f3:19:07:af:e0:25:bd:b8:2c:b9:f5:11:b4: 6f:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:94:DD:E7:AE:B5:0B:75:24:99:34:31:09:C9:84:3F:89:CD:A4:DC X509v3 Authority Key Identifier: keyid:9E:E9:E8:71:5D:E7:A9:95:27:3D:27:BD:16:FB:F3:3D:C0:9C:F6:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9db927df-bc9c-4be6-a1fa-2e125c469f71/0/9EE9E8715DE7A995273D27BD16FBF33DC09CF652.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9EE9E8715DE7A995273D27BD16FBF33DC09CF652.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9db927df-bc9c-4be6-a1fa-2e125c469f71/0/3136302e32322e36362e302f32342d3234203d3e20313532383134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.66.0/24 Signature Algorithm: sha256WithRSAEncryption 32:cb:a4:65:15:11:79:80:85:e5:df:35:43:e7:10:79:1b:d9: ca:1d:0d:65:e0:17:84:b1:24:26:41:12:ce:14:5b:f6:37:4c: ec:f4:14:4b:bd:be:f1:69:c2:3a:9c:80:1b:de:63:9d:53:e4: 2b:77:dc:59:99:59:21:1c:3e:e2:22:5e:57:0c:da:bc:db:1e: de:f8:c2:06:36:ab:80:03:6e:94:cb:26:32:ec:b8:7f:b8:98: 88:b4:3b:15:94:a1:ee:65:3c:17:4b:77:07:9d:bf:4d:1d:04: 01:c0:7b:ca:31:2a:a3:4d:4e:0f:db:67:40:8c:0d:64:c7:e4: 64:88:94:c5:2b:00:ab:11:82:2f:72:06:74:b4:40:9b:61:81: f5:87:12:15:bf:9c:e0:7a:58:e9:5d:eb:00:ec:e4:dc:a6:45: 18:da:db:f0:67:9e:da:4c:93:b9:a4:32:da:ce:42:49:2a:6f: b0:1f:cc:1b:83:86:21:1d:11:de:50:91:e7:a2:2b:2c:d2:bd: a1:9f:c5:b7:d5:d0:1a:f1:30:8c:9b:37:30:a1:6d:45:a1:b2: e8:eb:e0:07:76:a4:db:59:45:70:58:f2:42:b0:d2:5a:56:a5: fd:21:2b:eb:d7:84:2e:92:1b:a1:57:20:e0:31:0c:4f:bc:37: 62:22:5c:5d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDimmrYx2poCGHonITLe+kqDwhWowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUVFOUU4NzE1REU3QTk5NTI3M0QyN0JEMTZGQkYzM0RD MDlDRjY1MjAeFw0yNDA3MTYwODQ3MzNaFw0yNTA3MTUwODUyMzNaMDMxMTAvBgNV BAMTKEU2OTREREU3QUVCNTBCNzUyNDk5MzQzMTA5Qzk4NDNGODlDREE0REMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwFqWS27aBqppxFXStaDZhjb07 jrwf83MGE8+D0ec9jtDFFoF7xwkXuo8fIHJRlk03WWMJTrGDF1Xrz85DuW0Pj7zc gINlF6HnKui/q5jAIp6TFW9DRckJ34yJFcPzhgt+qNzPmUvHEC8xUMeECWglF0hj xGrPqyX5j6LyxO93Vp71hBuEPc98IJs8gV44FJa9Xtkzf7GrtJQ9wkjFQ+NUV84u uHcoclwFbsZyZCzc7D5XBcczrLn7s1Ok7rK1Y3DaGaX89lg9XJUzRGAxeEy2gkAV dqub4sAwIAthvpcDw7zEo9LYx7JZrp4LHhGXxBNM8xkHr+AlvbgsufURtG9jAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU5pTd5661C3UkmTQxCcmEP4nNpNwwHwYDVR0j BBgwFoAUnunocV3nqZUnPSe9FvvzPcCc9lIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZGI5MjdkZi1iYzljLTRiZTYtYTFmYS0yZTEyNWM0NjlmNzEvMC85RUU5RTg3MTVE RTdBOTk1MjczRDI3QkQxNkZCRjMzREMwOUNGNjUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUVFOUU4NzE1REU3QTk5NTI3M0QyN0JEMTZGQkYzM0RDMDlD RjY1Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlkYjkyN2RmLWJjOWMtNGJlNi1h MWZhLTJlMTI1YzQ2OWY3MS8wLzMxMzYzMDJlMzIzMjJlMzYzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzEzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAWQjANBgkqhkiG 9w0BAQsFAAOCAQEAMsukZRUReYCF5d81Q+cQeRvZyh0NZeAXhLEkJkESzhRb9jdM 7PQUS72+8WnCOpyAG95jnVPkK3fcWZlZIRw+4iJeVwzavNse3vjCBjargANulMsm Muy4f7iYiLQ7FZSh7mU8F0t3B52/TR0EAcB7yjEqo01OD9tnQIwNZMfkZIiUxSsA qxGCL3IGdLRAm2GB9YcSFb+c4HpY6V3rAOzk3KZFGNrb8Gee2kyTuaQy2s5CSSpv sB/MG4OGIR0R3lCR56IrLNK9oZ/Ft9XQGvEwjJs3MKFtRaGy6OvgB3ak21lFcFjy QrDSWlal/SEr69eELpIboVcg4DEMT7w3YiJcXQ== -----END CERTIFICATE-----Generated at Sun Nov 24 18:20:19 2024 by rpki-client on console-ams.rpki-client.org