$ rpki-client -vvf repo-rpki.idnic.net/repo/9f30e4ae-3e47-4540-823c-53caf2267b36/0/3136302e32322e3139392e302f32342d3234203d3e20313532383336.roa File: 3136302e32322e3139392e302f32342d3234203d3e20313532383336.roa (raw, json) Hash identifier: KK4iDt8fTsMGcROdReawd5n4c23gZEw7aOn4pQj9/68= Subject key identifier: 45:55:2E:1A:98:E7:F6:C3:AB:B9:93:77:24:DA:62:EA:E7:A8:E4:7A Certificate issuer: /CN=A7E6C62C47C02EEA32422E135908EBF230C5B5FA Certificate serial: 16FD5A878D2BE5A056166620FE8DFD11259CB275 Authority key identifier: A7:E6:C6:2C:47:C0:2E:EA:32:42:2E:13:59:08:EB:F2:30:C5:B5:FA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A7E6C62C47C02EEA32422E135908EBF230C5B5FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9f30e4ae-3e47-4540-823c-53caf2267b36/0/3136302e32322e3139392e302f32342d3234203d3e20313532383336.roa Signing time: Thu 29 Aug 2024 17:28:42 +0000 ROA not before: Thu 29 Aug 2024 17:23:42 +0000 ROA not after: Thu 28 Aug 2025 17:28:42 +0000 asID: 152836 IP address blocks: 160.22.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9f30e4ae-3e47-4540-823c-53caf2267b36/0/A7E6C62C47C02EEA32422E135908EBF230C5B5FA.crl rsync://repo-rpki.idnic.net/repo/9f30e4ae-3e47-4540-823c-53caf2267b36/0/A7E6C62C47C02EEA32422E135908EBF230C5B5FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A7E6C62C47C02EEA32422E135908EBF230C5B5FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:fd:5a:87:8d:2b:e5:a0:56:16:66:20:fe:8d:fd:11:25:9c:b2:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A7E6C62C47C02EEA32422E135908EBF230C5B5FA Validity Not Before: Aug 29 17:23:42 2024 GMT Not After : Aug 28 17:28:42 2025 GMT Subject: CN=45552E1A98E7F6C3ABB9937724DA62EAE7A8E47A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:fe:4b:37:0c:a8:a2:b8:64:09:17:67:a0:f6: 58:19:58:35:d9:40:dd:f6:09:2b:8d:83:67:21:c6: ee:d9:e3:2c:4c:30:64:a4:66:39:ee:2c:ea:64:e9: 35:fc:11:7d:cc:4e:b4:7a:f4:ad:73:35:59:38:37: e8:de:ee:fa:b9:96:8c:03:2f:f7:a1:c4:71:79:8e: c4:e0:0c:99:eb:c4:bb:f7:cc:5c:1d:27:8d:15:c5: ef:50:3b:e1:d2:4d:c2:15:c1:2e:16:48:c3:68:7d: 71:72:7b:c9:34:24:9f:02:e3:1a:85:ad:6d:3d:32: 08:63:0b:c2:3b:b3:66:62:c8:86:ed:4f:bb:a6:5e: e0:dd:47:f8:b4:96:26:70:13:e1:17:5e:5b:7c:d7: 79:44:07:78:fc:3a:48:be:00:66:58:02:28:d7:14: 20:16:26:24:6b:5e:54:a6:0a:b7:3d:1c:63:b0:25: 9b:1e:1f:92:cc:fd:06:2d:b2:b6:d9:d5:64:b3:de: ea:7c:3f:67:4f:d5:6f:11:95:5d:94:77:6d:69:eb: cb:24:eb:ff:c4:1b:77:b2:e5:af:0c:62:90:76:e0: 5f:96:50:b0:3f:3f:f1:86:57:23:e2:c4:9d:ca:37: 5f:2e:c1:43:32:8d:a6:cc:64:00:b6:75:6f:7f:eb: 14:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:55:2E:1A:98:E7:F6:C3:AB:B9:93:77:24:DA:62:EA:E7:A8:E4:7A X509v3 Authority Key Identifier: keyid:A7:E6:C6:2C:47:C0:2E:EA:32:42:2E:13:59:08:EB:F2:30:C5:B5:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9f30e4ae-3e47-4540-823c-53caf2267b36/0/A7E6C62C47C02EEA32422E135908EBF230C5B5FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A7E6C62C47C02EEA32422E135908EBF230C5B5FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9f30e4ae-3e47-4540-823c-53caf2267b36/0/3136302e32322e3139392e302f32342d3234203d3e20313532383336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.199.0/24 Signature Algorithm: sha256WithRSAEncryption 81:c1:b1:14:5d:5b:bd:d6:f6:8a:f9:bc:01:3d:f2:62:7d:59: e2:a1:99:a4:d8:86:78:a1:e5:d1:e4:91:ff:7b:5c:90:0b:43: e0:ed:d4:6e:88:21:01:9f:b8:84:84:e1:d5:e8:24:69:f3:09: 40:13:83:21:f4:e7:9c:c3:36:8d:6f:a1:58:ca:c9:1d:60:47: 7d:9d:c9:c1:4e:ed:74:66:db:72:e2:a2:b6:81:ee:8d:7e:fa: dd:48:33:fb:e2:54:3e:f1:84:b0:82:41:4b:0c:fe:ea:df:d7: a1:77:84:20:51:d9:31:86:fd:1c:7c:11:ee:8b:19:f4:f0:d6: e8:46:31:99:c1:2c:98:5d:4e:b7:76:e8:16:f1:d1:bf:20:42: 57:96:a5:82:3a:37:0d:dd:7d:b7:65:cb:a5:ed:85:23:a9:0d: 7b:c1:65:14:69:00:04:a1:c4:58:f0:10:3a:83:73:8c:6f:ca: aa:1b:8c:41:c4:68:b1:60:69:72:4a:7f:18:13:9e:66:39:01: 3b:2d:77:a1:0c:82:15:af:a9:04:47:68:04:47:6a:cd:df:2c: 6a:24:97:71:7f:07:81:cd:ab:27:c4:64:77:78:6c:12:bc:32: 65:54:21:3a:17:9b:1a:62:b4:3a:c7:60:a6:ac:51:ad:cc:7f: fb:a4:78:65 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFv1ah40r5aBWFmYg/o39ESWcsnUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTdFNkM2MkM0N0MwMkVFQTMyNDIyRTEzNTkwOEVCRjIz MEM1QjVGQTAeFw0yNDA4MjkxNzIzNDJaFw0yNTA4MjgxNzI4NDJaMDMxMTAvBgNV BAMTKDQ1NTUyRTFBOThFN0Y2QzNBQkI5OTM3NzI0REE2MkVBRTdBOEU0N0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDm/ks3DKiiuGQJF2eg9lgZWDXZ QN32CSuNg2chxu7Z4yxMMGSkZjnuLOpk6TX8EX3MTrR69K1zNVk4N+je7vq5lowD L/ehxHF5jsTgDJnrxLv3zFwdJ40Vxe9QO+HSTcIVwS4WSMNofXFye8k0JJ8C4xqF rW09MghjC8I7s2ZiyIbtT7umXuDdR/i0liZwE+EXXlt813lEB3j8Oki+AGZYAijX FCAWJiRrXlSmCrc9HGOwJZseH5LM/QYtsrbZ1WSz3up8P2dP1W8RlV2Ud21p68sk 6//EG3ey5a8MYpB24F+WULA/P/GGVyPixJ3KN18uwUMyjabMZAC2dW9/6xT1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURVUuGpjn9sOruZN3JNpi6ueo5HowHwYDVR0j BBgwFoAUp+bGLEfALuoyQi4TWQjr8jDFtfowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZjMwZTRhZS0zZTQ3LTQ1NDAtODIzYy01M2NhZjIyNjdiMzYvMC9BN0U2QzYyQzQ3 QzAyRUVBMzI0MjJFMTM1OTA4RUJGMjMwQzVCNUZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQTdFNkM2MkM0N0MwMkVFQTMyNDIyRTEzNTkwOEVCRjIzMEM1 QjVGQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlmMzBlNGFlLTNlNDctNDU0MC04 MjNjLTUzY2FmMjI2N2IzNi8wLzMxMzYzMDJlMzIzMjJlMzEzOTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBbHMA0GCSqG SIb3DQEBCwUAA4IBAQCBwbEUXVu91vaK+bwBPfJifVnioZmk2IZ4oeXR5JH/e1yQ C0Pg7dRuiCEBn7iEhOHV6CRp8wlAE4Mh9OecwzaNb6FYyskdYEd9ncnBTu10Ztty 4qK2ge6NfvrdSDP74lQ+8YSwgkFLDP7q39ehd4QgUdkxhv0cfBHuixn08NboRjGZ wSyYXU63dugW8dG/IEJXlqWCOjcN3X23Zcul7YUjqQ17wWUUaQAEocRY8BA6g3OM b8qqG4xBxGixYGlySn8YE55mOQE7LXehDIIVr6kER2gER2rN3yxqJJdxfweBzasn xGR3eGwSvDJlVCE6F5saYrQ6x2CmrFGtzH/7pHhl -----END CERTIFICATE-----Generated at Sat Nov 23 16:20:59 2024 by rpki-client on console-ams.rpki-client.org