$ rpki-client -vvf repo-rpki.idnic.net/repo/a9b8152e-aa86-4d8a-81da-e71086b2956c/0/3136302e32302e3234342e302f32342d3234203d3e20313532373939.roa File: 3136302e32302e3234342e302f32342d3234203d3e20313532373939.roa (raw, json) Hash identifier: thcrqGuYAGyt3mKNgShgWyqLoLYzUIjX7Ch0ut3CYH8= Subject key identifier: 35:6D:48:FF:BD:09:3B:6C:26:28:F7:72:15:D6:D6:56:1C:2E:D2:0A Certificate issuer: /CN=A603F8DE41A0C254133C531FFB98C664160BB962 Certificate serial: 0454D405173B22164905B37E2FEFD3DB1654456C Authority key identifier: A6:03:F8:DE:41:A0:C2:54:13:3C:53:1F:FB:98:C6:64:16:0B:B9:62 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A603F8DE41A0C254133C531FFB98C664160BB962.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a9b8152e-aa86-4d8a-81da-e71086b2956c/0/3136302e32302e3234342e302f32342d3234203d3e20313532373939.roa Signing time: Sun 23 Jun 2024 16:50:43 +0000 ROA not before: Sun 23 Jun 2024 16:45:43 +0000 ROA not after: Sun 22 Jun 2025 16:50:43 +0000 asID: 152799 IP address blocks: 160.20.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a9b8152e-aa86-4d8a-81da-e71086b2956c/0/A603F8DE41A0C254133C531FFB98C664160BB962.crl rsync://repo-rpki.idnic.net/repo/a9b8152e-aa86-4d8a-81da-e71086b2956c/0/A603F8DE41A0C254133C531FFB98C664160BB962.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A603F8DE41A0C254133C531FFB98C664160BB962.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:54:d4:05:17:3b:22:16:49:05:b3:7e:2f:ef:d3:db:16:54:45:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A603F8DE41A0C254133C531FFB98C664160BB962 Validity Not Before: Jun 23 16:45:43 2024 GMT Not After : Jun 22 16:50:43 2025 GMT Subject: CN=356D48FFBD093B6C2628F77215D6D6561C2ED20A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:88:73:c4:4e:92:44:06:07:d2:7b:fa:1d:ce: 7c:04:d2:db:b3:64:91:04:fb:13:da:f3:7b:67:a8: 87:32:7d:fc:11:3b:a5:10:48:45:53:2d:0c:08:3c: e4:c4:1d:00:7e:c5:7d:7a:58:a8:39:83:59:23:dc: c4:f3:65:0a:13:15:c0:ec:11:d3:51:a0:2d:f4:17: fd:56:89:3a:19:78:41:5e:5e:ba:70:87:b6:36:ef: bf:45:e6:d3:22:44:c8:b9:ea:ff:2b:8e:ff:4e:e2: ee:a0:0c:d2:40:5b:15:7f:10:f7:0f:ad:df:3c:dc: e4:21:0d:0b:07:21:8b:07:51:1c:23:20:28:8b:62: dc:cb:c2:dd:21:7c:4e:98:70:69:81:0e:da:53:7c: c5:b0:61:54:9a:f8:73:c4:03:8a:7c:88:64:7b:4e: b0:2b:a8:92:82:c9:bc:dd:c0:dc:f6:fd:89:0b:96: b7:93:bd:c3:47:df:25:b0:8d:78:0d:df:d2:96:d6: 31:f4:2f:a8:f3:0f:a0:ce:41:a5:7e:3b:04:90:7b: 17:d9:17:97:4a:a5:11:35:55:a8:47:1b:bb:79:1d: f1:1e:77:f2:b0:8e:56:06:68:03:5c:ee:18:3d:bd: 8f:af:4c:ff:70:4a:78:f4:04:17:14:5c:0a:ff:31: c0:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:6D:48:FF:BD:09:3B:6C:26:28:F7:72:15:D6:D6:56:1C:2E:D2:0A X509v3 Authority Key Identifier: keyid:A6:03:F8:DE:41:A0:C2:54:13:3C:53:1F:FB:98:C6:64:16:0B:B9:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a9b8152e-aa86-4d8a-81da-e71086b2956c/0/A603F8DE41A0C254133C531FFB98C664160BB962.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A603F8DE41A0C254133C531FFB98C664160BB962.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a9b8152e-aa86-4d8a-81da-e71086b2956c/0/3136302e32302e3234342e302f32342d3234203d3e20313532373939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.20.244.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:f7:c0:84:bc:71:1a:f8:e3:c0:01:e2:8f:0a:22:33:64:f9: c6:40:00:59:a9:49:bd:57:57:2c:87:a7:c3:0b:78:83:87:42: b6:b5:53:c6:5b:98:3d:4f:74:68:13:d2:72:bd:09:5c:d2:c3: 16:03:73:b5:9c:32:0d:07:46:d8:bb:ec:d6:fa:4a:cf:80:49: f7:73:20:2f:c4:36:8c:a7:14:f0:1c:31:58:12:8a:87:ec:a4: 7a:a7:de:af:71:8e:e6:3e:09:7f:bf:e7:46:e7:eb:0f:ec:65: d5:38:cf:f8:40:b7:3b:3f:1d:79:3b:5f:6b:f6:3b:59:ab:94: d1:28:a1:f8:44:3d:78:5a:29:44:52:e2:e8:0f:39:cb:cc:e7: 31:24:d0:a1:26:77:a2:28:03:1c:d8:e7:4b:34:ce:de:2a:80: 05:9d:0e:17:05:9f:ca:dd:24:c5:9c:f5:56:c8:26:75:ad:1b: ad:be:6c:35:26:79:00:55:84:13:e9:67:d6:a0:e6:44:52:03: 24:9e:04:f3:58:83:bf:24:db:dc:e5:72:72:36:cd:da:42:c2: 4f:5b:87:84:2b:f0:25:2a:1a:b7:61:25:f3:cc:a9:5e:5b:1e: de:64:f5:db:69:c2:77:de:fe:f6:36:f0:fc:8b:9f:ff:7b:17: 94:da:34:f0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBFTUBRc7IhZJBbN+L+/T2xZURWwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTYwM0Y4REU0MUEwQzI1NDEzM0M1MzFGRkI5OEM2NjQx NjBCQjk2MjAeFw0yNDA2MjMxNjQ1NDNaFw0yNTA2MjIxNjUwNDNaMDMxMTAvBgNV BAMTKDM1NkQ0OEZGQkQwOTNCNkMyNjI4Rjc3MjE1RDZENjU2MUMyRUQyMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8iHPETpJEBgfSe/odznwE0tuz ZJEE+xPa83tnqIcyffwRO6UQSEVTLQwIPOTEHQB+xX16WKg5g1kj3MTzZQoTFcDs EdNRoC30F/1WiToZeEFeXrpwh7Y2779F5tMiRMi56v8rjv9O4u6gDNJAWxV/EPcP rd883OQhDQsHIYsHURwjICiLYtzLwt0hfE6YcGmBDtpTfMWwYVSa+HPEA4p8iGR7 TrArqJKCybzdwNz2/YkLlreTvcNH3yWwjXgN39KW1jH0L6jzD6DOQaV+OwSQexfZ F5dKpRE1VahHG7t5HfEed/KwjlYGaANc7hg9vY+vTP9wSnj0BBcUXAr/McCdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNW1I/70JO2wmKPdyFdbWVhwu0gowHwYDVR0j BBgwFoAUpgP43kGgwlQTPFMf+5jGZBYLuWIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h OWI4MTUyZS1hYTg2LTRkOGEtODFkYS1lNzEwODZiMjk1NmMvMC9BNjAzRjhERTQx QTBDMjU0MTMzQzUzMUZGQjk4QzY2NDE2MEJCOTYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQTYwM0Y4REU0MUEwQzI1NDEzM0M1MzFGRkI5OEM2NjQxNjBC Qjk2Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E5YjgxNTJlLWFhODYtNGQ4YS04 MWRhLWU3MTA4NmIyOTU2Yy8wLzMxMzYzMDJlMzIzMDJlMzIzNDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBT0MA0GCSqG SIb3DQEBCwUAA4IBAQCf98CEvHEa+OPAAeKPCiIzZPnGQABZqUm9V1csh6fDC3iD h0K2tVPGW5g9T3RoE9JyvQlc0sMWA3O1nDINB0bYu+zW+krPgEn3cyAvxDaMpxTw HDFYEoqH7KR6p96vcY7mPgl/v+dG5+sP7GXVOM/4QLc7Px15O19r9jtZq5TRKKH4 RD14WilEUuLoDznLzOcxJNChJneiKAMc2OdLNM7eKoAFnQ4XBZ/K3STFnPVWyCZ1 rRutvmw1JnkAVYQT6WfWoOZEUgMkngTzWIO/JNvc5XJyNs3aQsJPW4eEK/AlKhq3 YSXzzKleWx7eZPXbacJ33v72NvD8i5//exeU2jTw -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:46 2024 by rpki-client on console-ams.rpki-client.org