$ rpki-client -vvf repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3136302e31392e3232342e302f32322d3232203d3e203535363939.roa File: 3136302e31392e3232342e302f32322d3232203d3e203535363939.roa (raw, json) Hash identifier: ehMw7XipDXtku35OIScfEFa1n231s20Vh+1JJFGZJOg= Subject key identifier: 62:F0:6D:A9:C7:EC:1A:43:7A:30:CE:20:16:78:84:C4:6A:9E:09:15 Certificate issuer: /CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Certificate serial: 7B69FA2AA739D8FBF4F4FC6F36D1D007C7BF3D22 Authority key identifier: 19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3136302e31392e3232342e302f32322d3232203d3e203535363939.roa Signing time: Mon 01 Jul 2024 01:04:04 +0000 ROA not before: Mon 01 Jul 2024 00:59:04 +0000 ROA not after: Mon 30 Jun 2025 01:04:04 +0000 asID: 55699 IP address blocks: 160.19.224.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:69:fa:2a:a7:39:d8:fb:f4:f4:fc:6f:36:d1:d0:07:c7:bf:3d:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Validity Not Before: Jul 1 00:59:04 2024 GMT Not After : Jun 30 01:04:04 2025 GMT Subject: CN=62F06DA9C7EC1A437A30CE20167884C46A9E0915 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:b3:28:76:40:4d:f5:f8:39:e4:4f:26:c3:3e: a9:7a:23:f8:69:fb:47:13:f3:cd:22:dc:7f:e5:ae: d1:0c:75:e5:c7:d4:c8:28:88:4e:5d:85:c5:76:85: 40:2c:82:20:6c:1b:27:85:e8:85:08:6f:7a:9b:b3: 62:9b:16:21:84:f7:dd:55:16:17:c0:65:43:76:f7: ca:d3:7e:6c:d5:66:a8:58:92:9f:db:1a:0e:38:7c: f8:50:a5:20:ad:f1:b5:82:8e:48:d6:78:78:57:2b: 0f:c8:43:7e:9c:1b:33:11:3a:e4:0e:99:02:a9:55: fb:18:7e:dc:a8:95:c2:77:c7:31:f4:18:1a:2b:ff: 63:fb:62:f5:40:30:ea:7b:e3:90:10:72:1e:a2:eb: 7c:d7:a4:fe:3d:48:dd:6b:e1:6d:a9:52:45:87:9f: ec:78:e6:01:b4:3f:6f:b5:59:c7:55:e1:66:e5:42: 22:49:71:8c:16:a7:9b:f6:e2:0b:44:41:87:aa:57: ac:15:f5:f0:42:3d:3c:f7:a7:7d:3d:6c:87:79:55: 08:49:81:81:cd:a6:25:a5:92:0a:39:7e:74:78:56: d2:5d:72:fe:d2:b8:83:4f:27:90:c2:ad:cd:f5:ab: 12:a8:aa:73:f1:dd:16:97:cc:01:6f:cb:07:e5:53: 0a:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:F0:6D:A9:C7:EC:1A:43:7A:30:CE:20:16:78:84:C4:6A:9E:09:15 X509v3 Authority Key Identifier: keyid:19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3136302e31392e3232342e302f32322d3232203d3e203535363939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.224.0/22 Signature Algorithm: sha256WithRSAEncryption df:b9:85:2c:95:ce:4f:84:3a:fb:a1:e2:3b:06:04:4a:79:4b: 79:24:b6:5f:13:bd:f2:9f:0e:85:96:0d:36:c7:0a:1b:c7:ba: 2b:4b:6d:04:18:1d:b1:88:d5:f8:47:1d:13:5b:3b:ac:ce:cc: 5c:bd:a1:7c:7b:5d:cb:f3:c8:9a:7c:b3:7e:01:7f:eb:00:ee: 9d:57:3c:21:5b:85:90:f4:4a:c8:54:dd:e9:d8:e1:1a:a4:a1: c0:4f:54:2d:f7:b7:75:d7:06:d8:33:44:bf:23:06:e2:a2:c7: 84:e2:b2:7e:81:b1:fa:b6:dd:3c:9d:30:42:11:f6:27:34:93: f1:a8:42:37:10:4a:b9:40:72:3f:a6:86:97:78:fe:4d:53:cc: ef:a2:68:9a:54:14:27:50:12:02:36:86:da:aa:80:0c:8d:54: b2:ca:27:4f:e2:89:a5:db:65:aa:1c:7e:3f:88:b2:4d:c8:8a: b6:a3:60:12:4e:75:81:62:ac:59:52:f2:f5:d4:b7:67:3d:49: 69:64:2d:ce:d8:8d:81:3e:34:ac:9c:85:70:93:97:90:c9:d4: 28:99:d0:bd:51:db:b8:f3:59:a1:3a:98:cd:b8:54:21:91:f7: 5f:09:c1:0f:15:56:a6:6d:3b:c2:26:4f:9c:57:0d:dc:46:2e: 5f:47:f9:49 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUe2n6Kqc52Pv09PxvNtHQB8e/PSIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5 RTEwNjg3MjAeFw0yNDA3MDEwMDU5MDRaFw0yNTA2MzAwMTA0MDRaMDMxMTAvBgNV BAMTKDYyRjA2REE5QzdFQzFBNDM3QTMwQ0UyMDE2Nzg4NEM0NkE5RTA5MTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjsyh2QE31+DnkTybDPql6I/hp +0cT880i3H/lrtEMdeXH1MgoiE5dhcV2hUAsgiBsGyeF6IUIb3qbs2KbFiGE991V FhfAZUN298rTfmzVZqhYkp/bGg44fPhQpSCt8bWCjkjWeHhXKw/IQ36cGzMROuQO mQKpVfsYftyolcJ3xzH0GBor/2P7YvVAMOp745AQch6i63zXpP49SN1r4W2pUkWH n+x45gG0P2+1WcdV4WblQiJJcYwWp5v24gtEQYeqV6wV9fBCPTz3p309bId5VQhJ gYHNpiWlkgo5fnR4VtJdcv7SuINPJ5DCrc31qxKoqnPx3RaXzAFvywflUwovAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYvBtqcfsGkN6MM4gFniExGqeCRUwHwYDVR0j BBgwFoAUGXbdfU+9++s1XwuWaQYTlZ4QaHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTk5ZWQ5Ni1kNDA4LTQ0MTgtYjgyYS01ZDVhOGU2NjU3ZjMvMC8xOTc2REQ3RDRG QkRGQkVCMzU1RjBCOTY2OTA2MTM5NTlFMTA2ODcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5RTEw Njg3Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1OTllZDk2LWQ0MDgtNDQxOC1i ODJhLTVkNWE4ZTY2NTdmMy8wLzMxMzYzMDJlMzEzOTJlMzIzMjM0MmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzUzNTM2MzkzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAqAT4DANBgkqhkiG 9w0BAQsFAAOCAQEA37mFLJXOT4Q6+6HiOwYESnlLeSS2XxO98p8OhZYNNscKG8e6 K0ttBBgdsYjV+EcdE1s7rM7MXL2hfHtdy/PImnyzfgF/6wDunVc8IVuFkPRKyFTd 6djhGqShwE9ULfe3ddcG2DNEvyMG4qLHhOKyfoGx+rbdPJ0wQhH2JzST8ahCNxBK uUByP6aGl3j+TVPM76JomlQUJ1ASAjaG2qqADI1UssonT+KJpdtlqhx+P4iyTciK tqNgEk51gWKsWVLy9dS3Zz1JaWQtztiNgT40rJyFcJOXkMnUKJnQvVHbuPNZoTqY zbhUIZH3XwnBDxVWpm07wiZPnFcN3EYuX0f5SQ== -----END CERTIFICATE-----Generated at Wed Nov 20 20:04:31 2024 by rpki-client on console-fra.rpki-client.org