$ rpki-client -vvf repo-rpki.idnic.net/repo/b9b9bd38-2efa-4d4c-a956-42492a3e6000/0/3136302e31392e3134362e302f32342d3234203d3e20313532373735.roa File: 3136302e31392e3134362e302f32342d3234203d3e20313532373735.roa (raw, json) Hash identifier: K5oquwrLK66NgAAxhssyU9cE1S+99n3MDQtPouQSzd0= Subject key identifier: 9A:39:5E:C6:AD:CA:75:04:02:83:E1:E0:BD:CE:A6:9A:08:A4:DC:29 Certificate issuer: /CN=1391AB90F1BF56A92FBDF7B8F48207992410775E Certificate serial: 79F38C4417C65B2FB1FC7492EAEF99CF5AB78B58 Authority key identifier: 13:91:AB:90:F1:BF:56:A9:2F:BD:F7:B8:F4:82:07:99:24:10:77:5E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/1391AB90F1BF56A92FBDF7B8F48207992410775E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b9b9bd38-2efa-4d4c-a956-42492a3e6000/0/3136302e31392e3134362e302f32342d3234203d3e20313532373735.roa Signing time: Fri 21 Jun 2024 04:21:57 +0000 ROA not before: Fri 21 Jun 2024 04:16:57 +0000 ROA not after: Fri 20 Jun 2025 04:21:57 +0000 asID: 152775 IP address blocks: 160.19.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b9b9bd38-2efa-4d4c-a956-42492a3e6000/0/1391AB90F1BF56A92FBDF7B8F48207992410775E.crl rsync://repo-rpki.idnic.net/repo/b9b9bd38-2efa-4d4c-a956-42492a3e6000/0/1391AB90F1BF56A92FBDF7B8F48207992410775E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/1391AB90F1BF56A92FBDF7B8F48207992410775E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jul 2024 08:51:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:f3:8c:44:17:c6:5b:2f:b1:fc:74:92:ea:ef:99:cf:5a:b7:8b:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1391AB90F1BF56A92FBDF7B8F48207992410775E Validity Not Before: Jun 21 04:16:57 2024 GMT Not After : Jun 20 04:21:57 2025 GMT Subject: CN=9A395EC6ADCA75040283E1E0BDCEA69A08A4DC29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:45:52:25:1b:87:b1:71:45:a0:09:35:53:04: 8e:0a:10:d8:c0:e2:26:5d:b0:3d:81:25:56:cb:d0: 39:cd:a0:d4:6b:35:b9:b7:51:1b:67:21:73:0f:2d: e6:5d:e3:d5:15:5a:e7:33:02:65:ec:a1:87:18:47: 90:17:0c:37:49:01:bc:1c:59:76:d0:38:83:36:1a: 63:00:f1:66:d3:99:91:29:4a:1f:97:41:27:d5:86: ef:18:f0:83:fc:b0:8d:38:2d:97:2c:f6:b3:12:66: 10:49:5e:05:e3:de:09:ab:17:e9:22:18:3e:17:a6: 6c:27:a1:c3:60:07:5d:93:49:ec:90:d1:e7:f8:8f: d7:eb:37:0a:ff:13:82:38:34:03:17:e3:62:a6:a0: c1:31:d3:78:e8:02:5b:c7:c7:c2:2a:92:a7:b8:97: 68:6d:83:80:aa:79:63:de:41:40:7b:35:1a:5b:93: 24:37:38:b1:79:f2:36:d7:fb:2a:2e:00:30:af:72: 68:44:7e:f8:15:ec:c9:1e:23:e9:87:ee:98:fd:6c: 84:6e:c8:83:e3:7a:3b:2b:67:08:c1:b0:7e:f5:91: 46:85:f6:e8:83:48:5b:1f:73:45:0e:fe:1b:c8:ab: 2d:82:52:bd:6f:d3:43:6b:b7:e4:e5:18:62:43:ec: fc:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:39:5E:C6:AD:CA:75:04:02:83:E1:E0:BD:CE:A6:9A:08:A4:DC:29 X509v3 Authority Key Identifier: keyid:13:91:AB:90:F1:BF:56:A9:2F:BD:F7:B8:F4:82:07:99:24:10:77:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b9b9bd38-2efa-4d4c-a956-42492a3e6000/0/1391AB90F1BF56A92FBDF7B8F48207992410775E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/1391AB90F1BF56A92FBDF7B8F48207992410775E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b9b9bd38-2efa-4d4c-a956-42492a3e6000/0/3136302e31392e3134362e302f32342d3234203d3e20313532373735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.146.0/24 Signature Algorithm: sha256WithRSAEncryption 82:9a:22:8d:ff:76:af:09:27:da:5a:17:03:88:12:19:50:23: 33:4a:f6:61:8d:c0:f7:1b:35:66:e7:9a:42:04:1e:8e:49:07: 0e:ec:77:a7:44:f1:4e:8a:c7:11:1b:c6:d5:f1:6e:5a:cd:2b: 4f:68:72:49:a1:a7:a6:60:77:d2:92:ed:51:84:7b:df:fb:dd: 70:5b:d5:e4:61:d1:e4:19:20:01:09:6b:34:b1:75:af:fb:eb: e5:14:33:a8:82:bc:8a:29:09:bf:69:54:8b:d4:14:83:cd:63: 19:43:27:fa:75:b6:2a:11:0f:10:8c:29:7f:63:e0:5a:b0:86: 39:7d:5e:03:5f:64:10:c7:95:e3:8d:ef:26:3c:cd:b0:2b:d8: 2c:e1:c0:d9:13:a5:28:66:1d:e2:a5:2d:6a:98:1b:df:aa:13: 98:8b:fe:a6:ff:41:68:68:8c:75:72:86:d8:22:e7:a1:a1:83: 3d:de:34:e0:91:6a:70:f2:62:82:91:fd:d6:2a:ca:ea:1a:44: 8a:21:e0:75:3f:e2:24:51:7d:74:08:1e:70:b7:bc:c3:66:b1: 5a:73:94:d5:cc:b9:68:77:5a:63:3a:34:e8:1b:1c:ef:c6:6c: 0f:40:8b:3e:54:21:e9:3a:eb:01:3d:d1:71:d1:62:b8:46:fd: 9b:b8:99:52 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUefOMRBfGWy+x/HSS6u+Zz1q3i1gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTM5MUFCOTBGMUJGNTZBOTJGQkRGN0I4RjQ4MjA3OTky NDEwNzc1RTAeFw0yNDA2MjEwNDE2NTdaFw0yNTA2MjAwNDIxNTdaMDMxMTAvBgNV BAMTKDlBMzk1RUM2QURDQTc1MDQwMjgzRTFFMEJEQ0VBNjlBMDhBNERDMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9RVIlG4excUWgCTVTBI4KENjA 4iZdsD2BJVbL0DnNoNRrNbm3URtnIXMPLeZd49UVWuczAmXsoYcYR5AXDDdJAbwc WXbQOIM2GmMA8WbTmZEpSh+XQSfVhu8Y8IP8sI04LZcs9rMSZhBJXgXj3gmrF+ki GD4XpmwnocNgB12TSeyQ0ef4j9frNwr/E4I4NAMX42KmoMEx03joAlvHx8Iqkqe4 l2htg4CqeWPeQUB7NRpbkyQ3OLF58jbX+youADCvcmhEfvgV7MkeI+mH7pj9bIRu yIPjejsrZwjBsH71kUaF9uiDSFsfc0UO/hvIqy2CUr1v00Nrt+TlGGJD7PxjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmjlexq3KdQQCg+Hgvc6mmgik3CkwHwYDVR0j BBgwFoAUE5GrkPG/Vqkvvfe49IIHmSQQd14wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OWI5YmQzOC0yZWZhLTRkNGMtYTk1Ni00MjQ5MmEzZTYwMDAvMC8xMzkxQUI5MEYx QkY1NkE5MkZCREY3QjhGNDgyMDc5OTI0MTA3NzVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMTM5MUFCOTBGMUJGNTZBOTJGQkRGN0I4RjQ4MjA3OTkyNDEw Nzc1RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I5YjliZDM4LTJlZmEtNGQ0Yy1h OTU2LTQyNDkyYTNlNjAwMC8wLzMxMzYzMDJlMzEzOTJlMzEzNDM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBOSMA0GCSqG SIb3DQEBCwUAA4IBAQCCmiKN/3avCSfaWhcDiBIZUCMzSvZhjcD3GzVm55pCBB6O SQcO7HenRPFOiscRG8bV8W5azStPaHJJoaemYHfSku1RhHvf+91wW9XkYdHkGSAB CWs0sXWv++vlFDOogryKKQm/aVSL1BSDzWMZQyf6dbYqEQ8QjCl/Y+BasIY5fV4D X2QQx5Xjje8mPM2wK9gs4cDZE6UoZh3ipS1qmBvfqhOYi/6m/0FoaIx1cobYIueh oYM93jTgkWpw8mKCkf3WKsrqGkSKIeB1P+IkUX10CB5wt7zDZrFac5TVzLlod1pj OjToGxzvxmwPQIs+VCHpOusBPdFx0WK4Rv2buJlS -----END CERTIFICATE-----Generated at Sun Jun 30 05:10:16 2024 by rpki-client on console-fra.rpki-client.org