$ rpki-client -vvf repo-rpki.idnic.net/repo/b9b9bd38-2efa-4d4c-a956-42492a3e6000/0/3136302e31392e3134372e302f32342d3234203d3e20313532373735.roa File: 3136302e31392e3134372e302f32342d3234203d3e20313532373735.roa (raw, json) Hash identifier: SCqKZWrRiy8nw8cakY/jAbd2qy6+t2kss9DaTtS0TyA= Subject key identifier: D1:24:1A:C6:3F:41:17:C0:64:40:5B:83:DE:29:F1:1C:DC:E1:38:BE Certificate issuer: /CN=1391AB90F1BF56A92FBDF7B8F48207992410775E Certificate serial: 29D3DF6394D4890D9FC90F7E7A9E8B19EB5AB384 Authority key identifier: 13:91:AB:90:F1:BF:56:A9:2F:BD:F7:B8:F4:82:07:99:24:10:77:5E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/1391AB90F1BF56A92FBDF7B8F48207992410775E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b9b9bd38-2efa-4d4c-a956-42492a3e6000/0/3136302e31392e3134372e302f32342d3234203d3e20313532373735.roa Signing time: Fri 21 Jun 2024 04:22:37 +0000 ROA not before: Fri 21 Jun 2024 04:17:37 +0000 ROA not after: Fri 20 Jun 2025 04:22:37 +0000 asID: 152775 IP address blocks: 160.19.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b9b9bd38-2efa-4d4c-a956-42492a3e6000/0/1391AB90F1BF56A92FBDF7B8F48207992410775E.crl rsync://repo-rpki.idnic.net/repo/b9b9bd38-2efa-4d4c-a956-42492a3e6000/0/1391AB90F1BF56A92FBDF7B8F48207992410775E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/1391AB90F1BF56A92FBDF7B8F48207992410775E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 19:02:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:d3:df:63:94:d4:89:0d:9f:c9:0f:7e:7a:9e:8b:19:eb:5a:b3:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1391AB90F1BF56A92FBDF7B8F48207992410775E Validity Not Before: Jun 21 04:17:37 2024 GMT Not After : Jun 20 04:22:37 2025 GMT Subject: CN=D1241AC63F4117C064405B83DE29F11CDCE138BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0b:85:f9:f9:dc:10:f7:52:8e:70:0a:17:da: 3d:cb:23:47:ad:f9:2b:22:dd:fc:f1:8b:9c:cf:c7: 74:ce:43:d7:41:5f:88:3d:41:c9:f5:b4:15:80:cb: c5:d9:6d:1d:25:de:08:cb:34:1f:a3:04:85:69:a6: fe:f9:4d:3e:2d:9b:25:e5:bc:ff:4e:2f:21:20:92: a6:db:e6:19:b4:4a:98:60:ca:e2:6a:80:ba:fd:d6: 33:2b:71:e6:bb:34:2c:e8:3d:f8:9b:25:60:4a:41: 9e:54:3e:80:7d:1f:02:cd:4f:81:35:58:45:75:5f: b7:15:59:1e:63:d0:1c:05:11:ea:33:13:b2:aa:6b: 99:da:21:4e:06:a5:81:a0:b2:0f:0e:04:97:ff:74: f6:04:71:46:41:cc:f8:56:d5:0f:ee:dd:46:dc:16: a8:c3:e4:83:42:8f:08:e0:f1:c0:c3:cd:d0:df:65: 36:f8:dc:4c:02:57:09:46:59:c1:4d:7b:de:e5:77: 58:0f:1b:4d:4e:af:20:69:5b:43:cb:5b:4d:27:10: ce:f2:94:75:95:16:2b:c5:3b:b0:ed:cd:b4:f6:a9: d7:22:74:41:3a:bf:92:00:0b:8c:14:fc:dc:69:7d: 15:d8:83:5a:73:96:6d:7e:0c:82:5e:6a:13:a3:c3: f2:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:24:1A:C6:3F:41:17:C0:64:40:5B:83:DE:29:F1:1C:DC:E1:38:BE X509v3 Authority Key Identifier: keyid:13:91:AB:90:F1:BF:56:A9:2F:BD:F7:B8:F4:82:07:99:24:10:77:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b9b9bd38-2efa-4d4c-a956-42492a3e6000/0/1391AB90F1BF56A92FBDF7B8F48207992410775E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/1391AB90F1BF56A92FBDF7B8F48207992410775E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b9b9bd38-2efa-4d4c-a956-42492a3e6000/0/3136302e31392e3134372e302f32342d3234203d3e20313532373735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.147.0/24 Signature Algorithm: sha256WithRSAEncryption 64:26:8e:90:68:69:8d:2e:da:0f:ce:9f:f0:db:8b:e8:46:df: 64:df:57:02:12:82:ef:d1:f0:ee:7d:a7:d0:9d:cf:b4:57:a9: 46:b1:5a:a2:dc:15:24:43:dc:66:ee:84:c5:11:44:f4:36:e7: b4:20:ad:d3:2d:74:69:de:25:d6:d3:7c:9b:b5:4a:95:85:ef: 19:83:45:62:26:51:83:9c:24:dc:1a:28:2e:e5:81:53:a4:01: 55:04:2f:28:df:92:4f:dc:00:16:71:d1:d7:e9:45:28:5b:25: 27:a7:a5:22:4f:9a:82:c5:9e:e0:ef:31:19:5a:64:c7:5d:59: c0:cb:53:ca:89:7c:ad:b6:b2:76:b4:2a:e8:1e:15:87:78:35: e0:b4:f3:32:40:d1:32:e7:8b:59:6a:df:38:35:8d:03:ed:cf: 23:6e:53:e9:38:de:99:6d:45:c3:f2:49:3c:63:99:c4:23:31: 00:a0:ef:bf:66:c2:86:e6:d6:72:7e:f2:fa:a3:f8:43:88:25: dc:30:32:30:ba:62:97:60:ff:34:cb:72:e8:81:3c:1b:4e:49: bd:18:cd:f9:79:94:5b:cb:da:4b:7f:2b:93:66:ca:43:98:d7: b1:29:13:29:e7:60:46:c9:dc:26:e5:fd:46:8f:d8:ad:28:08: e5:af:9a:55 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKdPfY5TUiQ2fyQ9+ep6LGetas4QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTM5MUFCOTBGMUJGNTZBOTJGQkRGN0I4RjQ4MjA3OTky NDEwNzc1RTAeFw0yNDA2MjEwNDE3MzdaFw0yNTA2MjAwNDIyMzdaMDMxMTAvBgNV BAMTKEQxMjQxQUM2M0Y0MTE3QzA2NDQwNUI4M0RFMjlGMTFDRENFMTM4QkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDC4X5+dwQ91KOcAoX2j3LI0et +Ssi3fzxi5zPx3TOQ9dBX4g9Qcn1tBWAy8XZbR0l3gjLNB+jBIVppv75TT4tmyXl vP9OLyEgkqbb5hm0SphgyuJqgLr91jMrcea7NCzoPfibJWBKQZ5UPoB9HwLNT4E1 WEV1X7cVWR5j0BwFEeozE7Kqa5naIU4GpYGgsg8OBJf/dPYEcUZBzPhW1Q/u3Ubc FqjD5INCjwjg8cDDzdDfZTb43EwCVwlGWcFNe97ld1gPG01OryBpW0PLW00nEM7y lHWVFivFO7DtzbT2qdcidEE6v5IAC4wU/NxpfRXYg1pzlm1+DIJeahOjw/LPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0SQaxj9BF8BkQFuD3inxHNzhOL4wHwYDVR0j BBgwFoAUE5GrkPG/Vqkvvfe49IIHmSQQd14wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OWI5YmQzOC0yZWZhLTRkNGMtYTk1Ni00MjQ5MmEzZTYwMDAvMC8xMzkxQUI5MEYx QkY1NkE5MkZCREY3QjhGNDgyMDc5OTI0MTA3NzVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMTM5MUFCOTBGMUJGNTZBOTJGQkRGN0I4RjQ4MjA3OTkyNDEw Nzc1RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I5YjliZDM4LTJlZmEtNGQ0Yy1h OTU2LTQyNDkyYTNlNjAwMC8wLzMxMzYzMDJlMzEzOTJlMzEzNDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBOTMA0GCSqG SIb3DQEBCwUAA4IBAQBkJo6QaGmNLtoPzp/w24voRt9k31cCEoLv0fDufafQnc+0 V6lGsVqi3BUkQ9xm7oTFEUT0Nue0IK3TLXRp3iXW03ybtUqVhe8Zg0ViJlGDnCTc Gigu5YFTpAFVBC8o35JP3AAWcdHX6UUoWyUnp6UiT5qCxZ7g7zEZWmTHXVnAy1PK iXyttrJ2tCroHhWHeDXgtPMyQNEy54tZat84NY0D7c8jblPpON6ZbUXD8kk8Y5nE IzEAoO+/ZsKG5tZyfvL6o/hDiCXcMDIwumKXYP80y3LogTwbTkm9GM35eZRby9pL fyuTZspDmNexKRMp52BGydwm5f1Gj9itKAjlr5pV -----END CERTIFICATE-----Generated at Mon Nov 25 22:02:30 2024 by rpki-client on console-fra.rpki-client.org