$ rpki-client -vvf repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/3136302e31392e38342e302f32332d3233203d3e20313532373534.roa File: 3136302e31392e38342e302f32332d3233203d3e20313532373534.roa (raw, json) Hash identifier: scnxUfDl17yzzEG6eGB4zIHe854L6XwRtRW/Se43wAg= Subject key identifier: BB:EF:B5:3B:10:F0:2E:57:0E:92:5F:38:0B:F8:89:23:C3:22:81:BE Certificate issuer: /CN=2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2 Certificate serial: 2F9EE7979AD7EADE94EABE806D85AC49A496BFE6 Authority key identifier: 25:15:D4:BF:9E:F7:AA:E5:AE:BC:22:F5:2C:17:FF:17:DC:D6:FD:C2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/3136302e31392e38342e302f32332d3233203d3e20313532373534.roa Signing time: Sun 19 May 2024 04:25:07 +0000 ROA not before: Sun 19 May 2024 04:20:07 +0000 ROA not after: Sun 18 May 2025 04:25:07 +0000 asID: 152754 IP address blocks: 160.19.84.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.crl rsync://repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:9e:e7:97:9a:d7:ea:de:94:ea:be:80:6d:85:ac:49:a4:96:bf:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2 Validity Not Before: May 19 04:20:07 2024 GMT Not After : May 18 04:25:07 2025 GMT Subject: CN=BBEFB53B10F02E570E925F380BF88923C32281BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:5e:b7:0b:12:e9:5d:53:99:3a:48:47:8e:d9: cd:b5:05:58:05:ed:9a:66:d3:28:c7:c5:23:eb:af: 77:35:9c:b0:80:70:93:ed:46:84:71:24:94:31:56: cc:09:c6:1e:53:e7:ef:4d:5e:c8:24:85:c3:d0:eb: cc:26:a2:d0:2f:11:63:99:2b:d1:4a:55:de:89:90: 0b:3a:e3:77:c4:7d:b1:da:e6:ff:8e:fe:e5:58:10: da:1b:45:1d:2f:33:93:f8:32:75:ea:e2:7a:21:0b: b4:b1:0f:4b:44:00:25:fc:cb:8a:1d:2c:6d:1a:15: 62:f4:38:97:bc:6a:a9:ba:75:95:e2:ec:5f:7f:0b: c7:cc:4e:dd:bd:7d:1a:85:ed:f9:30:62:94:5d:d1: da:a9:50:8e:f9:6e:9c:11:2f:7e:9b:54:d6:ce:ed: 17:de:d2:50:74:2c:ab:3a:1c:d3:37:ee:b6:9a:2b: 53:ef:17:8a:93:d4:c9:cd:ab:00:36:a4:85:f1:80: 16:d9:e3:bf:a6:af:06:3d:0c:37:4e:7e:98:49:d7: 32:35:c7:59:f9:5f:23:7b:b1:52:f6:a1:f1:29:d2: ca:72:89:f5:72:88:5e:3c:53:f1:fc:57:3e:99:1f: ec:21:32:c9:79:b8:f3:05:e7:92:da:52:d3:b6:44: a3:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:EF:B5:3B:10:F0:2E:57:0E:92:5F:38:0B:F8:89:23:C3:22:81:BE X509v3 Authority Key Identifier: keyid:25:15:D4:BF:9E:F7:AA:E5:AE:BC:22:F5:2C:17:FF:17:DC:D6:FD:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/3136302e31392e38342e302f32332d3233203d3e20313532373534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.84.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:61:37:af:d9:55:3e:ee:bc:d3:f6:d0:e4:25:04:4d:ca:fb: 5b:91:35:89:30:79:1e:67:d0:90:87:1f:2f:57:75:d7:d1:5f: 83:6c:88:0a:36:a8:1c:49:b4:b2:38:9c:13:39:e3:c9:8b:af: c8:b4:7c:1e:05:aa:57:d4:67:16:37:3d:9d:f7:74:e3:d7:fb: 9a:15:13:d8:5f:ec:f7:ea:0d:27:65:0c:cc:d1:bf:06:61:ac: 3e:2a:0e:09:37:9c:7a:97:95:e1:d4:1a:31:57:67:63:a5:f2: 0b:9b:fa:f9:94:7c:b3:a3:15:0c:93:8a:7b:2c:14:09:e3:50: d3:1c:8d:91:17:5a:7f:30:c7:1d:9c:00:8a:8c:93:9b:e3:c9: 93:e7:e3:06:a8:a1:80:d9:34:aa:ab:b9:40:7c:7b:db:0c:38: d0:af:9c:95:b9:9c:0c:95:b9:6b:9c:cd:1d:ef:31:e5:42:e0: 10:e3:f5:1a:8b:94:d1:e5:c2:e7:a6:2c:75:d1:84:32:77:c2: 77:24:c1:ef:5a:ec:b3:f9:fd:99:c5:ad:58:5a:42:ff:6e:90: 05:f7:ff:3b:da:9c:04:34:21:f8:92:39:49:92:41:dc:a8:c2: e1:9a:a3:29:0c:5c:d3:3c:91:18:2b:36:b2:0e:05:48:ce:0f: 8f:24:81:28 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUL57nl5rX6t6U6r6AbYWsSaSWv+YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjUxNUQ0QkY5RUY3QUFFNUFFQkMyMkY1MkMxN0ZGMTdE Q0Q2RkRDMjAeFw0yNDA1MTkwNDIwMDdaFw0yNTA1MTgwNDI1MDdaMDMxMTAvBgNV BAMTKEJCRUZCNTNCMTBGMDJFNTcwRTkyNUYzODBCRjg4OTIzQzMyMjgxQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrXrcLEuldU5k6SEeO2c21BVgF 7Zpm0yjHxSPrr3c1nLCAcJPtRoRxJJQxVswJxh5T5+9NXsgkhcPQ68wmotAvEWOZ K9FKVd6JkAs643fEfbHa5v+O/uVYENobRR0vM5P4MnXq4nohC7SxD0tEACX8y4od LG0aFWL0OJe8aqm6dZXi7F9/C8fMTt29fRqF7fkwYpRd0dqpUI75bpwRL36bVNbO 7Rfe0lB0LKs6HNM37raaK1PvF4qT1MnNqwA2pIXxgBbZ47+mrwY9DDdOfphJ1zI1 x1n5XyN7sVL2ofEp0spyifVyiF48U/H8Vz6ZH+whMsl5uPMF55LaUtO2RKPVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUu++1OxDwLlcOkl84C/iJI8Migb4wHwYDVR0j BBgwFoAUJRXUv573quWuvCL1LBf/F9zW/cIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YTA5OGYwMC1hMGEwLTRiNWMtOWU4My02MDY3MzcxMjhjYjEvMC8yNTE1RDRCRjlF RjdBQUU1QUVCQzIyRjUyQzE3RkYxN0RDRDZGREMyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjUxNUQ0QkY5RUY3QUFFNUFFQkMyMkY1MkMxN0ZGMTdEQ0Q2 RkRDMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JhMDk4ZjAwLWEwYTAtNGI1Yy05 ZTgzLTYwNjczNzEyOGNiMS8wLzMxMzYzMDJlMzEzOTJlMzgzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMjM3MzUzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaATVDANBgkqhkiG 9w0BAQsFAAOCAQEAO2E3r9lVPu680/bQ5CUETcr7W5E1iTB5HmfQkIcfL1d119Ff g2yICjaoHEm0sjicEznjyYuvyLR8HgWqV9RnFjc9nfd049f7mhUT2F/s9+oNJ2UM zNG/BmGsPioOCTecepeV4dQaMVdnY6XyC5v6+ZR8s6MVDJOKeywUCeNQ0xyNkRda fzDHHZwAioyTm+PJk+fjBqihgNk0qqu5QHx72ww40K+clbmcDJW5a5zNHe8x5ULg EOP1GouU0eXC56YsddGEMnfCdyTB71rss/n9mcWtWFpC/26QBff/O9qcBDQh+JI5 SZJB3KjC4ZqjKQxc0zyRGCs2sg4FSM4PjySBKA== -----END CERTIFICATE-----Generated at Sun Nov 24 08:01:26 2024 by rpki-client on console-fra.rpki-client.org