$ rpki-client -vvf repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/3136302e31392e38342e302f32342d3234203d3e20313532373534.roa File: 3136302e31392e38342e302f32342d3234203d3e20313532373534.roa (raw, json) Hash identifier: MW6d0vK/HCTtYGiiJfgImVZh48mUFlNfk7u/owijm9Y= Subject key identifier: 08:F8:48:B7:A4:A8:6A:56:D3:B3:EE:3E:57:0A:DA:35:81:34:04:65 Certificate issuer: /CN=2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2 Certificate serial: 33860B02919BA1C2CF51C1459FD67B7222A7FD0F Authority key identifier: 25:15:D4:BF:9E:F7:AA:E5:AE:BC:22:F5:2C:17:FF:17:DC:D6:FD:C2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/3136302e31392e38342e302f32342d3234203d3e20313532373534.roa Signing time: Sun 19 May 2024 04:25:17 +0000 ROA not before: Sun 19 May 2024 04:20:17 +0000 ROA not after: Sun 18 May 2025 04:25:17 +0000 asID: 152754 IP address blocks: 160.19.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.crl rsync://repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:86:0b:02:91:9b:a1:c2:cf:51:c1:45:9f:d6:7b:72:22:a7:fd:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2 Validity Not Before: May 19 04:20:17 2024 GMT Not After : May 18 04:25:17 2025 GMT Subject: CN=08F848B7A4A86A56D3B3EE3E570ADA3581340465 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:7d:b3:37:f0:51:b8:c5:21:79:23:6e:b4:85: 28:b6:93:78:96:05:0e:c3:d4:2e:f3:7f:44:93:d6: b0:83:2b:92:22:a0:fa:58:78:e5:7c:19:1c:8a:77: 52:9d:94:43:31:cf:b4:31:3b:a4:d1:c5:9d:5d:50: 5f:72:58:85:fe:ce:06:31:99:d3:78:98:c8:f7:bf: f2:1f:1a:17:48:4f:d4:ae:f6:9d:78:d3:1b:1d:fd: 57:ad:b6:c7:af:5f:49:41:40:3a:9e:19:c5:41:97: 7a:86:e1:3b:fb:4e:81:e1:bb:7b:56:c1:30:bb:33: ae:26:cd:83:ab:81:70:5d:eb:a6:f6:41:e2:c8:ae: eb:2a:9c:f3:8b:ed:97:45:45:d8:ae:65:43:95:f8: a2:85:0f:23:96:b2:05:0a:a4:c2:4e:3b:b3:12:a2: 96:b8:08:36:20:11:be:6b:59:b7:d5:e5:0e:eb:5d: 19:fb:33:3d:e4:23:3b:59:41:43:f2:49:ee:cc:00: ff:10:df:9a:ee:be:3b:84:b9:83:c1:e3:e7:46:09: fd:dd:8a:0c:e6:8d:7c:66:19:32:35:34:49:08:19: 96:02:31:8a:a1:e2:c9:0f:6b:8b:84:21:49:33:17: 31:1e:44:23:83:f1:8c:7d:65:2c:fe:92:f0:99:90: f3:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:F8:48:B7:A4:A8:6A:56:D3:B3:EE:3E:57:0A:DA:35:81:34:04:65 X509v3 Authority Key Identifier: keyid:25:15:D4:BF:9E:F7:AA:E5:AE:BC:22:F5:2C:17:FF:17:DC:D6:FD:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/3136302e31392e38342e302f32342d3234203d3e20313532373534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.84.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:fd:86:a9:9c:25:e6:ac:a7:3f:a0:f6:25:8b:90:db:78:c3: 2a:c2:9c:b9:89:be:42:7c:46:5c:a7:2d:f1:c4:2f:a4:26:d1: 42:87:e3:f7:f5:1c:a6:75:32:a2:79:10:c3:37:39:09:fd:91: e6:19:b9:62:96:c5:12:4b:9c:4f:74:48:1f:2c:ff:fe:ce:71: a9:77:1a:1e:28:b9:07:09:d2:be:9a:c5:01:dd:8a:d8:c5:72: 09:75:19:5c:9e:6b:e6:bc:dd:24:96:20:e3:a8:c3:ef:df:2e: 8a:19:14:7d:45:f9:5d:a5:76:d8:23:b0:cb:94:ab:2c:d8:51: ec:60:77:02:de:06:a7:db:55:65:ec:a7:2c:52:42:35:3d:fe: ee:48:52:82:5b:16:7b:0f:e7:f3:7d:d5:e5:b1:59:f3:c8:86: 5b:59:bf:1a:50:02:21:5d:82:7c:dd:66:14:e1:49:db:cc:7e: 6b:81:93:37:1c:c2:f2:88:a8:69:f3:40:27:5a:02:f0:8c:91: f2:cd:8f:f0:7d:ba:5b:8d:a2:88:d3:40:34:17:0e:70:35:b4: d7:9f:e8:a1:fd:a8:91:1e:e3:e4:bc:eb:1b:98:77:dc:f2:b8: c7:71:2a:2e:63:5f:ec:ce:5d:05:be:ff:9f:3d:7a:8a:52:37: 3c:62:bf:22 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUM4YLApGbocLPUcFFn9Z7ciKn/Q8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjUxNUQ0QkY5RUY3QUFFNUFFQkMyMkY1MkMxN0ZGMTdE Q0Q2RkRDMjAeFw0yNDA1MTkwNDIwMTdaFw0yNTA1MTgwNDI1MTdaMDMxMTAvBgNV BAMTKDA4Rjg0OEI3QTRBODZBNTZEM0IzRUUzRTU3MEFEQTM1ODEzNDA0NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLfbM38FG4xSF5I260hSi2k3iW BQ7D1C7zf0ST1rCDK5IioPpYeOV8GRyKd1KdlEMxz7QxO6TRxZ1dUF9yWIX+zgYx mdN4mMj3v/IfGhdIT9Su9p140xsd/VettsevX0lBQDqeGcVBl3qG4Tv7ToHhu3tW wTC7M64mzYOrgXBd66b2QeLIrusqnPOL7ZdFRdiuZUOV+KKFDyOWsgUKpMJOO7MS opa4CDYgEb5rWbfV5Q7rXRn7Mz3kIztZQUPySe7MAP8Q35ruvjuEuYPB4+dGCf3d igzmjXxmGTI1NEkIGZYCMYqh4skPa4uEIUkzFzEeRCOD8Yx9ZSz+kvCZkPP9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUCPhIt6SoalbTs+4+VwraNYE0BGUwHwYDVR0j BBgwFoAUJRXUv573quWuvCL1LBf/F9zW/cIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YTA5OGYwMC1hMGEwLTRiNWMtOWU4My02MDY3MzcxMjhjYjEvMC8yNTE1RDRCRjlF RjdBQUU1QUVCQzIyRjUyQzE3RkYxN0RDRDZGREMyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjUxNUQ0QkY5RUY3QUFFNUFFQkMyMkY1MkMxN0ZGMTdEQ0Q2 RkRDMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JhMDk4ZjAwLWEwYTAtNGI1Yy05 ZTgzLTYwNjczNzEyOGNiMS8wLzMxMzYzMDJlMzEzOTJlMzgzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM3MzUzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKATVDANBgkqhkiG 9w0BAQsFAAOCAQEAL/2GqZwl5qynP6D2JYuQ23jDKsKcuYm+QnxGXKct8cQvpCbR Qofj9/UcpnUyonkQwzc5Cf2R5hm5YpbFEkucT3RIHyz//s5xqXcaHii5BwnSvprF Ad2K2MVyCXUZXJ5r5rzdJJYg46jD798uihkUfUX5XaV22COwy5SrLNhR7GB3At4G p9tVZeynLFJCNT3+7khSglsWew/n833V5bFZ88iGW1m/GlACIV2CfN1mFOFJ28x+ a4GTNxzC8oioafNAJ1oC8IyR8s2P8H26W42iiNNANBcOcDW015/oof2okR7j5Lzr G5h33PK4x3EqLmNf7M5dBb7/nz16ilI3PGK/Ig== -----END CERTIFICATE-----Generated at Sun Nov 24 07:10:01 2024 by rpki-client on console-ams.rpki-client.org