$ rpki-client -vvf repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/3136302e31392e38352e302f32342d3234203d3e20313532373534.roa File: 3136302e31392e38352e302f32342d3234203d3e20313532373534.roa (raw, json) Hash identifier: 8DQsxFhy3B2FSJjcIs7WJOa5hiXQX9aZo0w+Wjhmzdo= Subject key identifier: E5:92:FB:9A:4A:18:99:90:E3:5C:F6:56:19:83:5E:61:2C:D7:85:8E Certificate issuer: /CN=2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2 Certificate serial: 525E194F58CF29AB7D71A800C7B6154FE4EB1BE6 Authority key identifier: 25:15:D4:BF:9E:F7:AA:E5:AE:BC:22:F5:2C:17:FF:17:DC:D6:FD:C2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/3136302e31392e38352e302f32342d3234203d3e20313532373534.roa Signing time: Sun 19 May 2024 04:25:30 +0000 ROA not before: Sun 19 May 2024 04:20:30 +0000 ROA not after: Sun 18 May 2025 04:25:30 +0000 asID: 152754 IP address blocks: 160.19.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.crl rsync://repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Jul 2024 04:40:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:5e:19:4f:58:cf:29:ab:7d:71:a8:00:c7:b6:15:4f:e4:eb:1b:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2 Validity Not Before: May 19 04:20:30 2024 GMT Not After : May 18 04:25:30 2025 GMT Subject: CN=E592FB9A4A189990E35CF65619835E612CD7858E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:71:bf:65:1a:e9:ab:6f:d7:c2:37:08:07:13: cc:a2:4c:bc:08:d4:3f:44:77:9f:28:49:9d:16:30: 22:63:23:f7:b4:fd:0b:5b:7c:06:0d:92:fc:18:2f: 43:4a:8e:f1:4b:cf:65:a1:7d:fb:69:73:aa:19:eb: cd:ee:9b:6a:7e:48:a6:be:48:03:5f:bb:d6:ec:59: 3e:e8:45:0b:e4:bb:34:0c:9c:36:b7:87:a8:bb:fb: 89:6f:31:6c:50:bd:a0:20:37:77:60:92:65:82:7c: b5:51:cd:22:1b:9c:0b:9a:09:ef:53:9b:01:c0:7d: 75:ca:77:a8:00:55:26:e6:8c:f4:b0:6e:23:ba:2e: c8:ec:6b:6f:27:6f:48:4d:c3:e7:96:1e:5f:09:a9: 8d:75:5e:b3:a2:a7:b1:37:bb:a7:30:80:67:40:9c: a7:d9:d7:a5:cd:00:f2:45:9e:20:e4:a5:8d:d6:c6: 48:ed:4b:47:b3:43:8c:d2:d3:39:99:d5:bd:e9:3a: 98:42:37:ce:4d:20:96:da:cc:64:93:51:65:20:9e: 2e:b4:cd:e6:64:09:70:d3:83:c5:c0:7f:0b:14:8b: e0:1d:ad:97:c0:e0:13:0f:27:18:8e:bf:e7:0c:66: 58:5a:c5:dc:50:41:38:3f:b3:a9:e5:93:0b:d1:00: 59:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:92:FB:9A:4A:18:99:90:E3:5C:F6:56:19:83:5E:61:2C:D7:85:8E X509v3 Authority Key Identifier: keyid:25:15:D4:BF:9E:F7:AA:E5:AE:BC:22:F5:2C:17:FF:17:DC:D6:FD:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/3136302e31392e38352e302f32342d3234203d3e20313532373534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.85.0/24 Signature Algorithm: sha256WithRSAEncryption 85:81:bb:01:37:be:24:0c:18:bb:fe:a1:54:13:98:74:f4:52: 40:19:14:3c:74:a8:2b:97:87:8a:3b:cd:06:e0:0c:d6:8c:4d: da:7c:43:72:2c:5a:64:1a:63:05:d3:fd:e5:3c:20:e7:5f:2a: 77:66:dc:6a:25:89:f0:00:98:ed:2c:47:f8:7f:a4:68:b9:56: a6:7f:17:98:98:f8:8d:75:f4:a7:21:e5:98:1a:60:4e:fd:71: ff:29:c6:b3:0c:bf:11:d0:44:d2:d2:d8:2f:98:80:cc:b0:62: 03:b1:82:f2:f5:51:4a:fb:a5:29:13:56:a6:96:06:54:20:b0: 01:1f:6d:cb:62:76:98:98:0d:9d:ee:cf:bf:e3:73:16:0c:c6: 51:3c:e9:52:ec:f1:38:1e:e7:95:26:3e:04:a6:ae:b9:26:40: e7:00:e9:12:de:6a:f4:02:8a:37:44:b6:ad:33:88:8c:8f:8b: df:6c:48:d7:22:a5:87:d6:ca:82:79:17:e6:8d:6f:df:52:d5: 5c:74:79:57:98:24:57:d0:ba:75:de:bf:92:60:79:ad:00:d0: dd:20:b1:78:e9:be:11:32:62:0f:6c:fe:ec:3d:4d:58:2e:78: 93:b2:a3:61:3e:82:6e:09:c3:2f:4b:77:5c:07:ab:d6:56:e7: 32:17:20:6b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUl4ZT1jPKat9cagAx7YVT+TrG+YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjUxNUQ0QkY5RUY3QUFFNUFFQkMyMkY1MkMxN0ZGMTdE Q0Q2RkRDMjAeFw0yNDA1MTkwNDIwMzBaFw0yNTA1MTgwNDI1MzBaMDMxMTAvBgNV BAMTKEU1OTJGQjlBNEExODk5OTBFMzVDRjY1NjE5ODM1RTYxMkNENzg1OEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrcb9lGumrb9fCNwgHE8yiTLwI 1D9Ed58oSZ0WMCJjI/e0/QtbfAYNkvwYL0NKjvFLz2Whfftpc6oZ683um2p+SKa+ SANfu9bsWT7oRQvkuzQMnDa3h6i7+4lvMWxQvaAgN3dgkmWCfLVRzSIbnAuaCe9T mwHAfXXKd6gAVSbmjPSwbiO6Lsjsa28nb0hNw+eWHl8JqY11XrOip7E3u6cwgGdA nKfZ16XNAPJFniDkpY3WxkjtS0ezQ4zS0zmZ1b3pOphCN85NIJbazGSTUWUgni60 zeZkCXDTg8XAfwsUi+AdrZfA4BMPJxiOv+cMZlhaxdxQQTg/s6nlkwvRAFnjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU5ZL7mkoYmZDjXPZWGYNeYSzXhY4wHwYDVR0j BBgwFoAUJRXUv573quWuvCL1LBf/F9zW/cIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YTA5OGYwMC1hMGEwLTRiNWMtOWU4My02MDY3MzcxMjhjYjEvMC8yNTE1RDRCRjlF RjdBQUU1QUVCQzIyRjUyQzE3RkYxN0RDRDZGREMyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjUxNUQ0QkY5RUY3QUFFNUFFQkMyMkY1MkMxN0ZGMTdEQ0Q2 RkRDMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JhMDk4ZjAwLWEwYTAtNGI1Yy05 ZTgzLTYwNjczNzEyOGNiMS8wLzMxMzYzMDJlMzEzOTJlMzgzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM3MzUzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKATVTANBgkqhkiG 9w0BAQsFAAOCAQEAhYG7ATe+JAwYu/6hVBOYdPRSQBkUPHSoK5eHijvNBuAM1oxN 2nxDcixaZBpjBdP95Twg518qd2bcaiWJ8ACY7SxH+H+kaLlWpn8XmJj4jXX0pyHl mBpgTv1x/ynGswy/EdBE0tLYL5iAzLBiA7GC8vVRSvulKRNWppYGVCCwAR9ty2J2 mJgNne7Pv+NzFgzGUTzpUuzxOB7nlSY+BKauuSZA5wDpEt5q9AKKN0S2rTOIjI+L 32xI1yKlh9bKgnkX5o1v31LVXHR5V5gkV9C6dd6/kmB5rQDQ3SCxeOm+ETJiD2z+ 7D1NWC54k7KjYT6CbgnDL0t3XAer1lbnMhcgaw== -----END CERTIFICATE-----Generated at Wed Jul 3 08:09:11 2024 by rpki-client on console-fra.rpki-client.org