$ rpki-client -vvf repo-rpki.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/0/3136302e3138372e3134342e302f32332d3233203d3e20313533313231.roa File: 3136302e3138372e3134342e302f32332d3233203d3e20313533313231.roa (raw, json) Hash identifier: yfEz4xxyhhlIrThNudtzDBzlif+6LokGlIAmgcn6z/Y= Subject key identifier: C1:4E:0A:63:28:85:70:A6:95:38:C8:CF:44:14:4D:87:CA:93:D4:35 Certificate issuer: /CN=31C2F0F25531E3524E0E0E901310435F2F406AC6 Certificate serial: 333D99312B6B3D8DF13B2ABF8C9BB1E5A145C840 Authority key identifier: 31:C2:F0:F2:55:31:E3:52:4E:0E:0E:90:13:10:43:5F:2F:40:6A:C6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/31C2F0F25531E3524E0E0E901310435F2F406AC6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/0/3136302e3138372e3134342e302f32332d3233203d3e20313533313231.roa Signing time: Tue 29 Oct 2024 07:25:07 +0000 ROA not before: Tue 29 Oct 2024 07:20:07 +0000 ROA not after: Tue 28 Oct 2025 07:25:07 +0000 asID: 153121 IP address blocks: 160.187.144.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/0/31C2F0F25531E3524E0E0E901310435F2F406AC6.crl rsync://repo-rpki.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/0/31C2F0F25531E3524E0E0E901310435F2F406AC6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/31C2F0F25531E3524E0E0E901310435F2F406AC6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:3d:99:31:2b:6b:3d:8d:f1:3b:2a:bf:8c:9b:b1:e5:a1:45:c8:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=31C2F0F25531E3524E0E0E901310435F2F406AC6 Validity Not Before: Oct 29 07:20:07 2024 GMT Not After : Oct 28 07:25:07 2025 GMT Subject: CN=C14E0A63288570A69538C8CF44144D87CA93D435 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:a1:b9:02:9f:c7:92:91:ba:d5:a2:d6:82:cb: e4:35:72:41:c7:c3:7d:48:6e:4d:f3:a5:63:c2:6a: 44:35:5e:59:e7:42:24:a9:b0:a2:c2:87:f0:90:50: 95:cc:e6:29:8b:cd:e5:52:d0:03:d2:a0:07:ff:26: 7c:9b:ee:4d:cf:70:78:8f:27:62:62:8e:e8:cb:a1: 18:84:1a:0b:5b:0b:75:5c:27:25:1b:f8:76:48:3f: 2c:4d:fb:65:ff:12:c5:b1:b5:9b:ad:76:85:ea:d5: d6:f0:2c:bb:9d:63:08:1d:77:3f:c5:77:59:37:d5: 50:31:c6:a1:a8:50:5b:9c:ff:23:6d:34:6f:b3:8f: 83:61:49:e9:fb:03:68:14:84:4c:37:a6:f3:d0:fd: a8:fa:ca:c3:2d:5b:76:76:a2:dc:20:f6:f9:41:70: a0:d0:93:15:62:12:99:88:4c:4b:be:7d:1c:28:b7: 37:89:61:55:58:53:5d:6b:33:01:c5:17:71:a0:19: 9e:eb:3c:f5:56:7c:f2:bb:6a:b9:15:ce:ee:b2:b0: 9e:36:a7:18:4d:2f:10:61:3a:5d:fc:4b:f9:81:87: e5:3d:f1:a3:fd:7a:d3:15:4e:27:64:8b:3d:e5:ff: 0a:e1:48:58:6e:f1:ca:94:e6:26:98:62:01:40:ec: ff:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:4E:0A:63:28:85:70:A6:95:38:C8:CF:44:14:4D:87:CA:93:D4:35 X509v3 Authority Key Identifier: keyid:31:C2:F0:F2:55:31:E3:52:4E:0E:0E:90:13:10:43:5F:2F:40:6A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/0/31C2F0F25531E3524E0E0E901310435F2F406AC6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/31C2F0F25531E3524E0E0E901310435F2F406AC6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/0/3136302e3138372e3134342e302f32332d3233203d3e20313533313231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.144.0/23 Signature Algorithm: sha256WithRSAEncryption 29:76:47:01:1d:94:51:de:0f:f6:e0:2c:86:81:18:a7:44:d7: e3:6a:96:0e:37:94:0e:e8:bd:97:5a:56:01:5a:b7:47:e5:cf: 4f:02:20:8a:25:fa:91:78:ff:96:b0:dc:a0:a6:70:0e:13:b5: f1:39:8e:fb:02:db:5a:d6:83:5c:ec:4b:a5:d7:0a:ce:8a:3f: ce:26:cb:5d:64:7e:7d:cc:9c:25:ce:42:c1:fc:98:18:4b:f4: 88:08:a0:7f:7c:17:dc:a2:ec:fb:cc:e6:21:d9:ec:b4:d8:75: 4f:91:25:10:9d:af:8a:04:a4:87:55:cc:95:53:45:2c:42:43: a5:c0:01:05:76:36:8c:a6:a0:35:86:45:65:54:d5:4f:3e:45: df:18:cb:d6:e2:86:4a:64:81:14:c8:17:14:8e:a5:77:42:47: 98:41:e0:01:8a:8c:d1:f8:1c:82:d1:8f:95:3e:38:af:79:1f: 97:fe:cc:a0:82:e4:d2:fc:e3:46:24:7f:4a:1c:ba:e6:79:60: 1b:bb:45:0b:35:32:13:eb:32:22:23:da:3f:14:77:d2:50:67: 73:c9:70:2f:31:3c:77:c3:e3:0c:9c:33:77:e0:ab:be:23:9b: 52:6a:55:9e:1b:64:eb:bb:fe:da:13:6a:14:e7:4f:77:d8:a1: d9:00:53:3f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMz2ZMStrPY3xOyq/jJux5aFFyEAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzFDMkYwRjI1NTMxRTM1MjRFMEUwRTkwMTMxMDQzNUYy RjQwNkFDNjAeFw0yNDEwMjkwNzIwMDdaFw0yNTEwMjgwNzI1MDdaMDMxMTAvBgNV BAMTKEMxNEUwQTYzMjg4NTcwQTY5NTM4QzhDRjQ0MTQ0RDg3Q0E5M0Q0MzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqobkCn8eSkbrVotaCy+Q1ckHH w31Ibk3zpWPCakQ1XlnnQiSpsKLCh/CQUJXM5imLzeVS0APSoAf/Jnyb7k3PcHiP J2JijujLoRiEGgtbC3VcJyUb+HZIPyxN+2X/EsWxtZutdoXq1dbwLLudYwgddz/F d1k31VAxxqGoUFuc/yNtNG+zj4NhSen7A2gUhEw3pvPQ/aj6ysMtW3Z2otwg9vlB cKDQkxViEpmITEu+fRwotzeJYVVYU11rMwHFF3GgGZ7rPPVWfPK7arkVzu6ysJ42 pxhNLxBhOl38S/mBh+U98aP9etMVTidkiz3l/wrhSFhu8cqU5iaYYgFA7P9HAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUwU4KYyiFcKaVOMjPRBRNh8qT1DUwHwYDVR0j BBgwFoAUMcLw8lUx41JODg6QExBDXy9AasYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YTg5YjdkZC05OWE3LTQ1MGUtYmU4NC1iM2JmYzczNDBmMWYvMC8zMUMyRjBGMjU1 MzFFMzUyNEUwRTBFOTAxMzEwNDM1RjJGNDA2QUM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMzFDMkYwRjI1NTMxRTM1MjRFMEUwRTkwMTMxMDQzNUYyRjQw NkFDNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JhODliN2RkLTk5YTctNDUwZS1i ZTg0LWIzYmZjNzM0MGYxZi8wLzMxMzYzMDJlMzEzODM3MmUzMTM0MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM1MzMzMTMyMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGgu5AwDQYJ KoZIhvcNAQELBQADggEBACl2RwEdlFHeD/bgLIaBGKdE1+Nqlg43lA7ovZdaVgFa t0flz08CIIol+pF4/5aw3KCmcA4TtfE5jvsC21rWg1zsS6XXCs6KP84my11kfn3M nCXOQsH8mBhL9IgIoH98F9yi7PvM5iHZ7LTYdU+RJRCdr4oEpIdVzJVTRSxCQ6XA AQV2NoymoDWGRWVU1U8+Rd8Yy9bihkpkgRTIFxSOpXdCR5hB4AGKjNH4HILRj5U+ OK95H5f+zKCC5NL840Ykf0ocuuZ5YBu7RQs1MhPrMiIj2j8Ud9JQZ3PJcC8xPHfD 4wycM3fgq74jm1JqVZ4bZOu7/toTahTnT3fYodkAUz8= -----END CERTIFICATE-----Generated at Sat Nov 23 03:54:22 2024 by rpki-client on console-ams.rpki-client.org