$ rpki-client -vvf repo-rpki.idnic.net/repo/bbed6dc4-d38b-44ba-9f0b-428455b276ee/0/3136302e32302e3235302e302f32342d3234203d3e20313532383132.roa File: 3136302e32302e3235302e302f32342d3234203d3e20313532383132.roa (raw, json) Hash identifier: YV/07SIZYC4/VtvBJStdBJgRKQnAK1y/gzxul6oggek= Subject key identifier: 49:B3:74:48:DC:EE:A8:AC:58:DF:D4:99:57:F0:D3:EF:75:DB:28:4A Certificate issuer: /CN=23BE8CEA619406F9D860B1F97EE8F7ED77E8EE7C Certificate serial: 2A19280A9E6C10211CCD1149ECCC42AA2243E136 Authority key identifier: 23:BE:8C:EA:61:94:06:F9:D8:60:B1:F9:7E:E8:F7:ED:77:E8:EE:7C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/23BE8CEA619406F9D860B1F97EE8F7ED77E8EE7C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bbed6dc4-d38b-44ba-9f0b-428455b276ee/0/3136302e32302e3235302e302f32342d3234203d3e20313532383132.roa Signing time: Tue 22 Oct 2024 04:09:11 +0000 ROA not before: Tue 22 Oct 2024 04:04:11 +0000 ROA not after: Tue 21 Oct 2025 04:09:11 +0000 asID: 152812 IP address blocks: 160.20.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bbed6dc4-d38b-44ba-9f0b-428455b276ee/0/23BE8CEA619406F9D860B1F97EE8F7ED77E8EE7C.crl rsync://repo-rpki.idnic.net/repo/bbed6dc4-d38b-44ba-9f0b-428455b276ee/0/23BE8CEA619406F9D860B1F97EE8F7ED77E8EE7C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/23BE8CEA619406F9D860B1F97EE8F7ED77E8EE7C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:19:28:0a:9e:6c:10:21:1c:cd:11:49:ec:cc:42:aa:22:43:e1:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23BE8CEA619406F9D860B1F97EE8F7ED77E8EE7C Validity Not Before: Oct 22 04:04:11 2024 GMT Not After : Oct 21 04:09:11 2025 GMT Subject: CN=49B37448DCEEA8AC58DFD49957F0D3EF75DB284A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:b9:e5:2d:52:a8:e0:15:19:7f:cb:b8:53:6f: 39:98:af:ec:6c:eb:a8:29:8b:88:d7:98:53:74:9f: 7e:83:2b:e6:31:3e:7e:7a:50:35:77:cf:e1:61:4e: 5f:c0:21:30:e7:64:aa:2b:14:48:77:f9:e3:f9:3d: ff:9f:7a:0d:68:40:0b:05:1f:00:cc:02:96:72:87: f6:b3:34:07:92:68:7b:47:5e:63:11:da:f8:0b:b6: e1:d5:df:d2:1f:21:2c:d0:1e:43:22:5d:32:6a:24: ab:bf:b8:27:fd:77:76:07:02:92:56:31:da:50:ae: 99:e1:99:b3:50:b0:69:42:5b:25:61:3c:5b:ab:15: ed:d0:4e:79:cf:9b:32:4a:fa:51:e9:9b:a9:c5:e9: 85:30:75:fa:85:e4:bb:42:ec:0e:1f:2d:c3:12:62: 5b:d8:09:3f:4b:c3:69:cd:f5:7f:c3:8d:97:c5:cf: b9:1b:d1:ee:a9:e0:8e:15:b6:bf:6e:86:b4:5f:d4: ed:16:89:e5:4d:eb:7e:96:ef:23:07:b7:92:9e:3e: ff:0f:03:9c:e9:d4:85:5c:6e:35:73:2c:b2:53:8f: 5c:f6:01:d6:70:20:40:fb:67:8d:0f:74:e3:e0:87: 10:84:e0:95:23:63:97:5c:93:e9:74:52:89:69:45: e9:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:B3:74:48:DC:EE:A8:AC:58:DF:D4:99:57:F0:D3:EF:75:DB:28:4A X509v3 Authority Key Identifier: keyid:23:BE:8C:EA:61:94:06:F9:D8:60:B1:F9:7E:E8:F7:ED:77:E8:EE:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bbed6dc4-d38b-44ba-9f0b-428455b276ee/0/23BE8CEA619406F9D860B1F97EE8F7ED77E8EE7C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/23BE8CEA619406F9D860B1F97EE8F7ED77E8EE7C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bbed6dc4-d38b-44ba-9f0b-428455b276ee/0/3136302e32302e3235302e302f32342d3234203d3e20313532383132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.20.250.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:9a:4a:61:e6:20:51:fb:31:a9:04:66:dc:be:df:1f:5b:04: 98:89:d4:5b:7b:b1:6a:86:ed:c2:db:a5:70:c8:ca:98:a4:8d: 65:fb:0c:ac:eb:ad:41:36:27:d9:3d:7a:be:4c:3c:2e:3d:34: 6c:01:fa:88:a5:52:b8:d0:ee:82:b6:ae:fa:cd:90:0b:98:5c: d4:76:d7:ad:d6:9d:69:14:f4:31:ba:83:5f:77:05:4a:18:6f: bb:9e:06:5c:cb:91:26:20:94:40:09:81:b8:bf:05:60:be:57: 3f:2f:8d:1d:1e:dd:54:2b:bf:3f:94:de:b5:5c:ee:93:f7:e5: 68:19:97:c1:01:4d:38:69:b7:cd:fa:6f:70:9c:9f:b9:fd:48: 71:9f:a5:21:a9:7e:33:7d:4d:56:ec:28:4c:71:cf:db:6f:95: 35:e8:94:a3:c0:fe:96:3f:30:26:15:54:02:1e:cd:52:8b:c2: 61:43:a4:6f:bb:eb:47:84:90:44:5f:71:af:39:ae:b9:02:0e: 00:52:0f:86:42:0b:f1:e7:e0:1a:64:3a:44:58:53:f1:a7:18: 04:03:31:97:cd:23:a9:67:49:78:90:2a:f8:c0:e2:d5:78:c3: 37:bb:ba:93:34:e1:e6:3a:09:bb:19:54:c1:56:6d:c8:63:a3: d9:8d:eb:d0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKhkoCp5sECEczRFJ7MxCqiJD4TYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjNCRThDRUE2MTk0MDZGOUQ4NjBCMUY5N0VFOEY3RUQ3 N0U4RUU3QzAeFw0yNDEwMjIwNDA0MTFaFw0yNTEwMjEwNDA5MTFaMDMxMTAvBgNV BAMTKDQ5QjM3NDQ4RENFRUE4QUM1OERGRDQ5OTU3RjBEM0VGNzVEQjI4NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXueUtUqjgFRl/y7hTbzmYr+xs 66gpi4jXmFN0n36DK+YxPn56UDV3z+FhTl/AITDnZKorFEh3+eP5Pf+feg1oQAsF HwDMApZyh/azNAeSaHtHXmMR2vgLtuHV39IfISzQHkMiXTJqJKu/uCf9d3YHApJW MdpQrpnhmbNQsGlCWyVhPFurFe3QTnnPmzJK+lHpm6nF6YUwdfqF5LtC7A4fLcMS YlvYCT9Lw2nN9X/DjZfFz7kb0e6p4I4Vtr9uhrRf1O0WieVN636W7yMHt5KePv8P A5zp1IVcbjVzLLJTj1z2AdZwIED7Z40PdOPghxCE4JUjY5dck+l0UolpRel/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSbN0SNzuqKxY39SZV/DT73XbKEowHwYDVR0j BBgwFoAUI76M6mGUBvnYYLH5fuj37Xfo7nwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YmVkNmRjNC1kMzhiLTQ0YmEtOWYwYi00Mjg0NTViMjc2ZWUvMC8yM0JFOENFQTYx OTQwNkY5RDg2MEIxRjk3RUU4RjdFRDc3RThFRTdDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjNCRThDRUE2MTk0MDZGOUQ4NjBCMUY5N0VFOEY3RUQ3N0U4 RUU3Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JiZWQ2ZGM0LWQzOGItNDRiYS05 ZjBiLTQyODQ1NWIyNzZlZS8wLzMxMzYzMDJlMzIzMDJlMzIzNTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBT6MA0GCSqG SIb3DQEBCwUAA4IBAQAemkph5iBR+zGpBGbcvt8fWwSYidRbe7Fqhu3C26VwyMqY pI1l+wys661BNifZPXq+TDwuPTRsAfqIpVK40O6Ctq76zZALmFzUdtet1p1pFPQx uoNfdwVKGG+7ngZcy5EmIJRACYG4vwVgvlc/L40dHt1UK78/lN61XO6T9+VoGZfB AU04abfN+m9wnJ+5/Uhxn6UhqX4zfU1W7ChMcc/bb5U16JSjwP6WPzAmFVQCHs1S i8JhQ6Rvu+tHhJBEX3GvOa65Ag4AUg+GQgvx5+AaZDpEWFPxpxgEAzGXzSOpZ0l4 kCr4wOLVeMM3u7qTNOHmOgm7GVTBVm3IY6PZjevQ -----END CERTIFICATE-----Generated at Thu Nov 21 15:01:34 2024 by rpki-client on console-fra.rpki-client.org