$ rpki-client -vvf repo-rpki.idnic.net/repo/cafcbfbb-ba3f-4d53-a04f-14d6f4be0cb1/0/3136302e3138372e3233312e302f32342d3234203d3e20313533313430.roa File: 3136302e3138372e3233312e302f32342d3234203d3e20313533313430.roa (raw, json) Hash identifier: CfyTnP9T5RGgWbjQJLTa07E3uK+I4w43c5c8aAok3+8= Subject key identifier: 70:48:58:C7:91:2C:F9:58:70:5C:F2:9E:39:49:4B:F3:DB:22:79:24 Certificate issuer: /CN=9C0DBD7AE1932E6B9D0983FC48E32143D8A4CF93 Certificate serial: 5B256F06F19B325DDE58CBE70A1762F06252512A Authority key identifier: 9C:0D:BD:7A:E1:93:2E:6B:9D:09:83:FC:48:E3:21:43:D8:A4:CF:93 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9C0DBD7AE1932E6B9D0983FC48E32143D8A4CF93.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cafcbfbb-ba3f-4d53-a04f-14d6f4be0cb1/0/3136302e3138372e3233312e302f32342d3234203d3e20313533313430.roa Signing time: Fri 20 Dec 2024 02:42:27 +0000 ROA not before: Fri 20 Dec 2024 02:37:27 +0000 ROA not after: Fri 19 Dec 2025 02:42:27 +0000 asID: 153140 IP address blocks: 160.187.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cafcbfbb-ba3f-4d53-a04f-14d6f4be0cb1/0/9C0DBD7AE1932E6B9D0983FC48E32143D8A4CF93.crl rsync://repo-rpki.idnic.net/repo/cafcbfbb-ba3f-4d53-a04f-14d6f4be0cb1/0/9C0DBD7AE1932E6B9D0983FC48E32143D8A4CF93.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9C0DBD7AE1932E6B9D0983FC48E32143D8A4CF93.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Feb 2025 00:07:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:25:6f:06:f1:9b:32:5d:de:58:cb:e7:0a:17:62:f0:62:52:51:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9C0DBD7AE1932E6B9D0983FC48E32143D8A4CF93 Validity Not Before: Dec 20 02:37:27 2024 GMT Not After : Dec 19 02:42:27 2025 GMT Subject: CN=704858C7912CF958705CF29E39494BF3DB227924 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:5c:a7:a1:fd:f2:d9:ac:a6:91:3c:ae:ae:bd: 1d:95:b4:94:5a:12:62:db:12:7e:57:5e:dd:4b:22: 1e:f9:5f:b1:b0:7f:8b:34:c0:db:91:ff:66:59:42: 4f:c1:43:d7:e2:51:4e:d7:fb:c9:bd:0e:cb:ae:37: 44:d1:eb:b2:00:24:1a:45:d1:3a:e9:38:b0:11:2f: 6e:cd:7f:4b:94:80:5f:43:d8:bc:bc:1d:19:63:b3: 12:36:8e:d8:fd:6c:be:87:63:fc:eb:09:5b:b5:22: c0:9d:98:3a:31:98:be:7b:c0:72:83:fa:e9:5f:7e: 0a:10:bb:3b:b2:c6:5d:df:b3:ab:f3:a3:f5:a4:8a: 0c:0c:46:95:0a:cf:52:77:3e:98:9d:b1:1f:06:49: af:30:b4:20:60:6f:61:3b:b9:6d:02:b5:67:dc:b5: 61:7e:02:ec:b2:39:00:e5:78:04:d6:73:ae:6d:a9: cc:be:bb:99:64:ad:b1:dc:02:32:3d:16:ba:08:ec: d1:bf:d3:45:ff:25:f8:cb:3b:22:4e:ad:c0:87:9e: e9:d1:dc:f0:d0:4a:52:6f:d9:7e:84:e5:c4:a6:5b: 5a:8e:f8:f3:eb:23:f0:9c:44:bc:ee:a0:ac:b4:95: 2e:27:b6:4c:39:e7:0e:5f:16:a4:c1:82:ed:ac:51: 0f:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:48:58:C7:91:2C:F9:58:70:5C:F2:9E:39:49:4B:F3:DB:22:79:24 X509v3 Authority Key Identifier: keyid:9C:0D:BD:7A:E1:93:2E:6B:9D:09:83:FC:48:E3:21:43:D8:A4:CF:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cafcbfbb-ba3f-4d53-a04f-14d6f4be0cb1/0/9C0DBD7AE1932E6B9D0983FC48E32143D8A4CF93.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9C0DBD7AE1932E6B9D0983FC48E32143D8A4CF93.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cafcbfbb-ba3f-4d53-a04f-14d6f4be0cb1/0/3136302e3138372e3233312e302f32342d3234203d3e20313533313430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.231.0/24 Signature Algorithm: sha256WithRSAEncryption 56:8f:d0:c9:9e:08:97:8f:e5:b9:0d:61:d6:31:58:30:24:36: 68:fe:cc:2c:9f:07:06:62:f4:3d:41:17:ca:47:35:e1:aa:e7: 63:0b:c9:0e:e3:6e:15:0e:f6:7c:c1:bc:77:e5:db:ca:f9:3c: 07:df:95:cb:5e:48:c4:27:13:b9:9b:cc:1b:f3:3b:cd:b1:b8: 4a:b9:87:c3:e6:51:1b:2a:c1:2a:24:1f:b9:a5:28:5d:c4:7c: d0:f8:ea:53:8a:80:ef:d1:f4:bc:06:1e:fc:35:b1:a8:52:3e: 5d:39:3a:64:e4:64:bb:7c:31:a9:2f:ed:a0:c7:0e:ed:39:70: c6:df:45:d1:55:43:22:ff:2d:1e:72:34:ef:66:0f:2a:50:56: 2c:b5:aa:84:e5:45:77:95:df:19:23:ac:38:08:73:ea:30:f4: a9:67:df:3c:cd:ae:a2:4a:67:cf:08:14:dc:20:06:6d:61:fe: 48:ce:2b:79:8c:9f:f6:be:b4:cb:e7:84:7d:df:f7:80:d2:a3: 55:35:a4:5f:9e:f1:ff:c3:19:3d:08:5f:86:9a:ee:31:97:8a: fa:fe:1e:d4:f8:12:f3:63:81:65:ff:9e:83:77:9e:64:0a:9a: 2c:b6:d5:0d:60:f7:54:4d:84:28:09:97:b2:a9:12:56:15:91: a3:e9:03:8b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWyVvBvGbMl3eWMvnChdi8GJSUSowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUMwREJEN0FFMTkzMkU2QjlEMDk4M0ZDNDhFMzIxNDNE OEE0Q0Y5MzAeFw0yNDEyMjAwMjM3MjdaFw0yNTEyMTkwMjQyMjdaMDMxMTAvBgNV BAMTKDcwNDg1OEM3OTEyQ0Y5NTg3MDVDRjI5RTM5NDk0QkYzREIyMjc5MjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeXKeh/fLZrKaRPK6uvR2VtJRa EmLbEn5XXt1LIh75X7Gwf4s0wNuR/2ZZQk/BQ9fiUU7X+8m9DsuuN0TR67IAJBpF 0TrpOLARL27Nf0uUgF9D2Ly8HRljsxI2jtj9bL6HY/zrCVu1IsCdmDoxmL57wHKD +ulffgoQuzuyxl3fs6vzo/WkigwMRpUKz1J3PpidsR8GSa8wtCBgb2E7uW0CtWfc tWF+AuyyOQDleATWc65tqcy+u5lkrbHcAjI9FroI7NG/00X/JfjLOyJOrcCHnunR 3PDQSlJv2X6E5cSmW1qO+PPrI/CcRLzuoKy0lS4ntkw55w5fFqTBgu2sUQ9BAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUcEhYx5Es+VhwXPKeOUlL89sieSQwHwYDVR0j BBgwFoAUnA29euGTLmudCYP8SOMhQ9ikz5MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YWZjYmZiYi1iYTNmLTRkNTMtYTA0Zi0xNGQ2ZjRiZTBjYjEvMC85QzBEQkQ3QUUx OTMyRTZCOUQwOTgzRkM0OEUzMjE0M0Q4QTRDRjkzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUMwREJEN0FFMTkzMkU2QjlEMDk4M0ZDNDhFMzIxNDNEOEE0 Q0Y5My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhZmNiZmJiLWJhM2YtNGQ1My1h MDRmLTE0ZDZmNGJlMGNiMS8wLzMxMzYzMDJlMzEzODM3MmUzMjMzMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzMzMTM0MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACgu+cwDQYJ KoZIhvcNAQELBQADggEBAFaP0MmeCJeP5bkNYdYxWDAkNmj+zCyfBwZi9D1BF8pH NeGq52MLyQ7jbhUO9nzBvHfl28r5PAfflcteSMQnE7mbzBvzO82xuEq5h8PmURsq wSokH7mlKF3EfND46lOKgO/R9LwGHvw1sahSPl05OmTkZLt8Makv7aDHDu05cMbf RdFVQyL/LR5yNO9mDypQViy1qoTlRXeV3xkjrDgIc+ow9Kln3zzNrqJKZ88IFNwg Bm1h/kjOK3mMn/a+tMvnhH3f94DSo1U1pF+e8f/DGT0IX4aa7jGXivr+HtT4EvNj gWX/noN3nmQKmiy21Q1g91RNhCgJl7KpElYVkaPpA4s= -----END CERTIFICATE-----Generated at Sat Feb 22 20:56:22 2025 by rpki-client