$ rpki-client -vvf repo-rpki.idnic.net/repo/ce7d738e-2cc7-4bd2-bb28-9142e1baa0ba/0/3136302e32322e3231372e302f32342d3234203d3e20313532383431.roa File: 3136302e32322e3231372e302f32342d3234203d3e20313532383431.roa (raw, json) Hash identifier: WFmbb45OsdQGYdiCaJz96N1Zz/BAAt0EgzBxqgChylM= Subject key identifier: 5B:62:8D:96:87:43:01:AE:E2:C9:99:25:7B:A0:4F:6E:D2:F9:04:98 Certificate issuer: /CN=69FEA3D523BC4635AE385A6D91412834159FF34B Certificate serial: 4F7CC57CD6374968A65F3DEFBE74178960E1722D Authority key identifier: 69:FE:A3:D5:23:BC:46:35:AE:38:5A:6D:91:41:28:34:15:9F:F3:4B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/69FEA3D523BC4635AE385A6D91412834159FF34B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ce7d738e-2cc7-4bd2-bb28-9142e1baa0ba/0/3136302e32322e3231372e302f32342d3234203d3e20313532383431.roa Signing time: Wed 24 Jul 2024 00:34:43 +0000 ROA not before: Wed 24 Jul 2024 00:29:43 +0000 ROA not after: Wed 23 Jul 2025 00:34:43 +0000 asID: 152841 IP address blocks: 160.22.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ce7d738e-2cc7-4bd2-bb28-9142e1baa0ba/0/69FEA3D523BC4635AE385A6D91412834159FF34B.crl rsync://repo-rpki.idnic.net/repo/ce7d738e-2cc7-4bd2-bb28-9142e1baa0ba/0/69FEA3D523BC4635AE385A6D91412834159FF34B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/69FEA3D523BC4635AE385A6D91412834159FF34B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:7c:c5:7c:d6:37:49:68:a6:5f:3d:ef:be:74:17:89:60:e1:72:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69FEA3D523BC4635AE385A6D91412834159FF34B Validity Not Before: Jul 24 00:29:43 2024 GMT Not After : Jul 23 00:34:43 2025 GMT Subject: CN=5B628D96874301AEE2C999257BA04F6ED2F90498 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:3c:b3:c4:7c:ef:a7:e6:64:76:73:40:43:dd: 59:6e:7a:60:56:25:46:39:c0:43:24:d9:77:c6:da: bb:35:45:0d:55:b9:5e:7d:41:c7:77:1c:a6:2c:42: 16:b3:e2:95:24:e8:02:9d:89:c0:7f:6c:e3:df:4f: ee:b8:c7:fe:e2:b5:eb:26:ef:e7:f5:a5:72:42:72: 7e:5e:ef:fa:e2:25:07:44:31:f2:79:59:3f:31:e6: e4:01:15:cf:9c:21:43:cc:23:fa:a1:39:b8:f4:14: fd:f6:21:7e:dc:ab:d7:a9:ef:36:44:d9:bf:03:a2: 80:ae:02:5e:df:df:a5:02:f2:ed:57:f0:2f:67:37: b2:d4:7e:2e:3d:37:aa:c8:0f:48:dc:24:5f:63:e6: e6:de:07:91:85:b5:71:eb:e9:84:89:9f:82:e4:eb: ae:ab:25:7b:2d:c7:8e:a1:9a:78:f3:b6:18:97:cb: 24:42:8e:0f:62:4a:0f:07:5f:aa:85:1d:12:d9:fe: 0c:14:67:63:1b:eb:14:43:66:19:03:9b:c5:44:71: a6:e8:67:7a:10:1a:bb:55:6c:2e:64:bc:bf:63:fc: 3f:35:5b:94:d9:3e:8d:ee:39:ab:7a:2a:13:70:52: 74:6a:05:a4:5e:0c:87:57:ce:25:f2:53:87:ae:e0: 4b:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:62:8D:96:87:43:01:AE:E2:C9:99:25:7B:A0:4F:6E:D2:F9:04:98 X509v3 Authority Key Identifier: keyid:69:FE:A3:D5:23:BC:46:35:AE:38:5A:6D:91:41:28:34:15:9F:F3:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ce7d738e-2cc7-4bd2-bb28-9142e1baa0ba/0/69FEA3D523BC4635AE385A6D91412834159FF34B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/69FEA3D523BC4635AE385A6D91412834159FF34B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ce7d738e-2cc7-4bd2-bb28-9142e1baa0ba/0/3136302e32322e3231372e302f32342d3234203d3e20313532383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.217.0/24 Signature Algorithm: sha256WithRSAEncryption 78:8b:d5:28:c2:86:d3:77:a2:92:30:38:e7:56:76:bb:1e:5d: 06:22:34:c3:b4:94:81:50:68:67:e0:58:dd:fe:d6:aa:be:01: 78:4a:48:92:66:5e:35:d3:01:c8:f8:dd:bf:16:0d:57:e9:bd: b1:8a:b5:ab:0a:fc:42:b4:39:74:fb:db:e6:6d:ca:b0:c2:4c: a8:8a:4d:f2:c7:30:e9:46:a2:64:e2:cc:d8:da:b9:a1:96:9c: 79:b9:bd:5a:ff:49:8b:f5:2e:2c:be:9c:44:85:bf:89:5f:96: e7:e6:4e:1e:99:63:da:03:c3:37:ff:9a:1b:d6:cf:29:b3:83: 93:9a:a0:94:37:ba:bf:17:b7:6c:fd:2d:a6:82:07:c8:96:99: 3c:d8:5d:15:ad:af:37:ae:22:2a:67:31:66:70:a1:c6:22:e1: b3:c8:4d:6f:a7:87:3a:98:85:86:52:c6:3c:5c:de:57:14:92: d8:08:95:8a:96:84:53:31:6a:50:a6:48:0f:5b:52:2a:78:3e: d4:99:e3:0e:a6:db:10:69:27:d6:04:78:63:3c:71:8a:82:99: 3c:cc:77:e2:24:a9:9f:af:a2:1a:cc:40:07:65:fc:27:c8:69: 18:ee:61:f2:63:74:15:d5:3a:76:93:b7:6e:b4:e8:a1:da:a8: aa:82:d5:9f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUT3zFfNY3SWimXz3vvnQXiWDhci0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjlGRUEzRDUyM0JDNDYzNUFFMzg1QTZEOTE0MTI4MzQx NTlGRjM0QjAeFw0yNDA3MjQwMDI5NDNaFw0yNTA3MjMwMDM0NDNaMDMxMTAvBgNV BAMTKDVCNjI4RDk2ODc0MzAxQUVFMkM5OTkyNTdCQTA0RjZFRDJGOTA0OTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaPLPEfO+n5mR2c0BD3VluemBW JUY5wEMk2XfG2rs1RQ1VuV59Qcd3HKYsQhaz4pUk6AKdicB/bOPfT+64x/7itesm 7+f1pXJCcn5e7/riJQdEMfJ5WT8x5uQBFc+cIUPMI/qhObj0FP32IX7cq9ep7zZE 2b8DooCuAl7f36UC8u1X8C9nN7LUfi49N6rID0jcJF9j5ubeB5GFtXHr6YSJn4Lk 666rJXstx46hmnjzthiXyyRCjg9iSg8HX6qFHRLZ/gwUZ2Mb6xRDZhkDm8VEcabo Z3oQGrtVbC5kvL9j/D81W5TZPo3uOat6KhNwUnRqBaReDIdXziXyU4eu4Ev7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUW2KNlodDAa7iyZkle6BPbtL5BJgwHwYDVR0j BBgwFoAUaf6j1SO8RjWuOFptkUEoNBWf80swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZTdkNzM4ZS0yY2M3LTRiZDItYmIyOC05MTQyZTFiYWEwYmEvMC82OUZFQTNENTIz QkM0NjM1QUUzODVBNkQ5MTQxMjgzNDE1OUZGMzRCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNjlGRUEzRDUyM0JDNDYzNUFFMzg1QTZEOTE0MTI4MzQxNTlG RjM0Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NlN2Q3MzhlLTJjYzctNGJkMi1i YjI4LTkxNDJlMWJhYTBiYS8wLzMxMzYzMDJlMzIzMjJlMzIzMTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBbZMA0GCSqG SIb3DQEBCwUAA4IBAQB4i9UowobTd6KSMDjnVna7Hl0GIjTDtJSBUGhn4Fjd/taq vgF4SkiSZl410wHI+N2/Fg1X6b2xirWrCvxCtDl0+9vmbcqwwkyoik3yxzDpRqJk 4szY2rmhlpx5ub1a/0mL9S4svpxEhb+JX5bn5k4emWPaA8M3/5ob1s8ps4OTmqCU N7q/F7ds/S2mggfIlpk82F0Vra83riIqZzFmcKHGIuGzyE1vp4c6mIWGUsY8XN5X FJLYCJWKloRTMWpQpkgPW1IqeD7UmeMOptsQaSfWBHhjPHGKgpk8zHfiJKmfr6Ia zEAHZfwnyGkY7mHyY3QV1Tp2k7dutOih2qiqgtWf -----END CERTIFICATE-----Generated at Wed Nov 20 14:21:29 2024 by rpki-client on console-fra.rpki-client.org