$ rpki-client -vvf repo-rpki.idnic.net/repo/cf2975d5-f990-484e-9460-f136b4551f8d/0/3136302e3138372e3136342e302f32342d3234203d3e20313533313330.roa File: 3136302e3138372e3136342e302f32342d3234203d3e20313533313330.roa (raw, json) Hash identifier: im2cEhcHMcPPGMdkIZRyFzdz2wzWxxkZLPRmLaETJuA= Subject key identifier: 7F:93:0E:C8:99:44:D2:9C:21:C0:C0:D3:69:AB:DA:82:D9:58:16:DD Certificate issuer: /CN=47571F0366875B7351B244D25CB7E8258FB33E93 Certificate serial: 34F3EE8EDEABEBA2E03D1AACE657DEB87CE67C5C Authority key identifier: 47:57:1F:03:66:87:5B:73:51:B2:44:D2:5C:B7:E8:25:8F:B3:3E:93 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/47571F0366875B7351B244D25CB7E8258FB33E93.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cf2975d5-f990-484e-9460-f136b4551f8d/0/3136302e3138372e3136342e302f32342d3234203d3e20313533313330.roa Signing time: Thu 14 Nov 2024 10:27:19 +0000 ROA not before: Thu 14 Nov 2024 10:22:19 +0000 ROA not after: Thu 13 Nov 2025 10:27:19 +0000 asID: 153130 IP address blocks: 160.187.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cf2975d5-f990-484e-9460-f136b4551f8d/0/47571F0366875B7351B244D25CB7E8258FB33E93.crl rsync://repo-rpki.idnic.net/repo/cf2975d5-f990-484e-9460-f136b4551f8d/0/47571F0366875B7351B244D25CB7E8258FB33E93.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/47571F0366875B7351B244D25CB7E8258FB33E93.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:f3:ee:8e:de:ab:eb:a2:e0:3d:1a:ac:e6:57:de:b8:7c:e6:7c:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47571F0366875B7351B244D25CB7E8258FB33E93 Validity Not Before: Nov 14 10:22:19 2024 GMT Not After : Nov 13 10:27:19 2025 GMT Subject: CN=7F930EC89944D29C21C0C0D369ABDA82D95816DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:57:9e:64:06:04:0e:39:3d:fa:dc:bb:a1:37: 28:ac:ee:cf:8e:73:bc:97:42:70:c7:40:8c:67:1f: e6:5f:de:62:3c:15:55:41:0b:c1:a5:d2:60:dc:e9: cb:37:5d:ea:30:db:84:b9:73:16:a0:ed:b3:62:ea: 5b:7a:27:cd:b6:cb:1f:ab:44:c3:6b:15:e0:24:f8: af:23:bb:b8:08:ef:d8:b5:ec:55:03:63:81:7f:44: aa:6b:2c:85:5e:7a:67:d2:73:00:1d:01:ac:8b:19: 0d:4b:dc:39:c7:91:e2:58:0f:4c:3a:9b:cc:ac:14: 0f:9b:fe:56:ce:dc:ce:be:36:9c:a1:b8:7b:7f:fc: 85:94:23:1b:64:0b:94:83:a0:7a:1f:1b:e5:e5:c0: cc:96:26:8f:01:81:64:ac:41:1d:62:7a:fe:32:ac: b3:83:b7:15:52:39:ba:42:10:40:30:b0:c4:44:0c: 0b:96:14:7a:66:8f:52:16:74:42:68:06:f8:5a:2f: 16:c8:36:3c:3b:31:6b:50:65:f2:56:b5:ea:fe:0b: dc:6f:95:c9:67:dc:a5:9c:a5:8a:3a:13:8d:56:1a: 57:5d:28:25:4f:d0:39:4c:91:a0:20:3c:66:5c:cc: 8c:31:6a:b8:a7:23:7f:39:48:05:65:a6:56:4b:27: 00:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:93:0E:C8:99:44:D2:9C:21:C0:C0:D3:69:AB:DA:82:D9:58:16:DD X509v3 Authority Key Identifier: keyid:47:57:1F:03:66:87:5B:73:51:B2:44:D2:5C:B7:E8:25:8F:B3:3E:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cf2975d5-f990-484e-9460-f136b4551f8d/0/47571F0366875B7351B244D25CB7E8258FB33E93.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/47571F0366875B7351B244D25CB7E8258FB33E93.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cf2975d5-f990-484e-9460-f136b4551f8d/0/3136302e3138372e3136342e302f32342d3234203d3e20313533313330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.164.0/24 Signature Algorithm: sha256WithRSAEncryption b9:0c:3f:85:78:ef:ec:52:2f:01:4c:1a:cd:33:40:8d:f4:d8: 3d:2c:5a:ce:80:24:85:12:ce:28:1c:2f:91:b2:2a:c6:05:61: 38:99:27:19:1b:86:14:a0:04:07:94:fd:97:ff:19:33:c1:b9: 4c:79:58:cb:06:aa:d2:2d:99:b2:d1:82:e6:f4:ae:19:cd:d4: ff:2b:80:f7:9e:78:f4:b4:ee:b5:e4:6a:db:ce:73:41:eb:84: 12:0f:4a:3d:ef:26:5a:9a:d4:df:10:66:e3:8f:eb:93:bf:54: ef:6d:c3:d0:3e:8c:e9:d4:91:f8:c1:d0:4e:59:d3:7b:91:f5: ce:fe:de:44:91:fc:82:67:3b:8a:32:8d:39:1a:ba:c4:5d:0e: 19:38:8e:e9:30:d7:13:93:8a:4e:bb:c4:82:fc:57:51:72:fe: 0e:0b:da:8f:27:95:fb:08:2c:09:bf:36:fd:c2:be:2e:cb:c9: c9:81:bc:fa:d2:24:7d:64:87:bd:f7:77:52:40:40:27:a3:c4: 89:34:ec:6d:4e:e6:4a:eb:da:de:3d:85:e5:d7:23:1c:46:56: 34:3e:fd:c7:e6:b2:5d:70:0b:3c:67:c9:e9:01:68:6b:d1:e6: 64:99:54:28:d8:d3:cc:14:c0:d2:bf:a3:53:71:a2:03:13:e2: 23:c0:69:a7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNPPujt6r66LgPRqs5lfeuHzmfFwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc1NzFGMDM2Njg3NUI3MzUxQjI0NEQyNUNCN0U4MjU4 RkIzM0U5MzAeFw0yNDExMTQxMDIyMTlaFw0yNTExMTMxMDI3MTlaMDMxMTAvBgNV BAMTKDdGOTMwRUM4OTk0NEQyOUMyMUMwQzBEMzY5QUJEQTgyRDk1ODE2REQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2V55kBgQOOT363LuhNyis7s+O c7yXQnDHQIxnH+Zf3mI8FVVBC8Gl0mDc6cs3Xeow24S5cxag7bNi6lt6J822yx+r RMNrFeAk+K8ju7gI79i17FUDY4F/RKprLIVeemfScwAdAayLGQ1L3DnHkeJYD0w6 m8ysFA+b/lbO3M6+NpyhuHt//IWUIxtkC5SDoHofG+XlwMyWJo8BgWSsQR1iev4y rLODtxVSObpCEEAwsMREDAuWFHpmj1IWdEJoBvhaLxbINjw7MWtQZfJWter+C9xv lcln3KWcpYo6E41WGlddKCVP0DlMkaAgPGZczIwxarinI385SAVlplZLJwCVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUf5MOyJlE0pwhwMDTaavagtlYFt0wHwYDVR0j BBgwFoAUR1cfA2aHW3NRskTSXLfoJY+zPpMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZjI5NzVkNS1mOTkwLTQ4NGUtOTQ2MC1mMTM2YjQ1NTFmOGQvMC80NzU3MUYwMzY2 ODc1QjczNTFCMjQ0RDI1Q0I3RTgyNThGQjMzRTkzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDc1NzFGMDM2Njg3NUI3MzUxQjI0NEQyNUNCN0U4MjU4RkIz M0U5My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NmMjk3NWQ1LWY5OTAtNDg0ZS05 NDYwLWYxMzZiNDU1MWY4ZC8wLzMxMzYzMDJlMzEzODM3MmUzMTM2MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzMzMTMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACgu6QwDQYJ KoZIhvcNAQELBQADggEBALkMP4V47+xSLwFMGs0zQI302D0sWs6AJIUSzigcL5Gy KsYFYTiZJxkbhhSgBAeU/Zf/GTPBuUx5WMsGqtItmbLRgub0rhnN1P8rgPeeePS0 7rXkatvOc0HrhBIPSj3vJlqa1N8QZuOP65O/VO9tw9A+jOnUkfjB0E5Z03uR9c7+ 3kSR/IJnO4oyjTkausRdDhk4jukw1xOTik67xIL8V1Fy/g4L2o8nlfsILAm/Nv3C vi7LycmBvPrSJH1kh733d1JAQCejxIk07G1O5krr2t49heXXIxxGVjQ+/cfmsl1w CzxnyekBaGvR5mSZVCjY08wUwNK/o1NxogMT4iPAaac= -----END CERTIFICATE-----Generated at Thu Nov 21 15:45:24 2024 by rpki-client on console-ams.rpki-client.org