$ rpki-client -vvf repo-rpki.idnic.net/repo/d88575c8-54fe-4801-a7b1-517d0e6b8b73/0/3136302e32302e3232302e302f32342d3234203d3e20313532373835.roa File: 3136302e32302e3232302e302f32342d3234203d3e20313532373835.roa (raw, json) Hash identifier: GDptFXCos4zkhK0BICLJWbr+aS8jyf1+uPPWMmueFX0= Subject key identifier: 05:2B:A6:64:67:38:0A:42:CC:BF:B9:25:E8:B3:6E:E1:01:14:D0:64 Certificate issuer: /CN=6490D3D85678E9C1587D21E9545EF730D21346B5 Certificate serial: E0260A470D818E28EC5784B92342F862BD4145 Authority key identifier: 64:90:D3:D8:56:78:E9:C1:58:7D:21:E9:54:5E:F7:30:D2:13:46:B5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6490D3D85678E9C1587D21E9545EF730D21346B5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d88575c8-54fe-4801-a7b1-517d0e6b8b73/0/3136302e32302e3232302e302f32342d3234203d3e20313532373835.roa Signing time: Fri 02 Aug 2024 10:01:02 +0000 ROA not before: Fri 02 Aug 2024 09:56:02 +0000 ROA not after: Fri 01 Aug 2025 10:01:02 +0000 asID: 152785 IP address blocks: 160.20.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d88575c8-54fe-4801-a7b1-517d0e6b8b73/0/6490D3D85678E9C1587D21E9545EF730D21346B5.crl rsync://repo-rpki.idnic.net/repo/d88575c8-54fe-4801-a7b1-517d0e6b8b73/0/6490D3D85678E9C1587D21E9545EF730D21346B5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6490D3D85678E9C1587D21E9545EF730D21346B5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: e0:26:0a:47:0d:81:8e:28:ec:57:84:b9:23:42:f8:62:bd:41:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6490D3D85678E9C1587D21E9545EF730D21346B5 Validity Not Before: Aug 2 09:56:02 2024 GMT Not After : Aug 1 10:01:02 2025 GMT Subject: CN=052BA66467380A42CCBFB925E8B36EE10114D064 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e2:19:f3:b3:6d:41:1f:c0:5e:fa:d7:43:46: 2c:1b:28:54:ec:43:d2:0c:13:d8:2d:f9:90:89:81: 45:92:e9:d2:a2:bc:d1:89:cd:a1:c6:5b:65:db:93: ad:bf:4e:8c:a1:e2:14:65:4a:b0:31:b6:91:71:ae: 32:08:1d:1f:82:ee:d2:4c:b5:f1:fe:7c:6d:3f:55: b3:14:9f:13:2e:36:ba:bd:a3:6d:9f:8c:a6:52:3f: cd:f3:11:e1:3c:fd:ab:4a:e6:88:fa:8d:09:21:ce: 0d:47:0e:4a:85:58:23:2a:3d:93:7b:7d:47:e5:dc: 98:62:3d:b1:b8:f4:07:5a:2a:6a:32:db:3e:32:fa: 19:5d:1c:e9:fd:4c:9e:dd:0a:0d:3c:b1:db:f7:a1: a5:24:2d:ab:75:a8:34:22:14:2b:a8:a1:57:03:67: 51:21:78:39:b5:17:78:05:bd:62:24:da:34:70:82: b6:bf:21:c4:4e:1b:bc:6e:43:0e:8b:e3:4a:46:98: e6:c7:79:40:35:41:e4:ac:4a:3d:be:53:25:98:43: 84:cb:ae:44:a4:ec:f9:16:b4:07:93:ca:33:e4:13: 82:a2:c6:72:f2:23:b3:b4:a9:5c:b5:2a:d9:1e:e8: d2:68:01:4c:9c:ce:68:df:a6:88:6b:41:b6:ca:3c: 40:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:2B:A6:64:67:38:0A:42:CC:BF:B9:25:E8:B3:6E:E1:01:14:D0:64 X509v3 Authority Key Identifier: keyid:64:90:D3:D8:56:78:E9:C1:58:7D:21:E9:54:5E:F7:30:D2:13:46:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d88575c8-54fe-4801-a7b1-517d0e6b8b73/0/6490D3D85678E9C1587D21E9545EF730D21346B5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6490D3D85678E9C1587D21E9545EF730D21346B5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d88575c8-54fe-4801-a7b1-517d0e6b8b73/0/3136302e32302e3232302e302f32342d3234203d3e20313532373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.20.220.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:b9:1e:f5:ed:d5:41:c8:8f:3e:2c:28:85:48:43:0a:16:93: ce:fd:05:30:94:ea:a5:a0:2f:d8:03:a6:34:ed:26:21:0b:48: 9c:1b:e4:32:a7:39:d1:1e:ce:97:de:da:cd:59:a1:2b:4a:e3: fa:e5:6f:2b:12:3a:11:e1:32:1a:2c:e4:0e:43:fa:c0:a4:62: 90:0e:f9:7f:c7:b8:cc:f8:c4:ec:e4:29:31:ed:be:61:eb:96: d8:5d:fe:e7:ea:ec:67:e1:67:f5:4d:c1:81:63:d7:04:18:85: f1:f0:a4:0e:2e:e8:c6:bf:74:0e:37:00:91:8e:a2:45:af:3d: f5:9d:ed:c2:5a:ec:4e:da:e9:98:c0:f1:d2:5c:9d:5e:ba:27: dd:f4:8f:7e:ef:cc:04:8c:44:0d:56:1d:0e:83:85:97:5d:93: 6e:53:dd:65:5b:c0:7e:f4:91:a9:5e:44:06:13:39:51:5f:67: bc:5b:0b:77:68:bf:b9:14:4b:dc:ea:6b:9f:37:70:58:56:65: 11:93:57:8f:29:ea:16:2b:98:75:dc:8d:81:d4:86:68:23:76: e9:4b:ce:b4:6e:82:89:04:a5:3c:8f:99:f4:61:12:3f:c1:c7: a4:1c:75:a5:ce:c4:f4:e0:f1:54:ce:ca:31:8c:3c:60:26:90: 1b:53:27:4e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAOAmCkcNgY4o7FeEuSNC+GK9QUUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjQ5MEQzRDg1Njc4RTlDMTU4N0QyMUU5NTQ1RUY3MzBE MjEzNDZCNTAeFw0yNDA4MDIwOTU2MDJaFw0yNTA4MDExMDAxMDJaMDMxMTAvBgNV BAMTKDA1MkJBNjY0NjczODBBNDJDQ0JGQjkyNUU4QjM2RUUxMDExNEQwNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG4hnzs21BH8Be+tdDRiwbKFTs Q9IME9gt+ZCJgUWS6dKivNGJzaHGW2Xbk62/Toyh4hRlSrAxtpFxrjIIHR+C7tJM tfH+fG0/VbMUnxMuNrq9o22fjKZSP83zEeE8/atK5oj6jQkhzg1HDkqFWCMqPZN7 fUfl3JhiPbG49AdaKmoy2z4y+hldHOn9TJ7dCg08sdv3oaUkLat1qDQiFCuooVcD Z1EheDm1F3gFvWIk2jRwgra/IcROG7xuQw6L40pGmObHeUA1QeSsSj2+UyWYQ4TL rkSk7PkWtAeTyjPkE4KixnLyI7O0qVy1Ktke6NJoAUyczmjfpohrQbbKPEBLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBSumZGc4CkLMv7kl6LNu4QEU0GQwHwYDVR0j BBgwFoAUZJDT2FZ46cFYfSHpVF73MNITRrUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ODg1NzVjOC01NGZlLTQ4MDEtYTdiMS01MTdkMGU2YjhiNzMvMC82NDkwRDNEODU2 NzhFOUMxNTg3RDIxRTk1NDVFRjczMEQyMTM0NkI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNjQ5MEQzRDg1Njc4RTlDMTU4N0QyMUU5NTQ1RUY3MzBEMjEz NDZCNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4ODU3NWM4LTU0ZmUtNDgwMS1h N2IxLTUxN2QwZTZiOGI3My8wLzMxMzYzMDJlMzIzMDJlMzIzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBTcMA0GCSqG SIb3DQEBCwUAA4IBAQA+uR717dVByI8+LCiFSEMKFpPO/QUwlOqloC/YA6Y07SYh C0icG+QypznRHs6X3trNWaErSuP65W8rEjoR4TIaLOQOQ/rApGKQDvl/x7jM+MTs 5Ckx7b5h65bYXf7n6uxn4Wf1TcGBY9cEGIXx8KQOLujGv3QONwCRjqJFrz31ne3C WuxO2umYwPHSXJ1euifd9I9+78wEjEQNVh0Og4WXXZNuU91lW8B+9JGpXkQGEzlR X2e8Wwt3aL+5FEvc6mufN3BYVmURk1ePKeoWK5h13I2B1IZoI3bpS860boKJBKU8 j5n0YRI/wcekHHWlzsT04PFUzsoxjDxgJpAbUydO -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:57 2024 by rpki-client on console-ams.rpki-client.org