$ rpki-client -vvf repo-rpki.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/3136302e32322e3139362e302f32332d3233203d3e20313532383232.roa File: 3136302e32322e3139362e302f32332d3233203d3e20313532383232.roa (raw, json) Hash identifier: qmcuoQswPf+QFvs3385xW2BmFD8fV2DaQGSSFxpeEbc= Subject key identifier: E4:1E:3A:B0:D4:CC:FD:6B:EE:C2:E8:00:CB:A0:77:F8:47:5A:CE:18 Certificate issuer: /CN=9789A84AF43285D8FD7ED7A3B9667B682B770585 Certificate serial: 76F6664283FA1B194B5952036A5182546F81D0ED Authority key identifier: 97:89:A8:4A:F4:32:85:D8:FD:7E:D7:A3:B9:66:7B:68:2B:77:05:85 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9789A84AF43285D8FD7ED7A3B9667B682B770585.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/3136302e32322e3139362e302f32332d3233203d3e20313532383232.roa Signing time: Wed 28 Aug 2024 17:52:03 +0000 ROA not before: Wed 28 Aug 2024 17:47:03 +0000 ROA not after: Wed 27 Aug 2025 17:52:03 +0000 asID: 152822 IP address blocks: 160.22.196.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/9789A84AF43285D8FD7ED7A3B9667B682B770585.crl rsync://repo-rpki.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/9789A84AF43285D8FD7ED7A3B9667B682B770585.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9789A84AF43285D8FD7ED7A3B9667B682B770585.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:f6:66:42:83:fa:1b:19:4b:59:52:03:6a:51:82:54:6f:81:d0:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9789A84AF43285D8FD7ED7A3B9667B682B770585 Validity Not Before: Aug 28 17:47:03 2024 GMT Not After : Aug 27 17:52:03 2025 GMT Subject: CN=E41E3AB0D4CCFD6BEEC2E800CBA077F8475ACE18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d0:24:29:0f:0c:f3:31:78:cf:0b:0f:20:c7: db:b8:fd:af:3e:ea:de:84:18:4b:e9:30:38:31:37: de:bd:cf:17:e4:42:31:09:ff:fb:5a:cb:40:00:77: 48:a9:b5:39:d3:09:c0:46:38:89:45:13:40:92:f0: 1a:62:f3:9c:54:38:32:f9:d9:d9:65:28:e5:30:5a: 71:7c:12:ec:a0:f9:cd:ab:60:d3:c4:2f:a9:5e:73: 47:31:a1:2e:99:c9:63:48:e1:d2:95:84:22:d4:ed: 60:29:46:d1:0b:79:49:6a:2f:19:64:a2:26:41:b8: dc:7b:0e:ae:f7:50:b3:9d:63:99:fb:6c:af:48:5e: 6a:e7:4e:2b:25:ff:96:30:77:37:09:03:2e:73:32: 83:9d:b7:b9:38:ca:4f:b4:ef:2c:22:0a:14:fd:6f: bd:91:fa:4f:4c:85:d0:b0:1f:4d:f7:af:8d:74:6f: 30:f5:bb:37:37:26:1a:45:e1:cc:c1:5a:a9:b2:f2: 8f:dd:4f:a0:39:44:24:e5:19:af:31:72:b5:63:1d: 7c:64:50:91:b5:dc:2f:de:9a:df:4d:8f:6e:b6:3b: eb:5b:a1:b1:f9:ec:5f:00:47:8a:01:6e:d9:9a:f4: 0d:e9:08:a0:0d:05:e4:64:aa:37:6b:73:82:a8:82: 1d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:1E:3A:B0:D4:CC:FD:6B:EE:C2:E8:00:CB:A0:77:F8:47:5A:CE:18 X509v3 Authority Key Identifier: keyid:97:89:A8:4A:F4:32:85:D8:FD:7E:D7:A3:B9:66:7B:68:2B:77:05:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/9789A84AF43285D8FD7ED7A3B9667B682B770585.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9789A84AF43285D8FD7ED7A3B9667B682B770585.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/3136302e32322e3139362e302f32332d3233203d3e20313532383232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.196.0/23 Signature Algorithm: sha256WithRSAEncryption 60:49:ef:b7:9b:59:84:d5:64:76:3a:5f:55:87:69:d6:d6:08: 9f:74:22:f3:aa:7c:70:b2:0e:39:da:c2:b1:d3:57:26:34:99: f4:a5:51:7c:a0:96:c5:15:63:8c:d9:65:42:5b:d9:e9:00:e3: 1a:d6:d6:ea:f8:9e:79:fe:fa:4c:0f:2e:4b:98:16:9d:65:24: 6d:90:91:ae:6b:7b:80:2b:93:1e:3e:5f:82:6f:f3:2c:77:c1: 46:8e:56:c5:73:fd:03:27:be:86:d3:1c:3e:3c:fe:1f:91:99: 3e:78:47:9f:b6:91:0c:79:f6:fd:44:c4:c7:f2:e5:22:1c:e9: 7f:d0:72:fb:37:e0:c1:fc:28:f1:4b:35:a6:e9:6f:3b:57:7a: 87:eb:1f:3d:e9:5b:10:90:4c:aa:70:17:65:fd:a3:c5:7e:f3: 99:5f:78:6a:47:75:df:ee:d1:f2:32:22:55:60:69:1a:09:31: 2f:3c:f0:fc:75:56:d1:a0:e0:cd:d3:9a:96:b6:8a:a7:02:41: 9d:55:30:7f:4d:57:8b:36:47:f0:5f:f0:b0:be:9d:83:ff:7c: ee:43:9d:40:ee:54:8e:12:51:a1:22:e1:70:3d:a1:e8:0a:7d: 33:64:a5:e5:0c:cd:4f:5d:5c:f4:e9:18:8b:e3:cd:8a:f1:29: 1b:ae:65:43 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdvZmQoP6GxlLWVIDalGCVG+B0O0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTc4OUE4NEFGNDMyODVEOEZEN0VEN0EzQjk2NjdCNjgy Qjc3MDU4NTAeFw0yNDA4MjgxNzQ3MDNaFw0yNTA4MjcxNzUyMDNaMDMxMTAvBgNV BAMTKEU0MUUzQUIwRDRDQ0ZENkJFRUMyRTgwMENCQTA3N0Y4NDc1QUNFMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ0CQpDwzzMXjPCw8gx9u4/a8+ 6t6EGEvpMDgxN969zxfkQjEJ//tay0AAd0iptTnTCcBGOIlFE0CS8Bpi85xUODL5 2dllKOUwWnF8Euyg+c2rYNPEL6lec0cxoS6ZyWNI4dKVhCLU7WApRtELeUlqLxlk oiZBuNx7Dq73ULOdY5n7bK9IXmrnTisl/5YwdzcJAy5zMoOdt7k4yk+07ywiChT9 b72R+k9MhdCwH033r410bzD1uzc3JhpF4czBWqmy8o/dT6A5RCTlGa8xcrVjHXxk UJG13C/emt9Nj262O+tbobH57F8AR4oBbtma9A3pCKANBeRkqjdrc4Kogh09AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU5B46sNTM/WvuwugAy6B3+EdazhgwHwYDVR0j BBgwFoAUl4moSvQyhdj9ftejuWZ7aCt3BYUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjFhMGRmNi0xZDNhLTRiY2MtYjNkMS02NDY5NWY4N2UzN2YvMC85Nzg5QTg0QUY0 MzI4NUQ4RkQ3RUQ3QTNCOTY2N0I2ODJCNzcwNTg1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTc4OUE4NEFGNDMyODVEOEZEN0VEN0EzQjk2NjdCNjgyQjc3 MDU4NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMWEwZGY2LTFkM2EtNGJjYy1i M2QxLTY0Njk1Zjg3ZTM3Zi8wLzMxMzYzMDJlMzIzMjJlMzEzOTM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzgzMjMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBbEMA0GCSqG SIb3DQEBCwUAA4IBAQBgSe+3m1mE1WR2Ol9Vh2nW1gifdCLzqnxwsg452sKx01cm NJn0pVF8oJbFFWOM2WVCW9npAOMa1tbq+J55/vpMDy5LmBadZSRtkJGua3uAK5Me Pl+Cb/Msd8FGjlbFc/0DJ76G0xw+PP4fkZk+eEeftpEMefb9RMTH8uUiHOl/0HL7 N+DB/CjxSzWm6W87V3qH6x896VsQkEyqcBdl/aPFfvOZX3hqR3Xf7tHyMiJVYGka CTEvPPD8dVbRoODN05qWtoqnAkGdVTB/TVeLNkfwX/Cwvp2D/3zuQ51A7lSOElGh IuFwPaHoCn0zZKXlDM1PXVz06RiL482K8SkbrmVD -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:03 2024 by rpki-client on console-fra.rpki-client.org