$ rpki-client -vvf repo-rpki.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/3136302e32322e3139362e302f32342d3234203d3e20313532383232.roa File: 3136302e32322e3139362e302f32342d3234203d3e20313532383232.roa (raw, json) Hash identifier: 3vGT588I0QVV/sCRiOtRSKMKdrf4JVct9iPV7wFvL6o= Subject key identifier: 3C:E9:65:1A:A3:C2:6D:11:46:D4:1F:FB:79:02:5E:7A:AB:C7:D8:1E Certificate issuer: /CN=9789A84AF43285D8FD7ED7A3B9667B682B770585 Certificate serial: 5A425B8452E6E6025A98C14DD2704524C5DF6C6F Authority key identifier: 97:89:A8:4A:F4:32:85:D8:FD:7E:D7:A3:B9:66:7B:68:2B:77:05:85 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9789A84AF43285D8FD7ED7A3B9667B682B770585.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/3136302e32322e3139362e302f32342d3234203d3e20313532383232.roa Signing time: Wed 28 Aug 2024 17:52:31 +0000 ROA not before: Wed 28 Aug 2024 17:47:31 +0000 ROA not after: Wed 27 Aug 2025 17:52:31 +0000 asID: 152822 IP address blocks: 160.22.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/9789A84AF43285D8FD7ED7A3B9667B682B770585.crl rsync://repo-rpki.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/9789A84AF43285D8FD7ED7A3B9667B682B770585.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9789A84AF43285D8FD7ED7A3B9667B682B770585.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:42:5b:84:52:e6:e6:02:5a:98:c1:4d:d2:70:45:24:c5:df:6c:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9789A84AF43285D8FD7ED7A3B9667B682B770585 Validity Not Before: Aug 28 17:47:31 2024 GMT Not After : Aug 27 17:52:31 2025 GMT Subject: CN=3CE9651AA3C26D1146D41FFB79025E7AABC7D81E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:90:2e:88:77:df:45:ff:42:01:5c:a3:31:7b: 9a:0e:a2:0a:35:cb:79:0b:3d:35:d6:3a:35:a4:84: 2d:7f:14:5c:86:74:78:e5:24:9b:08:10:92:f1:e4: 80:45:f2:5f:87:f9:8f:d3:3b:48:4d:d7:0e:82:44: 05:48:95:22:8d:be:a9:c9:01:a7:ba:17:81:50:57: 14:7e:cb:0e:01:d8:56:7b:84:0e:05:90:25:4b:a2: fa:78:05:37:83:f2:1c:e9:f6:77:ca:21:9b:8b:5b: 9f:ad:11:6e:5f:db:1b:a9:c2:33:32:a5:32:6a:75: 34:e8:4b:28:e5:1f:27:84:82:30:a2:d0:3b:6d:ec: d4:14:f4:41:55:bf:e2:51:7f:44:6d:68:ee:49:a5: de:88:29:48:3d:51:5d:0f:14:29:8b:95:53:c8:af: 84:4c:9a:36:d0:cb:e7:51:f7:24:6f:1f:69:e8:fa: 85:d3:ce:73:57:60:f6:b9:87:2d:f3:5f:93:d1:4e: bd:07:46:21:cb:d8:27:fe:a9:8a:f9:f3:8c:dd:a3: 8c:a0:c1:5d:6f:57:8f:48:68:fc:73:82:93:7c:ba: 61:f1:b5:2f:ba:62:8c:31:0b:fa:cf:2c:fa:dc:15: 59:da:cd:64:65:c1:94:10:96:5e:21:9e:a6:e9:d8: 84:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:E9:65:1A:A3:C2:6D:11:46:D4:1F:FB:79:02:5E:7A:AB:C7:D8:1E X509v3 Authority Key Identifier: keyid:97:89:A8:4A:F4:32:85:D8:FD:7E:D7:A3:B9:66:7B:68:2B:77:05:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/9789A84AF43285D8FD7ED7A3B9667B682B770585.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9789A84AF43285D8FD7ED7A3B9667B682B770585.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/3136302e32322e3139362e302f32342d3234203d3e20313532383232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.196.0/24 Signature Algorithm: sha256WithRSAEncryption 62:ff:e2:c7:22:c4:0f:49:a9:a1:b8:0b:33:42:6e:ac:1e:af: 2e:3c:22:35:5c:0d:1e:11:06:a3:b8:9f:b6:ea:9d:ab:b2:ca: 07:15:bb:1a:92:14:b2:bc:f1:f6:bd:b4:d9:ab:3e:67:e7:fe: db:41:cc:24:ae:2e:cb:63:dc:4f:d3:6b:2d:b0:9f:f3:78:2e: 4f:06:cc:83:ad:40:d4:9c:4b:26:b3:8d:a1:c6:a5:71:40:6f: 4f:3d:5b:0e:b4:ab:c8:b0:12:de:1e:f3:52:29:49:73:a7:48: ff:8c:f0:f3:9e:9d:b2:b7:80:46:ea:aa:2e:af:db:31:d5:c1: 60:ad:73:de:34:a6:8e:88:88:28:08:80:b3:5c:52:cb:2c:6c: 5a:30:b9:59:9b:56:b8:b6:ff:65:10:69:ae:b6:4f:55:fa:27: 9f:0a:fd:1e:7b:5f:99:1a:70:ad:05:5e:22:bb:72:8b:6b:af: 07:55:c3:9d:33:2b:24:85:27:39:cf:4f:9b:65:f7:9c:f3:f8: 6c:23:85:69:ad:b0:00:e7:e6:7f:95:5a:ac:94:84:d7:49:cb: cc:01:1c:84:cf:0f:fc:57:a5:66:63:68:6f:2c:e9:2c:b3:10: 8f:15:0b:58:dc:48:06:22:ac:fb:b0:17:ba:15:91:c6:88:93: c4:2c:c0:9c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWkJbhFLm5gJamMFN0nBFJMXfbG8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTc4OUE4NEFGNDMyODVEOEZEN0VEN0EzQjk2NjdCNjgy Qjc3MDU4NTAeFw0yNDA4MjgxNzQ3MzFaFw0yNTA4MjcxNzUyMzFaMDMxMTAvBgNV BAMTKDNDRTk2NTFBQTNDMjZEMTE0NkQ0MUZGQjc5MDI1RTdBQUJDN0Q4MUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZkC6Id99F/0IBXKMxe5oOogo1 y3kLPTXWOjWkhC1/FFyGdHjlJJsIEJLx5IBF8l+H+Y/TO0hN1w6CRAVIlSKNvqnJ Aae6F4FQVxR+yw4B2FZ7hA4FkCVLovp4BTeD8hzp9nfKIZuLW5+tEW5f2xupwjMy pTJqdTToSyjlHyeEgjCi0Dtt7NQU9EFVv+JRf0RtaO5Jpd6IKUg9UV0PFCmLlVPI r4RMmjbQy+dR9yRvH2no+oXTznNXYPa5hy3zX5PRTr0HRiHL2Cf+qYr584zdo4yg wV1vV49IaPxzgpN8umHxtS+6YowxC/rPLPrcFVnazWRlwZQQll4hnqbp2IRDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPOllGqPCbRFG1B/7eQJeeqvH2B4wHwYDVR0j BBgwFoAUl4moSvQyhdj9ftejuWZ7aCt3BYUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjFhMGRmNi0xZDNhLTRiY2MtYjNkMS02NDY5NWY4N2UzN2YvMC85Nzg5QTg0QUY0 MzI4NUQ4RkQ3RUQ3QTNCOTY2N0I2ODJCNzcwNTg1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTc4OUE4NEFGNDMyODVEOEZEN0VEN0EzQjk2NjdCNjgyQjc3 MDU4NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMWEwZGY2LTFkM2EtNGJjYy1i M2QxLTY0Njk1Zjg3ZTM3Zi8wLzMxMzYzMDJlMzIzMjJlMzEzOTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMjMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBbEMA0GCSqG SIb3DQEBCwUAA4IBAQBi/+LHIsQPSamhuAszQm6sHq8uPCI1XA0eEQajuJ+26p2r ssoHFbsakhSyvPH2vbTZqz5n5/7bQcwkri7LY9xP02stsJ/zeC5PBsyDrUDUnEsm s42hxqVxQG9PPVsOtKvIsBLeHvNSKUlzp0j/jPDznp2yt4BG6qour9sx1cFgrXPe NKaOiIgoCICzXFLLLGxaMLlZm1a4tv9lEGmutk9V+iefCv0ee1+ZGnCtBV4iu3KL a68HVcOdMyskhSc5z0+bZfec8/hsI4VprbAA5+Z/lVqslITXScvMARyEzw/8V6Vm Y2hvLOkssxCPFQtY3EgGIqz7sBe6FZHGiJPELMCc -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:03 2024 by rpki-client on console-fra.rpki-client.org