$ rpki-client -vvf repo-rpki.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/3136302e32322e3139372e302f32342d3234203d3e20313532383232.roa File: 3136302e32322e3139372e302f32342d3234203d3e20313532383232.roa (raw, json) Hash identifier: AXGEppwKEnj8pzoDY2hiI66PJ1bCCf9npLO9Neh2WCg= Subject key identifier: 65:FD:EA:92:8E:B1:44:6A:66:83:78:F8:DE:C7:89:F6:58:37:E2:4A Certificate issuer: /CN=9789A84AF43285D8FD7ED7A3B9667B682B770585 Certificate serial: 2EB424C40FFA0B21E8607BD7FF37160B3B85AF7F Authority key identifier: 97:89:A8:4A:F4:32:85:D8:FD:7E:D7:A3:B9:66:7B:68:2B:77:05:85 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9789A84AF43285D8FD7ED7A3B9667B682B770585.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/3136302e32322e3139372e302f32342d3234203d3e20313532383232.roa Signing time: Wed 28 Aug 2024 17:52:53 +0000 ROA not before: Wed 28 Aug 2024 17:47:53 +0000 ROA not after: Wed 27 Aug 2025 17:52:53 +0000 asID: 152822 IP address blocks: 160.22.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/9789A84AF43285D8FD7ED7A3B9667B682B770585.crl rsync://repo-rpki.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/9789A84AF43285D8FD7ED7A3B9667B682B770585.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9789A84AF43285D8FD7ED7A3B9667B682B770585.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:b4:24:c4:0f:fa:0b:21:e8:60:7b:d7:ff:37:16:0b:3b:85:af:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9789A84AF43285D8FD7ED7A3B9667B682B770585 Validity Not Before: Aug 28 17:47:53 2024 GMT Not After : Aug 27 17:52:53 2025 GMT Subject: CN=65FDEA928EB1446A668378F8DEC789F65837E24A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ca:fb:95:13:b1:c8:eb:e2:db:3e:fd:4f:3b: 2e:eb:00:a1:a3:13:d8:63:cf:20:d4:e7:e4:60:9b: c9:86:d4:c9:ce:a1:3c:01:84:a6:ef:33:82:c8:c1: 24:30:27:29:78:47:dc:57:a3:99:f8:7d:1b:41:b4: d9:f7:75:29:ed:69:4d:66:c3:71:24:4e:a2:dd:d7: cd:91:52:b2:e5:c9:a7:13:a4:f3:8f:9a:c1:d9:d4: f1:a8:fe:7d:02:63:37:b1:3a:02:61:1d:82:3b:c4: 50:36:09:0e:aa:8b:e3:c7:5c:c9:eb:55:45:ad:73: 7a:a5:66:61:ba:a0:7c:cf:a9:d4:7f:3f:70:62:9d: 7d:a1:8d:a0:1c:04:f2:15:84:32:25:e1:b4:69:e5: 43:04:23:35:0e:ce:9c:05:11:89:73:b4:36:71:51: 5e:36:a3:3b:92:e9:28:8b:d0:d3:c3:7f:65:80:f1: c4:ea:ba:bc:58:72:fb:7b:d9:69:8f:2d:e6:46:a4: b7:da:67:64:0a:cc:c4:e7:cf:12:76:0b:7f:20:ea: 82:e5:ce:f7:ad:14:b3:19:32:42:41:51:45:bd:1a: 69:27:b1:06:d6:cb:16:e8:7e:bd:be:1c:9e:41:3b: 59:1f:de:0f:1f:08:c6:cb:3e:31:d5:a9:1a:2a:c5: 10:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:FD:EA:92:8E:B1:44:6A:66:83:78:F8:DE:C7:89:F6:58:37:E2:4A X509v3 Authority Key Identifier: keyid:97:89:A8:4A:F4:32:85:D8:FD:7E:D7:A3:B9:66:7B:68:2B:77:05:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/9789A84AF43285D8FD7ED7A3B9667B682B770585.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9789A84AF43285D8FD7ED7A3B9667B682B770585.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/3136302e32322e3139372e302f32342d3234203d3e20313532383232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.197.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:a6:d0:49:73:11:19:57:f5:d0:88:ca:49:36:42:48:b6:9b: bf:16:d2:d3:0c:33:cc:36:98:fa:2b:bb:c5:e3:ed:2a:19:f5: 67:e7:64:2e:87:23:22:41:18:69:87:99:16:aa:be:71:43:9a: e9:ad:47:a4:f0:12:e0:e9:a8:b5:7d:91:6f:8b:02:95:58:b9: ea:f6:1b:8e:7e:72:64:d6:fb:b8:c0:a4:03:c4:ec:34:16:e6: 90:87:5c:05:1c:31:f3:dd:69:3b:2e:c6:35:77:32:eb:44:3c: 25:36:b1:7c:1d:87:c8:b6:fd:02:9f:0d:93:ee:86:07:cc:3c: dd:69:a9:f0:d5:84:cd:2f:3f:ef:a7:03:4a:89:b1:1e:34:20: 55:4c:a8:1e:01:54:c3:b7:0d:5f:fe:e9:1e:cc:28:c6:91:32: ee:4d:2c:94:03:ae:5a:df:b1:d0:24:77:9c:16:09:12:11:96: 14:4f:f5:5e:e7:5f:b8:58:a4:79:4e:e2:c9:39:60:a5:0a:35: 32:70:89:4a:7a:6f:c1:4c:53:45:eb:be:d2:c3:d1:8a:14:60: e4:e6:48:f2:18:3a:22:74:90:52:98:7b:85:f5:97:09:4f:58: be:8b:01:bc:43:ee:5a:4d:b8:5e:cf:a5:b6:98:ff:51:a9:24: 6b:af:40:fc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULrQkxA/6CyHoYHvX/zcWCzuFr38wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTc4OUE4NEFGNDMyODVEOEZEN0VEN0EzQjk2NjdCNjgy Qjc3MDU4NTAeFw0yNDA4MjgxNzQ3NTNaFw0yNTA4MjcxNzUyNTNaMDMxMTAvBgNV BAMTKDY1RkRFQTkyOEVCMTQ0NkE2NjgzNzhGOERFQzc4OUY2NTgzN0UyNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcyvuVE7HI6+LbPv1POy7rAKGj E9hjzyDU5+Rgm8mG1MnOoTwBhKbvM4LIwSQwJyl4R9xXo5n4fRtBtNn3dSntaU1m w3EkTqLd182RUrLlyacTpPOPmsHZ1PGo/n0CYzexOgJhHYI7xFA2CQ6qi+PHXMnr VUWtc3qlZmG6oHzPqdR/P3BinX2hjaAcBPIVhDIl4bRp5UMEIzUOzpwFEYlztDZx UV42ozuS6SiL0NPDf2WA8cTqurxYcvt72WmPLeZGpLfaZ2QKzMTnzxJ2C38g6oLl zvetFLMZMkJBUUW9GmknsQbWyxbofr2+HJ5BO1kf3g8fCMbLPjHVqRoqxRCpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZf3qko6xRGpmg3j43seJ9lg34kowHwYDVR0j BBgwFoAUl4moSvQyhdj9ftejuWZ7aCt3BYUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjFhMGRmNi0xZDNhLTRiY2MtYjNkMS02NDY5NWY4N2UzN2YvMC85Nzg5QTg0QUY0 MzI4NUQ4RkQ3RUQ3QTNCOTY2N0I2ODJCNzcwNTg1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTc4OUE4NEFGNDMyODVEOEZEN0VEN0EzQjk2NjdCNjgyQjc3 MDU4NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMWEwZGY2LTFkM2EtNGJjYy1i M2QxLTY0Njk1Zjg3ZTM3Zi8wLzMxMzYzMDJlMzIzMjJlMzEzOTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMjMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBbFMA0GCSqG SIb3DQEBCwUAA4IBAQAbptBJcxEZV/XQiMpJNkJItpu/FtLTDDPMNpj6K7vF4+0q GfVn52QuhyMiQRhph5kWqr5xQ5rprUek8BLg6ai1fZFviwKVWLnq9huOfnJk1vu4 wKQDxOw0FuaQh1wFHDHz3Wk7LsY1dzLrRDwlNrF8HYfItv0Cnw2T7oYHzDzdaanw 1YTNLz/vpwNKibEeNCBVTKgeAVTDtw1f/ukezCjGkTLuTSyUA65a37HQJHecFgkS EZYUT/Ve51+4WKR5TuLJOWClCjUycIlKem/BTFNF677Sw9GKFGDk5kjyGDoidJBS mHuF9ZcJT1i+iwG8Q+5aTbhez6W2mP9RqSRrr0D8 -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:03 2024 by rpki-client on console-fra.rpki-client.org