$ rpki-client -vvf repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/3136302e32302e33382e302f32342d3234203d3e20313532373637.roa File: 3136302e32302e33382e302f32342d3234203d3e20313532373637.roa (raw, json) Hash identifier: qz9gkkaT5gjEW5IKUp/t4G7tipALQOBC2f4F6gPlyJ0= Subject key identifier: 09:ED:F3:38:5A:4D:EC:5D:B7:31:E0:CE:7B:63:F5:83:53:B4:94:27 Certificate issuer: /CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Certificate serial: 6B7C5E68A38793B7C5EC4776B6FAE58E9CB9EC86 Authority key identifier: BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/3136302e32302e33382e302f32342d3234203d3e20313532373637.roa Signing time: Sat 15 Jun 2024 08:53:08 +0000 ROA not before: Sat 15 Jun 2024 08:48:08 +0000 ROA not after: Sat 14 Jun 2025 08:53:08 +0000 asID: 152767 IP address blocks: 160.20.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:7c:5e:68:a3:87:93:b7:c5:ec:47:76:b6:fa:e5:8e:9c:b9:ec:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Validity Not Before: Jun 15 08:48:08 2024 GMT Not After : Jun 14 08:53:08 2025 GMT Subject: CN=09EDF3385A4DEC5DB731E0CE7B63F58353B49427 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:10:b6:cc:69:d9:b4:0f:75:9a:c3:17:39:a1: 5b:8d:28:61:d0:d0:41:9f:18:6f:83:98:b3:b6:15: 4e:73:66:61:65:e7:d2:46:14:e4:56:4d:7b:20:3b: a7:8f:0f:47:fe:2a:35:1f:e1:a0:4d:fc:62:b1:84: 40:f0:d8:09:24:da:cf:94:07:c5:03:66:d2:0d:6a: 1c:f1:fa:d5:cf:77:3c:bb:ba:c7:93:4c:59:ce:c1: 82:b0:d0:93:49:9a:4b:a7:08:cf:e2:d2:4c:5b:6d: 1e:30:8c:93:b9:50:64:73:15:76:c2:f3:88:13:ef: 05:e3:dd:ec:06:25:0b:6b:f6:54:d8:e0:03:ae:a2: 7c:c8:9e:ec:1c:dd:f7:e9:0d:59:cf:7d:87:08:6b: 04:f1:e0:c0:de:c6:dd:57:4a:3e:e6:e3:8c:19:1c: 29:82:78:ce:b7:6b:50:6a:cb:18:59:2d:8e:5a:9f: 83:c3:43:01:23:16:5d:24:c8:bd:dc:ea:a6:ee:9b: 34:be:19:74:ac:d6:5a:42:d7:a8:85:24:33:06:5e: ff:f3:b9:8f:3a:21:08:93:4d:ff:f3:64:ab:cc:5a: b1:6d:4f:f5:07:14:1c:a8:e6:18:35:32:a9:0c:09: 49:34:da:13:31:29:64:13:a8:57:53:91:b7:37:06: 93:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:ED:F3:38:5A:4D:EC:5D:B7:31:E0:CE:7B:63:F5:83:53:B4:94:27 X509v3 Authority Key Identifier: keyid:BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/3136302e32302e33382e302f32342d3234203d3e20313532373637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.20.38.0/24 Signature Algorithm: sha256WithRSAEncryption 48:c4:e5:ed:55:e0:0c:07:54:5a:23:3e:94:47:6d:1c:57:aa: b9:43:1d:6b:49:81:54:26:b8:c8:b7:59:ea:12:2f:9f:d9:8e: 83:c9:81:a1:40:ed:0a:80:5a:63:18:88:6f:b3:bc:ae:e1:00: eb:1c:61:33:59:4c:65:28:22:c1:71:d5:97:b8:81:dd:9e:e5: 11:96:05:d3:7e:3c:6a:f3:d9:f4:85:bf:36:99:aa:ab:56:a2: f0:2d:0b:7c:50:d4:0d:5f:59:ea:8d:a4:fa:e4:70:d2:b0:c8: 6c:80:de:aa:d6:b0:48:fa:8f:ac:c6:f5:a7:77:72:27:91:17: e6:35:63:67:21:7f:47:b3:9f:5e:82:23:de:69:13:7d:d3:8a: 06:3d:87:df:7c:98:eb:a3:d1:33:00:72:f0:16:8f:1d:70:fd: 58:de:00:b8:a2:f0:13:09:d4:e0:b0:4c:b7:6b:55:68:2d:1e: 49:d1:4b:53:80:4d:ae:e2:78:c3:3e:76:40:d6:ba:a8:65:e5: 9e:17:da:29:b1:0d:0d:3e:1e:95:ab:cd:f0:63:cd:20:76:3c: bf:a0:71:2d:a5:4a:ad:f4:d7:6a:b2:15:59:c4:e8:1e:4c:61: 56:34:27:6d:73:00:7c:88:a3:44:55:c2:24:40:8c:b7:a7:32: 6d:3d:ff:5d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUa3xeaKOHk7fF7Ed2tvrljpy57IYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RF NTY4ODI0NDAeFw0yNDA2MTUwODQ4MDhaFw0yNTA2MTQwODUzMDhaMDMxMTAvBgNV BAMTKDA5RURGMzM4NUE0REVDNURCNzMxRTBDRTdCNjNGNTgzNTNCNDk0MjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6ELbMadm0D3Wawxc5oVuNKGHQ 0EGfGG+DmLO2FU5zZmFl59JGFORWTXsgO6ePD0f+KjUf4aBN/GKxhEDw2Akk2s+U B8UDZtINahzx+tXPdzy7useTTFnOwYKw0JNJmkunCM/i0kxbbR4wjJO5UGRzFXbC 84gT7wXj3ewGJQtr9lTY4AOuonzInuwc3ffpDVnPfYcIawTx4MDext1XSj7m44wZ HCmCeM63a1BqyxhZLY5an4PDQwEjFl0kyL3c6qbumzS+GXSs1lpC16iFJDMGXv/z uY86IQiTTf/zZKvMWrFtT/UHFByo5hg1MqkMCUk02hMxKWQTqFdTkbc3BpNPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUCe3zOFpN7F23MeDOe2P1g1O0lCcwHwYDVR0j BBgwFoAUvKDB71pKs670JeFauJoZzeVogkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZmU3ZGFjYy0yYjQ1LTQxNDEtOTc3NS1mMWJiOWYwNTIzOTYvMC9CQ0EwQzFFRjVB NEFCM0FFRjQyNUUxNUFCODlBMTlDREU1Njg4MjQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RFNTY4 ODI0NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmZTdkYWNjLTJiNDUtNDE0MS05 Nzc1LWYxYmI5ZjA1MjM5Ni8wLzMxMzYzMDJlMzIzMDJlMzMzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM3MzYzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAUJjANBgkqhkiG 9w0BAQsFAAOCAQEASMTl7VXgDAdUWiM+lEdtHFequUMda0mBVCa4yLdZ6hIvn9mO g8mBoUDtCoBaYxiIb7O8ruEA6xxhM1lMZSgiwXHVl7iB3Z7lEZYF0348avPZ9IW/ Npmqq1ai8C0LfFDUDV9Z6o2k+uRw0rDIbIDeqtawSPqPrMb1p3dyJ5EX5jVjZyF/ R7OfXoIj3mkTfdOKBj2H33yY66PRMwBy8BaPHXD9WN4AuKLwEwnU4LBMt2tVaC0e SdFLU4BNruJ4wz52QNa6qGXlnhfaKbENDT4elavN8GPNIHY8v6BxLaVKrfTXarIV WcToHkxhVjQnbXMAfIijRFXCJECMt6cybT3/XQ== -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:51 2024 by rpki-client on console-ams.rpki-client.org