$ rpki-client -vvf repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/3136302e32322e3133362e302f32332d3233203d3e20313532383131.roa File: 3136302e32322e3133362e302f32332d3233203d3e20313532383131.roa (raw, json) Hash identifier: V4/cqqOZ7RegowJp1D+ect85LbWcjDnGy47RvlaSPIU= Subject key identifier: 5F:EA:F1:8E:85:FE:1A:02:76:42:22:99:75:50:03:3B:59:8C:B4:A9 Certificate issuer: /CN=8107B8970680BF15377E222E6093ED124116C40F Certificate serial: 7928306ECE4E2A5E092A7362FA2767F72E23D52D Authority key identifier: 81:07:B8:97:06:80:BF:15:37:7E:22:2E:60:93:ED:12:41:16:C4:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8107B8970680BF15377E222E6093ED124116C40F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/3136302e32322e3133362e302f32332d3233203d3e20313532383131.roa Signing time: Fri 27 Sep 2024 05:06:20 +0000 ROA not before: Fri 27 Sep 2024 05:01:20 +0000 ROA not after: Fri 26 Sep 2025 05:06:20 +0000 asID: 152811 IP address blocks: 160.22.136.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/8107B8970680BF15377E222E6093ED124116C40F.crl rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/8107B8970680BF15377E222E6093ED124116C40F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8107B8970680BF15377E222E6093ED124116C40F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:28:30:6e:ce:4e:2a:5e:09:2a:73:62:fa:27:67:f7:2e:23:d5:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8107B8970680BF15377E222E6093ED124116C40F Validity Not Before: Sep 27 05:01:20 2024 GMT Not After : Sep 26 05:06:20 2025 GMT Subject: CN=5FEAF18E85FE1A02764222997550033B598CB4A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:cb:20:2e:99:b7:ab:eb:b8:2a:2f:9d:cf:5a: 16:8f:9d:98:fa:db:a0:38:23:1b:ca:1d:23:d4:13: 4d:e0:3f:12:df:72:1e:13:75:fe:f9:03:04:6f:d9: 7a:c3:f6:1b:32:e9:9c:66:a1:e6:a6:32:6d:ef:2a: bd:3c:3f:cc:ff:63:e5:93:66:45:0c:31:38:4b:28: d8:2d:fd:60:cd:bd:7b:57:da:95:7f:44:2d:04:b9: 4a:b8:e2:39:34:d3:94:10:4e:91:ad:ed:69:cd:8e: bd:6b:ad:0a:3b:a0:41:a4:77:1a:ad:68:c6:8f:e0: 44:9c:1a:69:2c:99:da:f0:71:e2:ad:6c:cf:79:25: 80:f6:70:54:df:dd:3e:60:f3:b5:32:6a:72:19:d2: aa:33:fa:48:67:20:cc:70:d9:98:a0:b3:cc:ef:d0: f5:05:90:64:c2:f4:81:e5:61:ec:70:83:a9:b1:82: 9d:2e:ba:e7:8b:36:44:39:26:4c:37:14:7e:8e:7f: bf:69:07:35:45:d6:b5:57:cc:9c:ad:1a:32:cc:7b: d7:9f:a9:77:6b:30:48:bf:d1:e0:e6:2f:f2:56:b8: 1a:b0:9a:ff:95:a6:7f:7d:94:64:52:54:33:70:f8: 98:61:63:c3:35:1d:b5:37:1e:3d:0e:05:2d:e8:2d: dd:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:EA:F1:8E:85:FE:1A:02:76:42:22:99:75:50:03:3B:59:8C:B4:A9 X509v3 Authority Key Identifier: keyid:81:07:B8:97:06:80:BF:15:37:7E:22:2E:60:93:ED:12:41:16:C4:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/8107B8970680BF15377E222E6093ED124116C40F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8107B8970680BF15377E222E6093ED124116C40F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/3136302e32322e3133362e302f32332d3233203d3e20313532383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.136.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:e0:b0:fd:9f:08:2c:7a:13:0a:c3:9a:1e:ea:2c:44:22:65: c7:e1:3d:c5:0b:ea:03:c7:4e:d4:ba:b4:3c:36:6d:75:7b:9c: cc:86:b5:49:1e:7b:a1:f0:30:61:c3:5f:87:e2:21:20:1f:ea: ce:11:3f:d3:8f:9c:79:35:ae:cb:55:9e:e1:a1:db:27:dc:10: 80:31:03:a4:03:0b:a6:28:93:7c:25:25:7c:d8:44:e4:df:fb: 73:8a:94:dd:b0:c0:35:a5:33:e8:66:7e:0a:d3:82:71:46:a3: f1:db:36:1b:bd:96:e4:10:b2:42:65:de:bf:46:fb:35:ff:56: e5:bd:d8:1c:ea:b9:f9:6f:8c:ba:c6:6c:d2:71:26:8c:ec:55: 4d:85:df:75:66:cb:1b:32:97:7a:87:c4:af:d3:e2:79:41:f5: 8e:8e:b2:39:dc:8b:d0:c5:c8:60:df:b7:a7:58:16:fc:5a:08: 6b:a2:78:d0:fb:f8:7a:68:7d:7d:66:6c:00:76:c2:3b:e1:c8: f8:b2:f3:0d:d0:04:f5:b0:c3:54:2b:7f:d7:2b:88:25:ed:ec: f0:3a:7d:9f:0c:52:ad:f5:c9:62:cf:aa:f1:9c:74:1d:93:9c: fb:db:3a:b8:a1:3e:9c:21:11:05:b8:84:95:9a:3c:2d:68:9c: 4d:77:96:24 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeSgwbs5OKl4JKnNi+idn9y4j1S0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODEwN0I4OTcwNjgwQkYxNTM3N0UyMjJFNjA5M0VEMTI0 MTE2QzQwRjAeFw0yNDA5MjcwNTAxMjBaFw0yNTA5MjYwNTA2MjBaMDMxMTAvBgNV BAMTKDVGRUFGMThFODVGRTFBMDI3NjQyMjI5OTc1NTAwMzNCNTk4Q0I0QTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmyyAumber67gqL53PWhaPnZj6 26A4IxvKHSPUE03gPxLfch4Tdf75AwRv2XrD9hsy6ZxmoeamMm3vKr08P8z/Y+WT ZkUMMThLKNgt/WDNvXtX2pV/RC0EuUq44jk005QQTpGt7WnNjr1rrQo7oEGkdxqt aMaP4EScGmksmdrwceKtbM95JYD2cFTf3T5g87UyanIZ0qoz+khnIMxw2Zigs8zv 0PUFkGTC9IHlYexwg6mxgp0uuueLNkQ5Jkw3FH6Of79pBzVF1rVXzJytGjLMe9ef qXdrMEi/0eDmL/JWuBqwmv+Vpn99lGRSVDNw+JhhY8M1HbU3Hj0OBS3oLd25AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUX+rxjoX+GgJ2QiKZdVADO1mMtKkwHwYDVR0j BBgwFoAUgQe4lwaAvxU3fiIuYJPtEkEWxA8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MTk1YjRiNC1iYzhhLTRjZTUtYjU1MC05YWE3YjM2ZWUxZmEvMC84MTA3Qjg5NzA2 ODBCRjE1Mzc3RTIyMkU2MDkzRUQxMjQxMTZDNDBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODEwN0I4OTcwNjgwQkYxNTM3N0UyMjJFNjA5M0VEMTI0MTE2 QzQwRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxOTViNGI0LWJjOGEtNGNlNS1i NTUwLTlhYTdiMzZlZTFmYS8wLzMxMzYzMDJlMzIzMjJlMzEzMzM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzgzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBaIMA0GCSqG SIb3DQEBCwUAA4IBAQA/4LD9nwgsehMKw5oe6ixEImXH4T3FC+oDx07UurQ8Nm11 e5zMhrVJHnuh8DBhw1+H4iEgH+rOET/Tj5x5Na7LVZ7hodsn3BCAMQOkAwumKJN8 JSV82ETk3/tzipTdsMA1pTPoZn4K04JxRqPx2zYbvZbkELJCZd6/Rvs1/1blvdgc 6rn5b4y6xmzScSaM7FVNhd91ZssbMpd6h8Sv0+J5QfWOjrI53IvQxchg37enWBb8 WghronjQ+/h6aH19ZmwAdsI74cj4svMN0AT1sMNUK3/XK4gl7ezwOn2fDFKt9cli z6rxnHQdk5z72zq4oT6cIREFuISVmjwtaJxNd5Yk -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org