$ rpki-client -vvf repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/3136302e32302e3130342e302f32332d3233203d3e20313532373930.roa File: 3136302e32302e3130342e302f32332d3233203d3e20313532373930.roa (raw, json) Hash identifier: tqotyjAH3hPNKC4KMmbJRyOeRh1hAR0CNyyT9ndAu7k= Subject key identifier: 27:6F:7D:28:CE:AE:1F:FD:DE:59:CC:93:D4:E2:8C:0E:20:E2:AD:7A Certificate issuer: /CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Certificate serial: 186167A0FD974E3ED1888C3E0270B1D93B78B590 Authority key identifier: D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/3136302e32302e3130342e302f32332d3233203d3e20313532373930.roa Signing time: Fri 05 Jul 2024 01:30:27 +0000 ROA not before: Fri 05 Jul 2024 01:25:27 +0000 ROA not after: Fri 04 Jul 2025 01:30:27 +0000 asID: 152790 IP address blocks: 160.20.104.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:61:67:a0:fd:97:4e:3e:d1:88:8c:3e:02:70:b1:d9:3b:78:b5:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Validity Not Before: Jul 5 01:25:27 2024 GMT Not After : Jul 4 01:30:27 2025 GMT Subject: CN=276F7D28CEAE1FFDDE59CC93D4E28C0E20E2AD7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ef:bd:38:90:1d:45:f8:3b:f6:28:7d:45:5d: 31:37:18:f7:c6:33:84:dd:a0:43:d1:fc:4e:59:42: f2:53:37:7a:b8:6d:3d:13:a6:b9:5a:c4:23:45:78: 7a:1b:ec:a4:0b:16:61:19:52:27:f7:26:53:11:f3: 42:29:ec:f6:2c:df:f1:2b:92:a2:2a:58:ee:79:9a: 5a:a6:22:a8:2c:1e:02:84:82:d3:9e:62:f4:ee:f0: 72:46:62:7d:cf:61:f5:51:b7:a2:5e:c9:67:2b:24: e6:57:35:df:3e:0e:c3:a2:ba:60:1f:48:80:fb:a1: b6:c4:3d:4c:e9:af:8c:36:ca:1a:95:98:98:9d:3b: 26:da:e3:b1:1d:7a:2c:ff:ac:22:21:0b:1e:f2:bd: 69:4d:11:99:cc:7f:9b:73:57:09:32:6e:e3:c5:e2: b1:da:43:1a:24:83:0b:30:17:44:7d:d0:f1:13:10: 74:8d:90:72:06:3b:95:0e:c1:8f:7b:25:87:d3:c8: 52:f7:fd:b6:bf:cc:a3:59:4b:76:dc:1b:36:04:00: ce:93:cb:8a:0c:76:43:93:04:26:37:f7:34:51:42: 25:d3:05:96:2c:c6:b9:e4:e5:21:a3:fd:de:ac:93: f0:3c:be:e8:a9:30:cc:d3:4c:88:36:7e:d8:c2:a7: e7:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:6F:7D:28:CE:AE:1F:FD:DE:59:CC:93:D4:E2:8C:0E:20:E2:AD:7A X509v3 Authority Key Identifier: keyid:D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/3136302e32302e3130342e302f32332d3233203d3e20313532373930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.20.104.0/23 Signature Algorithm: sha256WithRSAEncryption 27:f0:c8:b6:1a:a0:7e:af:7d:93:34:1b:f7:57:18:f0:fc:ce: 41:09:7a:16:7c:2f:31:93:0a:0c:12:c7:8c:b0:b0:8e:53:65: 34:10:f8:fe:7c:91:2a:77:8b:9a:2e:2b:a6:e1:c4:2c:4c:79: 0a:c4:2b:3c:2c:77:f6:2e:8d:25:2e:65:65:db:db:32:bb:fc: e7:ef:cc:3d:2c:4e:69:49:e4:0d:13:a9:83:59:cd:73:dc:ee: 3b:4c:12:44:c0:3d:95:61:d8:7d:ea:f4:e6:90:be:43:f8:6a: 27:cb:1a:23:23:b6:10:49:46:df:f8:91:2f:00:bb:38:87:6b: cd:e8:1f:43:f9:7b:30:5e:d7:51:67:40:2d:cf:7f:f7:64:32: 46:51:5b:e6:49:98:eb:62:3a:bf:0d:e5:4e:6c:57:df:9b:bd: dc:4f:ca:48:38:97:62:8a:69:de:db:66:ba:cd:7a:8f:d6:67: 46:a3:f6:b8:cf:26:45:22:9b:fb:26:2e:96:30:36:f8:8f:55: bb:a2:93:0f:38:15:47:f3:07:86:55:fc:04:b4:58:26:a4:39: f3:2f:bf:81:40:1b:ff:e9:3c:b1:69:b6:1c:3d:d8:89:6e:12: eb:33:bd:3e:2e:6c:9f:26:db:63:90:d9:5a:d1:d4:94:d8:e1: c9:70:85:3e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGGFnoP2XTj7RiIw+AnCx2Tt4tZAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkx M0REQjI1NzAeFw0yNDA3MDUwMTI1MjdaFw0yNTA3MDQwMTMwMjdaMDMxMTAvBgNV BAMTKDI3NkY3RDI4Q0VBRTFGRkRERTU5Q0M5M0Q0RTI4QzBFMjBFMkFEN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/7704kB1F+Dv2KH1FXTE3GPfG M4TdoEPR/E5ZQvJTN3q4bT0TprlaxCNFeHob7KQLFmEZUif3JlMR80Ip7PYs3/Er kqIqWO55mlqmIqgsHgKEgtOeYvTu8HJGYn3PYfVRt6JeyWcrJOZXNd8+DsOiumAf SID7obbEPUzpr4w2yhqVmJidOyba47Edeiz/rCIhCx7yvWlNEZnMf5tzVwkybuPF 4rHaQxokgwswF0R90PETEHSNkHIGO5UOwY97JYfTyFL3/ba/zKNZS3bcGzYEAM6T y4oMdkOTBCY39zRRQiXTBZYsxrnk5SGj/d6sk/A8vuipMMzTTIg2ftjCp+dLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJ299KM6uH/3eWcyT1OKMDiDirXowHwYDVR0j BBgwFoAU0jfeog1zs/IWuYM2uoMH2RPdslcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YmI1ZmE0YS1iZWE2LTQ2NGYtYjQwOS0xMWQ5YTM3NjFhNmMvMC9EMjM3REVBMjBE NzNCM0YyMTZCOTgzMzZCQTgzMDdEOTEzRERCMjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkxM0RE QjI1Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZiYjVmYTRhLWJlYTYtNDY0Zi1i NDA5LTExZDlhMzc2MWE2Yy8wLzMxMzYzMDJlMzIzMDJlMzEzMDM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzczOTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBRoMA0GCSqG SIb3DQEBCwUAA4IBAQAn8Mi2GqB+r32TNBv3Vxjw/M5BCXoWfC8xkwoMEseMsLCO U2U0EPj+fJEqd4uaLium4cQsTHkKxCs8LHf2Lo0lLmVl29syu/zn78w9LE5pSeQN E6mDWc1z3O47TBJEwD2VYdh96vTmkL5D+GonyxojI7YQSUbf+JEvALs4h2vN6B9D +XswXtdRZ0Atz3/3ZDJGUVvmSZjrYjq/DeVObFffm73cT8pIOJdiimne22a6zXqP 1mdGo/a4zyZFIpv7Ji6WMDb4j1W7opMPOBVH8weGVfwEtFgmpDnzL7+BQBv/6Tyx abYcPdiJbhLrM70+LmyfJttjkNla0dSU2OHJcIU+ -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:52 2024 by rpki-client on console-ams.rpki-client.org