$ rpki-client -vvf repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/3136302e32302e3130352e302f32342d3234203d3e20313532373930.roa File: 3136302e32302e3130352e302f32342d3234203d3e20313532373930.roa (raw, json) Hash identifier: Jit+uJIEyqjGrv7HRmDwiYsYuySfB8Lk478TOnlXVFM= Subject key identifier: 43:A6:9F:92:DA:BC:98:84:23:AF:25:89:85:1E:B1:88:93:2C:A3:16 Certificate issuer: /CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Certificate serial: 3813A8E0AD8097AE96F568613C5E86CACE082995 Authority key identifier: D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/3136302e32302e3130352e302f32342d3234203d3e20313532373930.roa Signing time: Fri 01 Nov 2024 06:04:47 +0000 ROA not before: Fri 01 Nov 2024 05:59:47 +0000 ROA not after: Fri 31 Oct 2025 06:04:47 +0000 asID: 152790 IP address blocks: 160.20.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:13:a8:e0:ad:80:97:ae:96:f5:68:61:3c:5e:86:ca:ce:08:29:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Validity Not Before: Nov 1 05:59:47 2024 GMT Not After : Oct 31 06:04:47 2025 GMT Subject: CN=43A69F92DABC988423AF2589851EB188932CA316 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:81:35:a2:e2:70:04:22:cb:a0:db:c4:d8:29: c4:dd:5e:ca:19:7f:30:1c:99:03:dc:0e:be:b8:7d: f5:99:51:cd:d8:57:db:75:7a:7f:2e:07:b6:0a:56: 14:6e:f6:b3:5b:23:60:1c:5f:50:7a:4d:08:92:48: fd:5e:5c:65:33:13:12:e9:53:98:d1:5a:12:af:81: 9e:d2:51:96:24:38:86:db:a1:7e:56:0f:a3:c1:f5: 0c:27:6e:1f:9b:dd:65:ad:9a:ca:f6:f3:e4:f7:3a: c5:8f:47:89:1d:c1:f3:fa:e3:9a:7b:82:74:23:24: f9:9a:19:a4:34:8f:6e:45:fa:42:5e:44:b8:2e:9f: dc:2b:44:f9:8b:ba:f5:e3:e5:65:c8:d0:75:75:68: c1:67:75:80:0f:d2:e7:50:e2:ac:61:2c:dc:ae:68: 3d:1f:52:b3:66:0f:6c:20:c2:88:54:65:60:d0:1f: 68:72:7e:ea:04:d1:8f:22:3f:b7:d5:4a:c3:20:a0: 61:f6:3c:ce:bd:e6:14:6f:6d:a6:2d:12:8a:4f:96: ce:8a:fe:e9:a4:65:30:4e:32:5a:5a:1b:86:57:ce: 01:ea:b8:26:d5:67:50:50:c7:3d:bf:a7:8c:14:3c: 8c:88:07:fe:bc:07:5f:1c:c0:5c:46:2f:ac:a8:0f: cc:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:A6:9F:92:DA:BC:98:84:23:AF:25:89:85:1E:B1:88:93:2C:A3:16 X509v3 Authority Key Identifier: keyid:D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/3136302e32302e3130352e302f32342d3234203d3e20313532373930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.20.105.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:9b:b4:a0:13:a1:ca:2d:8f:a8:a0:35:f4:51:8d:00:9b:92: a7:f8:59:eb:11:fb:42:97:04:c5:75:d6:9b:6f:b5:99:62:a8: b7:d0:9b:80:c2:a8:bb:e1:97:fd:da:4a:cd:f2:24:5c:90:b9: 3c:9c:80:3a:f4:5a:ff:44:61:40:1d:1c:ae:39:d5:d5:c7:14: 96:1c:27:ce:a2:97:d7:92:45:7e:be:2f:bd:c5:60:9c:6f:49: 21:e1:c4:5a:aa:fb:4f:57:ea:1e:c2:91:ec:f0:d3:34:19:d3: f0:1c:5a:b7:d2:06:73:68:45:57:72:61:6f:1a:8c:1d:79:c4: 43:7f:73:b6:07:8d:55:4a:b2:29:3a:98:aa:d0:d1:6a:19:bc: df:1c:57:b7:00:ff:80:62:a0:02:f1:6a:39:af:9f:00:a8:f7: 1a:84:5f:41:1a:dd:ca:40:d7:ab:55:49:d0:35:99:c3:b1:7b: 82:11:21:6f:85:51:f2:7f:2c:77:b6:12:d6:67:ff:50:11:b2: c6:55:57:fa:31:45:70:dd:22:17:f4:6f:69:9b:84:11:ee:a2: 06:fe:96:67:73:8c:6c:39:2f:ce:2f:4e:87:14:b0:9a:87:e0: 76:f8:bc:b2:4b:94:16:99:e2:dd:a0:29:ea:f7:5d:eb:84:14: 25:37:7e:a5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOBOo4K2Al66W9WhhPF6Gys4IKZUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkx M0REQjI1NzAeFw0yNDExMDEwNTU5NDdaFw0yNTEwMzEwNjA0NDdaMDMxMTAvBgNV BAMTKDQzQTY5RjkyREFCQzk4ODQyM0FGMjU4OTg1MUVCMTg4OTMyQ0EzMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmgTWi4nAEIsug28TYKcTdXsoZ fzAcmQPcDr64ffWZUc3YV9t1en8uB7YKVhRu9rNbI2AcX1B6TQiSSP1eXGUzExLp U5jRWhKvgZ7SUZYkOIbboX5WD6PB9Qwnbh+b3WWtmsr28+T3OsWPR4kdwfP645p7 gnQjJPmaGaQ0j25F+kJeRLgun9wrRPmLuvXj5WXI0HV1aMFndYAP0udQ4qxhLNyu aD0fUrNmD2wgwohUZWDQH2hyfuoE0Y8iP7fVSsMgoGH2PM695hRvbaYtEopPls6K /umkZTBOMlpaG4ZXzgHquCbVZ1BQxz2/p4wUPIyIB/68B18cwFxGL6yoD8wzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQ6afktq8mIQjryWJhR6xiJMsoxYwHwYDVR0j BBgwFoAU0jfeog1zs/IWuYM2uoMH2RPdslcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YmI1ZmE0YS1iZWE2LTQ2NGYtYjQwOS0xMWQ5YTM3NjFhNmMvMC9EMjM3REVBMjBE NzNCM0YyMTZCOTgzMzZCQTgzMDdEOTEzRERCMjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkxM0RE QjI1Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZiYjVmYTRhLWJlYTYtNDY0Zi1i NDA5LTExZDlhMzc2MWE2Yy8wLzMxMzYzMDJlMzIzMDJlMzEzMDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczOTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBRpMA0GCSqG SIb3DQEBCwUAA4IBAQBam7SgE6HKLY+ooDX0UY0Am5Kn+FnrEftClwTFddabb7WZ Yqi30JuAwqi74Zf92krN8iRckLk8nIA69Fr/RGFAHRyuOdXVxxSWHCfOopfXkkV+ vi+9xWCcb0kh4cRaqvtPV+oewpHs8NM0GdPwHFq30gZzaEVXcmFvGowdecRDf3O2 B41VSrIpOpiq0NFqGbzfHFe3AP+AYqAC8Wo5r58AqPcahF9BGt3KQNerVUnQNZnD sXuCESFvhVHyfyx3thLWZ/9QEbLGVVf6MUVw3SIX9G9pm4QR7qIG/pZnc4xsOS/O L06HFLCah+B2+LyyS5QWmeLdoCnq913rhBQlN36l -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org