$ rpki-client -vvf repo-rpki.idnic.net/repo/fdb0130d-caa3-476f-af81-ba722330be2c/0/3136302e31392e3137382e302f32342d3234203d3e20313532373837.roa File: 3136302e31392e3137382e302f32342d3234203d3e20313532373837.roa (raw, json) Hash identifier: M1UfgBl+o+VtOJt76FjRKdEJWLXVwypZfHtYeDLVMfk= Subject key identifier: C3:0C:41:41:1C:02:5D:DF:36:11:6B:4E:13:DB:AF:03:A6:D7:9E:EC Certificate issuer: /CN=C2D593D1C8A7F70D45125D4BDBE5774927C14E55 Certificate serial: 018E236C20B7E41B6BC12B14F7031B5327615804 Authority key identifier: C2:D5:93:D1:C8:A7:F7:0D:45:12:5D:4B:DB:E5:77:49:27:C1:4E:55 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C2D593D1C8A7F70D45125D4BDBE5774927C14E55.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fdb0130d-caa3-476f-af81-ba722330be2c/0/3136302e31392e3137382e302f32342d3234203d3e20313532373837.roa Signing time: Fri 20 Sep 2024 11:54:46 +0000 ROA not before: Fri 20 Sep 2024 11:49:46 +0000 ROA not after: Fri 19 Sep 2025 11:54:46 +0000 asID: 152787 IP address blocks: 160.19.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fdb0130d-caa3-476f-af81-ba722330be2c/0/C2D593D1C8A7F70D45125D4BDBE5774927C14E55.crl rsync://repo-rpki.idnic.net/repo/fdb0130d-caa3-476f-af81-ba722330be2c/0/C2D593D1C8A7F70D45125D4BDBE5774927C14E55.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C2D593D1C8A7F70D45125D4BDBE5774927C14E55.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:03:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:8e:23:6c:20:b7:e4:1b:6b:c1:2b:14:f7:03:1b:53:27:61:58:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2D593D1C8A7F70D45125D4BDBE5774927C14E55 Validity Not Before: Sep 20 11:49:46 2024 GMT Not After : Sep 19 11:54:46 2025 GMT Subject: CN=C30C41411C025DDF36116B4E13DBAF03A6D79EEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f1:91:95:7b:5b:f6:68:82:48:74:c4:cf:4d: 3e:3b:cd:a7:20:8d:1c:de:26:71:0d:20:6b:29:0b: 79:2b:17:ef:2c:40:36:d3:34:5e:2e:65:02:81:cb: da:a1:a9:4d:34:58:54:da:62:41:a2:15:c6:5f:19: 68:90:20:06:37:47:0e:1b:b1:05:68:e4:6d:00:dc: ea:ea:22:08:c0:48:53:66:0b:f2:ca:f1:90:f4:64: 04:29:ba:ca:d9:df:92:f4:29:07:6d:46:65:b1:dc: 66:68:ac:51:b2:4e:4b:2a:7a:e6:2c:f4:30:28:dc: 95:d7:83:d0:27:bc:ac:6e:6b:95:fc:be:cf:30:8c: 19:68:e4:a4:eb:66:dd:90:f5:0d:50:13:8d:00:e4: e9:59:e1:4b:fd:49:5a:75:75:d8:27:23:b9:c0:7e: 03:40:bb:2d:d3:05:b7:08:d0:30:3d:52:a2:4d:93: af:28:69:ba:70:55:a0:4c:ce:59:8f:c7:be:f1:07: 8c:b9:3f:8d:62:e5:3a:12:f1:fd:77:5d:21:5c:6c: 55:34:89:fd:ad:f3:89:77:7b:de:6e:5e:f1:5c:4e: 04:41:df:d7:78:ce:8d:44:17:67:04:f5:ae:a3:d6: e9:c2:f8:d3:0f:fe:09:20:34:54:a5:43:e9:4a:43: 8c:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:0C:41:41:1C:02:5D:DF:36:11:6B:4E:13:DB:AF:03:A6:D7:9E:EC X509v3 Authority Key Identifier: keyid:C2:D5:93:D1:C8:A7:F7:0D:45:12:5D:4B:DB:E5:77:49:27:C1:4E:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fdb0130d-caa3-476f-af81-ba722330be2c/0/C2D593D1C8A7F70D45125D4BDBE5774927C14E55.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C2D593D1C8A7F70D45125D4BDBE5774927C14E55.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fdb0130d-caa3-476f-af81-ba722330be2c/0/3136302e31392e3137382e302f32342d3234203d3e20313532373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.178.0/24 Signature Algorithm: sha256WithRSAEncryption a1:2a:7c:1a:8b:82:60:e9:06:03:59:ea:84:14:1b:ae:ab:5e: ea:05:bd:53:7c:7f:34:7f:71:ff:ed:db:92:e0:a6:90:a8:c4: c6:08:72:cb:7a:2d:0c:05:0f:9f:9a:fb:ae:8e:57:71:38:c3: 84:31:9c:3d:a2:cd:98:90:9c:43:47:9b:97:01:3d:e5:40:d3: 1b:85:fd:0c:68:76:48:85:f6:45:ce:57:24:d2:f6:b2:43:72: 0f:ae:5a:49:14:ef:86:0d:e2:c9:7e:74:53:98:ea:9b:fb:15: bc:eb:37:ef:71:ab:69:27:c4:21:bb:a5:21:aa:89:ea:3f:8e: 10:73:95:f7:ae:14:0c:19:08:b6:c9:13:7a:87:23:3d:ad:10: 8f:f6:b8:5f:89:a9:52:9c:08:d8:63:9a:cb:df:e7:08:51:12: 3f:e2:a4:73:1a:6e:97:46:f2:4d:bc:16:0e:86:f1:3f:07:6f: e0:49:c4:af:44:1a:46:1d:05:9a:c4:9d:cb:1a:b0:32:d4:4c: 19:01:98:ec:06:23:d4:43:49:91:61:f0:19:10:de:32:24:c7: e8:d6:cf:55:56:b9:3e:b3:c1:17:e9:03:df:82:98:0d:47:7c: 67:12:d4:47:b6:26:e5:d5:e3:ac:31:55:c1:e9:b8:be:7f:3d: f7:96:07:16 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAY4jbCC35BtrwSsU9wMbUydhWAQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJENTkzRDFDOEE3RjcwRDQ1MTI1RDRCREJFNTc3NDky N0MxNEU1NTAeFw0yNDA5MjAxMTQ5NDZaFw0yNTA5MTkxMTU0NDZaMDMxMTAvBgNV BAMTKEMzMEM0MTQxMUMwMjVEREYzNjExNkI0RTEzREJBRjAzQTZENzlFRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN8ZGVe1v2aIJIdMTPTT47zacg jRzeJnENIGspC3krF+8sQDbTNF4uZQKBy9qhqU00WFTaYkGiFcZfGWiQIAY3Rw4b sQVo5G0A3OrqIgjASFNmC/LK8ZD0ZAQpusrZ35L0KQdtRmWx3GZorFGyTksqeuYs 9DAo3JXXg9AnvKxua5X8vs8wjBlo5KTrZt2Q9Q1QE40A5OlZ4Uv9SVp1ddgnI7nA fgNAuy3TBbcI0DA9UqJNk68oabpwVaBMzlmPx77xB4y5P41i5ToS8f13XSFcbFU0 if2t84l3e95uXvFcTgRB39d4zo1EF2cE9a6j1unC+NMP/gkgNFSlQ+lKQ4xNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUwwxBQRwCXd82EWtOE9uvA6bXnuwwHwYDVR0j BBgwFoAUwtWT0cin9w1FEl1L2+V3SSfBTlUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ZGIwMTMwZC1jYWEzLTQ3NmYtYWY4MS1iYTcyMjMzMGJlMmMvMC9DMkQ1OTNEMUM4 QTdGNzBENDUxMjVENEJEQkU1Nzc0OTI3QzE0RTU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzJENTkzRDFDOEE3RjcwRDQ1MTI1RDRCREJFNTc3NDkyN0Mx NEU1NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZkYjAxMzBkLWNhYTMtNDc2Zi1h ZjgxLWJhNzIyMzMwYmUyYy8wLzMxMzYzMDJlMzEzOTJlMzEzNzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBOyMA0GCSqG SIb3DQEBCwUAA4IBAQChKnwai4Jg6QYDWeqEFBuuq17qBb1TfH80f3H/7duS4KaQ qMTGCHLLei0MBQ+fmvuujldxOMOEMZw9os2YkJxDR5uXAT3lQNMbhf0MaHZIhfZF zlck0vayQ3IPrlpJFO+GDeLJfnRTmOqb+xW86zfvcatpJ8Qhu6UhqonqP44Qc5X3 rhQMGQi2yRN6hyM9rRCP9rhfialSnAjYY5rL3+cIURI/4qRzGm6XRvJNvBYOhvE/ B2/gScSvRBpGHQWaxJ3LGrAy1EwZAZjsBiPUQ0mRYfAZEN4yJMfo1s9VVrk+s8EX 6QPfgpgNR3xnEtRHtibl1eOsMVXB6bi+fz33lgcW -----END CERTIFICATE-----Generated at Fri Nov 22 15:22:20 2024 by rpki-client on console-fra.rpki-client.org