$ rpki-client -vvf repo-rpki.idnic.net/repo/0546e09a-c007-4b0c-9460-7c40341ca2f7/0/3136302e32322e3132362e302f32332d3234203d3e20313532383230.roa File: 3136302e32322e3132362e302f32332d3234203d3e20313532383230.roa (raw, json) Hash identifier: gC4KxUANFsMrdBu7MfFut/AO90Ufo3+gZIW4ZqyH1XY= Subject key identifier: AD:FC:26:42:D1:65:EB:3F:BE:35:2E:DF:A9:7F:A3:47:28:54:3F:44 Certificate issuer: /CN=61E9B678CD42DA2A1B3EF3D8879EDF7ECD2A0063 Certificate serial: 2B365EF9C6245C68CE6FFC95DAB3196B8FE74C7A Authority key identifier: 61:E9:B6:78:CD:42:DA:2A:1B:3E:F3:D8:87:9E:DF:7E:CD:2A:00:63 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/61E9B678CD42DA2A1B3EF3D8879EDF7ECD2A0063.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0546e09a-c007-4b0c-9460-7c40341ca2f7/0/3136302e32322e3132362e302f32332d3234203d3e20313532383230.roa Signing time: Thu 27 Jun 2024 09:25:24 +0000 ROA not before: Thu 27 Jun 2024 09:20:24 +0000 ROA not after: Thu 26 Jun 2025 09:25:24 +0000 asID: 152820 IP address blocks: 160.22.126.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0546e09a-c007-4b0c-9460-7c40341ca2f7/0/61E9B678CD42DA2A1B3EF3D8879EDF7ECD2A0063.crl rsync://repo-rpki.idnic.net/repo/0546e09a-c007-4b0c-9460-7c40341ca2f7/0/61E9B678CD42DA2A1B3EF3D8879EDF7ECD2A0063.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/61E9B678CD42DA2A1B3EF3D8879EDF7ECD2A0063.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:36:5e:f9:c6:24:5c:68:ce:6f:fc:95:da:b3:19:6b:8f:e7:4c:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61E9B678CD42DA2A1B3EF3D8879EDF7ECD2A0063 Validity Not Before: Jun 27 09:20:24 2024 GMT Not After : Jun 26 09:25:24 2025 GMT Subject: CN=ADFC2642D165EB3FBE352EDFA97FA34728543F44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0b:ba:8a:d0:39:71:df:7c:de:b5:03:2c:5a: e7:d6:d1:04:7b:8d:3b:08:1f:d8:3d:60:2a:00:31: 5a:25:5b:42:9d:0a:34:57:0b:47:1a:1b:d7:81:f5: fa:57:a4:a6:4a:33:02:1b:06:40:25:7a:50:03:d4: 79:d4:2f:d8:24:e1:53:96:40:39:21:84:ea:0a:4c: c9:8d:5b:b2:0c:3b:d3:17:4c:06:04:ed:8b:9e:7b: f6:52:9f:b0:98:85:e3:88:6c:fd:8d:a2:9f:ed:15: c2:e6:a8:93:26:b4:3d:d6:18:e7:f6:07:16:9a:89: b0:2b:71:49:0a:a2:22:89:b2:05:c9:de:64:18:98: ee:cf:c6:ba:8b:0a:a8:f0:f2:7f:a5:fa:c3:ac:0e: 46:69:39:ad:e7:41:69:57:0c:19:c0:56:ca:11:29: f3:18:50:f8:7b:28:77:b3:51:0f:07:34:ec:8f:50: f8:1d:9d:56:3e:1f:34:d0:65:68:f9:56:26:57:3e: b7:45:4f:bd:26:3c:64:7e:34:6b:de:ee:c6:f2:c1: cc:f7:5b:26:6d:43:d8:42:39:94:19:0b:08:89:51: b9:35:29:e5:b4:3d:12:a9:78:51:27:bb:5d:8e:50: 31:93:9d:2a:43:81:0c:50:2b:3a:13:4a:2b:58:8d: fb:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:FC:26:42:D1:65:EB:3F:BE:35:2E:DF:A9:7F:A3:47:28:54:3F:44 X509v3 Authority Key Identifier: keyid:61:E9:B6:78:CD:42:DA:2A:1B:3E:F3:D8:87:9E:DF:7E:CD:2A:00:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0546e09a-c007-4b0c-9460-7c40341ca2f7/0/61E9B678CD42DA2A1B3EF3D8879EDF7ECD2A0063.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/61E9B678CD42DA2A1B3EF3D8879EDF7ECD2A0063.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0546e09a-c007-4b0c-9460-7c40341ca2f7/0/3136302e32322e3132362e302f32332d3234203d3e20313532383230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.126.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:87:bf:d2:01:dc:d9:26:57:32:77:1e:b9:b8:ff:8d:d1:ae: 26:e5:b1:f6:aa:b3:d8:c6:d8:76:cf:60:9a:df:76:8e:3d:ca: 64:9a:5b:d5:63:15:c1:c4:1d:dc:97:4a:64:bc:36:96:c0:4d: b2:8d:d1:d4:e8:dd:cb:79:2d:c0:75:51:cb:5f:fa:d8:a3:ac: f9:54:ea:4c:2e:92:d3:5e:5c:01:94:f5:73:af:db:f9:42:2a: e0:05:e1:6e:44:20:cc:58:6b:b3:a4:c8:15:3f:a8:1b:52:37: df:f6:c1:f6:94:93:f9:4e:e6:c6:b1:0c:2c:a8:1f:6f:11:6c: b1:a0:40:25:8a:04:65:b1:db:23:6e:31:b4:ff:ac:7d:a2:90: a7:d0:79:a1:64:02:ed:5c:f5:d7:71:bd:42:19:2f:01:3c:9a: fd:dd:b9:b3:6f:cb:04:51:3f:13:d0:0d:b4:27:fe:29:b7:10: eb:f1:54:b8:9b:cb:4b:4e:6a:5b:46:7f:f8:f3:42:e5:ab:34: 83:e8:c0:c9:bd:5b:58:6e:e8:87:33:54:4c:dc:f2:d1:de:e9: a5:96:e9:78:84:20:3a:b7:49:12:9f:02:6d:ec:ef:32:f3:6c: 52:c7:68:af:69:27:a6:cb:f3:a2:87:95:66:9a:e7:fb:6d:ca: d6:1a:4c:2f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKzZe+cYkXGjOb/yV2rMZa4/nTHowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjFFOUI2NzhDRDQyREEyQTFCM0VGM0Q4ODc5RURGN0VD RDJBMDA2MzAeFw0yNDA2MjcwOTIwMjRaFw0yNTA2MjYwOTI1MjRaMDMxMTAvBgNV BAMTKEFERkMyNjQyRDE2NUVCM0ZCRTM1MkVERkE5N0ZBMzQ3Mjg1NDNGNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2C7qK0Dlx33zetQMsWufW0QR7 jTsIH9g9YCoAMVolW0KdCjRXC0caG9eB9fpXpKZKMwIbBkAlelAD1HnUL9gk4VOW QDkhhOoKTMmNW7IMO9MXTAYE7Yuee/ZSn7CYheOIbP2Nop/tFcLmqJMmtD3WGOf2 BxaaibArcUkKoiKJsgXJ3mQYmO7PxrqLCqjw8n+l+sOsDkZpOa3nQWlXDBnAVsoR KfMYUPh7KHezUQ8HNOyPUPgdnVY+HzTQZWj5ViZXPrdFT70mPGR+NGve7sbywcz3 WyZtQ9hCOZQZCwiJUbk1KeW0PRKpeFEnu12OUDGTnSpDgQxQKzoTSitYjft7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrfwmQtFl6z++NS7fqX+jRyhUP0QwHwYDVR0j BBgwFoAUYem2eM1C2iobPvPYh57ffs0qAGMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTQ2ZTA5YS1jMDA3LTRiMGMtOTQ2MC03YzQwMzQxY2EyZjcvMC82MUU5QjY3OENE NDJEQTJBMUIzRUYzRDg4NzlFREY3RUNEMkEwMDYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNjFFOUI2NzhDRDQyREEyQTFCM0VGM0Q4ODc5RURGN0VDRDJB MDA2My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1NDZlMDlhLWMwMDctNGIwYy05 NDYwLTdjNDAzNDFjYTJmNy8wLzMxMzYzMDJlMzIzMjJlMzEzMjM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBZ+MA0GCSqG SIb3DQEBCwUAA4IBAQBPh7/SAdzZJlcydx65uP+N0a4m5bH2qrPYxth2z2Ca33aO PcpkmlvVYxXBxB3cl0pkvDaWwE2yjdHU6N3LeS3AdVHLX/rYo6z5VOpMLpLTXlwB lPVzr9v5QirgBeFuRCDMWGuzpMgVP6gbUjff9sH2lJP5TubGsQwsqB9vEWyxoEAl igRlsdsjbjG0/6x9opCn0HmhZALtXPXXcb1CGS8BPJr93bmzb8sEUT8T0A20J/4p txDr8VS4m8tLTmpbRn/480LlqzSD6MDJvVtYbuiHM1RM3PLR3umllul4hCA6t0kS nwJt7O8y82xSx2ivaSemy/Oih5Vmmuf7bcrWGkwv -----END CERTIFICATE-----Generated at Fri Apr 25 12:54:05 2025 by rpki-client on console.sobornost.net