$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/0/3136302e32352e3232322e302f32332d3233203d3e20313533303837.roa File: 3136302e32352e3232322e302f32332d3233203d3e20313533303837.roa (raw, json) Hash identifier: jz7yjPO/h0Hd3tRfN+ZclqniexoPCfBHldRalYARglE= Subject key identifier: DE:15:C4:05:03:A9:19:19:97:B6:22:78:C7:52:7B:F3:BC:0C:2A:90 Certificate issuer: /CN=E3FB5E3343EC63D705FF51B645113F74C7965236 Certificate serial: 0A4FE32C76D95B4DB24686F2E3759BDBAAF2604A Authority key identifier: E3:FB:5E:33:43:EC:63:D7:05:FF:51:B6:45:11:3F:74:C7:96:52:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/E3FB5E3343EC63D705FF51B645113F74C7965236.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/0/3136302e32352e3232322e302f32332d3233203d3e20313533303837.roa Signing time: Fri 09 Aug 2024 11:32:36 +0000 ROA not before: Fri 09 Aug 2024 11:27:36 +0000 ROA not after: Fri 08 Aug 2025 11:32:36 +0000 asID: 153087 IP address blocks: 160.25.222.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/0/E3FB5E3343EC63D705FF51B645113F74C7965236.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/0/E3FB5E3343EC63D705FF51B645113F74C7965236.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/E3FB5E3343EC63D705FF51B645113F74C7965236.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:4f:e3:2c:76:d9:5b:4d:b2:46:86:f2:e3:75:9b:db:aa:f2:60:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E3FB5E3343EC63D705FF51B645113F74C7965236 Validity Not Before: Aug 9 11:27:36 2024 GMT Not After : Aug 8 11:32:36 2025 GMT Subject: CN=DE15C40503A9191997B62278C7527BF3BC0C2A90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:98:56:d7:07:ad:d5:37:c4:af:1d:e3:b1:e7: 56:05:37:f2:8c:c6:52:b0:f0:e8:b7:62:4e:d1:65: 63:81:ab:26:cf:3c:72:b8:9d:84:69:8d:5e:48:09: 7a:a3:d3:92:12:96:a7:c0:da:7a:5c:4a:2c:ed:dd: 68:13:9b:fe:ee:34:e6:b0:12:5d:d5:44:c9:81:9d: b6:34:d7:10:44:90:70:41:1f:ed:ce:54:69:4b:66: 5f:e5:53:00:2c:10:4b:ef:54:bb:78:d9:b2:f2:66: ca:2f:d9:1e:6a:fc:0e:a9:42:73:f1:3c:4b:5a:77: 33:32:9c:8e:23:ce:bb:14:6d:1c:c2:32:2b:71:5a: e1:43:20:23:71:f1:87:a0:17:e3:15:dd:2e:5c:eb: ff:c8:71:82:da:8f:d2:c9:fb:12:ef:97:58:7c:a8: e8:93:d7:bc:5b:b2:60:ee:4f:29:18:35:40:9b:5e: c5:3f:bf:8c:a1:ad:7f:20:a8:fa:27:ed:a3:54:b3: 71:0e:a9:74:12:91:09:7b:61:0f:75:63:20:8f:86: b4:d5:76:b5:07:33:0a:70:98:ef:95:ef:08:69:d5: e7:55:56:8a:0a:20:45:40:06:2c:73:7b:19:83:c0: 72:8d:96:27:9b:e7:d8:ac:c9:04:dd:97:66:00:9f: 2e:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:15:C4:05:03:A9:19:19:97:B6:22:78:C7:52:7B:F3:BC:0C:2A:90 X509v3 Authority Key Identifier: keyid:E3:FB:5E:33:43:EC:63:D7:05:FF:51:B6:45:11:3F:74:C7:96:52:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/0/E3FB5E3343EC63D705FF51B645113F74C7965236.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/E3FB5E3343EC63D705FF51B645113F74C7965236.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/0/3136302e32352e3232322e302f32332d3233203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.222.0/23 Signature Algorithm: sha256WithRSAEncryption 97:02:bc:86:19:c7:2b:e1:92:25:92:52:92:45:1f:5f:bb:de: 22:62:82:c3:e6:86:61:9c:2c:72:28:d1:b3:8f:79:84:f3:1a: fa:0c:d6:e9:9f:ed:32:5e:38:d7:83:bb:d6:7e:c6:70:4b:90: 4b:56:ed:23:ba:37:24:98:cf:60:e5:2b:80:4e:93:99:08:43: 7a:d9:27:39:75:71:03:36:d3:41:e4:8e:19:44:f7:d0:06:0e: a7:8c:7e:00:f9:3c:8f:a9:9a:e6:a1:1d:0d:8b:d9:ac:6c:24: 2b:f4:68:fd:ec:5b:cb:75:78:f4:d6:4b:84:9c:94:78:0a:2a: e7:95:14:55:d8:6f:ba:af:74:9b:a6:03:b7:4f:b7:68:bb:29: e2:8d:e8:92:6f:09:1e:4d:89:83:60:cb:50:d2:93:dc:6b:02: 3d:df:e4:42:75:8a:ba:40:a8:a8:90:5b:ff:7a:23:56:78:91: ef:80:ea:d7:55:c6:c1:51:ea:0c:b7:21:20:63:66:f5:3f:7d: 6a:dc:dc:00:f7:86:81:dc:cd:0e:3b:d1:5f:d4:ad:66:0d:a8: f9:1c:82:08:30:e1:ae:0d:19:aa:23:95:e3:69:58:8e:7c:0a: 13:19:03:5a:71:1c:e6:01:e0:77:50:06:a9:30:e3:d3:a0:3c: 91:4b:f3:f4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCk/jLHbZW02yRoby43Wb26ryYEowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTNGQjVFMzM0M0VDNjNENzA1RkY1MUI2NDUxMTNGNzRD Nzk2NTIzNjAeFw0yNDA4MDkxMTI3MzZaFw0yNTA4MDgxMTMyMzZaMDMxMTAvBgNV BAMTKERFMTVDNDA1MDNBOTE5MTk5N0I2MjI3OEM3NTI3QkYzQkMwQzJBOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAmFbXB63VN8SvHeOx51YFN/KM xlKw8Oi3Yk7RZWOBqybPPHK4nYRpjV5ICXqj05ISlqfA2npcSizt3WgTm/7uNOaw El3VRMmBnbY01xBEkHBBH+3OVGlLZl/lUwAsEEvvVLt42bLyZsov2R5q/A6pQnPx PEtadzMynI4jzrsUbRzCMitxWuFDICNx8YegF+MV3S5c6//IcYLaj9LJ+xLvl1h8 qOiT17xbsmDuTykYNUCbXsU/v4yhrX8gqPon7aNUs3EOqXQSkQl7YQ91YyCPhrTV drUHMwpwmO+V7whp1edVVooKIEVABixzexmDwHKNlieb59isyQTdl2YAny4/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3hXEBQOpGRmXtiJ4x1J787wMKpAwHwYDVR0j BBgwFoAU4/teM0PsY9cF/1G2RRE/dMeWUjYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMC9FM0ZCNUUzMzQz RUM2M0Q3MDVGRjUxQjY0NTExM0Y3NEM3OTY1MjM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRTNGQjVFMzM0M0VDNjNENzA1RkY1MUI2NDUxMTNGNzRDNzk2 NTIzNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8wLzMxMzYzMDJlMzIzNTJlMzIzMjMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBneMA0GCSqG SIb3DQEBCwUAA4IBAQCXAryGGccr4ZIlklKSRR9fu94iYoLD5oZhnCxyKNGzj3mE 8xr6DNbpn+0yXjjXg7vWfsZwS5BLVu0jujckmM9g5SuATpOZCEN62Sc5dXEDNtNB 5I4ZRPfQBg6njH4A+TyPqZrmoR0Ni9msbCQr9Gj97FvLdXj01kuEnJR4CirnlRRV 2G+6r3SbpgO3T7douynijeiSbwkeTYmDYMtQ0pPcawI93+RCdYq6QKiokFv/eiNW eJHvgOrXVcbBUeoMtyEgY2b1P31q3NwA94aB3M0OO9Ff1K1mDaj5HIIIMOGuDRmq I5XjaViOfAoTGQNacRzmAeB3UAapMOPToDyRS/P0 -----END CERTIFICATE-----Generated at Sun Nov 24 13:13:45 2024 by rpki-client on console-fra.rpki-client.org