$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/0/3136302e32352e3232332e302f32342d3234203d3e20313533303837.roa File: 3136302e32352e3232332e302f32342d3234203d3e20313533303837.roa (raw, json) Hash identifier: uhnIJdLtefBKzdvxmoXqy4MkPaqyIvVlQc7Roas8llw= Subject key identifier: E9:0E:87:08:DC:AD:A2:4A:84:88:17:68:1A:EA:92:06:08:C5:7F:B5 Certificate issuer: /CN=E3FB5E3343EC63D705FF51B645113F74C7965236 Certificate serial: 7976F47A6302BEB9265AECD8A5C920E3F6EDF8FA Authority key identifier: E3:FB:5E:33:43:EC:63:D7:05:FF:51:B6:45:11:3F:74:C7:96:52:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/E3FB5E3343EC63D705FF51B645113F74C7965236.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/0/3136302e32352e3232332e302f32342d3234203d3e20313533303837.roa Signing time: Fri 09 Aug 2024 11:31:52 +0000 ROA not before: Fri 09 Aug 2024 11:26:52 +0000 ROA not after: Fri 08 Aug 2025 11:31:52 +0000 asID: 153087 IP address blocks: 160.25.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/0/E3FB5E3343EC63D705FF51B645113F74C7965236.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/0/E3FB5E3343EC63D705FF51B645113F74C7965236.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/E3FB5E3343EC63D705FF51B645113F74C7965236.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:76:f4:7a:63:02:be:b9:26:5a:ec:d8:a5:c9:20:e3:f6:ed:f8:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E3FB5E3343EC63D705FF51B645113F74C7965236 Validity Not Before: Aug 9 11:26:52 2024 GMT Not After : Aug 8 11:31:52 2025 GMT Subject: CN=E90E8708DCADA24A848817681AEA920608C57FB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:36:39:10:75:a8:c0:41:07:09:1c:96:04:4b: 35:45:cd:cf:a3:75:81:67:14:d5:c3:88:f2:70:da: 57:24:69:9c:01:a4:04:4e:70:a0:aa:89:d2:77:ba: 4a:ec:fe:40:5a:4a:32:7c:13:bd:9b:cb:1e:c0:ab: 05:ed:28:47:08:1c:9e:41:c4:58:40:ff:7c:67:45: f0:a9:b6:14:9e:5a:39:b5:80:a1:bb:86:4e:f9:a3: d6:77:8b:5c:6d:c7:d3:c2:49:f2:71:09:0e:59:c0: 4d:35:cb:be:bd:b9:78:80:37:1c:a9:84:e7:5c:67: 79:2d:73:ca:a2:97:a9:57:6e:b9:ed:04:dc:5d:a3: 24:60:bb:c3:d3:07:65:fc:2a:4d:20:f8:2f:ef:b9: c7:bd:11:78:8c:77:8c:79:e1:d5:71:8d:6e:8b:31: 04:06:15:c7:a2:13:54:71:23:db:54:2b:b2:ad:0c: b5:49:50:30:b1:b8:9f:b6:0d:e6:bb:5a:2d:53:53: de:4e:80:91:90:1c:05:8d:ff:74:d6:57:0f:da:f4: 1d:15:13:a0:db:03:fc:97:5a:70:70:17:8f:75:1d: bf:ad:e7:5f:ce:39:d1:b6:03:62:4e:16:f5:e4:2d: e6:a1:ad:bf:68:dd:92:00:5a:54:a1:51:ec:0c:57: 4e:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:0E:87:08:DC:AD:A2:4A:84:88:17:68:1A:EA:92:06:08:C5:7F:B5 X509v3 Authority Key Identifier: keyid:E3:FB:5E:33:43:EC:63:D7:05:FF:51:B6:45:11:3F:74:C7:96:52:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/0/E3FB5E3343EC63D705FF51B645113F74C7965236.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/E3FB5E3343EC63D705FF51B645113F74C7965236.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/0/3136302e32352e3232332e302f32342d3234203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.223.0/24 Signature Algorithm: sha256WithRSAEncryption 93:d1:59:30:4b:bd:ee:a9:6e:52:05:97:57:06:0a:08:cf:16: 09:5e:00:49:03:aa:e1:aa:2c:ee:62:8c:04:a7:63:31:6a:7c: 51:d4:7c:52:c7:91:3a:f8:13:c3:04:40:36:62:11:d8:ff:9e: ed:34:e3:2a:14:7f:56:ee:64:c4:e8:ab:f4:7b:ba:df:5c:8e: d9:96:3c:5d:f9:cf:47:5d:74:5f:ec:69:12:1c:4a:b6:2f:f5: 81:13:8b:49:53:f9:17:98:9a:5b:b3:2c:33:7d:4d:a5:f6:57: 34:f2:a5:f0:1d:6f:cb:5f:4a:3f:a6:34:ba:70:26:b3:0d:75: dd:02:94:2e:8a:95:dc:86:35:24:f7:81:f6:f7:c4:1d:4e:b4: bc:9c:08:bd:fe:e1:be:8f:fe:be:45:6c:41:ed:be:c9:c8:04: 64:e7:cf:c6:88:a1:63:98:08:f2:c3:d4:f5:76:80:a4:74:db: de:37:be:d5:93:45:ab:d6:14:2d:65:8f:5f:e6:0d:c7:b3:66: 66:86:25:df:df:c1:a4:c9:26:1a:8d:f0:7f:b5:da:fe:f5:d0: 7d:2b:3b:93:cf:a9:96:0a:31:ce:0b:0e:97:26:6a:eb:d5:ec: d8:b9:ed:ed:24:0c:d8:37:7b:f0:f7:e9:25:5a:3d:55:39:8f: 9a:70:ab:d0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeXb0emMCvrkmWuzYpckg4/bt+PowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTNGQjVFMzM0M0VDNjNENzA1RkY1MUI2NDUxMTNGNzRD Nzk2NTIzNjAeFw0yNDA4MDkxMTI2NTJaFw0yNTA4MDgxMTMxNTJaMDMxMTAvBgNV BAMTKEU5MEU4NzA4RENBREEyNEE4NDg4MTc2ODFBRUE5MjA2MDhDNTdGQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUNjkQdajAQQcJHJYESzVFzc+j dYFnFNXDiPJw2lckaZwBpAROcKCqidJ3ukrs/kBaSjJ8E72byx7AqwXtKEcIHJ5B xFhA/3xnRfCpthSeWjm1gKG7hk75o9Z3i1xtx9PCSfJxCQ5ZwE01y769uXiANxyp hOdcZ3ktc8qil6lXbrntBNxdoyRgu8PTB2X8Kk0g+C/vuce9EXiMd4x54dVxjW6L MQQGFceiE1RxI9tUK7KtDLVJUDCxuJ+2Dea7Wi1TU95OgJGQHAWN/3TWVw/a9B0V E6DbA/yXWnBwF491Hb+t51/OOdG2A2JOFvXkLeahrb9o3ZIAWlShUewMV06BAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6Q6HCNytokqEiBdoGuqSBgjFf7UwHwYDVR0j BBgwFoAU4/teM0PsY9cF/1G2RRE/dMeWUjYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMC9FM0ZCNUUzMzQz RUM2M0Q3MDVGRjUxQjY0NTExM0Y3NEM3OTY1MjM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRTNGQjVFMzM0M0VDNjNENzA1RkY1MUI2NDUxMTNGNzRDNzk2 NTIzNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8wLzMxMzYzMDJlMzIzNTJlMzIzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBnfMA0GCSqG SIb3DQEBCwUAA4IBAQCT0VkwS73uqW5SBZdXBgoIzxYJXgBJA6rhqizuYowEp2Mx anxR1HxSx5E6+BPDBEA2YhHY/57tNOMqFH9W7mTE6Kv0e7rfXI7Zljxd+c9HXXRf 7GkSHEq2L/WBE4tJU/kXmJpbsywzfU2l9lc08qXwHW/LX0o/pjS6cCazDXXdApQu ipXchjUk94H298QdTrS8nAi9/uG+j/6+RWxB7b7JyARk58/GiKFjmAjyw9T1doCk dNveN77Vk0Wr1hQtZY9f5g3Hs2ZmhiXf38GkySYajfB/tdr+9dB9KzuTz6mWCjHO Cw6XJmrr1ezYue3tJAzYN3vw9+klWj1VOY+acKvQ -----END CERTIFICATE-----Generated at Sun Nov 24 13:13:45 2024 by rpki-client on console-fra.rpki-client.org