$ rpki-client -vvf repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/3136302e32352e33342e302f32332d3234203d3e20313532383331.roa File: 3136302e32352e33342e302f32332d3234203d3e20313532383331.roa (raw, json) Hash identifier: TRzh/s2ZOYCYAenew/B30dVp+nMC2XftxOW1QRTM5DE= Subject key identifier: 7C:49:E7:87:59:05:CE:DF:8E:E3:E5:8E:AB:8A:85:82:31:8F:EB:8A Certificate issuer: /CN=24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8 Certificate serial: 3B29ABBDF4C0AEDA34FC146E201FCE50662752F9 Authority key identifier: 24:AE:CD:D0:A0:82:7A:48:D5:FB:AE:F5:01:FE:D3:F4:C6:2A:AB:D8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/3136302e32352e33342e302f32332d3234203d3e20313532383331.roa Signing time: Tue 16 Jul 2024 08:16:50 +0000 ROA not before: Tue 16 Jul 2024 08:11:50 +0000 ROA not after: Tue 15 Jul 2025 08:16:50 +0000 asID: 152831 IP address blocks: 160.25.34.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.crl rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:29:ab:bd:f4:c0:ae:da:34:fc:14:6e:20:1f:ce:50:66:27:52:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8 Validity Not Before: Jul 16 08:11:50 2024 GMT Not After : Jul 15 08:16:50 2025 GMT Subject: CN=7C49E7875905CEDF8EE3E58EAB8A8582318FEB8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1b:c9:26:1f:f3:a2:12:57:c7:e6:70:02:42: 05:c5:0a:79:8d:62:8e:17:3b:38:d1:18:cb:5a:6c: 9b:72:81:bd:59:e2:ec:1f:d3:af:ba:6c:06:8f:f5: 20:3c:fd:27:9b:61:46:8f:70:71:ff:e6:73:b4:63: 73:ed:76:46:f9:74:0c:bb:ae:4f:5b:1e:4e:f8:bd: 31:9c:d1:6c:8f:3e:f0:4c:08:6a:f9:13:3b:ed:87: 0c:a9:5e:01:b4:ec:3b:a5:ba:d0:b0:89:73:2f:de: d0:33:4e:e7:82:e0:bd:ea:77:73:55:cf:04:f4:c0: 05:f8:2e:33:ed:de:c6:4d:37:41:47:ac:38:b8:82: 2e:5c:89:c5:54:87:73:17:60:f7:65:34:b6:d1:d8: 45:2c:ec:4a:28:be:9a:8d:aa:b4:f4:3f:8a:45:7d: c9:aa:5b:44:de:e8:43:b1:86:91:c4:a8:7f:57:8d: 2d:4a:72:84:84:0d:a5:0b:2c:bc:21:09:59:4d:54: 8e:91:10:6c:57:43:14:74:ad:e1:cb:6c:2a:d2:b9: 6e:60:4f:74:e6:42:d7:28:ef:08:fb:aa:04:51:f7: 8d:d0:5a:32:64:29:51:5f:c3:43:5b:10:bc:42:e0: b2:b0:2f:32:a7:7b:17:f5:4f:c3:aa:99:68:7e:fa: 04:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:49:E7:87:59:05:CE:DF:8E:E3:E5:8E:AB:8A:85:82:31:8F:EB:8A X509v3 Authority Key Identifier: keyid:24:AE:CD:D0:A0:82:7A:48:D5:FB:AE:F5:01:FE:D3:F4:C6:2A:AB:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/3136302e32352e33342e302f32332d3234203d3e20313532383331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.34.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:a3:4d:19:82:1e:87:2f:28:92:85:07:df:15:22:1b:17:68: 2d:04:e4:64:7c:ad:b7:0c:5d:03:ae:ba:62:54:6b:62:49:dd: bd:6d:be:7c:ba:23:f1:e0:e0:6f:bf:e0:dd:6e:03:2c:94:59: 07:4b:f1:a6:75:d6:fc:d4:1d:9f:87:ef:52:4e:fd:df:62:d0: 49:83:ec:6a:76:5e:9c:bb:9a:d5:ca:eb:f7:ca:b4:10:fd:b2: 4c:e6:6f:09:48:4b:2d:3f:78:b1:fc:01:3f:42:57:27:3b:a3: 23:b4:5e:85:c5:12:6e:fe:b0:3b:fa:d3:5c:dc:3f:da:21:20: dc:df:68:be:2f:c2:4b:9d:12:90:b3:07:a9:ee:1f:09:3c:49: a7:b6:32:5c:36:49:9b:73:6d:1e:d0:8d:74:2d:64:5f:76:27: 80:69:33:87:32:ac:92:27:5e:3b:f4:60:f8:da:9c:19:f0:e7: 77:a8:4f:67:98:51:96:ef:11:13:26:a7:d1:b1:b4:e1:80:a0: c9:f2:33:cc:02:40:f4:da:93:a8:68:03:c0:2d:76:b0:6f:05: 6f:d5:77:94:74:4c:00:d7:6b:14:8e:fd:64:67:15:58:05:e0: 06:3e:e8:6d:d4:cb:ab:5f:35:0e:a7:b0:bf:88:72:7b:19:29: 16:45:4f:50 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOymrvfTArto0/BRuIB/OUGYnUvkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjRBRUNERDBBMDgyN0E0OEQ1RkJBRUY1MDFGRUQzRjRD NjJBQUJEODAeFw0yNDA3MTYwODExNTBaFw0yNTA3MTUwODE2NTBaMDMxMTAvBgNV BAMTKDdDNDlFNzg3NTkwNUNFREY4RUUzRTU4RUFCOEE4NTgyMzE4RkVCOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7G8kmH/OiElfH5nACQgXFCnmN Yo4XOzjRGMtabJtygb1Z4uwf06+6bAaP9SA8/SebYUaPcHH/5nO0Y3Ptdkb5dAy7 rk9bHk74vTGc0WyPPvBMCGr5EzvthwypXgG07DulutCwiXMv3tAzTueC4L3qd3NV zwT0wAX4LjPt3sZNN0FHrDi4gi5cicVUh3MXYPdlNLbR2EUs7EoovpqNqrT0P4pF fcmqW0Te6EOxhpHEqH9XjS1KcoSEDaULLLwhCVlNVI6REGxXQxR0reHLbCrSuW5g T3TmQtco7wj7qgRR943QWjJkKVFfw0NbELxC4LKwLzKnexf1T8OqmWh++gTPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUfEnnh1kFzt+O4+WOq4qFgjGP64owHwYDVR0j BBgwFoAUJK7N0KCCekjV+671Af7T9MYqq9gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDZjOWI4Yy0zYmU3LTRjMDItOTU1MS1mYmM2ZmZjNDA3MGYvMC8yNEFFQ0REMEEw ODI3QTQ4RDVGQkFFRjUwMUZFRDNGNEM2MkFBQkQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjRBRUNERDBBMDgyN0E0OEQ1RkJBRUY1MDFGRUQzRjRDNjJB QUJEOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkNmM5YjhjLTNiZTctNGMwMi05 NTUxLWZiYzZmZmM0MDcwZi8wLzMxMzYzMDJlMzIzNTJlMzMzNDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzMzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaAZIjANBgkqhkiG 9w0BAQsFAAOCAQEAb6NNGYIehy8okoUH3xUiGxdoLQTkZHyttwxdA666YlRrYknd vW2+fLoj8eDgb7/g3W4DLJRZB0vxpnXW/NQdn4fvUk7932LQSYPsanZenLua1crr 98q0EP2yTOZvCUhLLT94sfwBP0JXJzujI7RehcUSbv6wO/rTXNw/2iEg3N9ovi/C S50SkLMHqe4fCTxJp7YyXDZJm3NtHtCNdC1kX3YngGkzhzKskideO/Rg+NqcGfDn d6hPZ5hRlu8REyan0bG04YCgyfIzzAJA9NqTqGgDwC12sG8Fb9V3lHRMANdrFI79 ZGcVWAXgBj7obdTLq181Dqewv4hyexkpFkVPUA== -----END CERTIFICATE-----Generated at Wed Nov 20 11:08:34 2024 by rpki-client on console-ams.rpki-client.org