$ rpki-client -vvf repo-rpki.idnic.net/repo/47ad0a3a-26b8-449a-88ec-bf0398ea53a6/0/3136302e32352e3235302e302f32332d3233203d3e20313533303938.roa File: 3136302e32352e3235302e302f32332d3233203d3e20313533303938.roa (raw, json) Hash identifier: BMrrPV+uJV5vgYvMtf5iM7UH/3Kth/c7l8TCbVDuBNo= Subject key identifier: 42:C8:72:39:D4:D0:89:C3:87:9C:26:B6:62:94:1F:A7:6E:57:C6:35 Certificate issuer: /CN=FBC39A6E177F8DD7BA5E257D4489C57574C07E81 Certificate serial: 2611D6CA373EE8E32DE4BB7E945EA8C55501847A Authority key identifier: FB:C3:9A:6E:17:7F:8D:D7:BA:5E:25:7D:44:89:C5:75:74:C0:7E:81 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FBC39A6E177F8DD7BA5E257D4489C57574C07E81.cer Subject info access: rsync://repo-rpki.idnic.net/repo/47ad0a3a-26b8-449a-88ec-bf0398ea53a6/0/3136302e32352e3235302e302f32332d3233203d3e20313533303938.roa Signing time: Mon 09 Sep 2024 07:02:31 +0000 ROA not before: Mon 09 Sep 2024 06:57:31 +0000 ROA not after: Mon 08 Sep 2025 07:02:31 +0000 asID: 153098 IP address blocks: 160.25.250.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/47ad0a3a-26b8-449a-88ec-bf0398ea53a6/0/FBC39A6E177F8DD7BA5E257D4489C57574C07E81.crl rsync://repo-rpki.idnic.net/repo/47ad0a3a-26b8-449a-88ec-bf0398ea53a6/0/FBC39A6E177F8DD7BA5E257D4489C57574C07E81.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FBC39A6E177F8DD7BA5E257D4489C57574C07E81.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:11:d6:ca:37:3e:e8:e3:2d:e4:bb:7e:94:5e:a8:c5:55:01:84:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FBC39A6E177F8DD7BA5E257D4489C57574C07E81 Validity Not Before: Sep 9 06:57:31 2024 GMT Not After : Sep 8 07:02:31 2025 GMT Subject: CN=42C87239D4D089C3879C26B662941FA76E57C635 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a6:ce:4a:9f:c3:7a:06:84:14:91:55:b3:f5: f3:02:73:6c:5d:3d:b7:3d:07:a1:c0:a5:c1:90:a8: 4c:dd:4d:15:ba:5d:b6:5e:b8:74:a4:a4:27:95:74: c8:03:cf:31:11:d3:f9:f6:8e:b8:7f:0c:a8:e3:3d: 39:f1:84:c2:9f:ad:1b:e9:23:d1:40:21:22:06:89: 0b:99:e6:48:02:ba:67:a3:76:cb:79:56:2e:75:77: 69:ec:f7:d1:66:78:1f:ea:a0:27:23:0a:50:bf:86: 9e:1f:2e:0c:19:dc:d7:46:ec:ce:07:b4:3c:88:32: 1e:eb:22:ac:b0:07:61:24:59:f3:b1:39:3c:54:7c: 31:17:1f:6c:e8:a8:29:17:eb:ec:88:e4:e9:d8:b1: bc:90:00:0a:66:ed:22:14:01:07:e5:8d:97:58:e5: 2e:db:9e:f7:0e:ed:95:7f:72:14:05:77:59:8a:80: 9f:5e:d9:5b:64:71:86:df:c0:55:22:9e:df:69:a2: c4:7d:99:0a:40:f2:4d:43:b4:f7:75:97:7a:8b:3d: 9f:b4:7b:1e:b5:1b:ef:f2:4e:de:7d:ae:57:24:ec: 43:90:cd:58:75:a8:1f:69:ef:05:30:1e:ca:7b:ab: 44:c3:09:9e:92:17:7c:6c:a5:c4:89:97:86:ff:39: f2:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:C8:72:39:D4:D0:89:C3:87:9C:26:B6:62:94:1F:A7:6E:57:C6:35 X509v3 Authority Key Identifier: keyid:FB:C3:9A:6E:17:7F:8D:D7:BA:5E:25:7D:44:89:C5:75:74:C0:7E:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/47ad0a3a-26b8-449a-88ec-bf0398ea53a6/0/FBC39A6E177F8DD7BA5E257D4489C57574C07E81.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FBC39A6E177F8DD7BA5E257D4489C57574C07E81.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/47ad0a3a-26b8-449a-88ec-bf0398ea53a6/0/3136302e32352e3235302e302f32332d3233203d3e20313533303938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.250.0/23 Signature Algorithm: sha256WithRSAEncryption 82:33:5b:56:96:8f:d0:9f:ee:50:33:62:eb:08:fd:e4:cd:2f: 05:5c:e9:86:40:eb:b4:79:bb:a4:57:9b:33:b2:07:7d:99:4c: 0b:52:b6:15:c4:09:9b:50:ed:a7:45:82:f9:14:14:5d:90:24: 2c:be:21:a4:a1:ea:f6:2a:4d:24:19:ca:eb:d4:38:ed:4d:a6: 53:06:e2:7d:81:ef:86:ab:4b:14:5e:9a:bd:c9:ca:07:a4:39: 33:4a:ab:26:60:f2:9d:d7:da:76:a1:67:0a:c3:52:cf:e6:eb: d5:51:6e:bf:93:22:0a:86:4a:b7:ad:88:ee:02:88:bf:0c:ec: ff:48:12:7b:60:9f:08:df:3e:c3:aa:66:01:07:11:9b:67:db: ef:7f:04:61:fb:68:98:10:52:47:1c:31:f9:47:da:b8:23:54: 84:21:89:48:08:01:aa:de:a4:7c:27:c2:ae:92:14:69:0e:b3: c0:63:e3:68:8d:a2:e3:e7:1c:dd:73:43:d3:1f:23:91:0b:13: 1d:30:e0:c3:d7:43:e3:e0:5e:28:8e:c1:b8:0e:7f:30:30:f3: 03:66:8c:f9:23:a1:10:3c:3a:8d:59:22:fd:f1:72:19:a7:b0: 96:c0:da:5a:d3:15:3d:5e:11:08:fa:dd:d9:4a:54:a2:4b:d7: 24:98:20:36 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJhHWyjc+6OMt5Lt+lF6oxVUBhHowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkJDMzlBNkUxNzdGOEREN0JBNUUyNTdENDQ4OUM1NzU3 NEMwN0U4MTAeFw0yNDA5MDkwNjU3MzFaFw0yNTA5MDgwNzAyMzFaMDMxMTAvBgNV BAMTKDQyQzg3MjM5RDREMDg5QzM4NzlDMjZCNjYyOTQxRkE3NkU1N0M2MzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsps5Kn8N6BoQUkVWz9fMCc2xd Pbc9B6HApcGQqEzdTRW6XbZeuHSkpCeVdMgDzzER0/n2jrh/DKjjPTnxhMKfrRvp I9FAISIGiQuZ5kgCumejdst5Vi51d2ns99FmeB/qoCcjClC/hp4fLgwZ3NdG7M4H tDyIMh7rIqywB2EkWfOxOTxUfDEXH2zoqCkX6+yI5OnYsbyQAApm7SIUAQfljZdY 5S7bnvcO7ZV/chQFd1mKgJ9e2VtkcYbfwFUint9posR9mQpA8k1DtPd1l3qLPZ+0 ex61G+/yTt59rlck7EOQzVh1qB9p7wUwHsp7q0TDCZ6SF3xspcSJl4b/OfJHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQshyOdTQicOHnCa2YpQfp25XxjUwHwYDVR0j BBgwFoAU+8Oabhd/jde6XiV9RInFdXTAfoEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 N2FkMGEzYS0yNmI4LTQ0OWEtODhlYy1iZjAzOThlYTUzYTYvMC9GQkMzOUE2RTE3 N0Y4REQ3QkE1RTI1N0Q0NDg5QzU3NTc0QzA3RTgxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkJDMzlBNkUxNzdGOEREN0JBNUUyNTdENDQ4OUM1NzU3NEMw N0U4MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3YWQwYTNhLTI2YjgtNDQ5YS04 OGVjLWJmMDM5OGVhNTNhNi8wLzMxMzYzMDJlMzIzNTJlMzIzNTMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMzMzAzOTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBn6MA0GCSqG SIb3DQEBCwUAA4IBAQCCM1tWlo/Qn+5QM2LrCP3kzS8FXOmGQOu0ebukV5szsgd9 mUwLUrYVxAmbUO2nRYL5FBRdkCQsviGkoer2Kk0kGcrr1DjtTaZTBuJ9ge+Gq0sU Xpq9ycoHpDkzSqsmYPKd19p2oWcKw1LP5uvVUW6/kyIKhkq3rYjuAoi/DOz/SBJ7 YJ8I3z7DqmYBBxGbZ9vvfwRh+2iYEFJHHDH5R9q4I1SEIYlICAGq3qR8J8KukhRp DrPAY+NojaLj5xzdc0PTHyORCxMdMODD10Pj4F4ojsG4Dn8wMPMDZoz5I6EQPDqN WSL98XIZp7CWwNpa0xU9XhEI+t3ZSlSiS9ckmCA2 -----END CERTIFICATE-----Generated at Sun Nov 24 13:26:10 2024 by rpki-client on console-ams.rpki-client.org