$ rpki-client -vvf repo-rpki.idnic.net/repo/47ad0a3a-26b8-449a-88ec-bf0398ea53a6/0/3136302e32352e3235302e302f32342d3234203d3e20313533303938.roa File: 3136302e32352e3235302e302f32342d3234203d3e20313533303938.roa (raw, json) Hash identifier: FwGHsU9pvkCMW0hhE/47YL/pb6ELCWRvWw9egEH3Cj0= Subject key identifier: 2E:F4:41:1A:D0:E3:81:97:3D:16:E6:1F:0C:20:51:6E:25:55:74:3A Certificate issuer: /CN=FBC39A6E177F8DD7BA5E257D4489C57574C07E81 Certificate serial: 3AF5E488852BDBA281659B98A22D84A4E26C47B9 Authority key identifier: FB:C3:9A:6E:17:7F:8D:D7:BA:5E:25:7D:44:89:C5:75:74:C0:7E:81 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FBC39A6E177F8DD7BA5E257D4489C57574C07E81.cer Subject info access: rsync://repo-rpki.idnic.net/repo/47ad0a3a-26b8-449a-88ec-bf0398ea53a6/0/3136302e32352e3235302e302f32342d3234203d3e20313533303938.roa Signing time: Mon 09 Sep 2024 06:59:02 +0000 ROA not before: Mon 09 Sep 2024 06:54:02 +0000 ROA not after: Mon 08 Sep 2025 06:59:02 +0000 asID: 153098 IP address blocks: 160.25.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/47ad0a3a-26b8-449a-88ec-bf0398ea53a6/0/FBC39A6E177F8DD7BA5E257D4489C57574C07E81.crl rsync://repo-rpki.idnic.net/repo/47ad0a3a-26b8-449a-88ec-bf0398ea53a6/0/FBC39A6E177F8DD7BA5E257D4489C57574C07E81.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FBC39A6E177F8DD7BA5E257D4489C57574C07E81.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:f5:e4:88:85:2b:db:a2:81:65:9b:98:a2:2d:84:a4:e2:6c:47:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FBC39A6E177F8DD7BA5E257D4489C57574C07E81 Validity Not Before: Sep 9 06:54:02 2024 GMT Not After : Sep 8 06:59:02 2025 GMT Subject: CN=2EF4411AD0E381973D16E61F0C20516E2555743A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a8:75:24:43:67:95:f0:e8:07:ed:f4:4a:32: e4:ae:af:1d:49:b9:fe:6c:5b:fa:fe:63:68:b2:23: 34:20:65:ba:29:19:c5:90:c0:28:18:3c:02:ad:d3: dd:af:f0:54:e9:15:49:19:52:2b:a1:49:c6:ee:5b: 5f:68:0f:3e:32:d5:c9:36:2d:6e:1c:a5:80:29:36: 56:4c:9a:de:cc:05:e6:ac:f1:bf:f5:f7:32:84:98: 73:6f:0c:96:a4:34:d5:63:67:e3:a5:3e:a2:53:31: cf:60:8e:68:7b:91:70:b9:57:b9:b3:db:af:94:86: e2:cc:e6:5f:e8:f2:25:50:5f:26:94:79:7a:60:87: 16:5d:21:b3:a2:ca:63:51:41:08:48:e2:10:d7:ff: c9:b1:45:57:2c:b4:4c:b8:dc:2f:0b:03:a7:73:ed: 86:5c:45:02:43:b0:59:18:1e:19:84:85:7f:af:00: c7:0f:99:67:d3:f7:fa:7a:c6:77:6f:03:44:25:2f: 63:5d:d3:3a:52:2e:64:b1:6c:10:cd:5e:80:a6:71: 90:cd:0f:b1:ad:ad:73:05:c3:0d:0a:dc:31:3e:d2: 2c:e8:fa:17:69:ff:cc:9c:1f:f6:fc:ec:13:24:8f: 56:36:64:59:34:7a:df:88:1e:38:ab:ac:87:e5:11: fb:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:F4:41:1A:D0:E3:81:97:3D:16:E6:1F:0C:20:51:6E:25:55:74:3A X509v3 Authority Key Identifier: keyid:FB:C3:9A:6E:17:7F:8D:D7:BA:5E:25:7D:44:89:C5:75:74:C0:7E:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/47ad0a3a-26b8-449a-88ec-bf0398ea53a6/0/FBC39A6E177F8DD7BA5E257D4489C57574C07E81.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FBC39A6E177F8DD7BA5E257D4489C57574C07E81.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/47ad0a3a-26b8-449a-88ec-bf0398ea53a6/0/3136302e32352e3235302e302f32342d3234203d3e20313533303938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.250.0/24 Signature Algorithm: sha256WithRSAEncryption 93:78:ea:e6:51:fc:6a:23:80:68:71:56:74:1b:50:63:72:ae: f7:d2:46:e7:2c:44:59:d6:f3:81:3c:76:d9:97:93:0d:34:18: 9e:aa:ab:65:ad:02:b2:d1:89:a8:fb:2c:00:ea:7f:2d:03:aa: de:6b:14:df:5a:bd:ab:de:7b:91:bc:c6:a3:8a:f8:51:dd:37: 79:37:62:09:e2:f2:64:5a:11:16:0e:4a:69:80:1a:25:64:66: 28:82:64:93:91:63:53:87:59:56:56:bb:ba:d4:c7:bd:a7:0e: f6:17:52:41:db:87:a0:46:d1:0b:9a:2e:d1:5e:98:f0:bd:f9: c8:9e:f9:64:86:36:45:e2:72:bb:ec:80:28:30:06:82:13:11: cd:27:9c:a7:62:2a:92:9d:46:2d:7c:7a:b2:5b:2e:80:43:0a: 37:03:82:2d:75:fe:18:51:1e:ab:f2:68:1c:79:8b:1c:62:b8: 67:47:4f:4a:80:22:6a:68:76:6b:44:28:b0:42:d3:ef:3c:a1: ae:b7:c9:40:32:71:6a:a6:a6:05:09:4c:90:f5:83:e6:f7:bc: 02:43:51:0e:c2:01:36:7b:ae:dd:91:0a:05:dc:d7:ca:81:a8: 98:c6:8f:93:25:67:98:0d:00:ef:22:7b:62:ac:f8:c0:e5:f8: 2b:30:c9:f7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOvXkiIUr26KBZZuYoi2EpOJsR7kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkJDMzlBNkUxNzdGOEREN0JBNUUyNTdENDQ4OUM1NzU3 NEMwN0U4MTAeFw0yNDA5MDkwNjU0MDJaFw0yNTA5MDgwNjU5MDJaMDMxMTAvBgNV BAMTKDJFRjQ0MTFBRDBFMzgxOTczRDE2RTYxRjBDMjA1MTZFMjU1NTc0M0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6qHUkQ2eV8OgH7fRKMuSurx1J uf5sW/r+Y2iyIzQgZbopGcWQwCgYPAKt092v8FTpFUkZUiuhScbuW19oDz4y1ck2 LW4cpYApNlZMmt7MBeas8b/19zKEmHNvDJakNNVjZ+OlPqJTMc9gjmh7kXC5V7mz 26+UhuLM5l/o8iVQXyaUeXpghxZdIbOiymNRQQhI4hDX/8mxRVcstEy43C8LA6dz 7YZcRQJDsFkYHhmEhX+vAMcPmWfT9/p6xndvA0QlL2Nd0zpSLmSxbBDNXoCmcZDN D7GtrXMFww0K3DE+0izo+hdp/8ycH/b87BMkj1Y2ZFk0et+IHjirrIflEftBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQULvRBGtDjgZc9FuYfDCBRbiVVdDowHwYDVR0j BBgwFoAU+8Oabhd/jde6XiV9RInFdXTAfoEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 N2FkMGEzYS0yNmI4LTQ0OWEtODhlYy1iZjAzOThlYTUzYTYvMC9GQkMzOUE2RTE3 N0Y4REQ3QkE1RTI1N0Q0NDg5QzU3NTc0QzA3RTgxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkJDMzlBNkUxNzdGOEREN0JBNUUyNTdENDQ4OUM1NzU3NEMw N0U4MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3YWQwYTNhLTI2YjgtNDQ5YS04 OGVjLWJmMDM5OGVhNTNhNi8wLzMxMzYzMDJlMzIzNTJlMzIzNTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzOTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBn6MA0GCSqG SIb3DQEBCwUAA4IBAQCTeOrmUfxqI4BocVZ0G1Bjcq730kbnLERZ1vOBPHbZl5MN NBieqqtlrQKy0Ymo+ywA6n8tA6reaxTfWr2r3nuRvMajivhR3Td5N2IJ4vJkWhEW DkppgBolZGYogmSTkWNTh1lWVru61Me9pw72F1JB24egRtELmi7RXpjwvfnInvlk hjZF4nK77IAoMAaCExHNJ5ynYiqSnUYtfHqyWy6AQwo3A4Itdf4YUR6r8mgceYsc YrhnR09KgCJqaHZrRCiwQtPvPKGut8lAMnFqpqYFCUyQ9YPm97wCQ1EOwgE2e67d kQoF3NfKgaiYxo+TJWeYDQDvIntirPjA5fgrMMn3 -----END CERTIFICATE-----Generated at Fri Nov 22 03:50:41 2024 by rpki-client on console-fra.rpki-client.org