$ rpki-client -vvf repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/3136302e32352e35302e302f32332d3234203d3e20313533303831.roa File: 3136302e32352e35302e302f32332d3234203d3e20313533303831.roa (raw, json) Hash identifier: IiwJGvJXooBTapkry0rsHVHulyWnAvp0ngUMjLmkAdU= Subject key identifier: 08:8A:50:B8:3D:47:90:8A:ED:AB:30:08:A1:2E:8A:B2:DC:16:BE:2C Certificate issuer: /CN=295131167768CC78482F796BB58CF5A01A014393 Certificate serial: 34F196E8F0A13E0C343105BB22A84ABA9FD1F7E8 Authority key identifier: 29:51:31:16:77:68:CC:78:48:2F:79:6B:B5:8C:F5:A0:1A:01:43:93 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/295131167768CC78482F796BB58CF5A01A014393.cer Subject info access: rsync://repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/3136302e32352e35302e302f32332d3234203d3e20313533303831.roa Signing time: Thu 25 Jul 2024 08:44:29 +0000 ROA not before: Thu 25 Jul 2024 08:39:29 +0000 ROA not after: Thu 24 Jul 2025 08:44:29 +0000 asID: 153081 IP address blocks: 160.25.50.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/295131167768CC78482F796BB58CF5A01A014393.crl rsync://repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/295131167768CC78482F796BB58CF5A01A014393.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/295131167768CC78482F796BB58CF5A01A014393.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:f1:96:e8:f0:a1:3e:0c:34:31:05:bb:22:a8:4a:ba:9f:d1:f7:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295131167768CC78482F796BB58CF5A01A014393 Validity Not Before: Jul 25 08:39:29 2024 GMT Not After : Jul 24 08:44:29 2025 GMT Subject: CN=088A50B83D47908AEDAB3008A12E8AB2DC16BE2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f2:3f:d4:26:96:b6:f4:08:f1:27:5e:04:67: 99:50:f7:17:a6:2c:4f:af:1c:11:15:26:23:5e:c8: 8b:9b:e2:c3:51:fa:1d:b7:7b:ac:62:11:f8:b5:0c: 77:00:a3:68:cc:af:c6:80:56:00:c3:be:44:5f:fd: 84:c8:5e:c3:59:16:64:e9:20:46:c5:cd:ac:ff:f8: bb:a0:70:72:e3:79:90:09:01:bb:36:2f:3c:ca:00: f5:42:e9:e9:5a:e2:6c:d1:64:45:86:4b:02:f3:ec: 29:e8:2c:43:80:16:1c:36:de:7e:cb:f7:d9:1c:12: 49:4e:86:c2:c7:55:02:d8:85:15:47:ec:a5:25:34: 29:76:86:c1:79:6a:fb:c1:47:fa:72:4a:c5:d4:75: c2:46:28:81:7e:75:15:c3:53:e5:68:f5:a6:a9:4e: bd:7e:5e:5a:25:b4:b4:e5:a8:30:a7:1e:62:77:cc: 54:ea:89:bc:47:db:b7:7c:06:ef:a1:ba:c9:e0:f4: 90:5f:9e:72:49:25:22:9c:2e:ce:56:8b:29:62:ee: af:1d:15:d0:99:84:3b:d9:db:2f:4a:66:c9:17:a0: 13:6f:0e:5f:fc:2f:4e:28:82:b8:7a:09:e3:fb:f4: 5d:7e:dd:d5:7b:8f:b9:12:d9:ef:ef:72:5c:e5:82: 82:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:8A:50:B8:3D:47:90:8A:ED:AB:30:08:A1:2E:8A:B2:DC:16:BE:2C X509v3 Authority Key Identifier: keyid:29:51:31:16:77:68:CC:78:48:2F:79:6B:B5:8C:F5:A0:1A:01:43:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/295131167768CC78482F796BB58CF5A01A014393.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/295131167768CC78482F796BB58CF5A01A014393.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/3136302e32352e35302e302f32332d3234203d3e20313533303831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.50.0/23 Signature Algorithm: sha256WithRSAEncryption 65:3e:58:a8:64:da:e7:26:84:27:8f:5b:3a:58:75:fc:e5:ef: 92:c4:43:b6:c7:73:2e:71:c3:09:4b:19:97:a4:12:38:0e:c2: c9:62:f2:6b:32:3d:48:cb:d1:51:e4:a6:e7:5d:10:8e:4b:44: 02:6f:80:c3:0a:7a:77:30:34:5f:1c:cf:44:7d:33:ab:04:ed: d7:96:2e:1a:c3:9c:40:c4:12:2c:50:8b:ca:e1:8e:e8:25:49: f8:bf:52:ab:af:98:66:f6:ae:37:ca:17:a1:60:cf:f8:ab:eb: 40:ba:30:0c:68:88:e2:36:6b:5c:19:46:0c:01:e6:65:43:83: b3:84:a6:88:f2:c7:df:ea:0c:a8:fe:f5:c5:70:99:16:4a:ca: 60:b4:ec:1d:6d:f1:66:3f:28:f5:7e:5c:b6:9c:4f:fb:c6:58: 10:54:68:6e:4e:56:1b:67:9f:bb:2f:31:82:ff:6b:dd:08:90: e7:bf:14:30:be:d4:03:60:d1:8b:8c:af:f1:49:7c:f1:18:a0: 39:38:75:d6:df:6c:57:80:fb:13:6d:d7:45:d2:63:73:4b:5f: ba:4f:fa:1c:e1:cc:49:a8:af:b0:ff:11:01:fa:41:2e:55:94: 2e:30:23:28:c2:48:83:91:c6:8f:4e:85:2a:ce:3a:8a:ef:4f: 03:e7:11:56 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNPGW6PChPgw0MQW7IqhKup/R9+gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1MTMxMTY3NzY4Q0M3ODQ4MkY3OTZCQjU4Q0Y1QTAx QTAxNDM5MzAeFw0yNDA3MjUwODM5MjlaFw0yNTA3MjQwODQ0MjlaMDMxMTAvBgNV BAMTKDA4OEE1MEI4M0Q0NzkwOEFFREFCMzAwOEExMkU4QUIyREMxNkJFMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC48j/UJpa29AjxJ14EZ5lQ9xem LE+vHBEVJiNeyIub4sNR+h23e6xiEfi1DHcAo2jMr8aAVgDDvkRf/YTIXsNZFmTp IEbFzaz/+LugcHLjeZAJAbs2LzzKAPVC6ela4mzRZEWGSwLz7CnoLEOAFhw23n7L 99kcEklOhsLHVQLYhRVH7KUlNCl2hsF5avvBR/pySsXUdcJGKIF+dRXDU+Vo9aap Tr1+XloltLTlqDCnHmJ3zFTqibxH27d8Bu+husng9JBfnnJJJSKcLs5Wiyli7q8d FdCZhDvZ2y9KZskXoBNvDl/8L04ogrh6CeP79F1+3dV7j7kS2e/vclzlgoJnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUCIpQuD1HkIrtqzAIoS6KstwWviwwHwYDVR0j BBgwFoAUKVExFndozHhIL3lrtYz1oBoBQ5MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 OWVjYTUwYi01NzIyLTQ5MTgtODMxNC04NTlkM2MxZjU1YTIvMC8yOTUxMzExNjc3 NjhDQzc4NDgyRjc5NkJCNThDRjVBMDFBMDE0MzkzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjk1MTMxMTY3NzY4Q0M3ODQ4MkY3OTZCQjU4Q0Y1QTAxQTAx NDM5My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ5ZWNhNTBiLTU3MjItNDkxOC04 MzE0LTg1OWQzYzFmNTVhMi8wLzMxMzYzMDJlMzIzNTJlMzUzMDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMzMwMzgzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaAZMjANBgkqhkiG 9w0BAQsFAAOCAQEAZT5YqGTa5yaEJ49bOlh1/OXvksRDtsdzLnHDCUsZl6QSOA7C yWLyazI9SMvRUeSm510QjktEAm+Awwp6dzA0XxzPRH0zqwTt15YuGsOcQMQSLFCL yuGO6CVJ+L9Sq6+YZvauN8oXoWDP+KvrQLowDGiI4jZrXBlGDAHmZUODs4SmiPLH 3+oMqP71xXCZFkrKYLTsHW3xZj8o9X5ctpxP+8ZYEFRobk5WG2efuy8xgv9r3QiQ 578UML7UA2DRi4yv8Ul88RigOTh11t9sV4D7E23XRdJjc0tfuk/6HOHMSaivsP8R AfpBLlWULjAjKMJIg5HGj06FKs46iu9PA+cRVg== -----END CERTIFICATE-----Generated at Thu Nov 21 15:01:34 2024 by rpki-client on console-fra.rpki-client.org