$ rpki-client -vvf repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/3136302e32352e35302e302f32342d3234203d3e20313533303831.roa File: 3136302e32352e35302e302f32342d3234203d3e20313533303831.roa (raw, json) Hash identifier: O/ASHgZeblmxpbkzceq8+yIIFxdV6ZLl5CtvLrpORI4= Subject key identifier: D7:DA:D8:7C:76:E7:26:4B:46:88:7F:E7:AF:A9:E8:C2:F6:67:91:BB Certificate issuer: /CN=295131167768CC78482F796BB58CF5A01A014393 Certificate serial: 79C97D5DFFB4BF2BA3394E2E02D90A234CFC3885 Authority key identifier: 29:51:31:16:77:68:CC:78:48:2F:79:6B:B5:8C:F5:A0:1A:01:43:93 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/295131167768CC78482F796BB58CF5A01A014393.cer Subject info access: rsync://repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/3136302e32352e35302e302f32342d3234203d3e20313533303831.roa Signing time: Thu 25 Jul 2024 08:44:08 +0000 ROA not before: Thu 25 Jul 2024 08:39:08 +0000 ROA not after: Thu 24 Jul 2025 08:44:08 +0000 asID: 153081 IP address blocks: 160.25.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/295131167768CC78482F796BB58CF5A01A014393.crl rsync://repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/295131167768CC78482F796BB58CF5A01A014393.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/295131167768CC78482F796BB58CF5A01A014393.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:c9:7d:5d:ff:b4:bf:2b:a3:39:4e:2e:02:d9:0a:23:4c:fc:38:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295131167768CC78482F796BB58CF5A01A014393 Validity Not Before: Jul 25 08:39:08 2024 GMT Not After : Jul 24 08:44:08 2025 GMT Subject: CN=D7DAD87C76E7264B46887FE7AFA9E8C2F66791BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d2:42:02:b5:f6:e6:4e:d7:1b:0f:f9:8d:82: 3b:2c:e1:2c:4b:53:de:0b:b6:3b:99:3b:11:69:b0: e3:f0:45:0c:76:1e:83:ce:90:b9:1f:34:6e:ee:3a: d0:85:48:2d:73:c9:5c:aa:0d:cf:2d:47:c1:27:b2: 1c:ca:06:fe:0d:10:da:d0:42:f4:fa:36:f9:4f:fa: b9:6f:63:66:54:19:19:18:61:4c:ba:b8:98:df:02: 8b:f4:52:eb:f6:a1:4d:a4:2d:ef:07:0e:23:f3:8d: 07:1d:aa:b9:df:92:37:45:a7:b7:6c:f1:f2:eb:66: 48:bf:6c:91:85:61:cf:f9:9f:dc:4d:cb:ee:f4:54: a1:c3:93:28:f4:5f:4f:22:ab:f6:d8:91:d9:e9:1b: 4d:a2:89:1c:67:2b:8f:6a:58:fb:ec:b3:65:4d:f6: 2a:74:3a:9c:c9:dd:1e:55:14:50:cb:8f:f1:be:f5: 09:b0:31:f6:46:a7:d4:0a:08:6c:c1:0f:15:96:74: 00:35:b4:fc:70:28:08:6c:c4:ae:06:a8:6a:7a:de: 4c:e6:6c:04:cb:83:b1:df:a1:ac:65:ce:6f:b9:a2: 6a:a4:9c:53:57:86:37:c0:49:ca:b0:23:57:0b:60: 3c:c3:a3:68:fa:68:a4:71:9e:d9:17:11:0e:a3:bd: 7e:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:DA:D8:7C:76:E7:26:4B:46:88:7F:E7:AF:A9:E8:C2:F6:67:91:BB X509v3 Authority Key Identifier: keyid:29:51:31:16:77:68:CC:78:48:2F:79:6B:B5:8C:F5:A0:1A:01:43:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/295131167768CC78482F796BB58CF5A01A014393.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/295131167768CC78482F796BB58CF5A01A014393.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/3136302e32352e35302e302f32342d3234203d3e20313533303831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.50.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:70:df:06:b8:e1:f4:ed:32:51:1b:02:27:86:ab:17:b7:7b: 50:8f:8c:13:dc:48:35:df:34:79:c4:1d:82:3f:95:76:81:78: da:a9:13:68:d9:01:de:dd:1f:e9:77:4a:0a:c8:9e:4c:cc:7b: 63:c7:98:93:e6:97:ad:aa:61:64:7b:90:9b:75:54:f5:d6:e1: 7c:28:f5:c5:72:30:5c:b7:f7:24:1c:00:2d:46:8a:a5:0a:4c: 38:bd:dc:a1:bc:7e:3e:29:9b:ff:bc:1a:e4:a9:79:b6:48:0e: 3f:0d:8f:66:57:20:53:ee:31:a2:b5:9b:28:52:2d:87:3b:43: d7:70:0b:1d:34:8d:89:e0:c5:08:f8:38:c9:b9:79:47:97:a5: bb:27:96:bb:40:b7:ad:d4:8c:dc:a6:19:44:e0:fe:d5:3a:84: 83:c9:39:84:87:f8:70:7f:6c:bc:c0:d9:f6:e7:1e:7c:78:07: 6c:ed:51:bc:38:d9:26:e5:e0:72:3a:3c:e7:16:bf:dc:3f:f1: 28:00:67:a2:70:e3:12:81:28:7a:21:97:91:34:65:74:c4:d7: 8c:5e:c1:ff:f1:c7:ae:06:88:d2:15:a9:ca:0f:7e:75:e0:55: a6:d5:88:42:76:4a:ea:ee:3d:4d:b3:12:14:61:77:50:9a:23: 25:5c:ad:c4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUecl9Xf+0vyujOU4uAtkKI0z8OIUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1MTMxMTY3NzY4Q0M3ODQ4MkY3OTZCQjU4Q0Y1QTAx QTAxNDM5MzAeFw0yNDA3MjUwODM5MDhaFw0yNTA3MjQwODQ0MDhaMDMxMTAvBgNV BAMTKEQ3REFEODdDNzZFNzI2NEI0Njg4N0ZFN0FGQTlFOEMyRjY2NzkxQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs0kICtfbmTtcbD/mNgjss4SxL U94LtjuZOxFpsOPwRQx2HoPOkLkfNG7uOtCFSC1zyVyqDc8tR8EnshzKBv4NENrQ QvT6NvlP+rlvY2ZUGRkYYUy6uJjfAov0Uuv2oU2kLe8HDiPzjQcdqrnfkjdFp7ds 8fLrZki/bJGFYc/5n9xNy+70VKHDkyj0X08iq/bYkdnpG02iiRxnK49qWPvss2VN 9ip0OpzJ3R5VFFDLj/G+9QmwMfZGp9QKCGzBDxWWdAA1tPxwKAhsxK4GqGp63kzm bATLg7Hfoaxlzm+5omqknFNXhjfAScqwI1cLYDzDo2j6aKRxntkXEQ6jvX6HAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU19rYfHbnJktGiH/nr6nowvZnkbswHwYDVR0j BBgwFoAUKVExFndozHhIL3lrtYz1oBoBQ5MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 OWVjYTUwYi01NzIyLTQ5MTgtODMxNC04NTlkM2MxZjU1YTIvMC8yOTUxMzExNjc3 NjhDQzc4NDgyRjc5NkJCNThDRjVBMDFBMDE0MzkzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjk1MTMxMTY3NzY4Q0M3ODQ4MkY3OTZCQjU4Q0Y1QTAxQTAx NDM5My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ5ZWNhNTBiLTU3MjItNDkxOC04 MzE0LTg1OWQzYzFmNTVhMi8wLzMxMzYzMDJlMzIzNTJlMzUzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMzMwMzgzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAZMjANBgkqhkiG 9w0BAQsFAAOCAQEAinDfBrjh9O0yURsCJ4arF7d7UI+ME9xINd80ecQdgj+VdoF4 2qkTaNkB3t0f6XdKCsieTMx7Y8eYk+aXraphZHuQm3VU9dbhfCj1xXIwXLf3JBwA LUaKpQpMOL3cobx+Pimb/7wa5Kl5tkgOPw2PZlcgU+4xorWbKFIthztD13ALHTSN ieDFCPg4ybl5R5eluyeWu0C3rdSM3KYZROD+1TqEg8k5hIf4cH9svMDZ9ucefHgH bO1RvDjZJuXgcjo85xa/3D/xKABnonDjEoEoeiGXkTRldMTXjF7B//HHrgaI0hWp yg9+deBVptWIQnZK6u49TbMSFGF3UJojJVytxA== -----END CERTIFICATE-----Generated at Sat Nov 23 22:30:28 2024 by rpki-client on console-ams.rpki-client.org