$ rpki-client -vvf repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/3136302e32352e35312e302f32342d3234203d3e20313533303831.roa File: 3136302e32352e35312e302f32342d3234203d3e20313533303831.roa (raw, json) Hash identifier: ef7YYSMzAtPt9zZDc7b2VbFvOqrUwp6coiKLTTrdJbk= Subject key identifier: 41:AD:1B:11:71:7C:FC:FA:3B:18:19:E1:E1:86:EF:FB:6F:EF:34:3D Certificate issuer: /CN=295131167768CC78482F796BB58CF5A01A014393 Certificate serial: 55501B30CEBB9CB1FC6FA00C1ECF66588DC4EBCE Authority key identifier: 29:51:31:16:77:68:CC:78:48:2F:79:6B:B5:8C:F5:A0:1A:01:43:93 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/295131167768CC78482F796BB58CF5A01A014393.cer Subject info access: rsync://repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/3136302e32352e35312e302f32342d3234203d3e20313533303831.roa Signing time: Thu 25 Jul 2024 08:44:19 +0000 ROA not before: Thu 25 Jul 2024 08:39:19 +0000 ROA not after: Thu 24 Jul 2025 08:44:19 +0000 asID: 153081 IP address blocks: 160.25.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/295131167768CC78482F796BB58CF5A01A014393.crl rsync://repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/295131167768CC78482F796BB58CF5A01A014393.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/295131167768CC78482F796BB58CF5A01A014393.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:50:1b:30:ce:bb:9c:b1:fc:6f:a0:0c:1e:cf:66:58:8d:c4:eb:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295131167768CC78482F796BB58CF5A01A014393 Validity Not Before: Jul 25 08:39:19 2024 GMT Not After : Jul 24 08:44:19 2025 GMT Subject: CN=41AD1B11717CFCFA3B1819E1E186EFFB6FEF343D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ff:47:f6:b6:7b:6a:3b:f2:70:56:4a:5a:10: eb:2c:09:1e:8d:2c:4a:4f:ae:05:54:36:f2:20:ed: 59:34:3a:0d:5c:43:b2:7e:72:85:60:66:08:ee:55: 69:72:e1:38:9b:c2:d6:a8:98:4a:f0:f3:22:05:41: 72:cc:bb:b4:2f:bc:2f:ba:f6:1d:a4:1c:48:49:f6: 63:d1:05:c7:18:59:68:f5:fc:aa:d6:77:70:10:b9: 19:98:7b:0a:b9:fa:ac:e7:0d:62:e9:4b:32:cd:fd: e5:90:6d:5b:ca:68:00:d7:a7:b3:8a:ef:d7:9c:00: c6:70:82:b8:73:f1:71:53:61:e6:5b:58:cc:65:f5: d8:c8:ca:d4:8e:3c:3a:f4:f1:b9:01:c7:df:5e:72: 29:f0:75:de:fb:e8:f5:a8:d2:6c:2d:26:37:7c:d4: 1b:08:8b:28:b8:ef:eb:c1:ae:4e:74:be:9f:f1:36: 14:75:3f:c7:5e:c1:a3:24:fd:3d:f3:42:1b:50:0b: df:c2:c1:dd:96:df:38:90:31:af:d8:5e:fc:6c:a4: 58:cc:c8:6b:05:0c:fb:ab:2d:38:51:75:2d:29:90: be:54:c3:39:60:32:45:31:5d:31:17:ba:d8:27:06: 54:73:0b:bb:0a:2c:92:0d:fd:06:92:fe:73:2e:62: 6a:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:AD:1B:11:71:7C:FC:FA:3B:18:19:E1:E1:86:EF:FB:6F:EF:34:3D X509v3 Authority Key Identifier: keyid:29:51:31:16:77:68:CC:78:48:2F:79:6B:B5:8C:F5:A0:1A:01:43:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/295131167768CC78482F796BB58CF5A01A014393.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/295131167768CC78482F796BB58CF5A01A014393.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/3136302e32352e35312e302f32342d3234203d3e20313533303831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.51.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:33:78:ac:25:4a:7e:7f:ef:e6:93:42:46:da:26:6b:49:e9: 5a:99:49:28:c6:e4:72:61:d7:1f:37:1f:55:4b:62:68:ef:cd: d3:01:ec:7a:9e:f0:52:00:98:98:6d:41:ac:66:ac:bc:10:c1: 2d:db:e9:27:72:73:33:66:2f:b2:70:17:f6:f0:24:8f:b1:7f: 7a:8c:98:12:29:e9:96:2a:e3:a5:41:bf:72:ca:a4:cc:0b:f2: a9:fe:d3:2f:8e:ce:0d:da:2c:de:ed:0e:e0:4a:03:b5:fa:f8: 5c:4d:78:fe:1b:b6:b7:00:42:5c:46:5d:e7:df:d5:64:2f:4b: 0a:92:d0:14:61:2c:84:85:a9:6b:30:ad:58:a9:f9:69:a9:ad: b8:4a:a2:8c:0b:57:61:4c:75:70:9f:c8:fc:75:5f:32:ef:0d: fe:a6:12:93:63:75:f3:b4:79:b3:6a:8a:8e:41:0e:ad:75:59: 45:24:dd:69:aa:b3:d6:ec:66:02:87:45:82:97:34:0e:6e:68: b9:fb:1e:af:a8:ed:4e:c7:f6:cc:38:e8:a1:47:7a:40:20:a4: 03:e4:5d:d3:f5:cb:20:c3:31:8d:d9:a4:7c:d7:2a:13:eb:a0: fa:36:b3:8c:02:cd:08:eb:56:e7:53:64:35:73:a1:c3:c1:0a: 14:32:ef:36 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVVAbMM67nLH8b6AMHs9mWI3E684wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1MTMxMTY3NzY4Q0M3ODQ4MkY3OTZCQjU4Q0Y1QTAx QTAxNDM5MzAeFw0yNDA3MjUwODM5MTlaFw0yNTA3MjQwODQ0MTlaMDMxMTAvBgNV BAMTKDQxQUQxQjExNzE3Q0ZDRkEzQjE4MTlFMUUxODZFRkZCNkZFRjM0M0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7/0f2tntqO/JwVkpaEOssCR6N LEpPrgVUNvIg7Vk0Og1cQ7J+coVgZgjuVWly4TibwtaomErw8yIFQXLMu7QvvC+6 9h2kHEhJ9mPRBccYWWj1/KrWd3AQuRmYewq5+qznDWLpSzLN/eWQbVvKaADXp7OK 79ecAMZwgrhz8XFTYeZbWMxl9djIytSOPDr08bkBx99ecinwdd776PWo0mwtJjd8 1BsIiyi47+vBrk50vp/xNhR1P8dewaMk/T3zQhtQC9/Cwd2W3ziQMa/YXvxspFjM yGsFDPurLThRdS0pkL5UwzlgMkUxXTEXutgnBlRzC7sKLJIN/QaS/nMuYmrRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUQa0bEXF8/Po7GBnh4Ybv+2/vND0wHwYDVR0j BBgwFoAUKVExFndozHhIL3lrtYz1oBoBQ5MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 OWVjYTUwYi01NzIyLTQ5MTgtODMxNC04NTlkM2MxZjU1YTIvMC8yOTUxMzExNjc3 NjhDQzc4NDgyRjc5NkJCNThDRjVBMDFBMDE0MzkzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjk1MTMxMTY3NzY4Q0M3ODQ4MkY3OTZCQjU4Q0Y1QTAxQTAx NDM5My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ5ZWNhNTBiLTU3MjItNDkxOC04 MzE0LTg1OWQzYzFmNTVhMi8wLzMxMzYzMDJlMzIzNTJlMzUzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMzMwMzgzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAZMzANBgkqhkiG 9w0BAQsFAAOCAQEAbDN4rCVKfn/v5pNCRtoma0npWplJKMbkcmHXHzcfVUtiaO/N 0wHsep7wUgCYmG1BrGasvBDBLdvpJ3JzM2YvsnAX9vAkj7F/eoyYEinplirjpUG/ csqkzAvyqf7TL47ODdos3u0O4EoDtfr4XE14/hu2twBCXEZd59/VZC9LCpLQFGEs hIWpazCtWKn5aamtuEqijAtXYUx1cJ/I/HVfMu8N/qYSk2N187R5s2qKjkEOrXVZ RSTdaaqz1uxmAodFgpc0Dm5oufser6jtTsf2zDjooUd6QCCkA+Rd0/XLIMMxjdmk fNcqE+ug+jazjALNCOtW51NkNXOhw8EKFDLvNg== -----END CERTIFICATE-----Generated at Thu Nov 21 15:01:34 2024 by rpki-client on console-fra.rpki-client.org