$ rpki-client -vvf repo-rpki.idnic.net/repo/5ac6155e-2d2f-4f9e-b218-eb525b3a1119/0/3136302e32352e3230332e302f32342d3234203d3e20313533313038.roa File: 3136302e32352e3230332e302f32342d3234203d3e20313533313038.roa (raw, json) Hash identifier: hOlyHuu2wphYhBJDocKFWHEZrEGEanCNnjs4wR5XHPw= Subject key identifier: 1A:1A:CC:92:17:AD:37:D8:D0:03:B5:30:3C:7F:09:42:2B:C6:1D:B7 Certificate issuer: /CN=405E466852C38FD4CD20BA6115840947D5D24F5D Certificate serial: 764F2E7A3A55DF348A5B91FFDDB2CC60BC04FB5F Authority key identifier: 40:5E:46:68:52:C3:8F:D4:CD:20:BA:61:15:84:09:47:D5:D2:4F:5D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/405E466852C38FD4CD20BA6115840947D5D24F5D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ac6155e-2d2f-4f9e-b218-eb525b3a1119/0/3136302e32352e3230332e302f32342d3234203d3e20313533313038.roa Signing time: Thu 15 Aug 2024 07:51:21 +0000 ROA not before: Thu 15 Aug 2024 07:46:21 +0000 ROA not after: Thu 14 Aug 2025 07:51:21 +0000 asID: 153108 IP address blocks: 160.25.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ac6155e-2d2f-4f9e-b218-eb525b3a1119/0/405E466852C38FD4CD20BA6115840947D5D24F5D.crl rsync://repo-rpki.idnic.net/repo/5ac6155e-2d2f-4f9e-b218-eb525b3a1119/0/405E466852C38FD4CD20BA6115840947D5D24F5D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/405E466852C38FD4CD20BA6115840947D5D24F5D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:4f:2e:7a:3a:55:df:34:8a:5b:91:ff:dd:b2:cc:60:bc:04:fb:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=405E466852C38FD4CD20BA6115840947D5D24F5D Validity Not Before: Aug 15 07:46:21 2024 GMT Not After : Aug 14 07:51:21 2025 GMT Subject: CN=1A1ACC9217AD37D8D003B5303C7F09422BC61DB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:0c:3e:57:c2:c9:1a:ee:99:d1:b1:1a:22:d4: 5b:20:17:08:7e:9d:ba:55:47:e5:a9:9b:da:52:a4: 16:c0:35:d9:ce:6c:5b:fd:64:b0:f9:ab:9b:ec:5b: 2d:91:b7:20:2d:bb:60:bc:bb:36:01:9f:a4:d0:30: 66:52:b4:5d:9d:fa:b6:fd:8c:89:21:c6:ca:17:78: 2e:fe:b3:80:b5:6c:82:80:07:fb:aa:3c:0b:01:e3: 0d:67:03:5b:38:65:15:ce:bd:d6:13:b7:d3:58:6c: b0:a6:84:36:54:eb:ff:7d:7e:7f:ba:c8:0d:89:a9: 61:cc:31:93:6d:b0:a4:45:7f:45:58:a9:82:28:69: 40:ce:b9:b8:95:c9:ab:3f:40:a9:07:37:b5:6b:59: dc:6d:56:98:35:cc:5c:10:b4:3f:be:29:70:b4:42: 78:ac:56:65:db:0a:b2:9f:c1:17:75:e8:1a:34:4c: 12:27:57:1a:6a:88:4a:e4:f5:36:ec:88:47:53:32: 2e:24:9b:fc:97:ff:25:5b:f9:dc:a0:df:f9:c8:a7: 62:c0:2f:e6:59:43:5d:ae:23:e6:bb:d9:b6:1a:14: cb:c3:e3:52:93:16:6e:7e:d4:bb:f7:ac:0c:e4:19: c4:4d:b4:ba:8b:0a:c6:58:5a:d1:d3:01:85:40:1a: 9f:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:1A:CC:92:17:AD:37:D8:D0:03:B5:30:3C:7F:09:42:2B:C6:1D:B7 X509v3 Authority Key Identifier: keyid:40:5E:46:68:52:C3:8F:D4:CD:20:BA:61:15:84:09:47:D5:D2:4F:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ac6155e-2d2f-4f9e-b218-eb525b3a1119/0/405E466852C38FD4CD20BA6115840947D5D24F5D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/405E466852C38FD4CD20BA6115840947D5D24F5D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ac6155e-2d2f-4f9e-b218-eb525b3a1119/0/3136302e32352e3230332e302f32342d3234203d3e20313533313038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.203.0/24 Signature Algorithm: sha256WithRSAEncryption 89:a0:c6:49:04:94:37:18:39:4c:0c:52:62:c0:28:b1:f6:5a: 65:05:50:85:4c:b1:5e:42:26:88:7f:d2:0b:b0:3c:0b:9e:40: f2:63:05:fe:6b:ab:d7:22:57:ad:51:0d:04:64:b1:5e:1e:30: 8b:25:08:ee:35:05:c1:1e:7f:32:79:34:f0:f3:bf:89:9f:92: c6:6c:56:b9:6e:0e:94:0b:ac:ce:ac:60:45:63:70:fb:17:a9: 83:70:9a:7b:36:5f:c4:50:2f:63:c5:0c:25:eb:f3:c1:73:d5: 97:5e:90:9e:83:7e:3a:42:b7:8a:51:29:53:93:89:f3:f8:55: 77:45:f1:46:8d:e6:c7:98:75:d6:e0:53:d4:81:50:60:41:9c: 5f:d0:cc:e9:cb:ae:b1:92:41:3a:7a:bf:9b:c7:15:fa:65:9e: 24:14:78:e0:19:99:f1:97:c0:38:9f:28:81:f6:a1:04:35:f6: 6e:1e:41:1c:90:d5:1a:86:77:dc:66:c2:06:bd:8a:94:00:85: 10:37:e3:a5:a2:ae:b5:6d:3d:f3:a2:bf:7f:2a:d0:9c:ab:9b: 59:3d:78:24:38:e7:23:42:13:72:56:1d:19:74:4d:a7:70:eb: 6e:1b:d0:e7:81:ca:67:08:44:5a:15:78:b2:73:86:ed:7c:63: af:4f:c6:45 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdk8uejpV3zSKW5H/3bLMYLwE+18wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA1RTQ2Njg1MkMzOEZENENEMjBCQTYxMTU4NDA5NDdE NUQyNEY1RDAeFw0yNDA4MTUwNzQ2MjFaFw0yNTA4MTQwNzUxMjFaMDMxMTAvBgNV BAMTKDFBMUFDQzkyMTdBRDM3RDhEMDAzQjUzMDNDN0YwOTQyMkJDNjFEQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxDD5Xwska7pnRsRoi1FsgFwh+ nbpVR+Wpm9pSpBbANdnObFv9ZLD5q5vsWy2RtyAtu2C8uzYBn6TQMGZStF2d+rb9 jIkhxsoXeC7+s4C1bIKAB/uqPAsB4w1nA1s4ZRXOvdYTt9NYbLCmhDZU6/99fn+6 yA2JqWHMMZNtsKRFf0VYqYIoaUDOubiVyas/QKkHN7VrWdxtVpg1zFwQtD++KXC0 QnisVmXbCrKfwRd16Bo0TBInVxpqiErk9TbsiEdTMi4km/yX/yVb+dyg3/nIp2LA L+ZZQ12uI+a72bYaFMvD41KTFm5+1Lv3rAzkGcRNtLqLCsZYWtHTAYVAGp+5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGhrMkhetN9jQA7UwPH8JQivGHbcwHwYDVR0j BBgwFoAUQF5GaFLDj9TNILphFYQJR9XST10wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWM2MTU1ZS0yZDJmLTRmOWUtYjIxOC1lYjUyNWIzYTExMTkvMC80MDVFNDY2ODUy QzM4RkQ0Q0QyMEJBNjExNTg0MDk0N0Q1RDI0RjVELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDA1RTQ2Njg1MkMzOEZENENEMjBCQTYxMTU4NDA5NDdENUQy NEY1RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhYzYxNTVlLTJkMmYtNGY5ZS1i MjE4LWViNTI1YjNhMTExOS8wLzMxMzYzMDJlMzIzNTJlMzIzMDMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzEzMDM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBnLMA0GCSqG SIb3DQEBCwUAA4IBAQCJoMZJBJQ3GDlMDFJiwCix9lplBVCFTLFeQiaIf9ILsDwL nkDyYwX+a6vXIletUQ0EZLFeHjCLJQjuNQXBHn8yeTTw87+Jn5LGbFa5bg6UC6zO rGBFY3D7F6mDcJp7Nl/EUC9jxQwl6/PBc9WXXpCeg346QreKUSlTk4nz+FV3RfFG jebHmHXW4FPUgVBgQZxf0Mzpy66xkkE6er+bxxX6ZZ4kFHjgGZnxl8A4nyiB9qEE NfZuHkEckNUahnfcZsIGvYqUAIUQN+Oloq61bT3zor9/KtCcq5tZPXgkOOcjQhNy Vh0ZdE2ncOtuG9DngcpnCERaFXiyc4btfGOvT8ZF -----END CERTIFICATE-----Generated at Wed Nov 20 18:59:25 2024 by rpki-client on console-ams.rpki-client.org