$ rpki-client -vvf repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/3136302e32352e3131382e302f32332d3234203d3e20313533303936.roa File: 3136302e32352e3131382e302f32332d3234203d3e20313533303936.roa (raw, json) Hash identifier: 1k/F9QvhsWyHzMYSAMED8rAGgh3NCF/Y7RiQpGt2sak= Subject key identifier: DC:4B:22:96:A8:4D:6E:87:79:2D:CC:4C:3A:09:64:3B:81:D4:08:FD Certificate issuer: /CN=9D21366ED4E3738A5F50E524109806C98D710BD3 Certificate serial: 51E06AF4DB6A9D47F1B30BBF049ECA3FC8DA1E2C Authority key identifier: 9D:21:36:6E:D4:E3:73:8A:5F:50:E5:24:10:98:06:C9:8D:71:0B:D3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D21366ED4E3738A5F50E524109806C98D710BD3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/3136302e32352e3131382e302f32332d3234203d3e20313533303936.roa Signing time: Sat 17 Aug 2024 04:06:06 +0000 ROA not before: Sat 17 Aug 2024 04:01:06 +0000 ROA not after: Sat 16 Aug 2025 04:06:06 +0000 asID: 153096 IP address blocks: 160.25.118.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.crl rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D21366ED4E3738A5F50E524109806C98D710BD3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 18:22:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:e0:6a:f4:db:6a:9d:47:f1:b3:0b:bf:04:9e:ca:3f:c8:da:1e:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D21366ED4E3738A5F50E524109806C98D710BD3 Validity Not Before: Aug 17 04:01:06 2024 GMT Not After : Aug 16 04:06:06 2025 GMT Subject: CN=DC4B2296A84D6E87792DCC4C3A09643B81D408FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:53:c0:cb:1b:0e:4e:2a:ee:b1:2e:af:d4:9a: 36:ac:ea:5c:d4:45:6c:78:97:20:f9:c8:a5:b8:52: ef:17:9e:34:9c:cf:89:34:0c:a1:f6:a1:c3:37:0f: cf:14:26:5d:5c:70:d4:cb:d0:3f:88:3f:b9:7a:8d: c9:21:ca:fe:b0:f7:26:d5:4c:68:d8:3c:1d:3e:86: bf:62:db:11:bf:2e:07:7f:dd:a0:e7:88:ba:f3:e5: 02:f5:59:54:cd:e6:c1:25:c2:13:dc:a4:ca:94:47: 83:4b:c2:33:cd:c3:5d:f7:50:24:2f:85:c5:0c:ca: 2e:72:46:1c:c5:d7:a0:e9:0d:87:da:12:94:93:a1: 0a:e3:45:c0:77:f8:80:1b:b6:b0:9e:f2:4b:11:62: 60:66:0a:19:2d:48:7d:1c:aa:ad:c5:5d:fb:ab:6d: d5:9f:40:a8:13:e5:62:08:68:dc:12:e7:cf:cb:9f: 32:72:21:b0:7e:b1:6b:93:cb:f2:f9:a7:ef:c0:d0: f6:62:2d:f1:62:b8:92:36:c0:78:fd:7e:fb:7c:fb: fe:b5:77:00:16:96:db:80:13:58:19:95:46:7c:f2: 3b:07:75:1b:51:cd:85:d5:1c:b7:c4:1d:37:25:26: 0a:40:e6:52:1f:06:df:de:38:a9:40:ee:f4:95:94: 31:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:4B:22:96:A8:4D:6E:87:79:2D:CC:4C:3A:09:64:3B:81:D4:08:FD X509v3 Authority Key Identifier: keyid:9D:21:36:6E:D4:E3:73:8A:5F:50:E5:24:10:98:06:C9:8D:71:0B:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D21366ED4E3738A5F50E524109806C98D710BD3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/3136302e32352e3131382e302f32332d3234203d3e20313533303936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.118.0/23 Signature Algorithm: sha256WithRSAEncryption c5:69:90:be:01:30:e8:97:98:68:1f:f8:25:87:f2:76:76:d1: 42:2a:31:7f:8e:83:14:c4:ac:42:09:10:37:70:fd:c8:0a:e0: 83:3c:66:a6:ba:92:fd:b3:49:1d:36:7e:b1:0c:46:cc:83:29: f8:3f:a3:8e:00:b3:5d:a7:b6:26:ce:43:d3:77:60:e8:e9:e9: 60:43:17:e1:56:ee:8c:8a:0a:29:e2:31:53:93:fe:c8:e2:4c: ba:dc:42:6d:9e:0e:18:58:b8:7a:9f:73:d4:6c:17:89:33:1b: 55:e6:85:59:15:e6:0c:3b:ca:2d:50:70:eb:ee:37:7e:8b:04: f1:0f:b4:4b:9f:80:9b:30:1c:a0:fc:f7:0f:ed:2f:c1:e8:52: 05:c0:07:60:2b:a2:f2:0c:41:7d:f8:53:84:85:22:08:7c:b9: d8:f9:ce:be:72:66:f9:84:98:c4:d5:51:a6:49:68:4d:ab:d1: 22:bf:54:ab:4c:36:8d:8d:ac:eb:25:82:fd:9d:16:37:dc:c5: e6:cb:fa:01:bb:50:3a:04:85:7b:f6:c5:16:f9:84:e4:24:75: 0d:fd:a4:42:12:aa:54:78:ed:1e:d4:07:8b:2e:ab:d7:4a:92: 83:29:f4:00:c4:0d:61:40:b3:3a:ac:70:6a:26:55:b9:46:57: c8:35:1a:09 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUeBq9NtqnUfxswu/BJ7KP8jaHiwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQyMTM2NkVENEUzNzM4QTVGNTBFNTI0MTA5ODA2Qzk4 RDcxMEJEMzAeFw0yNDA4MTcwNDAxMDZaFw0yNTA4MTYwNDA2MDZaMDMxMTAvBgNV BAMTKERDNEIyMjk2QTg0RDZFODc3OTJEQ0M0QzNBMDk2NDNCODFENDA4RkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvU8DLGw5OKu6xLq/Umjas6lzU RWx4lyD5yKW4Uu8XnjScz4k0DKH2ocM3D88UJl1ccNTL0D+IP7l6jckhyv6w9ybV TGjYPB0+hr9i2xG/Lgd/3aDniLrz5QL1WVTN5sElwhPcpMqUR4NLwjPNw133UCQv hcUMyi5yRhzF16DpDYfaEpSToQrjRcB3+IAbtrCe8ksRYmBmChktSH0cqq3FXfur bdWfQKgT5WIIaNwS58/LnzJyIbB+sWuTy/L5p+/A0PZiLfFiuJI2wHj9fvt8+/61 dwAWltuAE1gZlUZ88jsHdRtRzYXVHLfEHTclJgpA5lIfBt/eOKlA7vSVlDHDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3EsilqhNbod5LcxMOglkO4HUCP0wHwYDVR0j BBgwFoAUnSE2btTjc4pfUOUkEJgGyY1xC9MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MWU0NDY2NS1lODQ2LTQ1NWItYWExYS1kNWFiMDdkZWVkZjMvMC85RDIxMzY2RUQ0 RTM3MzhBNUY1MEU1MjQxMDk4MDZDOThENzEwQkQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUQyMTM2NkVENEUzNzM4QTVGNTBFNTI0MTA5ODA2Qzk4RDcx MEJEMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYxZTQ0NjY1LWU4NDYtNDU1Yi1h YTFhLWQ1YWIwN2RlZWRmMy8wLzMxMzYzMDJlMzIzNTJlMzEzMTM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBl2MA0GCSqG SIb3DQEBCwUAA4IBAQDFaZC+ATDol5hoH/glh/J2dtFCKjF/joMUxKxCCRA3cP3I CuCDPGamupL9s0kdNn6xDEbMgyn4P6OOALNdp7YmzkPTd2Do6elgQxfhVu6Migop 4jFTk/7I4ky63EJtng4YWLh6n3PUbBeJMxtV5oVZFeYMO8otUHDr7jd+iwTxD7RL n4CbMByg/PcP7S/B6FIFwAdgK6LyDEF9+FOEhSIIfLnY+c6+cmb5hJjE1VGmSWhN q9Eiv1SrTDaNjazrJYL9nRY33MXmy/oBu1A6BIV79sUW+YTkJHUN/aRCEqpUeO0e 1AeLLqvXSpKDKfQAxA1hQLM6rHBqJlW5RlfINRoJ -----END CERTIFICATE-----Generated at Mon Nov 25 10:55:38 2024 by rpki-client on console-ams.rpki-client.org