$ rpki-client -vvf repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/3136302e32352e3131382e302f32342d3234203d3e20313533303936.roa File: 3136302e32352e3131382e302f32342d3234203d3e20313533303936.roa (raw, json) Hash identifier: 1H3IKAx7UXRMU3wtvDvmP+OHRrM19D65H1BvyoXZOOA= Subject key identifier: 2A:51:56:58:71:03:D0:36:FF:29:25:E6:40:7B:5B:76:53:86:A5:B5 Certificate issuer: /CN=9D21366ED4E3738A5F50E524109806C98D710BD3 Certificate serial: 327381051C41AA383AC7C274286B6ED778740CD3 Authority key identifier: 9D:21:36:6E:D4:E3:73:8A:5F:50:E5:24:10:98:06:C9:8D:71:0B:D3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D21366ED4E3738A5F50E524109806C98D710BD3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/3136302e32352e3131382e302f32342d3234203d3e20313533303936.roa Signing time: Sat 17 Aug 2024 04:08:26 +0000 ROA not before: Sat 17 Aug 2024 04:03:26 +0000 ROA not after: Sat 16 Aug 2025 04:08:26 +0000 asID: 153096 IP address blocks: 160.25.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.crl rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D21366ED4E3738A5F50E524109806C98D710BD3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 18:22:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:73:81:05:1c:41:aa:38:3a:c7:c2:74:28:6b:6e:d7:78:74:0c:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D21366ED4E3738A5F50E524109806C98D710BD3 Validity Not Before: Aug 17 04:03:26 2024 GMT Not After : Aug 16 04:08:26 2025 GMT Subject: CN=2A5156587103D036FF2925E6407B5B765386A5B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e6:c4:65:2c:b9:ef:c9:16:ac:5e:7b:e0:50: ba:87:74:a4:c9:4f:33:bc:42:db:c5:8b:5a:9b:12: 22:e6:89:2f:3f:19:17:6f:28:82:03:79:c4:0d:d6: af:65:fe:f5:20:09:65:e7:c0:7c:0a:20:06:b7:1c: 35:f4:3e:5a:85:32:d4:10:f5:6f:ba:1c:0d:4b:c7: 3a:9e:e3:47:13:79:a9:a5:65:21:38:49:9a:0a:60: 84:05:4c:41:fc:c4:92:3b:f6:74:0b:fe:7d:91:63: 21:04:b8:2c:c1:3b:9d:f9:7c:16:c6:3b:b6:31:12: 50:ee:2a:3f:09:09:0a:6e:65:e5:e7:2f:47:13:4f: b1:b5:5d:41:0a:0d:50:29:74:1b:2a:ba:bb:fe:1a: 24:cd:18:90:85:8f:43:7a:85:af:57:61:05:07:7e: 9d:43:e2:d5:bd:7e:c5:1e:66:27:f5:ec:33:b3:47: 61:a7:f9:cc:31:e4:17:29:87:fc:e1:25:d0:d5:1f: 20:a5:ec:27:fb:6b:41:21:23:46:5e:bf:ea:bc:11: f7:3d:42:bd:6f:3c:57:ff:63:43:c7:9a:10:0a:55: 87:26:3b:ea:2f:8f:e6:3d:0f:b1:87:58:93:61:04: 6a:d0:1d:28:c5:c2:37:9e:01:2a:7e:f6:d5:62:5d: 84:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:51:56:58:71:03:D0:36:FF:29:25:E6:40:7B:5B:76:53:86:A5:B5 X509v3 Authority Key Identifier: keyid:9D:21:36:6E:D4:E3:73:8A:5F:50:E5:24:10:98:06:C9:8D:71:0B:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D21366ED4E3738A5F50E524109806C98D710BD3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/3136302e32352e3131382e302f32342d3234203d3e20313533303936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.118.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:5e:8d:43:9d:1c:0c:d9:94:31:0e:3e:a0:99:37:c5:92:76: d3:09:ba:01:95:da:b9:d4:c9:bc:d2:56:f9:8a:7b:37:ad:49: a7:e0:d1:4f:48:7d:6d:36:21:38:23:ad:b7:99:df:c2:98:a3: 41:b7:7b:8e:f5:03:44:2c:17:8d:ba:8d:a6:a0:2c:78:04:3e: dc:db:95:7e:8e:5c:5f:09:d0:38:cf:2e:20:6c:f4:ba:b0:7f: f2:6c:1e:70:e2:64:87:37:b7:0a:db:67:27:72:d8:f1:0f:5f: fb:fc:92:64:34:e9:6f:67:ca:da:11:0c:67:bc:b4:72:13:30: 4a:ad:e5:94:e2:a6:57:76:1d:9e:45:e5:93:11:93:16:54:bb: 41:75:80:c0:59:61:3f:4b:b4:4a:72:40:2b:90:4d:4b:8f:e6: 3f:4d:c6:9b:eb:56:90:87:8c:af:8d:92:b3:c0:78:b0:f2:89: 2c:17:a4:99:fa:8e:f7:29:9f:be:be:60:80:d9:8b:59:e3:c2: 4d:a0:02:fc:81:e6:fd:4c:37:d5:c1:17:c2:30:23:09:6a:c0: dd:4a:4d:92:02:7b:34:cd:81:12:4c:82:d7:4c:50:6e:15:c2: b6:83:b5:99:fe:15:e4:55:dc:73:c6:44:7a:ff:54:0f:b8:69: 3e:95:c5:fb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMnOBBRxBqjg6x8J0KGtu13h0DNMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQyMTM2NkVENEUzNzM4QTVGNTBFNTI0MTA5ODA2Qzk4 RDcxMEJEMzAeFw0yNDA4MTcwNDAzMjZaFw0yNTA4MTYwNDA4MjZaMDMxMTAvBgNV BAMTKDJBNTE1NjU4NzEwM0QwMzZGRjI5MjVFNjQwN0I1Qjc2NTM4NkE1QjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU5sRlLLnvyRasXnvgULqHdKTJ TzO8QtvFi1qbEiLmiS8/GRdvKIIDecQN1q9l/vUgCWXnwHwKIAa3HDX0PlqFMtQQ 9W+6HA1Lxzqe40cTeamlZSE4SZoKYIQFTEH8xJI79nQL/n2RYyEEuCzBO535fBbG O7YxElDuKj8JCQpuZeXnL0cTT7G1XUEKDVApdBsqurv+GiTNGJCFj0N6ha9XYQUH fp1D4tW9fsUeZif17DOzR2Gn+cwx5Bcph/zhJdDVHyCl7Cf7a0EhI0Zev+q8Efc9 Qr1vPFf/Y0PHmhAKVYcmO+ovj+Y9D7GHWJNhBGrQHSjFwjeeASp+9tViXYRdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKlFWWHED0Db/KSXmQHtbdlOGpbUwHwYDVR0j BBgwFoAUnSE2btTjc4pfUOUkEJgGyY1xC9MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MWU0NDY2NS1lODQ2LTQ1NWItYWExYS1kNWFiMDdkZWVkZjMvMC85RDIxMzY2RUQ0 RTM3MzhBNUY1MEU1MjQxMDk4MDZDOThENzEwQkQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUQyMTM2NkVENEUzNzM4QTVGNTBFNTI0MTA5ODA2Qzk4RDcx MEJEMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYxZTQ0NjY1LWU4NDYtNDU1Yi1h YTFhLWQ1YWIwN2RlZWRmMy8wLzMxMzYzMDJlMzIzNTJlMzEzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBl2MA0GCSqG SIb3DQEBCwUAA4IBAQBrXo1DnRwM2ZQxDj6gmTfFknbTCboBldq51Mm80lb5ins3 rUmn4NFPSH1tNiE4I623md/CmKNBt3uO9QNELBeNuo2moCx4BD7c25V+jlxfCdA4 zy4gbPS6sH/ybB5w4mSHN7cK22cnctjxD1/7/JJkNOlvZ8raEQxnvLRyEzBKreWU 4qZXdh2eReWTEZMWVLtBdYDAWWE/S7RKckArkE1Lj+Y/Tcab61aQh4yvjZKzwHiw 8oksF6SZ+o73KZ++vmCA2YtZ48JNoAL8geb9TDfVwRfCMCMJasDdSk2SAns0zYES TILXTFBuFcK2g7WZ/hXkVdxzxkR6/1QPuGk+lcX7 -----END CERTIFICATE-----Generated at Mon Nov 25 10:55:38 2024 by rpki-client on console-ams.rpki-client.org