$ rpki-client -vvf repo-rpki.idnic.net/repo/63b17857-be3d-4132-8f19-10836f408546/0/3136302e32352e35322e302f32342d3234203d3e20313533303738.roa File: 3136302e32352e35322e302f32342d3234203d3e20313533303738.roa (raw, json) Hash identifier: RmlTqfic7IsCh0fZpH577DwpbXbmP18u5tDwU0JJBbQ= Subject key identifier: D2:0A:D2:38:1B:D3:26:41:FC:50:5A:5D:4E:6D:20:43:A8:F9:2B:C3 Certificate issuer: /CN=DB6A8980C50F210C8041A21010E6DBF10FC7C0DF Certificate serial: 7340B9134F3643D0BFEAFE1F5919BE2E15363E82 Authority key identifier: DB:6A:89:80:C5:0F:21:0C:80:41:A2:10:10:E6:DB:F1:0F:C7:C0:DF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DB6A8980C50F210C8041A21010E6DBF10FC7C0DF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/63b17857-be3d-4132-8f19-10836f408546/0/3136302e32352e35322e302f32342d3234203d3e20313533303738.roa Signing time: Thu 29 Aug 2024 12:49:53 +0000 ROA not before: Thu 29 Aug 2024 12:44:53 +0000 ROA not after: Thu 28 Aug 2025 12:49:53 +0000 asID: 153078 IP address blocks: 160.25.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/63b17857-be3d-4132-8f19-10836f408546/0/DB6A8980C50F210C8041A21010E6DBF10FC7C0DF.crl rsync://repo-rpki.idnic.net/repo/63b17857-be3d-4132-8f19-10836f408546/0/DB6A8980C50F210C8041A21010E6DBF10FC7C0DF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DB6A8980C50F210C8041A21010E6DBF10FC7C0DF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:40:b9:13:4f:36:43:d0:bf:ea:fe:1f:59:19:be:2e:15:36:3e:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DB6A8980C50F210C8041A21010E6DBF10FC7C0DF Validity Not Before: Aug 29 12:44:53 2024 GMT Not After : Aug 28 12:49:53 2025 GMT Subject: CN=D20AD2381BD32641FC505A5D4E6D2043A8F92BC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:1c:9c:82:a1:70:2e:ea:5c:5d:9e:95:74:88: 55:2c:7b:64:4c:70:8f:cb:ac:20:16:37:69:37:20: 14:fd:e6:9f:a0:e2:5a:0d:27:c9:95:4c:da:58:48: 82:3a:68:c5:b4:19:4b:a4:0b:b6:fc:ed:f1:2a:be: 01:6c:af:33:68:58:aa:75:a5:07:78:2a:11:c9:20: a2:05:4d:57:9d:d7:42:38:2b:33:c2:8c:ad:5b:b5: 41:31:ed:88:dd:72:30:d2:bb:e2:93:14:67:af:27: 24:e3:9b:bc:fe:61:5c:21:d4:16:30:d0:45:d0:37: e1:5b:38:8c:cf:ec:ee:f3:39:28:52:9d:03:ee:b5: 51:a3:b7:c7:9a:11:0a:8f:59:ec:5c:60:aa:67:20: b4:e1:18:11:90:bc:28:17:bc:8c:3d:fc:48:98:79: 9a:f8:fc:95:b1:53:8b:a0:80:89:40:08:2d:bb:52: 74:4a:6c:5b:12:4c:cf:a7:28:9b:12:95:17:2d:b7: 7a:56:11:5d:f1:af:82:26:83:df:56:99:ee:a5:71: f8:9f:90:e0:65:51:8f:3b:fc:41:7f:84:ca:e7:73: ac:b7:a1:2d:12:92:5d:9a:08:4a:49:af:7a:d1:57: 38:8f:7c:3f:36:99:c6:7e:66:59:77:6b:76:c3:16: 28:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:0A:D2:38:1B:D3:26:41:FC:50:5A:5D:4E:6D:20:43:A8:F9:2B:C3 X509v3 Authority Key Identifier: keyid:DB:6A:89:80:C5:0F:21:0C:80:41:A2:10:10:E6:DB:F1:0F:C7:C0:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/63b17857-be3d-4132-8f19-10836f408546/0/DB6A8980C50F210C8041A21010E6DBF10FC7C0DF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DB6A8980C50F210C8041A21010E6DBF10FC7C0DF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/63b17857-be3d-4132-8f19-10836f408546/0/3136302e32352e35322e302f32342d3234203d3e20313533303738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.52.0/24 Signature Algorithm: sha256WithRSAEncryption 47:7c:4f:ca:53:7e:72:f0:7c:d2:45:04:ce:a1:fe:69:a9:01: 25:5b:a6:cc:3b:89:bc:28:47:87:48:11:81:fe:e8:fa:80:4b: 72:21:3e:49:76:da:2a:8d:31:e0:e6:35:97:6e:eb:c5:ee:53: b3:4a:3f:29:01:80:7d:e1:9a:f5:02:0f:ba:6c:fd:18:fa:15: 20:7a:89:7a:ff:0e:d7:cd:dc:48:8d:17:4c:40:c9:06:f8:dd: 50:0c:02:5d:58:15:50:a7:51:77:4e:fb:c0:d1:13:5f:ad:97: 7c:34:49:d4:f8:81:69:13:d2:bb:5a:fd:e7:f9:46:a6:40:d9: fa:91:60:45:39:f7:33:dc:b0:88:9c:2a:21:4d:a4:2c:6b:7c: d4:7f:c4:07:e9:2d:b7:b4:8b:6e:d9:89:db:c0:98:e3:73:5d: ae:b3:df:24:fc:11:16:da:f6:22:d8:19:a6:05:42:c0:93:4c: 13:1c:9e:b0:cf:31:98:a1:9a:d7:b7:72:04:85:22:88:a1:f5: 34:b6:04:9b:ee:81:fe:cd:04:63:aa:d0:75:3a:32:37:9f:21: 88:a9:4f:93:92:35:36:46:42:8e:45:b5:0d:e7:26:30:c0:3a: d3:a6:af:45:96:d1:78:97:43:a8:99:92:4c:7d:b6:dd:8b:21: d7:96:25:51 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUc0C5E082Q9C/6v4fWRm+LhU2PoIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREI2QTg5ODBDNTBGMjEwQzgwNDFBMjEwMTBFNkRCRjEw RkM3QzBERjAeFw0yNDA4MjkxMjQ0NTNaFw0yNTA4MjgxMjQ5NTNaMDMxMTAvBgNV BAMTKEQyMEFEMjM4MUJEMzI2NDFGQzUwNUE1RDRFNkQyMDQzQThGOTJCQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeHJyCoXAu6lxdnpV0iFUse2RM cI/LrCAWN2k3IBT95p+g4loNJ8mVTNpYSII6aMW0GUukC7b87fEqvgFsrzNoWKp1 pQd4KhHJIKIFTVed10I4KzPCjK1btUEx7YjdcjDSu+KTFGevJyTjm7z+YVwh1BYw 0EXQN+FbOIzP7O7zOShSnQPutVGjt8eaEQqPWexcYKpnILThGBGQvCgXvIw9/EiY eZr4/JWxU4uggIlACC27UnRKbFsSTM+nKJsSlRctt3pWEV3xr4Img99Wme6lcfif kOBlUY87/EF/hMrnc6y3oS0Skl2aCEpJr3rRVziPfD82mcZ+Zll3a3bDFihDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0grSOBvTJkH8UFpdTm0gQ6j5K8MwHwYDVR0j BBgwFoAU22qJgMUPIQyAQaIQEObb8Q/HwN8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 M2IxNzg1Ny1iZTNkLTQxMzItOGYxOS0xMDgzNmY0MDg1NDYvMC9EQjZBODk4MEM1 MEYyMTBDODA0MUEyMTAxMEU2REJGMTBGQzdDMERGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvREI2QTg5ODBDNTBGMjEwQzgwNDFBMjEwMTBFNkRCRjEwRkM3 QzBERi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzYjE3ODU3LWJlM2QtNDEzMi04 ZjE5LTEwODM2ZjQwODU0Ni8wLzMxMzYzMDJlMzIzNTJlMzUzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMzMwMzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAZNDANBgkqhkiG 9w0BAQsFAAOCAQEAR3xPylN+cvB80kUEzqH+aakBJVumzDuJvChHh0gRgf7o+oBL ciE+SXbaKo0x4OY1l27rxe5Ts0o/KQGAfeGa9QIPumz9GPoVIHqJev8O183cSI0X TEDJBvjdUAwCXVgVUKdRd077wNETX62XfDRJ1PiBaRPSu1r95/lGpkDZ+pFgRTn3 M9ywiJwqIU2kLGt81H/EB+ktt7SLbtmJ28CY43NdrrPfJPwRFtr2ItgZpgVCwJNM ExyesM8xmKGa17dyBIUiiKH1NLYEm+6B/s0EY6rQdToyN58hiKlPk5I1NkZCjkW1 DecmMMA606avRZbReJdDqJmSTH223Ysh15YlUQ== -----END CERTIFICATE-----Generated at Sun Nov 24 07:10:00 2024 by rpki-client on console-ams.rpki-client.org