$ rpki-client -vvf repo-rpki.idnic.net/repo/63b17857-be3d-4132-8f19-10836f408546/0/3136302e32352e35332e302f32342d3234203d3e20313533303738.roa File: 3136302e32352e35332e302f32342d3234203d3e20313533303738.roa (raw, json) Hash identifier: pprUfXETHw8TkfqK4zb4CjTcdBTaYCx5VEdGuTnw8a8= Subject key identifier: BB:B1:D5:A7:0E:62:BF:D8:AC:14:4C:34:61:E1:B4:C0:77:23:F5:07 Certificate issuer: /CN=DB6A8980C50F210C8041A21010E6DBF10FC7C0DF Certificate serial: 2956D931EAC9D3BBA88EDE91D816C0F82DD33487 Authority key identifier: DB:6A:89:80:C5:0F:21:0C:80:41:A2:10:10:E6:DB:F1:0F:C7:C0:DF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DB6A8980C50F210C8041A21010E6DBF10FC7C0DF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/63b17857-be3d-4132-8f19-10836f408546/0/3136302e32352e35332e302f32342d3234203d3e20313533303738.roa Signing time: Tue 22 Oct 2024 10:15:09 +0000 ROA not before: Tue 22 Oct 2024 10:10:09 +0000 ROA not after: Tue 21 Oct 2025 10:15:09 +0000 asID: 153078 IP address blocks: 160.25.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/63b17857-be3d-4132-8f19-10836f408546/0/DB6A8980C50F210C8041A21010E6DBF10FC7C0DF.crl rsync://repo-rpki.idnic.net/repo/63b17857-be3d-4132-8f19-10836f408546/0/DB6A8980C50F210C8041A21010E6DBF10FC7C0DF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DB6A8980C50F210C8041A21010E6DBF10FC7C0DF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:56:d9:31:ea:c9:d3:bb:a8:8e:de:91:d8:16:c0:f8:2d:d3:34:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DB6A8980C50F210C8041A21010E6DBF10FC7C0DF Validity Not Before: Oct 22 10:10:09 2024 GMT Not After : Oct 21 10:15:09 2025 GMT Subject: CN=BBB1D5A70E62BFD8AC144C3461E1B4C07723F507 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:52:02:58:94:d9:1c:66:7b:25:f4:41:a5:b0: 9d:15:c4:8c:29:48:db:db:17:15:04:cc:ca:a0:22: 75:2a:2c:20:d8:b1:52:77:83:ae:07:94:8f:ef:28: 50:f7:34:0e:a4:77:31:04:93:8f:17:d4:6a:f7:50: 89:4b:4a:a2:ae:02:0b:39:50:40:34:31:87:e3:1d: a3:77:a2:2e:99:8e:2c:06:e9:61:96:af:98:02:db: 46:49:57:39:3f:77:46:ab:80:64:99:77:dd:dc:6f: 8e:3d:57:95:b0:28:a3:38:6d:38:85:fb:d0:01:fa: 18:a0:31:21:f4:ac:51:16:42:73:e9:7b:73:de:2a: 7b:4a:75:7f:ca:d4:ca:c5:e6:48:1c:f8:db:61:e4: 45:07:3e:62:09:54:87:bf:d9:b7:51:92:d6:ed:07: 0f:43:1d:16:8f:0c:08:32:b6:59:cf:18:0d:59:95: 26:60:c5:a2:e9:ac:2a:da:a1:a2:48:ba:61:d8:2c: 04:10:c3:7e:6f:e4:69:fb:e8:c6:57:9d:cf:f2:d0: 38:17:c0:5b:20:08:17:b3:07:71:cd:cf:a6:0c:84: bc:95:eb:98:4a:12:5e:bf:6d:bb:33:7a:31:49:7c: 7a:5a:77:02:74:1f:2a:d4:f8:16:01:f0:34:5b:7a: dc:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:B1:D5:A7:0E:62:BF:D8:AC:14:4C:34:61:E1:B4:C0:77:23:F5:07 X509v3 Authority Key Identifier: keyid:DB:6A:89:80:C5:0F:21:0C:80:41:A2:10:10:E6:DB:F1:0F:C7:C0:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/63b17857-be3d-4132-8f19-10836f408546/0/DB6A8980C50F210C8041A21010E6DBF10FC7C0DF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DB6A8980C50F210C8041A21010E6DBF10FC7C0DF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/63b17857-be3d-4132-8f19-10836f408546/0/3136302e32352e35332e302f32342d3234203d3e20313533303738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.53.0/24 Signature Algorithm: sha256WithRSAEncryption 85:18:1c:3a:cb:7a:4d:63:0e:52:7b:ce:19:74:c6:bd:f3:38: 3a:39:03:c9:96:a5:77:b6:9c:e1:63:36:d1:56:05:e6:8a:39: 19:8f:9a:ce:e9:2d:09:c9:7f:b1:cc:fd:54:23:e0:05:73:4e: 0a:ab:4e:44:06:93:36:ba:87:9f:54:41:01:32:91:38:55:d8: 5d:b1:a7:5f:5b:45:a3:d2:81:5f:45:4b:25:23:a2:24:c2:96: 8d:54:9e:fc:97:53:5a:01:a4:f0:dd:b2:4a:92:2c:96:fb:68: 6c:7a:ae:ee:e4:51:b8:f9:30:45:c2:58:87:86:70:ff:ea:41: 43:0f:cf:e8:96:3c:14:6d:ab:b4:8f:2e:e8:e3:f5:14:7a:92: 72:61:24:52:c4:c5:26:23:0b:1f:f5:89:17:71:c4:5b:5f:1e: 5b:d3:a0:46:63:98:25:66:f8:a8:3b:43:58:25:d5:73:66:13: 58:34:83:08:f2:56:d5:8a:c1:26:24:da:59:1d:e6:d0:cb:4b: d6:9f:5c:23:b4:6b:24:f7:64:fd:ef:2a:36:a2:f4:e0:5a:0b: ee:47:52:75:be:0d:f8:55:4c:95:7f:4e:64:59:53:1b:37:68: f9:d8:ff:b6:cb:a0:0e:35:6f:5b:1e:05:5b:ae:27:2b:17:5a: de:34:5a:53 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKVbZMerJ07uojt6R2BbA+C3TNIcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREI2QTg5ODBDNTBGMjEwQzgwNDFBMjEwMTBFNkRCRjEw RkM3QzBERjAeFw0yNDEwMjIxMDEwMDlaFw0yNTEwMjExMDE1MDlaMDMxMTAvBgNV BAMTKEJCQjFENUE3MEU2MkJGRDhBQzE0NEMzNDYxRTFCNEMwNzcyM0Y1MDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfUgJYlNkcZnsl9EGlsJ0VxIwp SNvbFxUEzMqgInUqLCDYsVJ3g64HlI/vKFD3NA6kdzEEk48X1Gr3UIlLSqKuAgs5 UEA0MYfjHaN3oi6ZjiwG6WGWr5gC20ZJVzk/d0argGSZd93cb449V5WwKKM4bTiF +9AB+higMSH0rFEWQnPpe3PeKntKdX/K1MrF5kgc+Nth5EUHPmIJVIe/2bdRktbt Bw9DHRaPDAgytlnPGA1ZlSZgxaLprCraoaJIumHYLAQQw35v5Gn76MZXnc/y0DgX wFsgCBezB3HNz6YMhLyV65hKEl6/bbszejFJfHpadwJ0HyrU+BYB8DRbetzvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUu7HVpw5iv9isFEw0YeG0wHcj9QcwHwYDVR0j BBgwFoAU22qJgMUPIQyAQaIQEObb8Q/HwN8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 M2IxNzg1Ny1iZTNkLTQxMzItOGYxOS0xMDgzNmY0MDg1NDYvMC9EQjZBODk4MEM1 MEYyMTBDODA0MUEyMTAxMEU2REJGMTBGQzdDMERGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvREI2QTg5ODBDNTBGMjEwQzgwNDFBMjEwMTBFNkRCRjEwRkM3 QzBERi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzYjE3ODU3LWJlM2QtNDEzMi04 ZjE5LTEwODM2ZjQwODU0Ni8wLzMxMzYzMDJlMzIzNTJlMzUzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMzMwMzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAZNTANBgkqhkiG 9w0BAQsFAAOCAQEAhRgcOst6TWMOUnvOGXTGvfM4OjkDyZald7ac4WM20VYF5oo5 GY+azuktCcl/scz9VCPgBXNOCqtORAaTNrqHn1RBATKROFXYXbGnX1tFo9KBX0VL JSOiJMKWjVSe/JdTWgGk8N2ySpIslvtobHqu7uRRuPkwRcJYh4Zw/+pBQw/P6JY8 FG2rtI8u6OP1FHqScmEkUsTFJiMLH/WJF3HEW18eW9OgRmOYJWb4qDtDWCXVc2YT WDSDCPJW1YrBJiTaWR3m0MtL1p9cI7RrJPdk/e8qNqL04FoL7kdSdb4N+FVMlX9O ZFlTGzdo+dj/tsugDjVvWx4FW64nKxda3jRaUw== -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:38 2024 by rpki-client on console-ams.rpki-client.org