$ rpki-client -vvf repo-rpki.idnic.net/repo/7b411b05-c58a-4206-b7ab-c250c1465550/0/3136302e32352e3135332e302f32342d3234203d3e20313533303839.roa File: 3136302e32352e3135332e302f32342d3234203d3e20313533303839.roa (raw, json) Hash identifier: pKQdVAtwKbSOki6GnCaJwg1Xi0v4ViHRdqPbxknx+vg= Subject key identifier: 08:16:FA:A1:4A:12:8B:76:7B:52:64:45:42:13:A5:79:92:70:EA:C3 Certificate issuer: /CN=353E665549A5A245D363BD0DCEA20282E562E909 Certificate serial: 05EECAC28ED4D75B5D954C64DAEBCBDDC438097E Authority key identifier: 35:3E:66:55:49:A5:A2:45:D3:63:BD:0D:CE:A2:02:82:E5:62:E9:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/353E665549A5A245D363BD0DCEA20282E562E909.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7b411b05-c58a-4206-b7ab-c250c1465550/0/3136302e32352e3135332e302f32342d3234203d3e20313533303839.roa Signing time: Mon 21 Oct 2024 09:44:53 +0000 ROA not before: Mon 21 Oct 2024 09:39:53 +0000 ROA not after: Mon 20 Oct 2025 09:44:53 +0000 asID: 153089 IP address blocks: 160.25.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7b411b05-c58a-4206-b7ab-c250c1465550/0/353E665549A5A245D363BD0DCEA20282E562E909.crl rsync://repo-rpki.idnic.net/repo/7b411b05-c58a-4206-b7ab-c250c1465550/0/353E665549A5A245D363BD0DCEA20282E562E909.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/353E665549A5A245D363BD0DCEA20282E562E909.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:ee:ca:c2:8e:d4:d7:5b:5d:95:4c:64:da:eb:cb:dd:c4:38:09:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=353E665549A5A245D363BD0DCEA20282E562E909 Validity Not Before: Oct 21 09:39:53 2024 GMT Not After : Oct 20 09:44:53 2025 GMT Subject: CN=0816FAA14A128B767B5264454213A5799270EAC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:95:5f:e1:e0:fb:76:b7:41:28:96:6f:21:7d: cc:05:a0:67:65:7a:85:2c:c4:71:17:17:b4:93:cd: 42:a3:00:b1:e2:52:44:5e:fc:49:38:33:9e:fa:bc: d0:4a:7b:b1:09:b2:33:e8:5c:d0:9e:dc:de:d2:14: fb:1e:fd:d6:9b:c9:7b:2e:1f:66:40:f6:46:b5:13: 32:ab:f4:c8:95:7d:ec:a1:31:27:45:61:9d:b3:6f: 8a:a8:24:cc:51:40:7d:a7:b3:10:06:31:60:e8:e3: 8a:3a:b6:77:6f:0b:62:f3:f1:cc:7d:f1:48:bf:36: 9e:07:dd:62:6b:88:ba:48:c5:70:8f:f0:2c:59:9f: 3d:3c:d5:55:69:58:c8:41:cc:e1:94:9d:3b:fb:7d: 2f:3f:88:44:76:73:11:14:fc:70:7f:f3:64:6a:76: 45:1b:06:4d:e9:e3:9b:e4:ad:55:33:31:d0:47:e2: e2:55:e7:04:01:4b:96:5f:25:b5:77:63:c2:1c:d0: 7b:5d:54:da:65:24:68:59:95:5c:70:96:4a:6c:c9: fb:b0:7d:e8:80:85:d3:0d:98:9c:d3:a0:3a:0c:89: bd:a5:7b:67:ea:21:60:39:ca:34:22:84:22:83:ee: cf:6f:48:ca:94:7e:38:07:e6:20:5b:6a:35:35:a3: 52:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:16:FA:A1:4A:12:8B:76:7B:52:64:45:42:13:A5:79:92:70:EA:C3 X509v3 Authority Key Identifier: keyid:35:3E:66:55:49:A5:A2:45:D3:63:BD:0D:CE:A2:02:82:E5:62:E9:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7b411b05-c58a-4206-b7ab-c250c1465550/0/353E665549A5A245D363BD0DCEA20282E562E909.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/353E665549A5A245D363BD0DCEA20282E562E909.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b411b05-c58a-4206-b7ab-c250c1465550/0/3136302e32352e3135332e302f32342d3234203d3e20313533303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.153.0/24 Signature Algorithm: sha256WithRSAEncryption d3:76:ed:d0:a6:b6:29:08:84:f5:2d:62:c9:d4:c9:ab:78:3b: 27:b1:20:93:70:ad:69:c0:2d:c6:8e:17:80:fb:55:db:ba:6c: dc:ec:67:c8:22:41:05:73:09:4f:aa:f8:c6:4a:40:5b:74:78: 65:f8:b9:cc:1b:f9:b0:08:31:b2:9c:52:a8:ef:cf:94:ef:ff: d1:8f:b9:a2:bc:dd:83:7c:88:8b:14:9b:c1:58:e6:43:ce:82: f1:bb:b4:44:66:e7:45:f9:73:2e:7d:ee:1a:69:40:26:d2:e4: c7:90:25:70:42:15:8d:8b:24:57:ba:a8:5d:ce:13:e5:a6:21: f7:41:d9:70:5f:c1:3d:ce:d5:16:80:17:42:a3:2d:b6:73:ca: 1d:c5:23:4e:13:51:93:82:c7:d4:5d:f4:55:25:c5:e8:c3:91: 94:44:16:38:ac:f9:53:b9:0b:16:49:fb:16:25:a7:01:e3:ae: 96:fd:a2:62:b6:05:e5:88:8c:5c:dd:7d:6c:25:b2:91:bd:15: d3:e9:64:f4:c3:bb:4c:e9:46:e7:3c:cb:7c:ae:72:43:7f:96: 29:02:ad:08:9d:8a:c6:01:fc:81:5a:cb:37:3b:c3:2f:7e:45: c2:eb:62:fc:49:3c:30:58:80:ae:21:7d:cb:4b:63:39:1f:0f: 36:82:50:06 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBe7Kwo7U11tdlUxk2uvL3cQ4CX4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzUzRTY2NTU0OUE1QTI0NUQzNjNCRDBEQ0VBMjAyODJF NTYyRTkwOTAeFw0yNDEwMjEwOTM5NTNaFw0yNTEwMjAwOTQ0NTNaMDMxMTAvBgNV BAMTKDA4MTZGQUExNEExMjhCNzY3QjUyNjQ0NTQyMTNBNTc5OTI3MEVBQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLlV/h4Pt2t0Eolm8hfcwFoGdl eoUsxHEXF7STzUKjALHiUkRe/Ek4M576vNBKe7EJsjPoXNCe3N7SFPse/dabyXsu H2ZA9ka1EzKr9MiVfeyhMSdFYZ2zb4qoJMxRQH2nsxAGMWDo44o6tndvC2Lz8cx9 8Ui/Np4H3WJriLpIxXCP8CxZnz081VVpWMhBzOGUnTv7fS8/iER2cxEU/HB/82Rq dkUbBk3p45vkrVUzMdBH4uJV5wQBS5ZfJbV3Y8Ic0HtdVNplJGhZlVxwlkpsyfuw feiAhdMNmJzToDoMib2le2fqIWA5yjQihCKD7s9vSMqUfjgH5iBbajU1o1ITAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCBb6oUoSi3Z7UmRFQhOleZJw6sMwHwYDVR0j BBgwFoAUNT5mVUmlokXTY70NzqICguVi6QkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YjQxMWIwNS1jNThhLTQyMDYtYjdhYi1jMjUwYzE0NjU1NTAvMC8zNTNFNjY1NTQ5 QTVBMjQ1RDM2M0JEMERDRUEyMDI4MkU1NjJFOTA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMzUzRTY2NTU0OUE1QTI0NUQzNjNCRDBEQ0VBMjAyODJFNTYy RTkwOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdiNDExYjA1LWM1OGEtNDIwNi1i N2FiLWMyNTBjMTQ2NTU1MC8wLzMxMzYzMDJlMzIzNTJlMzEzNTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBmZMA0GCSqG SIb3DQEBCwUAA4IBAQDTdu3QprYpCIT1LWLJ1MmreDsnsSCTcK1pwC3GjheA+1Xb umzc7GfIIkEFcwlPqvjGSkBbdHhl+LnMG/mwCDGynFKo78+U7//Rj7mivN2DfIiL FJvBWOZDzoLxu7REZudF+XMufe4aaUAm0uTHkCVwQhWNiyRXuqhdzhPlpiH3Qdlw X8E9ztUWgBdCoy22c8odxSNOE1GTgsfUXfRVJcXow5GURBY4rPlTuQsWSfsWJacB 466W/aJitgXliIxc3X1sJbKRvRXT6WT0w7tM6UbnPMt8rnJDf5YpAq0InYrGAfyB Wss3O8MvfkXC62L8STwwWICuIX3LS2M5Hw82glAG -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:46 2024 by rpki-client on console-ams.rpki-client.org