$ rpki-client -vvf repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/3136302e32352e33362e302f32342d3234203d3e20313532383332.roa File: 3136302e32352e33362e302f32342d3234203d3e20313532383332.roa (raw, json) Hash identifier: le0N09QJH4rB2Cs8/+qGf8BVJE6y94DB31o5gUkZnZI= Subject key identifier: 49:CC:CD:C8:AA:D4:EE:08:8E:8D:26:04:3C:19:46:81:26:29:93:FE Certificate issuer: /CN=B8D444C5B3184A4F8C8F199A432242C44E19EACB Certificate serial: 64027A09F8BD05F61F8CC105CCD00F15039B3B11 Authority key identifier: B8:D4:44:C5:B3:18:4A:4F:8C:8F:19:9A:43:22:42:C4:4E:19:EA:CB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B8D444C5B3184A4F8C8F199A432242C44E19EACB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/3136302e32352e33362e302f32342d3234203d3e20313532383332.roa Signing time: Tue 16 Jul 2024 07:09:28 +0000 ROA not before: Tue 16 Jul 2024 07:04:28 +0000 ROA not after: Tue 15 Jul 2025 07:09:28 +0000 asID: 152832 IP address blocks: 160.25.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/B8D444C5B3184A4F8C8F199A432242C44E19EACB.crl rsync://repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/B8D444C5B3184A4F8C8F199A432242C44E19EACB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B8D444C5B3184A4F8C8F199A432242C44E19EACB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:02:7a:09:f8:bd:05:f6:1f:8c:c1:05:cc:d0:0f:15:03:9b:3b:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8D444C5B3184A4F8C8F199A432242C44E19EACB Validity Not Before: Jul 16 07:04:28 2024 GMT Not After : Jul 15 07:09:28 2025 GMT Subject: CN=49CCCDC8AAD4EE088E8D26043C194681262993FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:2e:2a:52:a7:b9:24:70:51:c1:a1:54:3a:f3: 92:23:af:80:9f:dd:30:d5:ce:1c:45:ea:4b:5f:a8: 03:ac:c7:62:64:99:2e:0d:62:70:ef:a0:e7:85:d8: 03:19:92:a1:4f:8f:ca:3a:0b:79:ed:2d:72:66:91: eb:81:76:77:32:79:b7:37:0e:df:e1:f4:73:eb:bc: ac:52:c5:76:61:ec:8c:04:73:70:db:9b:b3:72:e6: 41:3f:7d:11:bf:ec:d6:78:09:f1:45:97:1b:18:8a: ed:83:86:63:85:a5:38:f7:e6:02:7e:df:bd:17:77: 5c:71:97:c7:0b:e5:49:8a:cd:97:7e:f9:22:87:81: 94:e6:d4:46:ba:ce:71:8c:44:58:4d:fa:4a:53:8c: 1e:62:0a:23:21:67:68:0f:dd:e1:5a:c7:96:78:bc: b4:d1:ea:7e:d3:bd:d1:1c:5c:dd:01:fe:0a:64:80: c7:df:d5:82:39:b6:e9:0e:72:b2:be:f8:47:30:80: bb:09:92:3d:bc:49:97:82:e8:7f:ea:f3:09:c2:24: 64:4d:12:19:91:13:3a:84:b6:0e:60:36:ab:04:a8: 2d:c2:35:69:56:e8:6b:f3:bc:bb:59:8f:db:91:13: 6f:9e:f8:a8:83:e8:55:bb:fd:60:47:07:01:a6:c6: 32:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:CC:CD:C8:AA:D4:EE:08:8E:8D:26:04:3C:19:46:81:26:29:93:FE X509v3 Authority Key Identifier: keyid:B8:D4:44:C5:B3:18:4A:4F:8C:8F:19:9A:43:22:42:C4:4E:19:EA:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/B8D444C5B3184A4F8C8F199A432242C44E19EACB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B8D444C5B3184A4F8C8F199A432242C44E19EACB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/3136302e32352e33362e302f32342d3234203d3e20313532383332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.36.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:e9:3a:ae:ad:23:d3:94:f8:10:b1:dd:96:ed:7c:92:ca:67: f6:ab:a4:1c:e1:7a:96:0b:9a:d8:39:6c:ed:1c:bc:df:33:42: f1:e0:b1:e3:d9:01:c4:fa:32:4d:7b:4c:0a:2d:23:79:35:5b: d1:17:ee:48:04:2d:52:b3:82:fd:82:30:30:7c:2a:82:34:62: 48:e9:09:f2:38:e1:54:6f:6f:92:0d:d0:c2:bd:73:32:bd:38: 9d:ae:4d:e1:fe:ab:42:16:cb:36:0c:0d:d0:70:ee:9a:75:66: c7:28:19:30:15:28:f5:a6:f7:16:af:52:fd:4a:58:c6:e8:6c: 77:de:49:e7:02:4d:cd:c1:7a:da:49:80:29:74:12:32:34:5b: 50:50:ed:12:4e:3c:79:82:45:2c:a0:0f:1e:f5:91:62:49:38: 2f:df:14:c7:28:d3:cd:8c:b2:dc:be:3c:5d:8f:64:c7:de:74: 34:3c:21:83:86:ec:4c:9b:af:81:25:0f:ec:11:43:d3:ce:f2: 22:d1:f0:3a:7b:71:33:68:56:ad:05:e8:19:11:7e:8c:14:f3: 67:ee:1c:47:bd:0d:bf:73:40:d9:de:94:61:d5:43:c6:22:03: d6:e5:fa:3e:7b:8e:5a:b1:61:d4:7f:d4:28:d5:e9:fa:3c:56: 98:ae:7d:d4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZAJ6Cfi9BfYfjMEFzNAPFQObOxEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjhENDQ0QzVCMzE4NEE0RjhDOEYxOTlBNDMyMjQyQzQ0 RTE5RUFDQjAeFw0yNDA3MTYwNzA0MjhaFw0yNTA3MTUwNzA5MjhaMDMxMTAvBgNV BAMTKDQ5Q0NDREM4QUFENEVFMDg4RThEMjYwNDNDMTk0NjgxMjYyOTkzRkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvLipSp7kkcFHBoVQ685Ijr4Cf 3TDVzhxF6ktfqAOsx2JkmS4NYnDvoOeF2AMZkqFPj8o6C3ntLXJmkeuBdncyebc3 Dt/h9HPrvKxSxXZh7IwEc3Dbm7Ny5kE/fRG/7NZ4CfFFlxsYiu2DhmOFpTj35gJ+ 370Xd1xxl8cL5UmKzZd++SKHgZTm1Ea6znGMRFhN+kpTjB5iCiMhZ2gP3eFax5Z4 vLTR6n7TvdEcXN0B/gpkgMff1YI5tukOcrK++EcwgLsJkj28SZeC6H/q8wnCJGRN EhmREzqEtg5gNqsEqC3CNWlW6GvzvLtZj9uRE2+e+KiD6FW7/WBHBwGmxjL1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUSczNyKrU7giOjSYEPBlGgSYpk/4wHwYDVR0j BBgwFoAUuNRExbMYSk+MjxmaQyJCxE4Z6sswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZjRiNTNkOC1iMmZmLTQ5NzMtYjFhYy02Zjg1ZmFlYWRiZTUvMC9COEQ0NDRDNUIz MTg0QTRGOEM4RjE5OUE0MzIyNDJDNDRFMTlFQUNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQjhENDQ0QzVCMzE4NEE0RjhDOEYxOTlBNDMyMjQyQzQ0RTE5 RUFDQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmNGI1M2Q4LWIyZmYtNDk3My1i MWFjLTZmODVmYWVhZGJlNS8wLzMxMzYzMDJlMzIzNTJlMzMzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzMzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAZJDANBgkqhkiG 9w0BAQsFAAOCAQEAH+k6rq0j05T4ELHdlu18kspn9qukHOF6lgua2Dls7Ry83zNC 8eCx49kBxPoyTXtMCi0jeTVb0RfuSAQtUrOC/YIwMHwqgjRiSOkJ8jjhVG9vkg3Q wr1zMr04na5N4f6rQhbLNgwN0HDumnVmxygZMBUo9ab3Fq9S/UpYxuhsd95J5wJN zcF62kmAKXQSMjRbUFDtEk48eYJFLKAPHvWRYkk4L98UxyjTzYyy3L48XY9kx950 NDwhg4bsTJuvgSUP7BFD087yItHwOntxM2hWrQXoGRF+jBTzZ+4cR70Nv3NA2d6U YdVDxiID1uX6PnuOWrFh1H/UKNXp+jxWmK591A== -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:38 2024 by rpki-client on console-ams.rpki-client.org