$ rpki-client -vvf repo-rpki.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/3136302e32352e3137382e302f32342d3234203d3e20313533303735.roa File: 3136302e32352e3137382e302f32342d3234203d3e20313533303735.roa (raw, json) Hash identifier: Ws7wk8GBBz6uaKUyE3UI35E9XGkDiFZKCxUfK3/rPNE= Subject key identifier: 73:A8:8A:5B:F5:08:FB:BD:54:FC:C6:05:95:0B:EF:9F:D7:00:FC:52 Certificate issuer: /CN=2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45 Certificate serial: 0FD671F6CDEE91646AC5E846DFFCFE336FDA0BBB Authority key identifier: 29:76:AD:C7:44:8B:F0:CA:9B:57:DC:D7:88:49:A1:E0:F9:5F:2B:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/3136302e32352e3137382e302f32342d3234203d3e20313533303735.roa Signing time: Thu 08 Aug 2024 06:40:23 +0000 ROA not before: Thu 08 Aug 2024 06:35:23 +0000 ROA not after: Thu 07 Aug 2025 06:40:23 +0000 asID: 153075 IP address blocks: 160.25.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45.crl rsync://repo-rpki.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:d6:71:f6:cd:ee:91:64:6a:c5:e8:46:df:fc:fe:33:6f:da:0b:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45 Validity Not Before: Aug 8 06:35:23 2024 GMT Not After : Aug 7 06:40:23 2025 GMT Subject: CN=73A88A5BF508FBBD54FCC605950BEF9FD700FC52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:48:f7:b9:80:41:cb:f6:49:11:d2:5e:b8:f8: ad:18:09:a5:a0:ef:37:f1:ca:eb:21:03:79:0d:03: 54:5d:50:c5:63:df:48:12:87:90:d2:28:ec:82:eb: ba:38:38:e1:51:a1:e0:a0:31:cf:76:d1:bb:44:fe: f4:b7:7e:89:76:ec:5a:d4:65:82:45:9b:61:75:1d: 0f:27:45:40:80:e1:f0:12:92:ad:4d:1e:11:88:fc: ec:28:64:e9:27:1e:09:e9:d4:86:46:93:11:0d:20: 04:4e:c1:51:d9:30:22:6a:ac:5e:de:0c:47:76:d6: f2:18:94:76:aa:97:53:e3:a1:01:a0:98:c0:6a:f3: 17:6e:fd:6c:41:c2:52:cf:06:ae:8d:74:7e:3e:8b: 9f:6b:89:26:7c:fb:ce:22:a9:69:d7:7b:db:61:87: 17:dd:37:81:d2:9d:82:db:35:d3:95:9e:b5:ee:c8: 7d:4e:80:e9:91:ec:18:cc:5b:3b:13:f2:69:57:21: 3e:7f:53:2b:6c:00:66:22:3b:66:c1:6e:96:6d:f6: b2:64:0f:45:db:4c:94:b7:fe:c7:c7:d9:e0:08:ce: f3:0c:49:45:6d:6c:4c:63:19:a1:bb:0b:61:73:cf: fe:fb:56:62:a5:e7:e9:f3:13:76:2c:d4:98:e8:05: a9:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:A8:8A:5B:F5:08:FB:BD:54:FC:C6:05:95:0B:EF:9F:D7:00:FC:52 X509v3 Authority Key Identifier: keyid:29:76:AD:C7:44:8B:F0:CA:9B:57:DC:D7:88:49:A1:E0:F9:5F:2B:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/3136302e32352e3137382e302f32342d3234203d3e20313533303735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.178.0/24 Signature Algorithm: sha256WithRSAEncryption 22:77:29:47:27:4c:b4:35:0c:69:32:4e:93:8a:c6:cb:c2:74: be:eb:11:02:a5:3d:df:9e:32:4a:09:f5:67:06:e4:83:fd:9a: 3a:2e:08:bb:df:99:17:d1:90:bd:97:94:0c:86:87:fb:3a:65: 36:2b:d6:72:29:38:8d:21:ca:28:71:6e:66:89:97:d0:ea:4b: c8:ae:63:df:6c:a4:51:44:a7:d5:f2:df:7f:27:29:fb:d7:11: fa:f8:f9:b6:03:dd:1b:22:06:52:75:5d:1f:67:13:c2:e1:ce: d3:eb:76:b3:c0:9d:ae:d2:2b:2a:92:57:49:43:eb:d8:d5:e0: f9:b4:ff:4d:b4:ba:cc:25:4b:2b:f2:dd:d9:84:19:e3:aa:35: 51:d1:5a:ba:aa:49:0d:23:a1:11:82:06:6e:67:64:e2:59:c8: 45:ba:50:e3:e5:7f:87:f3:d8:9e:2f:8b:0c:ea:d0:35:58:04: d7:0a:7e:86:6f:d2:4f:9e:68:d1:93:d7:dc:c0:11:21:9d:8d: 3e:53:fd:dd:26:4b:25:5b:5a:8c:45:d4:0d:83:19:e6:55:63: 99:ed:dc:3a:76:d7:b1:ad:80:0e:f3:ae:fa:80:c3:72:67:72: cc:6e:30:e9:0f:0f:9a:83:36:ee:9d:73:af:13:56:b9:02:48: d1:1d:43:0b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUD9Zx9s3ukWRqxehG3/z+M2/aC7swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk3NkFEQzc0NDhCRjBDQTlCNTdEQ0Q3ODg0OUExRTBG OTVGMkI0NTAeFw0yNDA4MDgwNjM1MjNaFw0yNTA4MDcwNjQwMjNaMDMxMTAvBgNV BAMTKDczQTg4QTVCRjUwOEZCQkQ1NEZDQzYwNTk1MEJFRjlGRDcwMEZDNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdSPe5gEHL9kkR0l64+K0YCaWg 7zfxyushA3kNA1RdUMVj30gSh5DSKOyC67o4OOFRoeCgMc920btE/vS3fol27FrU ZYJFm2F1HQ8nRUCA4fASkq1NHhGI/OwoZOknHgnp1IZGkxENIAROwVHZMCJqrF7e DEd21vIYlHaql1PjoQGgmMBq8xdu/WxBwlLPBq6NdH4+i59riSZ8+84iqWnXe9th hxfdN4HSnYLbNdOVnrXuyH1OgOmR7BjMWzsT8mlXIT5/UytsAGYiO2bBbpZt9rJk D0XbTJS3/sfH2eAIzvMMSUVtbExjGaG7C2Fzz/77VmKl5+nzE3Ys1JjoBaljAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUc6iKW/UI+71U/MYFlQvvn9cA/FIwHwYDVR0j BBgwFoAUKXatx0SL8MqbV9zXiEmh4PlfK0UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2M0MzJlMC1kYzNlLTQyY2MtYmNjMC02MjliMTYyMDZjOWEvMC8yOTc2QURDNzQ0 OEJGMENBOUI1N0RDRDc4ODQ5QTFFMEY5NUYyQjQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjk3NkFEQzc0NDhCRjBDQTlCNTdEQ0Q3ODg0OUExRTBGOTVG MkI0NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3YzQzMmUwLWRjM2UtNDJjYy1i Y2MwLTYyOWIxNjIwNmM5YS8wLzMxMzYzMDJlMzIzNTJlMzEzNzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBmyMA0GCSqG SIb3DQEBCwUAA4IBAQAidylHJ0y0NQxpMk6TisbLwnS+6xECpT3fnjJKCfVnBuSD /Zo6Lgi735kX0ZC9l5QMhof7OmU2K9ZyKTiNIcoocW5miZfQ6kvIrmPfbKRRRKfV 8t9/Jyn71xH6+Pm2A90bIgZSdV0fZxPC4c7T63azwJ2u0isqkldJQ+vY1eD5tP9N tLrMJUsr8t3ZhBnjqjVR0Vq6qkkNI6ERggZuZ2TiWchFulDj5X+H89ieL4sM6tA1 WATXCn6Gb9JPnmjRk9fcwBEhnY0+U/3dJkslW1qMRdQNgxnmVWOZ7dw6dtexrYAO 8676gMNyZ3LMbjDpDw+agzbunXOvE1a5AkjRHUML -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:57 2024 by rpki-client on console-fra.rpki-client.org