$ rpki-client -vvf repo-rpki.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/3136302e32352e3137392e302f32342d3234203d3e20313533303735.roa File: 3136302e32352e3137392e302f32342d3234203d3e20313533303735.roa (raw, json) Hash identifier: GhxR22sRqPsgSQoLpKAI7yTQVizLaGLPWzCytQ0r9cY= Subject key identifier: 39:18:3C:C2:51:C4:6A:AD:2C:F9:AD:39:88:30:0B:A4:52:FF:B9:B5 Certificate issuer: /CN=2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45 Certificate serial: 6708EA17D71AD7C42809E1C3F525E762B3B4D559 Authority key identifier: 29:76:AD:C7:44:8B:F0:CA:9B:57:DC:D7:88:49:A1:E0:F9:5F:2B:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/3136302e32352e3137392e302f32342d3234203d3e20313533303735.roa Signing time: Thu 08 Aug 2024 06:42:26 +0000 ROA not before: Thu 08 Aug 2024 06:37:26 +0000 ROA not after: Thu 07 Aug 2025 06:42:26 +0000 asID: 153075 IP address blocks: 160.25.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45.crl rsync://repo-rpki.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:08:ea:17:d7:1a:d7:c4:28:09:e1:c3:f5:25:e7:62:b3:b4:d5:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45 Validity Not Before: Aug 8 06:37:26 2024 GMT Not After : Aug 7 06:42:26 2025 GMT Subject: CN=39183CC251C46AAD2CF9AD3988300BA452FFB9B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:c7:1a:e8:97:d6:49:b7:ae:26:95:d9:a9:6d: 2e:69:70:e1:85:32:94:df:b6:79:4d:51:3a:05:02: 43:69:62:99:b7:ac:c0:8b:06:d5:ae:3c:49:7b:ff: 6b:bb:a2:ca:eb:8d:53:15:ac:59:94:cb:b6:7d:37: 92:9f:56:4c:dc:86:a0:e0:49:4f:14:17:0f:d0:ce: 4c:fb:e1:4e:86:f0:ae:64:ae:36:3e:a5:f1:ec:fe: 80:0e:cd:9f:7a:3f:3b:35:fe:19:5e:06:58:47:4c: f8:25:ab:28:23:c1:70:9c:28:c0:11:ce:9c:be:2e: cd:d6:de:0b:47:f8:27:ce:36:a4:71:2e:bc:ce:fc: ad:95:1f:d6:54:1b:a5:ca:68:cf:22:92:fc:53:81: 6e:d0:c8:1b:39:41:bf:ad:26:c9:68:97:96:cb:3f: 61:a5:7c:42:4a:d1:e4:86:3b:1e:1f:6c:71:9f:bc: 00:da:11:9b:a9:2a:ea:a8:cc:bc:41:db:0f:d2:23: d5:1f:35:6c:0c:61:05:aa:34:52:43:a5:8e:00:47: 62:ac:87:ae:14:53:73:ac:87:d6:f4:85:c7:d4:46: 5d:ae:92:33:5c:53:41:95:f0:95:88:37:bd:f1:7a: 84:0a:8a:95:25:93:28:1f:5a:28:2c:04:fa:c7:07: c9:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:18:3C:C2:51:C4:6A:AD:2C:F9:AD:39:88:30:0B:A4:52:FF:B9:B5 X509v3 Authority Key Identifier: keyid:29:76:AD:C7:44:8B:F0:CA:9B:57:DC:D7:88:49:A1:E0:F9:5F:2B:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/3136302e32352e3137392e302f32342d3234203d3e20313533303735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.179.0/24 Signature Algorithm: sha256WithRSAEncryption 48:ee:0a:82:40:34:bb:7f:a7:54:d7:ff:41:cf:98:08:22:cd: fb:b8:9b:a8:6a:53:01:dd:30:a3:9e:cb:56:95:6b:b2:7f:0b: 54:53:b7:ea:35:46:81:14:53:42:5d:fb:49:c7:09:a6:98:38: be:3f:6d:2d:f0:b1:8c:ae:eb:f2:55:ad:0b:2b:ff:3f:51:b9: 9e:93:61:9a:c6:56:56:cd:91:97:60:ed:49:e0:82:17:cc:8c: 27:02:f5:d0:20:7a:46:b4:8d:7b:66:f7:1b:e7:16:45:b1:eb: 40:82:fc:53:57:b5:31:d8:dd:ae:4a:b4:9c:40:8a:ff:cd:ca: 01:5e:d7:f9:dd:1f:aa:12:79:81:1f:48:8b:b4:c2:f7:83:11: 2b:f4:a5:3b:20:b3:7f:a1:44:33:95:fe:16:ca:e5:e4:f7:9f: 9d:70:ff:cc:e7:f6:80:ed:72:ad:44:f3:1b:2b:67:32:36:e0: d4:aa:02:ff:25:1f:09:58:6b:ee:d8:55:72:d0:65:51:d8:28: 30:88:4d:3a:7e:12:73:c6:0e:01:12:f9:19:ee:a2:d4:70:6e: 77:93:4e:0d:b0:34:8a:be:de:77:96:d0:d6:0e:e4:07:e3:db: 08:91:05:f5:c4:1a:d4:64:ca:2d:1f:8b:09:ae:49:59:52:59: 40:41:ab:9c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZwjqF9ca18QoCeHD9SXnYrO01VkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk3NkFEQzc0NDhCRjBDQTlCNTdEQ0Q3ODg0OUExRTBG OTVGMkI0NTAeFw0yNDA4MDgwNjM3MjZaFw0yNTA4MDcwNjQyMjZaMDMxMTAvBgNV BAMTKDM5MTgzQ0MyNTFDNDZBQUQyQ0Y5QUQzOTg4MzAwQkE0NTJGRkI5QjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZxxrol9ZJt64mldmpbS5pcOGF MpTftnlNUToFAkNpYpm3rMCLBtWuPEl7/2u7osrrjVMVrFmUy7Z9N5KfVkzchqDg SU8UFw/Qzkz74U6G8K5krjY+pfHs/oAOzZ96Pzs1/hleBlhHTPglqygjwXCcKMAR zpy+Ls3W3gtH+CfONqRxLrzO/K2VH9ZUG6XKaM8ikvxTgW7QyBs5Qb+tJslol5bL P2GlfEJK0eSGOx4fbHGfvADaEZupKuqozLxB2w/SI9UfNWwMYQWqNFJDpY4AR2Ks h64UU3Osh9b0hcfURl2ukjNcU0GV8JWIN73xeoQKipUlkygfWigsBPrHB8khAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUORg8wlHEaq0s+a05iDALpFL/ubUwHwYDVR0j BBgwFoAUKXatx0SL8MqbV9zXiEmh4PlfK0UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2M0MzJlMC1kYzNlLTQyY2MtYmNjMC02MjliMTYyMDZjOWEvMC8yOTc2QURDNzQ0 OEJGMENBOUI1N0RDRDc4ODQ5QTFFMEY5NUYyQjQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjk3NkFEQzc0NDhCRjBDQTlCNTdEQ0Q3ODg0OUExRTBGOTVG MkI0NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3YzQzMmUwLWRjM2UtNDJjYy1i Y2MwLTYyOWIxNjIwNmM5YS8wLzMxMzYzMDJlMzIzNTJlMzEzNzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBmzMA0GCSqG SIb3DQEBCwUAA4IBAQBI7gqCQDS7f6dU1/9Bz5gIIs37uJuoalMB3TCjnstWlWuy fwtUU7fqNUaBFFNCXftJxwmmmDi+P20t8LGMruvyVa0LK/8/Ubmek2GaxlZWzZGX YO1J4IIXzIwnAvXQIHpGtI17Zvcb5xZFsetAgvxTV7Ux2N2uSrScQIr/zcoBXtf5 3R+qEnmBH0iLtML3gxEr9KU7ILN/oUQzlf4WyuXk95+dcP/M5/aA7XKtRPMbK2cy NuDUqgL/JR8JWGvu2FVy0GVR2CgwiE06fhJzxg4BEvkZ7qLUcG53k04NsDSKvt53 ltDWDuQH49sIkQX1xBrUZMotH4sJrklZUllAQauc -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:00 2024 by rpki-client on console-ams.rpki-client.org