$ rpki-client -vvf repo-rpki.idnic.net/repo/aa417608-16b8-4497-81e3-947d78dbcf11/0/3136302e32352e3232392e302f32342d3234203d3e20313533313036.roa File: 3136302e32352e3232392e302f32342d3234203d3e20313533313036.roa (raw, json) Hash identifier: OciTRaV2C31FilczLAWvlWOOLcWTGVmd3g3fetGDN8Y= Subject key identifier: 85:66:3D:27:5C:05:59:85:41:5E:D0:BD:8D:6C:DA:DC:F1:83:6F:C6 Certificate issuer: /CN=2098B3BD046CFFF28B48954F288A333FADDD1DE9 Certificate serial: 20836C926B1E0D1805DB5A1A49CDBC1E9D20472D Authority key identifier: 20:98:B3:BD:04:6C:FF:F2:8B:48:95:4F:28:8A:33:3F:AD:DD:1D:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2098B3BD046CFFF28B48954F288A333FADDD1DE9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aa417608-16b8-4497-81e3-947d78dbcf11/0/3136302e32352e3232392e302f32342d3234203d3e20313533313036.roa Signing time: Fri 04 Oct 2024 09:09:34 +0000 ROA not before: Fri 04 Oct 2024 09:04:34 +0000 ROA not after: Fri 03 Oct 2025 09:09:34 +0000 asID: 153106 IP address blocks: 160.25.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aa417608-16b8-4497-81e3-947d78dbcf11/0/2098B3BD046CFFF28B48954F288A333FADDD1DE9.crl rsync://repo-rpki.idnic.net/repo/aa417608-16b8-4497-81e3-947d78dbcf11/0/2098B3BD046CFFF28B48954F288A333FADDD1DE9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2098B3BD046CFFF28B48954F288A333FADDD1DE9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:83:6c:92:6b:1e:0d:18:05:db:5a:1a:49:cd:bc:1e:9d:20:47:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2098B3BD046CFFF28B48954F288A333FADDD1DE9 Validity Not Before: Oct 4 09:04:34 2024 GMT Not After : Oct 3 09:09:34 2025 GMT Subject: CN=85663D275C055985415ED0BD8D6CDADCF1836FC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:14:ca:df:c9:0f:f1:3e:b0:97:93:42:56:26: a5:02:b3:69:11:34:d5:c6:3b:06:ad:fe:ec:45:e8: d0:11:08:8f:48:de:e5:5a:36:e1:ab:5c:6c:55:0d: 17:16:0c:67:16:b0:3f:ee:a1:5f:2f:e5:63:91:f9: 96:14:96:dc:fb:a0:a2:2d:93:b6:9a:cc:62:5d:ce: 94:df:8b:8b:be:48:55:97:21:84:23:88:dd:b5:8d: 10:70:81:3a:a3:cf:9b:86:e7:2e:d2:e1:7f:3f:e2: 95:6b:44:c6:45:25:80:14:db:72:6e:25:32:be:bb: cb:93:17:6b:f4:1a:a5:a4:17:e1:a1:26:38:35:f0: 8b:41:ec:4f:e8:f1:01:48:d0:b3:fe:55:d2:0f:4a: 21:46:fb:84:11:d3:ed:dd:60:c6:a0:1d:95:c0:32: 00:86:66:75:6f:fd:f7:ae:92:11:c0:83:f4:94:1b: b2:bb:0f:0c:2d:3c:81:be:d8:fe:0c:94:66:f1:5b: cf:f7:a1:77:73:6e:19:6f:a1:c7:7c:fa:f9:5b:c4: 39:04:13:26:a6:e3:70:b4:3a:36:08:dd:12:34:c6: 20:66:0a:3c:27:50:d8:c2:81:10:69:32:a8:1c:f5: 2b:2c:81:07:35:a3:24:1d:b0:14:c3:72:07:9c:7a: ce:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:66:3D:27:5C:05:59:85:41:5E:D0:BD:8D:6C:DA:DC:F1:83:6F:C6 X509v3 Authority Key Identifier: keyid:20:98:B3:BD:04:6C:FF:F2:8B:48:95:4F:28:8A:33:3F:AD:DD:1D:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aa417608-16b8-4497-81e3-947d78dbcf11/0/2098B3BD046CFFF28B48954F288A333FADDD1DE9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2098B3BD046CFFF28B48954F288A333FADDD1DE9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aa417608-16b8-4497-81e3-947d78dbcf11/0/3136302e32352e3232392e302f32342d3234203d3e20313533313036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.229.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:46:2a:a3:13:9c:7a:41:38:f2:b0:ca:dd:42:5d:04:58:c9: 4c:91:07:ba:32:35:13:d4:28:30:9d:37:47:86:f9:0a:e4:72: 87:51:6c:7a:c1:ea:96:dc:9a:a6:3a:d5:91:1b:ae:48:11:3e: 95:45:9c:20:7d:c2:86:73:68:3a:3b:9c:c3:59:f4:88:f8:f9: 07:cb:96:7b:4f:ba:e0:40:22:5f:fc:a6:ec:8e:50:c8:28:22: fd:b5:b3:ad:50:2b:5d:88:95:7e:3a:55:6f:8d:91:52:fd:51: e8:80:75:e4:d8:a7:ac:14:55:9c:b6:00:c1:3b:f2:2d:f2:3d: 48:aa:3c:14:84:af:6d:20:bd:f7:9c:69:37:05:85:8d:cc:d6: 9a:57:60:b0:7a:61:f3:23:c0:f8:ef:c3:bd:c0:68:85:18:8b: b5:99:1a:0d:70:5f:17:8b:c4:f1:60:17:a0:cc:79:6a:7d:39: 00:22:a3:d4:0b:7a:0a:0b:10:c8:54:5c:cc:c4:f9:1f:fe:32: 2a:75:b4:df:ac:07:df:06:13:3b:00:77:5a:19:12:e7:b2:8e: 07:d5:ac:cf:3b:1e:e1:c9:10:24:06:7a:89:3e:76:12:1e:3c: 8d:13:9a:78:3e:3a:48:28:e1:92:d0:44:d6:9e:ce:86:0c:ec: 77:85:bd:01 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIINskmseDRgF21oaSc28Hp0gRy0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA5OEIzQkQwNDZDRkZGMjhCNDg5NTRGMjg4QTMzM0ZB REREMURFOTAeFw0yNDEwMDQwOTA0MzRaFw0yNTEwMDMwOTA5MzRaMDMxMTAvBgNV BAMTKDg1NjYzRDI3NUMwNTU5ODU0MTVFRDBCRDhENkNEQURDRjE4MzZGQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1FMrfyQ/xPrCXk0JWJqUCs2kR NNXGOwat/uxF6NARCI9I3uVaNuGrXGxVDRcWDGcWsD/uoV8v5WOR+ZYUltz7oKIt k7aazGJdzpTfi4u+SFWXIYQjiN21jRBwgTqjz5uG5y7S4X8/4pVrRMZFJYAU23Ju JTK+u8uTF2v0GqWkF+GhJjg18ItB7E/o8QFI0LP+VdIPSiFG+4QR0+3dYMagHZXA MgCGZnVv/feukhHAg/SUG7K7DwwtPIG+2P4MlGbxW8/3oXdzbhlvocd8+vlbxDkE Eyam43C0OjYI3RI0xiBmCjwnUNjCgRBpMqgc9SssgQc1oyQdsBTDcgeces5PAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhWY9J1wFWYVBXtC9jWza3PGDb8YwHwYDVR0j BBgwFoAUIJizvQRs//KLSJVPKIozP63dHekwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YTQxNzYwOC0xNmI4LTQ0OTctODFlMy05NDdkNzhkYmNmMTEvMC8yMDk4QjNCRDA0 NkNGRkYyOEI0ODk1NEYyODhBMzMzRkFEREQxREU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjA5OEIzQkQwNDZDRkZGMjhCNDg5NTRGMjg4QTMzM0ZBRERE MURFOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhNDE3NjA4LTE2YjgtNDQ5Ny04 MWUzLTk0N2Q3OGRiY2YxMS8wLzMxMzYzMDJlMzIzNTJlMzIzMjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzEzMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBnlMA0GCSqG SIb3DQEBCwUAA4IBAQB8RiqjE5x6QTjysMrdQl0EWMlMkQe6MjUT1CgwnTdHhvkK 5HKHUWx6weqW3JqmOtWRG65IET6VRZwgfcKGc2g6O5zDWfSI+PkHy5Z7T7rgQCJf /KbsjlDIKCL9tbOtUCtdiJV+OlVvjZFS/VHogHXk2KesFFWctgDBO/It8j1IqjwU hK9tIL33nGk3BYWNzNaaV2CwemHzI8D478O9wGiFGIu1mRoNcF8Xi8TxYBegzHlq fTkAIqPUC3oKCxDIVFzMxPkf/jIqdbTfrAffBhM7AHdaGRLnso4H1azPOx7hyRAk BnqJPnYSHjyNE5p4PjpIKOGS0ETWns6GDOx3hb0B -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:40 2024 by rpki-client on console-fra.rpki-client.org