$ rpki-client -vvf repo-rpki.idnic.net/repo/aea26a10-58e8-43c7-947e-722173d66614/0/3136302e32352e35342e302f32342d3234203d3e20313533303630.roa File: 3136302e32352e35342e302f32342d3234203d3e20313533303630.roa (raw, json) Hash identifier: vKG2Q2FQRs4DS7NN4/lYH+GoEGCznEIbbOzchLmAsO4= Subject key identifier: 33:29:FB:57:2A:0B:19:67:5A:D4:82:4F:2F:4B:BB:97:3C:BE:B8:93 Certificate issuer: /CN=020EA2304929066809CA6F723574798639D77438 Certificate serial: 50D2630604EC9A4F31ACAFB0CB2B8A684649C6DD Authority key identifier: 02:0E:A2:30:49:29:06:68:09:CA:6F:72:35:74:79:86:39:D7:74:38 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/020EA2304929066809CA6F723574798639D77438.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea26a10-58e8-43c7-947e-722173d66614/0/3136302e32352e35342e302f32342d3234203d3e20313533303630.roa Signing time: Mon 22 Jul 2024 13:32:03 +0000 ROA not before: Mon 22 Jul 2024 13:27:03 +0000 ROA not after: Mon 21 Jul 2025 13:32:03 +0000 asID: 153060 IP address blocks: 160.25.54.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea26a10-58e8-43c7-947e-722173d66614/0/020EA2304929066809CA6F723574798639D77438.crl rsync://repo-rpki.idnic.net/repo/aea26a10-58e8-43c7-947e-722173d66614/0/020EA2304929066809CA6F723574798639D77438.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/020EA2304929066809CA6F723574798639D77438.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:d2:63:06:04:ec:9a:4f:31:ac:af:b0:cb:2b:8a:68:46:49:c6:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=020EA2304929066809CA6F723574798639D77438 Validity Not Before: Jul 22 13:27:03 2024 GMT Not After : Jul 21 13:32:03 2025 GMT Subject: CN=3329FB572A0B19675AD4824F2F4BBB973CBEB893 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:25:b3:92:27:ac:6e:15:bf:71:7b:62:86:c1: e7:59:7c:3e:98:68:12:78:1f:ca:40:98:8a:61:6a: 83:8a:ba:8b:91:92:48:80:c7:70:07:52:b5:bc:56: a6:09:7a:aa:76:a9:fb:73:16:6d:09:9a:8d:53:83: be:62:ae:16:9c:0d:78:b9:44:93:5b:6c:56:8c:29: d3:eb:cd:f4:b7:bc:21:79:c4:2e:56:2a:14:22:52: fa:58:a7:17:18:69:ff:ae:f6:b5:3f:cf:76:06:4f: 26:70:82:6b:c8:00:b2:25:0e:8b:a7:c8:96:ef:65: de:f1:42:ad:8a:d8:ea:61:5d:7e:ee:c3:47:7b:30: 3e:61:f7:64:c5:b2:84:76:7d:0d:ec:27:b0:d8:38: 4e:1f:a9:10:67:37:d4:36:f8:a9:52:ee:2f:a7:58: 05:79:e3:44:4d:86:60:fc:31:da:56:8b:2c:78:9d: 1b:c3:30:44:bd:ae:a6:bb:cf:a6:85:fa:54:eb:9a: bb:e0:85:36:32:d1:28:09:9a:9b:ac:16:95:fd:ce: 4b:e6:56:2d:4d:70:e3:f0:cc:ae:d4:62:5c:5e:42: 4e:ed:2c:ad:da:76:c2:5d:48:99:91:7f:86:07:a0: 51:e9:7f:55:12:4f:24:39:f0:64:ec:16:e2:71:9b: 52:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:29:FB:57:2A:0B:19:67:5A:D4:82:4F:2F:4B:BB:97:3C:BE:B8:93 X509v3 Authority Key Identifier: keyid:02:0E:A2:30:49:29:06:68:09:CA:6F:72:35:74:79:86:39:D7:74:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea26a10-58e8-43c7-947e-722173d66614/0/020EA2304929066809CA6F723574798639D77438.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/020EA2304929066809CA6F723574798639D77438.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea26a10-58e8-43c7-947e-722173d66614/0/3136302e32352e35342e302f32342d3234203d3e20313533303630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.54.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:95:bb:c1:ab:e5:3f:42:b6:45:39:ad:a6:41:da:c2:1d:25: 18:83:d7:62:a5:a5:cd:42:89:9b:50:62:f4:ae:fd:5e:fc:e9: 95:1b:9a:d0:5d:a4:6c:c1:ee:dc:6a:b5:51:5e:02:4b:2c:8f: 5c:df:fc:21:85:5b:d1:72:1e:02:1b:08:52:ca:b2:41:24:0a: 94:c7:4f:01:61:21:a4:00:c9:cf:d8:05:78:3e:e6:53:80:66: a8:f0:3e:79:ef:49:15:d4:22:5c:76:66:c8:61:ef:70:17:dc: fa:3c:45:b3:20:eb:a6:5e:fb:1d:77:eb:36:c0:9f:f6:1b:c2: af:a0:93:01:3a:e5:c8:3a:a0:b8:83:b6:c2:b8:f1:ad:1c:e8: 84:e8:ae:e9:f7:62:ce:57:33:b4:f0:4e:0e:05:25:4b:33:c2: 1b:7b:dd:7c:ed:5f:0c:80:49:28:82:e7:96:11:4a:24:4d:e1: 64:9e:5c:0e:85:d7:83:aa:2a:27:86:e4:0a:e5:f8:15:92:a1: 05:ad:f5:fb:b2:bb:15:bf:b2:b2:b3:0e:99:10:45:b8:e5:b7: 4b:33:3f:90:0e:ef:a0:b7:1b:3b:24:32:53:e3:cd:49:62:03: 46:6f:b4:4e:d7:a6:a3:da:44:94:a9:66:70:11:ea:fc:90:a9: fa:77:91:c4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUNJjBgTsmk8xrK+wyyuKaEZJxt0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIwRUEyMzA0OTI5MDY2ODA5Q0E2RjcyMzU3NDc5ODYz OUQ3NzQzODAeFw0yNDA3MjIxMzI3MDNaFw0yNTA3MjExMzMyMDNaMDMxMTAvBgNV BAMTKDMzMjlGQjU3MkEwQjE5Njc1QUQ0ODI0RjJGNEJCQjk3M0NCRUI4OTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGJbOSJ6xuFb9xe2KGwedZfD6Y aBJ4H8pAmIphaoOKuouRkkiAx3AHUrW8VqYJeqp2qftzFm0Jmo1Tg75irhacDXi5 RJNbbFaMKdPrzfS3vCF5xC5WKhQiUvpYpxcYaf+u9rU/z3YGTyZwgmvIALIlDoun yJbvZd7xQq2K2OphXX7uw0d7MD5h92TFsoR2fQ3sJ7DYOE4fqRBnN9Q2+KlS7i+n WAV540RNhmD8MdpWiyx4nRvDMES9rqa7z6aF+lTrmrvghTYy0SgJmpusFpX9zkvm Vi1NcOPwzK7UYlxeQk7tLK3adsJdSJmRf4YHoFHpf1USTyQ58GTsFuJxm1J/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUMyn7VyoLGWda1IJPL0u7lzy+uJMwHwYDVR0j BBgwFoAUAg6iMEkpBmgJym9yNXR5hjnXdDgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWEyNmExMC01OGU4LTQzYzctOTQ3ZS03MjIxNzNkNjY2MTQvMC8wMjBFQTIzMDQ5 MjkwNjY4MDlDQTZGNzIzNTc0Nzk4NjM5RDc3NDM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMDIwRUEyMzA0OTI5MDY2ODA5Q0E2RjcyMzU3NDc5ODYzOUQ3 NzQzOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTI2YTEwLTU4ZTgtNDNjNy05 NDdlLTcyMjE3M2Q2NjYxNC8wLzMxMzYzMDJlMzIzNTJlMzUzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMzMwMzYzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAZNjANBgkqhkiG 9w0BAQsFAAOCAQEAG5W7wavlP0K2RTmtpkHawh0lGIPXYqWlzUKJm1Bi9K79Xvzp lRua0F2kbMHu3Gq1UV4CSyyPXN/8IYVb0XIeAhsIUsqyQSQKlMdPAWEhpADJz9gF eD7mU4BmqPA+ee9JFdQiXHZmyGHvcBfc+jxFsyDrpl77HXfrNsCf9hvCr6CTATrl yDqguIO2wrjxrRzohOiu6fdizlcztPBODgUlSzPCG3vdfO1fDIBJKILnlhFKJE3h ZJ5cDoXXg6oqJ4bkCuX4FZKhBa31+7K7Fb+ysrMOmRBFuOW3SzM/kA7voLcbOyQy U+PNSWIDRm+0Ttemo9pElKlmcBHq/JCp+neRxA== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:53 2024 by rpki-client on console-ams.rpki-client.org