$ rpki-client -vvf repo-rpki.idnic.net/repo/bb69d667-17a4-4fdd-9c57-1122033ef999/0/3136302e32352e3139362e302f32342d3234203d3e20313533313037.roa File: 3136302e32352e3139362e302f32342d3234203d3e20313533313037.roa (raw, json) Hash identifier: HECbSGD9YK53jdSJKp91llPoIm35SiyeV/gqkOqJG/U= Subject key identifier: 76:2A:43:9E:D8:9C:EF:CA:79:08:7F:B8:A5:8B:B2:51:6B:74:BA:E2 Certificate issuer: /CN=4ACE0ADDBB5BF3B49B1CDA5A2310CF06B334A659 Certificate serial: 3995EABBBDEF163E37B50C3D051E6AFBBCC6BBE6 Authority key identifier: 4A:CE:0A:DD:BB:5B:F3:B4:9B:1C:DA:5A:23:10:CF:06:B3:34:A6:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4ACE0ADDBB5BF3B49B1CDA5A2310CF06B334A659.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bb69d667-17a4-4fdd-9c57-1122033ef999/0/3136302e32352e3139362e302f32342d3234203d3e20313533313037.roa Signing time: Tue 22 Oct 2024 06:02:06 +0000 ROA not before: Tue 22 Oct 2024 05:57:06 +0000 ROA not after: Tue 21 Oct 2025 06:02:06 +0000 asID: 153107 IP address blocks: 160.25.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bb69d667-17a4-4fdd-9c57-1122033ef999/0/4ACE0ADDBB5BF3B49B1CDA5A2310CF06B334A659.crl rsync://repo-rpki.idnic.net/repo/bb69d667-17a4-4fdd-9c57-1122033ef999/0/4ACE0ADDBB5BF3B49B1CDA5A2310CF06B334A659.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4ACE0ADDBB5BF3B49B1CDA5A2310CF06B334A659.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:95:ea:bb:bd:ef:16:3e:37:b5:0c:3d:05:1e:6a:fb:bc:c6:bb:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ACE0ADDBB5BF3B49B1CDA5A2310CF06B334A659 Validity Not Before: Oct 22 05:57:06 2024 GMT Not After : Oct 21 06:02:06 2025 GMT Subject: CN=762A439ED89CEFCA79087FB8A58BB2516B74BAE2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:c7:4e:59:2a:83:0e:ac:fa:4c:32:4a:eb:9c: c2:21:83:be:a3:b0:a0:f2:2e:ca:6b:49:d8:15:8d: fc:6d:c4:a8:fe:17:cb:59:dc:46:15:bd:84:cd:9c: 24:95:93:2a:f1:fd:20:f4:a8:58:c1:f2:e8:cd:36: be:9f:b4:be:c2:b3:d5:1f:ea:4c:e4:f5:8f:48:b1: fd:82:61:16:ac:ec:97:aa:0f:cd:f7:dd:ce:67:b6: 46:ad:74:46:98:2c:3c:65:a3:ef:37:69:54:6f:1e: 96:5b:42:dc:f9:48:f0:4f:a6:5a:af:df:30:82:95: a7:4d:15:aa:68:d8:ca:7b:db:a1:01:2a:dc:b1:cd: c8:28:38:21:a7:0e:66:9f:f6:11:1d:66:48:21:fb: 30:42:e4:48:01:42:a6:97:5e:c2:99:78:54:d4:c7: f0:4e:a8:fe:42:27:39:5f:7a:36:7e:e6:d9:c4:59: 1d:fa:eb:9b:46:b1:49:e0:e6:3e:1c:70:21:0d:c5: ae:02:86:a4:04:94:75:fe:3c:64:20:91:e5:f2:85: 28:19:55:07:73:59:bf:1d:fd:dd:89:8e:fd:97:c2: d9:8e:a2:87:b5:58:eb:f2:ad:3a:97:97:0e:5a:0b: 1a:6a:f8:a6:3c:b8:5b:b8:64:80:f4:64:b6:86:27: fc:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:2A:43:9E:D8:9C:EF:CA:79:08:7F:B8:A5:8B:B2:51:6B:74:BA:E2 X509v3 Authority Key Identifier: keyid:4A:CE:0A:DD:BB:5B:F3:B4:9B:1C:DA:5A:23:10:CF:06:B3:34:A6:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bb69d667-17a4-4fdd-9c57-1122033ef999/0/4ACE0ADDBB5BF3B49B1CDA5A2310CF06B334A659.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4ACE0ADDBB5BF3B49B1CDA5A2310CF06B334A659.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bb69d667-17a4-4fdd-9c57-1122033ef999/0/3136302e32352e3139362e302f32342d3234203d3e20313533313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.196.0/24 Signature Algorithm: sha256WithRSAEncryption 73:87:d5:c2:7c:75:1d:79:4f:65:11:4a:0d:2a:ad:b5:9c:33: 57:56:c8:8a:e0:af:65:b8:e2:fd:a7:48:d5:ea:fd:bf:a8:22: a2:bb:6b:a1:19:9d:66:ec:42:6f:2e:57:5f:f5:ef:63:b0:4d: 9d:11:c0:b3:ae:77:36:c6:38:d6:b0:fc:40:3b:7f:df:3b:33: 2c:83:a2:9d:95:a8:49:b9:ff:42:86:b4:b2:c7:f5:a6:83:3b: 63:67:5e:c9:2c:88:32:3e:42:98:45:5b:a3:a5:16:4e:98:8e: 3b:be:5f:8e:40:84:5f:b1:05:33:8b:1b:29:5d:53:08:d9:44: a2:e4:a7:5a:8c:3e:01:9d:ba:2f:3b:77:1b:51:4e:de:0a:4c: 90:77:e5:02:98:c7:7e:b3:b2:4d:43:6c:2e:46:33:e4:f3:7a: 99:d2:1e:0f:c4:4b:1a:2f:a8:e1:24:dc:85:0f:1c:89:35:34: e8:5b:db:ce:40:d1:92:2a:5d:e7:b0:81:b1:1b:6c:02:88:66: 8a:ab:13:49:79:e2:ce:d5:20:fe:9a:b5:02:59:a9:6b:aa:b6: 69:cc:fc:1e:61:4d:91:4e:8d:04:fd:6f:6d:00:07:16:93:78: 23:82:82:37:5a:8d:eb:7d:c9:2d:d6:a1:7d:6a:05:10:f4:b6: bd:f2:6f:74 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOZXqu73vFj43tQw9BR5q+7zGu+YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFDRTBBRERCQjVCRjNCNDlCMUNEQTVBMjMxMENGMDZC MzM0QTY1OTAeFw0yNDEwMjIwNTU3MDZaFw0yNTEwMjEwNjAyMDZaMDMxMTAvBgNV BAMTKDc2MkE0MzlFRDg5Q0VGQ0E3OTA4N0ZCOEE1OEJCMjUxNkI3NEJBRTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDax05ZKoMOrPpMMkrrnMIhg76j sKDyLsprSdgVjfxtxKj+F8tZ3EYVvYTNnCSVkyrx/SD0qFjB8ujNNr6ftL7Cs9Uf 6kzk9Y9Isf2CYRas7JeqD8333c5ntkatdEaYLDxlo+83aVRvHpZbQtz5SPBPplqv 3zCCladNFapo2Mp726EBKtyxzcgoOCGnDmaf9hEdZkgh+zBC5EgBQqaXXsKZeFTU x/BOqP5CJzlfejZ+5tnEWR3665tGsUng5j4ccCENxa4ChqQElHX+PGQgkeXyhSgZ VQdzWb8d/d2Jjv2XwtmOooe1WOvyrTqXlw5aCxpq+KY8uFu4ZID0ZLaGJ/yDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdipDntic78p5CH+4pYuyUWt0uuIwHwYDVR0j BBgwFoAUSs4K3btb87SbHNpaIxDPBrM0plkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YjY5ZDY2Ny0xN2E0LTRmZGQtOWM1Ny0xMTIyMDMzZWY5OTkvMC80QUNFMEFEREJC NUJGM0I0OUIxQ0RBNUEyMzEwQ0YwNkIzMzRBNjU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNEFDRTBBRERCQjVCRjNCNDlCMUNEQTVBMjMxMENGMDZCMzM0 QTY1OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JiNjlkNjY3LTE3YTQtNGZkZC05 YzU3LTExMjIwMzNlZjk5OS8wLzMxMzYzMDJlMzIzNTJlMzEzOTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzEzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBnEMA0GCSqG SIb3DQEBCwUAA4IBAQBzh9XCfHUdeU9lEUoNKq21nDNXVsiK4K9luOL9p0jV6v2/ qCKiu2uhGZ1m7EJvLldf9e9jsE2dEcCzrnc2xjjWsPxAO3/fOzMsg6KdlahJuf9C hrSyx/WmgztjZ17JLIgyPkKYRVujpRZOmI47vl+OQIRfsQUzixspXVMI2USi5Kda jD4BnbovO3cbUU7eCkyQd+UCmMd+s7JNQ2wuRjPk83qZ0h4PxEsaL6jhJNyFDxyJ NTToW9vOQNGSKl3nsIGxG2wCiGaKqxNJeeLO1SD+mrUCWalrqrZpzPweYU2RTo0E /W9tAAcWk3gjgoI3Wo3rfckt1qF9agUQ9La98m90 -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:21 2024 by rpki-client on console-fra.rpki-client.org