$ rpki-client -vvf repo-rpki.idnic.net/repo/c67860e3-6ad8-47a5-94c0-93ffd2472865/0/3136302e32352e3131342e302f32342d3234203d3e20313533303731.roa File: 3136302e32352e3131342e302f32342d3234203d3e20313533303731.roa (raw, json) Hash identifier: NFFJiSNTIqtq1ZBECFcXT+o0qD0iXQRYvbFaTorCPIM= Subject key identifier: 29:3D:D4:C3:45:61:30:05:0A:8E:F1:D2:CC:88:7D:98:44:1A:43:64 Certificate issuer: /CN=F91B50B9BD34481B7AED3341ECBE67B1731B3908 Certificate serial: 872C8C490F575E5213743307AE3EAE281296D2 Authority key identifier: F9:1B:50:B9:BD:34:48:1B:7A:ED:33:41:EC:BE:67:B1:73:1B:39:08 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F91B50B9BD34481B7AED3341ECBE67B1731B3908.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c67860e3-6ad8-47a5-94c0-93ffd2472865/0/3136302e32352e3131342e302f32342d3234203d3e20313533303731.roa Signing time: Sun 10 Nov 2024 12:37:39 +0000 ROA not before: Sun 10 Nov 2024 12:32:39 +0000 ROA not after: Sun 09 Nov 2025 12:37:39 +0000 asID: 153071 IP address blocks: 160.25.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c67860e3-6ad8-47a5-94c0-93ffd2472865/0/F91B50B9BD34481B7AED3341ECBE67B1731B3908.crl rsync://repo-rpki.idnic.net/repo/c67860e3-6ad8-47a5-94c0-93ffd2472865/0/F91B50B9BD34481B7AED3341ECBE67B1731B3908.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F91B50B9BD34481B7AED3341ECBE67B1731B3908.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87:2c:8c:49:0f:57:5e:52:13:74:33:07:ae:3e:ae:28:12:96:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F91B50B9BD34481B7AED3341ECBE67B1731B3908 Validity Not Before: Nov 10 12:32:39 2024 GMT Not After : Nov 9 12:37:39 2025 GMT Subject: CN=293DD4C3456130050A8EF1D2CC887D98441A4364 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:11:7a:e7:7b:d0:51:a9:1f:2f:a8:9c:f9:72: d8:2f:5e:d4:c5:04:da:eb:ef:41:28:e5:e7:0b:48: bb:1d:96:ed:27:17:52:42:f3:7b:41:c5:12:62:3e: 01:ac:1e:b0:7f:e6:a5:d0:42:92:92:62:01:43:24: 08:3b:6a:45:be:24:01:f3:e7:be:ca:da:fd:b1:6d: d3:c6:dc:a2:5e:3d:22:86:a8:ab:02:6f:54:5f:8c: d6:2b:0f:96:c6:6c:81:9b:df:e2:d7:28:d0:30:4d: 44:fa:a2:db:cd:75:ad:10:ed:5c:30:8d:c7:f3:29: 0f:73:db:17:a2:46:6c:b9:1f:fc:0a:54:e6:b5:36: e9:70:cb:41:ce:33:2b:79:d3:2e:84:cf:a2:39:b4: 67:f2:49:24:75:2f:d5:57:22:0c:cb:03:f6:ca:99: 63:13:3b:37:1d:b9:90:d2:cf:8b:63:85:c1:00:83: 35:e4:3a:1f:51:21:85:3f:1b:6f:ca:c8:d4:dc:cc: 23:e3:11:a6:bf:20:5a:02:08:91:49:9e:66:8a:3e: 7d:31:a6:ef:b7:d7:63:4f:62:14:19:e7:fa:0a:20: 34:b5:35:e1:5b:d4:9a:ec:07:ac:57:75:bf:2a:08: 1d:fb:ee:85:9b:b0:37:26:70:67:d7:e2:8e:17:75: 1c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:3D:D4:C3:45:61:30:05:0A:8E:F1:D2:CC:88:7D:98:44:1A:43:64 X509v3 Authority Key Identifier: keyid:F9:1B:50:B9:BD:34:48:1B:7A:ED:33:41:EC:BE:67:B1:73:1B:39:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c67860e3-6ad8-47a5-94c0-93ffd2472865/0/F91B50B9BD34481B7AED3341ECBE67B1731B3908.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F91B50B9BD34481B7AED3341ECBE67B1731B3908.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c67860e3-6ad8-47a5-94c0-93ffd2472865/0/3136302e32352e3131342e302f32342d3234203d3e20313533303731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.114.0/24 Signature Algorithm: sha256WithRSAEncryption b9:c4:13:94:e6:ab:40:e8:42:68:dd:5e:21:eb:23:78:13:4d: 06:8c:b6:29:5d:4c:f1:b6:b4:a5:be:a1:c8:67:e1:1d:9c:78: e8:b3:15:0a:04:34:0b:16:22:8a:b6:66:13:25:4d:fb:7f:61: 2c:35:ec:7f:d5:6b:ae:20:bc:91:88:fa:58:06:a2:57:69:d7: 06:44:a1:d7:3e:33:06:16:10:1a:b5:12:1b:da:e3:9a:1b:32: 76:f2:fe:be:92:0c:e3:b0:de:4b:06:87:8f:fd:8b:49:58:6f: 05:10:6d:e8:a8:94:d2:c1:36:f0:b9:6b:8d:a4:e4:67:ba:fa: c1:c4:1d:d0:12:3e:d8:5d:42:d8:45:ee:2f:ec:86:ca:c8:32: 46:dc:c7:3f:b5:42:12:ec:19:36:54:80:20:8c:a2:71:2a:d1: 70:a3:de:38:af:13:46:17:50:21:07:96:cf:fa:37:b3:f2:49: 9b:39:ad:91:9e:4d:d1:97:e9:9d:a2:96:be:ec:31:1f:c1:6e: 96:a6:fa:69:65:a4:81:b9:cf:96:0d:b6:83:bf:10:22:9a:09: 7d:16:27:4b:96:34:73:81:a9:cf:48:46:7a:25:c6:64:fa:16: 2a:42:26:cf:29:34:f7:fc:4e:21:2b:fb:2f:f3:4e:5d:bc:ab: a0:16:9f:c0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAIcsjEkPV15SE3QzB64+rigSltIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjkxQjUwQjlCRDM0NDgxQjdBRUQzMzQxRUNCRTY3QjE3 MzFCMzkwODAeFw0yNDExMTAxMjMyMzlaFw0yNTExMDkxMjM3MzlaMDMxMTAvBgNV BAMTKDI5M0RENEMzNDU2MTMwMDUwQThFRjFEMkNDODg3RDk4NDQxQTQzNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/EXrne9BRqR8vqJz5ctgvXtTF BNrr70Eo5ecLSLsdlu0nF1JC83tBxRJiPgGsHrB/5qXQQpKSYgFDJAg7akW+JAHz 577K2v2xbdPG3KJePSKGqKsCb1RfjNYrD5bGbIGb3+LXKNAwTUT6otvNda0Q7Vww jcfzKQ9z2xeiRmy5H/wKVOa1Nulwy0HOMyt50y6Ez6I5tGfySSR1L9VXIgzLA/bK mWMTOzcduZDSz4tjhcEAgzXkOh9RIYU/G2/KyNTczCPjEaa/IFoCCJFJnmaKPn0x pu+312NPYhQZ5/oKIDS1NeFb1JrsB6xXdb8qCB377oWbsDcmcGfX4o4XdRwLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKT3Uw0VhMAUKjvHSzIh9mEQaQ2QwHwYDVR0j BBgwFoAU+RtQub00SBt67TNB7L5nsXMbOQgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Njc4NjBlMy02YWQ4LTQ3YTUtOTRjMC05M2ZmZDI0NzI4NjUvMC9GOTFCNTBCOUJE MzQ0ODFCN0FFRDMzNDFFQ0JFNjdCMTczMUIzOTA4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRjkxQjUwQjlCRDM0NDgxQjdBRUQzMzQxRUNCRTY3QjE3MzFC MzkwOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2Nzg2MGUzLTZhZDgtNDdhNS05 NGMwLTkzZmZkMjQ3Mjg2NS8wLzMxMzYzMDJlMzIzNTJlMzEzMTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzNzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBlyMA0GCSqG SIb3DQEBCwUAA4IBAQC5xBOU5qtA6EJo3V4h6yN4E00GjLYpXUzxtrSlvqHIZ+Ed nHjosxUKBDQLFiKKtmYTJU37f2EsNex/1WuuILyRiPpYBqJXadcGRKHXPjMGFhAa tRIb2uOaGzJ28v6+kgzjsN5LBoeP/YtJWG8FEG3oqJTSwTbwuWuNpORnuvrBxB3Q Ej7YXULYRe4v7IbKyDJG3Mc/tUIS7Bk2VIAgjKJxKtFwo944rxNGF1AhB5bP+jez 8kmbOa2Rnk3Rl+mdopa+7DEfwW6WpvppZaSBuc+WDbaDvxAimgl9FidLljRzganP SEZ6JcZk+hYqQibPKTT3/E4hK/sv805dvKugFp/A -----END CERTIFICATE-----Generated at Fri Nov 22 09:30:03 2024 by rpki-client on console-fra.rpki-client.org