$ rpki-client -vvf repo-rpki.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/3136302e32352e3234342e302f32342d3234203d3e20313533313131.roa File: 3136302e32352e3234342e302f32342d3234203d3e20313533313131.roa (raw, json) Hash identifier: 4PEyPB4qmPb2e/bBEQkgXwV9i5IzOHIeX5E1aebL4mE= Subject key identifier: 06:E1:74:67:81:73:B7:D7:C8:31:2F:17:D0:F4:F7:96:E8:E9:6F:0C Certificate issuer: /CN=6A755F0ECD114936B4C154BE153030E6BFE42025 Certificate serial: 48AE80216AACFFE17A4B105E18C9DC0BF097A131 Authority key identifier: 6A:75:5F:0E:CD:11:49:36:B4:C1:54:BE:15:30:30:E6:BF:E4:20:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6A755F0ECD114936B4C154BE153030E6BFE42025.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/3136302e32352e3234342e302f32342d3234203d3e20313533313131.roa Signing time: Wed 30 Oct 2024 12:49:46 +0000 ROA not before: Wed 30 Oct 2024 12:44:46 +0000 ROA not after: Wed 29 Oct 2025 12:49:46 +0000 asID: 153111 IP address blocks: 160.25.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/6A755F0ECD114936B4C154BE153030E6BFE42025.crl rsync://repo-rpki.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/6A755F0ECD114936B4C154BE153030E6BFE42025.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6A755F0ECD114936B4C154BE153030E6BFE42025.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:ae:80:21:6a:ac:ff:e1:7a:4b:10:5e:18:c9:dc:0b:f0:97:a1:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A755F0ECD114936B4C154BE153030E6BFE42025 Validity Not Before: Oct 30 12:44:46 2024 GMT Not After : Oct 29 12:49:46 2025 GMT Subject: CN=06E174678173B7D7C8312F17D0F4F796E8E96F0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:8b:ab:92:7d:38:43:ef:3d:4e:6f:c9:d5:d0: 0e:70:79:37:98:6b:91:a4:75:f7:0e:aa:12:f0:e7: 89:6d:12:d9:97:bf:6d:50:b1:a2:70:89:89:92:3b: 9c:1f:ef:88:fd:ed:a8:a4:66:d6:25:db:2b:17:ee: dd:05:00:cb:8b:c8:98:14:a8:73:29:5b:11:42:a8: 7f:6e:bc:ee:a9:7f:27:09:c7:86:80:17:b1:8c:1a: 7d:30:13:7c:7f:b0:71:4c:72:2c:1e:dc:07:26:96: f7:09:2d:d4:50:e8:c0:6c:88:df:b8:37:8c:47:1a: 99:cd:21:ce:82:2a:73:c1:ee:6d:d4:9c:cb:2c:ed: 2b:f9:99:c4:46:ba:3f:b7:27:c6:40:94:56:e4:f4: 53:3e:73:3d:24:28:f5:50:31:9a:42:b5:ce:d8:96: 96:56:a1:2c:40:cd:7d:5c:54:af:fe:a0:f3:30:5b: 0a:65:6c:68:c8:52:52:ac:23:fc:f1:86:5b:04:72: 10:e2:53:89:be:03:e6:66:ad:ee:0c:44:2a:5b:c4: 94:70:4a:bd:83:9a:c5:c6:63:71:99:3a:4f:1d:0d: 0a:99:76:6f:64:0a:7b:3d:e7:af:e1:10:48:5a:22: d9:6e:c2:11:4d:b3:7d:91:ac:6b:02:47:65:0a:2a: a5:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:E1:74:67:81:73:B7:D7:C8:31:2F:17:D0:F4:F7:96:E8:E9:6F:0C X509v3 Authority Key Identifier: keyid:6A:75:5F:0E:CD:11:49:36:B4:C1:54:BE:15:30:30:E6:BF:E4:20:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/6A755F0ECD114936B4C154BE153030E6BFE42025.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6A755F0ECD114936B4C154BE153030E6BFE42025.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/3136302e32352e3234342e302f32342d3234203d3e20313533313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.244.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:fc:c7:cc:14:ab:96:64:d2:1a:b5:6f:07:23:b4:eb:38:52: f6:62:85:52:03:8b:cb:c0:28:68:e2:81:c4:2f:f0:0f:4c:5c: 77:6e:60:a2:19:9a:e0:1e:a4:21:63:b9:a9:bc:4f:db:52:af: 40:3e:42:7b:f9:88:6c:e0:50:57:2f:fa:c9:f2:93:27:c6:e3: 2a:63:5a:2a:aa:69:3f:e6:72:e0:2e:16:a0:fb:b4:0e:4f:9e: 73:bb:9e:de:2a:89:e0:44:6a:e5:49:81:1d:f8:3c:0e:b3:1f: 5d:91:6e:4b:58:bc:af:33:26:ab:fc:42:b0:c1:a7:ad:3d:00: 05:f9:92:56:16:d3:01:39:71:e1:ad:df:29:9a:58:2f:3a:38: c1:10:e0:c4:42:c2:ca:45:3f:03:fe:55:70:61:33:d2:51:11: f6:1c:42:03:24:04:b0:e0:78:86:5b:29:53:34:73:40:cc:aa: b3:be:c9:9c:5e:2f:be:0a:89:25:55:5b:9c:3a:dd:d1:a8:ff: f1:7f:5c:34:09:8f:80:71:43:4b:a7:63:93:d0:9a:7d:fb:d7: 65:87:7f:33:2a:49:b9:3b:20:ee:11:d2:63:0e:d1:d5:91:e4: ce:fa:f0:72:89:06:78:b9:66:ea:d5:b6:55:12:f5:64:65:83: f0:c7:80:08 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSK6AIWqs/+F6SxBeGMncC/CXoTEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkE3NTVGMEVDRDExNDkzNkI0QzE1NEJFMTUzMDMwRTZC RkU0MjAyNTAeFw0yNDEwMzAxMjQ0NDZaFw0yNTEwMjkxMjQ5NDZaMDMxMTAvBgNV BAMTKDA2RTE3NDY3ODE3M0I3RDdDODMxMkYxN0QwRjRGNzk2RThFOTZGMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOi6uSfThD7z1Ob8nV0A5weTeY a5GkdfcOqhLw54ltEtmXv21QsaJwiYmSO5wf74j97aikZtYl2ysX7t0FAMuLyJgU qHMpWxFCqH9uvO6pfycJx4aAF7GMGn0wE3x/sHFMciwe3AcmlvcJLdRQ6MBsiN+4 N4xHGpnNIc6CKnPB7m3UnMss7Sv5mcRGuj+3J8ZAlFbk9FM+cz0kKPVQMZpCtc7Y lpZWoSxAzX1cVK/+oPMwWwplbGjIUlKsI/zxhlsEchDiU4m+A+Zmre4MRCpbxJRw Sr2DmsXGY3GZOk8dDQqZdm9kCns956/hEEhaItluwhFNs32RrGsCR2UKKqX7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBuF0Z4Fzt9fIMS8X0PT3lujpbwwwHwYDVR0j BBgwFoAUanVfDs0RSTa0wVS+FTAw5r/kICUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGNjMWM3ZS1kYTc0LTRiMTEtYjY3YS1kNWYyN2Q5ODE3NTcvMC82QTc1NUYwRUNE MTE0OTM2QjRDMTU0QkUxNTMwMzBFNkJGRTQyMDI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNkE3NTVGMEVDRDExNDkzNkI0QzE1NEJFMTUzMDMwRTZCRkU0 MjAyNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4Y2MxYzdlLWRhNzQtNGIxMS1i NjdhLWQ1ZjI3ZDk4MTc1Ny8wLzMxMzYzMDJlMzIzNTJlMzIzNDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBn0MA0GCSqG SIb3DQEBCwUAA4IBAQCd/MfMFKuWZNIatW8HI7TrOFL2YoVSA4vLwCho4oHEL/AP TFx3bmCiGZrgHqQhY7mpvE/bUq9APkJ7+Yhs4FBXL/rJ8pMnxuMqY1oqqmk/5nLg Lhag+7QOT55zu57eKongRGrlSYEd+DwOsx9dkW5LWLyvMyar/EKwwaetPQAF+ZJW FtMBOXHhrd8pmlgvOjjBEODEQsLKRT8D/lVwYTPSURH2HEIDJASw4HiGWylTNHNA zKqzvsmcXi++CoklVVucOt3RqP/xf1w0CY+AcUNLp2OT0Jp9+9dlh38zKkm5OyDu EdJjDtHVkeTO+vByiQZ4uWbq1bZVEvVkZYPwx4AI -----END CERTIFICATE-----Generated at Thu Nov 21 06:48:40 2024 by rpki-client on console-fra.rpki-client.org