$ rpki-client -vvf repo-rpki.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/3136302e32352e3234352e302f32342d3234203d3e20313533313131.roa File: 3136302e32352e3234352e302f32342d3234203d3e20313533313131.roa (raw, json) Hash identifier: UFu8HMSGf8XDsGbPsoU1Eu+n+uIdk0W8r+YUHRms9EI= Subject key identifier: 11:01:CD:14:E2:7A:20:37:5B:E9:6D:94:66:C8:52:07:A3:45:42:6E Certificate issuer: /CN=6A755F0ECD114936B4C154BE153030E6BFE42025 Certificate serial: 3F14154720FFDC9777264243FFA5A3680EC5668D Authority key identifier: 6A:75:5F:0E:CD:11:49:36:B4:C1:54:BE:15:30:30:E6:BF:E4:20:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6A755F0ECD114936B4C154BE153030E6BFE42025.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/3136302e32352e3234352e302f32342d3234203d3e20313533313131.roa Signing time: Wed 30 Oct 2024 12:49:57 +0000 ROA not before: Wed 30 Oct 2024 12:44:57 +0000 ROA not after: Wed 29 Oct 2025 12:49:57 +0000 asID: 153111 IP address blocks: 160.25.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/6A755F0ECD114936B4C154BE153030E6BFE42025.crl rsync://repo-rpki.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/6A755F0ECD114936B4C154BE153030E6BFE42025.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6A755F0ECD114936B4C154BE153030E6BFE42025.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:14:15:47:20:ff:dc:97:77:26:42:43:ff:a5:a3:68:0e:c5:66:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A755F0ECD114936B4C154BE153030E6BFE42025 Validity Not Before: Oct 30 12:44:57 2024 GMT Not After : Oct 29 12:49:57 2025 GMT Subject: CN=1101CD14E27A20375BE96D9466C85207A345426E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:11:9e:09:00:63:4d:56:a1:d5:c9:58:65:de: b3:34:fa:fa:2f:bb:c8:f2:40:2e:b7:42:97:ad:4b: ce:6e:48:df:9e:25:e7:d8:e4:aa:bb:ae:fb:f8:45: 34:01:38:1c:7e:30:21:86:9e:6a:a2:cd:22:96:33: fc:da:db:53:1b:6b:2c:97:c9:3e:b0:86:93:fa:eb: 5a:a3:01:a7:27:73:e2:7a:3a:c6:46:b7:fc:79:24: 18:a7:1c:cb:8a:55:6d:71:67:af:b0:c5:cc:fa:45: c9:ce:79:d2:5f:e6:60:a1:12:f1:b3:38:54:2e:85: da:84:4e:3f:f3:cf:55:fb:aa:8b:40:b1:b5:ef:69: 62:f7:bb:19:a8:fd:cb:ff:e6:61:75:b6:69:a9:fe: bb:82:56:8f:0b:c1:e2:1d:55:a3:6e:63:49:03:be: 2c:f5:f3:be:e0:29:61:df:2f:b2:36:fd:3f:56:1f: 8e:06:93:ff:70:83:ba:20:ab:b1:5e:67:0d:38:81: b5:34:06:6d:23:b5:c1:aa:c0:da:90:27:af:0e:aa: e3:06:9f:50:1e:ec:71:6d:75:ec:0b:9d:63:75:a3: cf:a6:0e:8e:48:ac:e6:d9:49:8a:af:24:22:a6:14: f9:b9:39:ce:c9:a8:97:6e:63:2b:13:d1:61:63:47: ab:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:01:CD:14:E2:7A:20:37:5B:E9:6D:94:66:C8:52:07:A3:45:42:6E X509v3 Authority Key Identifier: keyid:6A:75:5F:0E:CD:11:49:36:B4:C1:54:BE:15:30:30:E6:BF:E4:20:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/6A755F0ECD114936B4C154BE153030E6BFE42025.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6A755F0ECD114936B4C154BE153030E6BFE42025.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/3136302e32352e3234352e302f32342d3234203d3e20313533313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.245.0/24 Signature Algorithm: sha256WithRSAEncryption b7:31:8a:b4:ea:c9:f1:b4:46:d0:40:fb:33:6d:9e:68:4f:33: f0:c6:8e:d3:68:15:a9:79:d9:04:65:dc:04:8f:8a:e8:3a:e5: bd:da:fd:63:5b:9b:ca:d7:26:3b:a1:ee:d0:c3:e6:07:6f:4f: 58:7b:fc:8b:04:74:5f:98:ab:b0:e5:c0:3d:e6:b3:65:93:25: c2:18:b1:ec:fd:d8:3b:af:51:54:f7:28:25:d4:9b:af:a5:f9: 95:b2:b5:11:e8:18:e4:19:77:6b:ef:04:e5:0d:fc:e0:57:05: be:7c:d9:eb:91:95:53:a5:56:f7:c9:9a:70:3a:3c:4f:0c:c8: 4e:a8:be:9c:63:f0:ef:bf:77:f7:e1:04:fe:2d:a2:44:75:77: 07:bf:a6:2e:c4:93:44:24:d9:25:9c:e2:5a:44:74:bb:da:8d: fc:a1:f8:c3:2f:96:5f:fc:4a:e1:83:cd:3f:36:53:9a:ac:24: 67:98:c7:62:ad:5a:54:14:c9:76:ee:d0:a5:83:9e:11:6a:b1: bd:07:9a:e0:2e:53:ab:23:bc:83:95:12:34:ba:cf:6a:e1:75: 87:1a:6c:1f:9d:fe:c0:1a:72:61:cd:0a:3e:3d:dd:a2:69:4c: 44:26:a7:1b:e8:be:b2:a2:77:5e:f8:9d:34:74:73:f2:f8:45: 7e:12:35:68 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPxQVRyD/3Jd3JkJD/6WjaA7FZo0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkE3NTVGMEVDRDExNDkzNkI0QzE1NEJFMTUzMDMwRTZC RkU0MjAyNTAeFw0yNDEwMzAxMjQ0NTdaFw0yNTEwMjkxMjQ5NTdaMDMxMTAvBgNV BAMTKDExMDFDRDE0RTI3QTIwMzc1QkU5NkQ5NDY2Qzg1MjA3QTM0NTQyNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwEZ4JAGNNVqHVyVhl3rM0+vov u8jyQC63QpetS85uSN+eJefY5Kq7rvv4RTQBOBx+MCGGnmqizSKWM/za21MbayyX yT6whpP661qjAacnc+J6OsZGt/x5JBinHMuKVW1xZ6+wxcz6RcnOedJf5mChEvGz OFQuhdqETj/zz1X7qotAsbXvaWL3uxmo/cv/5mF1tmmp/ruCVo8LweIdVaNuY0kD viz1877gKWHfL7I2/T9WH44Gk/9wg7ogq7FeZw04gbU0Bm0jtcGqwNqQJ68OquMG n1Ae7HFtdewLnWN1o8+mDo5IrObZSYqvJCKmFPm5Oc7JqJduYysT0WFjR6stAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUEQHNFOJ6IDdb6W2UZshSB6NFQm4wHwYDVR0j BBgwFoAUanVfDs0RSTa0wVS+FTAw5r/kICUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGNjMWM3ZS1kYTc0LTRiMTEtYjY3YS1kNWYyN2Q5ODE3NTcvMC82QTc1NUYwRUNE MTE0OTM2QjRDMTU0QkUxNTMwMzBFNkJGRTQyMDI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNkE3NTVGMEVDRDExNDkzNkI0QzE1NEJFMTUzMDMwRTZCRkU0 MjAyNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4Y2MxYzdlLWRhNzQtNGIxMS1i NjdhLWQ1ZjI3ZDk4MTc1Ny8wLzMxMzYzMDJlMzIzNTJlMzIzNDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBn1MA0GCSqG SIb3DQEBCwUAA4IBAQC3MYq06snxtEbQQPszbZ5oTzPwxo7TaBWpedkEZdwEj4ro OuW92v1jW5vK1yY7oe7Qw+YHb09Ye/yLBHRfmKuw5cA95rNlkyXCGLHs/dg7r1FU 9ygl1JuvpfmVsrUR6BjkGXdr7wTlDfzgVwW+fNnrkZVTpVb3yZpwOjxPDMhOqL6c Y/Dvv3f34QT+LaJEdXcHv6YuxJNEJNklnOJaRHS72o38ofjDL5Zf/Erhg80/NlOa rCRnmMdirVpUFMl27tClg54RarG9B5rgLlOrI7yDlRI0us9q4XWHGmwfnf7AGnJh zQo+Pd2iaUxEJqcb6L6yonde+J00dHPy+EV+EjVo -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:03 2024 by rpki-client on console-ams.rpki-client.org