$ rpki-client -vvf repo-rpki.idnic.net/repo/cf72f012-a43a-4fcb-86a9-ab3e9573a8d9/0/3136302e32352e3132302e302f32342d3234203d3e20313533303632.roa File: 3136302e32352e3132302e302f32342d3234203d3e20313533303632.roa (raw, json) Hash identifier: /2/aGmGUHvyKK7WNmuKzAj0cNzsdhjisomKkikn2mP8= Subject key identifier: AE:4F:0C:E7:84:27:2D:01:97:58:39:76:E7:D5:E2:0D:4C:4D:6E:99 Certificate issuer: /CN=961A52A522DEB902D9CBDDE98AF82B424422F566 Certificate serial: 32166DF5764A6C44EECB0C00605C2D77CA16883E Authority key identifier: 96:1A:52:A5:22:DE:B9:02:D9:CB:DD:E9:8A:F8:2B:42:44:22:F5:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/961A52A522DEB902D9CBDDE98AF82B424422F566.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cf72f012-a43a-4fcb-86a9-ab3e9573a8d9/0/3136302e32352e3132302e302f32342d3234203d3e20313533303632.roa Signing time: Sun 06 Oct 2024 07:08:14 +0000 ROA not before: Sun 06 Oct 2024 07:03:14 +0000 ROA not after: Sun 05 Oct 2025 07:08:14 +0000 asID: 153062 IP address blocks: 160.25.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cf72f012-a43a-4fcb-86a9-ab3e9573a8d9/0/961A52A522DEB902D9CBDDE98AF82B424422F566.crl rsync://repo-rpki.idnic.net/repo/cf72f012-a43a-4fcb-86a9-ab3e9573a8d9/0/961A52A522DEB902D9CBDDE98AF82B424422F566.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/961A52A522DEB902D9CBDDE98AF82B424422F566.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 08:43:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:16:6d:f5:76:4a:6c:44:ee:cb:0c:00:60:5c:2d:77:ca:16:88:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=961A52A522DEB902D9CBDDE98AF82B424422F566 Validity Not Before: Oct 6 07:03:14 2024 GMT Not After : Oct 5 07:08:14 2025 GMT Subject: CN=AE4F0CE784272D0197583976E7D5E20D4C4D6E99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:bd:b7:35:f9:58:1d:fd:a7:e1:80:88:f5:ac: e8:fc:95:28:99:45:0e:f0:06:02:4e:0f:2b:5b:6c: 96:98:b4:50:1f:f4:7d:24:36:36:41:3d:2d:e9:50: 81:0e:1c:3e:c1:1e:0f:b5:63:2f:12:29:4c:a5:f3: d6:66:5f:cb:f3:99:2d:3a:96:d4:b4:08:72:b5:08: ab:76:73:61:3a:5d:c4:fa:ae:11:48:cb:2c:87:9c: 6c:f5:6c:44:1b:3c:f8:12:6e:cc:e2:af:03:ef:d5: 19:17:f2:07:81:b7:27:34:da:32:8f:f8:a0:e2:ca: 39:2d:19:7b:59:b9:94:5f:64:11:ad:a9:fa:e4:d3: 3a:28:c5:c4:a8:26:b2:f2:ef:0c:75:5a:9e:c8:89: 43:8d:e9:31:e4:33:75:a2:85:c4:73:e9:be:ca:0d: 43:d4:1e:cd:d3:a6:c4:f1:fe:0e:b6:40:49:f9:3c: 12:1e:99:c0:ae:cd:da:8a:20:e0:e7:48:df:75:c0: d1:ac:ad:6d:a7:e4:b7:d9:62:1a:fb:20:e2:ab:47: 97:2a:21:19:88:bb:f7:bb:00:12:13:f6:65:b1:5f: 2a:52:9e:1b:0d:14:ab:32:31:63:b5:a3:00:3b:e5: 29:d7:cc:77:16:e1:cc:96:68:d1:1a:20:57:6d:ba: 4c:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:4F:0C:E7:84:27:2D:01:97:58:39:76:E7:D5:E2:0D:4C:4D:6E:99 X509v3 Authority Key Identifier: keyid:96:1A:52:A5:22:DE:B9:02:D9:CB:DD:E9:8A:F8:2B:42:44:22:F5:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cf72f012-a43a-4fcb-86a9-ab3e9573a8d9/0/961A52A522DEB902D9CBDDE98AF82B424422F566.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/961A52A522DEB902D9CBDDE98AF82B424422F566.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cf72f012-a43a-4fcb-86a9-ab3e9573a8d9/0/3136302e32352e3132302e302f32342d3234203d3e20313533303632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.120.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:50:e1:07:ab:e5:18:73:04:48:57:d8:7e:15:91:d7:cd:c8: 9c:3c:ad:01:25:b9:db:e4:f9:02:bd:f4:54:16:4f:52:70:7d: be:9c:58:12:03:42:ca:87:a4:cc:e4:1d:76:27:3f:f8:d5:0b: ac:1e:42:c2:9b:72:9f:da:f3:48:52:38:45:b4:58:00:be:a2: 53:d2:cd:8a:7f:26:fa:18:7b:fd:cb:28:f9:56:0a:d3:a1:a2: 0b:44:73:35:a7:58:a6:ec:cf:71:9e:c6:34:1e:16:14:b2:ca: 84:49:dd:0d:f0:ec:5e:aa:87:95:5e:a3:68:b0:d3:1e:72:2d: 8d:6a:26:47:78:a3:91:40:b8:4d:42:63:b0:76:bd:f2:90:bf: 5b:fb:e5:50:ea:bd:7a:94:16:7f:c4:d8:9e:f2:34:e4:0c:a1: fe:69:ad:ac:53:53:45:e7:f1:d5:b7:ec:2c:69:4a:78:27:66: ed:49:5d:ee:69:1e:c1:4f:3d:eb:99:96:98:60:8e:a8:24:ea: 79:e4:99:e2:96:18:a9:5a:80:7f:8f:f7:d1:98:dc:cd:ce:70: d5:98:d4:06:24:e4:2c:45:63:c7:bf:c2:8c:d5:43:49:f6:c3: bf:de:23:32:28:73:b9:b9:24:c1:5c:5e:64:95:53:86:94:de: a4:37:0d:ef -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMhZt9XZKbETuywwAYFwtd8oWiD4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTYxQTUyQTUyMkRFQjkwMkQ5Q0JEREU5OEFGODJCNDI0 NDIyRjU2NjAeFw0yNDEwMDYwNzAzMTRaFw0yNTEwMDUwNzA4MTRaMDMxMTAvBgNV BAMTKEFFNEYwQ0U3ODQyNzJEMDE5NzU4Mzk3NkU3RDVFMjBENEM0RDZFOTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqvbc1+Vgd/afhgIj1rOj8lSiZ RQ7wBgJODytbbJaYtFAf9H0kNjZBPS3pUIEOHD7BHg+1Yy8SKUyl89ZmX8vzmS06 ltS0CHK1CKt2c2E6XcT6rhFIyyyHnGz1bEQbPPgSbszirwPv1RkX8geBtyc02jKP +KDiyjktGXtZuZRfZBGtqfrk0zooxcSoJrLy7wx1Wp7IiUON6THkM3WihcRz6b7K DUPUHs3TpsTx/g62QEn5PBIemcCuzdqKIODnSN91wNGsrW2n5LfZYhr7IOKrR5cq IRmIu/e7ABIT9mWxXypSnhsNFKsyMWO1owA75SnXzHcW4cyWaNEaIFdtukwZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrk8M54QnLQGXWDl259XiDUxNbpkwHwYDVR0j BBgwFoAUlhpSpSLeuQLZy93pivgrQkQi9WYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZjcyZjAxMi1hNDNhLTRmY2ItODZhOS1hYjNlOTU3M2E4ZDkvMC85NjFBNTJBNTIy REVCOTAyRDlDQkRERTk4QUY4MkI0MjQ0MjJGNTY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTYxQTUyQTUyMkRFQjkwMkQ5Q0JEREU5OEFGODJCNDI0NDIy RjU2Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NmNzJmMDEyLWE0M2EtNGZjYi04 NmE5LWFiM2U5NTczYThkOS8wLzMxMzYzMDJlMzIzNTJlMzEzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzNjMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBl4MA0GCSqG SIb3DQEBCwUAA4IBAQAKUOEHq+UYcwRIV9h+FZHXzcicPK0BJbnb5PkCvfRUFk9S cH2+nFgSA0LKh6TM5B12Jz/41QusHkLCm3Kf2vNIUjhFtFgAvqJT0s2Kfyb6GHv9 yyj5VgrToaILRHM1p1im7M9xnsY0HhYUssqESd0N8OxeqoeVXqNosNMeci2NaiZH eKORQLhNQmOwdr3ykL9b++VQ6r16lBZ/xNie8jTkDKH+aa2sU1NF5/HVt+wsaUp4 J2btSV3uaR7BTz3rmZaYYI6oJOp55JnilhipWoB/j/fRmNzNznDVmNQGJOQsRWPH v8KM1UNJ9sO/3iMyKHO5uSTBXF5klVOGlN6kNw3v -----END CERTIFICATE-----Generated at Mon Nov 25 09:00:39 2024 by rpki-client on console-fra.rpki-client.org