$ rpki-client -vvf repo-rpki.idnic.net/repo/cf72f012-a43a-4fcb-86a9-ab3e9573a8d9/0/3136302e32352e3132312e302f32342d3234203d3e20313533303632.roa File: 3136302e32352e3132312e302f32342d3234203d3e20313533303632.roa (raw, json) Hash identifier: JTzBC/tUY4YKAC/+r+uXmWAv3T2JRL+s5BpODc7IPU4= Subject key identifier: 10:0D:88:29:9A:68:93:27:EF:58:63:5A:A1:CF:FF:02:97:DA:7E:6C Certificate issuer: /CN=961A52A522DEB902D9CBDDE98AF82B424422F566 Certificate serial: 239E55211621451876C5D3CBFC4BD5A4661EB085 Authority key identifier: 96:1A:52:A5:22:DE:B9:02:D9:CB:DD:E9:8A:F8:2B:42:44:22:F5:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/961A52A522DEB902D9CBDDE98AF82B424422F566.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cf72f012-a43a-4fcb-86a9-ab3e9573a8d9/0/3136302e32352e3132312e302f32342d3234203d3e20313533303632.roa Signing time: Sun 06 Oct 2024 07:08:35 +0000 ROA not before: Sun 06 Oct 2024 07:03:35 +0000 ROA not after: Sun 05 Oct 2025 07:08:35 +0000 asID: 153062 IP address blocks: 160.25.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cf72f012-a43a-4fcb-86a9-ab3e9573a8d9/0/961A52A522DEB902D9CBDDE98AF82B424422F566.crl rsync://repo-rpki.idnic.net/repo/cf72f012-a43a-4fcb-86a9-ab3e9573a8d9/0/961A52A522DEB902D9CBDDE98AF82B424422F566.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/961A52A522DEB902D9CBDDE98AF82B424422F566.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 08:43:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:9e:55:21:16:21:45:18:76:c5:d3:cb:fc:4b:d5:a4:66:1e:b0:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=961A52A522DEB902D9CBDDE98AF82B424422F566 Validity Not Before: Oct 6 07:03:35 2024 GMT Not After : Oct 5 07:08:35 2025 GMT Subject: CN=100D88299A689327EF58635AA1CFFF0297DA7E6C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ce:a8:85:62:a5:a8:42:be:83:d8:1e:55:3f: 1e:6b:8c:2a:01:09:c2:e5:04:2d:37:77:59:55:b9: d5:ce:92:d2:c0:ad:bc:fa:dd:a1:22:4a:cb:76:76: a0:d5:5c:a0:d0:f1:55:e9:a4:ba:af:ff:d7:f0:76: 8b:07:a4:38:a6:5f:99:b3:99:c0:c4:6a:3e:1a:4d: 93:51:22:b6:c0:57:59:e9:5c:c3:57:82:8c:e4:fe: 6f:4e:dc:91:ca:dc:3e:70:ce:dc:51:50:96:90:e3: 45:2c:a1:b9:91:6e:bc:30:34:69:a0:59:1b:79:c4: 63:b8:45:ce:d5:53:ab:05:44:bc:bd:b6:de:8c:92: 09:8c:38:2f:5a:64:8f:b1:bb:89:b5:c6:cf:ad:c9: 8e:60:a4:d4:47:57:00:ce:ac:37:49:26:f9:22:b0: 76:72:6d:c0:57:5c:da:11:8d:2b:36:f6:5d:7e:54: f5:45:ea:a9:c0:de:ce:c7:19:e5:f3:dc:37:f8:c8: b2:18:d0:22:45:0f:c0:b9:5c:30:1a:29:a8:8e:78: 77:36:40:c0:14:5c:46:10:d1:55:89:de:71:f2:03: f9:02:ac:40:fd:61:1a:d8:42:9f:4a:39:41:84:85: 9f:9b:23:5f:d3:2a:f8:e4:fb:0e:51:c1:07:8b:ba: 13:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:0D:88:29:9A:68:93:27:EF:58:63:5A:A1:CF:FF:02:97:DA:7E:6C X509v3 Authority Key Identifier: keyid:96:1A:52:A5:22:DE:B9:02:D9:CB:DD:E9:8A:F8:2B:42:44:22:F5:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cf72f012-a43a-4fcb-86a9-ab3e9573a8d9/0/961A52A522DEB902D9CBDDE98AF82B424422F566.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/961A52A522DEB902D9CBDDE98AF82B424422F566.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cf72f012-a43a-4fcb-86a9-ab3e9573a8d9/0/3136302e32352e3132312e302f32342d3234203d3e20313533303632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.121.0/24 Signature Algorithm: sha256WithRSAEncryption 46:63:9f:fd:d4:14:6a:9b:54:8a:7e:fb:8d:99:c1:80:8d:84: 7f:4d:14:0d:64:03:c7:1a:58:e7:9a:d6:97:8a:e1:a8:1e:58: dc:0c:17:82:38:7a:01:c2:9c:b0:3f:14:09:d4:a1:c6:40:ba: df:c3:5c:9f:70:d2:cd:24:06:20:54:78:49:04:2c:14:c6:1a: 2b:0b:b0:5f:47:e9:f2:c8:97:2d:8c:3f:d1:9f:d9:19:7e:48: 43:cd:ed:b7:f6:92:51:f5:c6:e2:0f:3a:a0:ee:2c:af:b1:98: 66:18:88:be:02:6e:80:1e:e7:97:ee:d3:af:4e:15:89:15:d5: 5d:dc:9c:61:c7:f1:3f:9f:1c:c6:f3:ac:33:cf:22:c7:74:44: 28:a6:76:45:29:6b:5c:17:81:d8:0a:48:19:80:8e:5e:c4:6a: de:e6:3d:39:3c:c5:01:8e:8c:ef:3e:74:a1:46:f1:ee:07:7c: 44:25:4b:b5:ab:8a:ec:9d:16:dc:76:5e:ab:d7:fd:02:fa:b9: f0:de:7e:70:73:17:c3:d2:5d:d5:ad:89:6f:bd:d0:23:e1:85: 36:dc:0f:ed:a7:cd:ed:4b:c9:81:7f:e5:8c:7f:42:a6:2b:c2: 3e:7a:82:dd:2c:27:24:a2:21:5b:52:da:be:38:46:94:32:e6: f1:f3:1a:c0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUI55VIRYhRRh2xdPL/EvVpGYesIUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTYxQTUyQTUyMkRFQjkwMkQ5Q0JEREU5OEFGODJCNDI0 NDIyRjU2NjAeFw0yNDEwMDYwNzAzMzVaFw0yNTEwMDUwNzA4MzVaMDMxMTAvBgNV BAMTKDEwMEQ4ODI5OUE2ODkzMjdFRjU4NjM1QUExQ0ZGRjAyOTdEQTdFNkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBzqiFYqWoQr6D2B5VPx5rjCoB CcLlBC03d1lVudXOktLArbz63aEiSst2dqDVXKDQ8VXppLqv/9fwdosHpDimX5mz mcDEaj4aTZNRIrbAV1npXMNXgozk/m9O3JHK3D5wztxRUJaQ40UsobmRbrwwNGmg WRt5xGO4Rc7VU6sFRLy9tt6MkgmMOC9aZI+xu4m1xs+tyY5gpNRHVwDOrDdJJvki sHZybcBXXNoRjSs29l1+VPVF6qnA3s7HGeXz3Df4yLIY0CJFD8C5XDAaKaiOeHc2 QMAUXEYQ0VWJ3nHyA/kCrED9YRrYQp9KOUGEhZ+bI1/TKvjk+w5RwQeLuhMxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUEA2IKZpokyfvWGNaoc//ApfafmwwHwYDVR0j BBgwFoAUlhpSpSLeuQLZy93pivgrQkQi9WYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZjcyZjAxMi1hNDNhLTRmY2ItODZhOS1hYjNlOTU3M2E4ZDkvMC85NjFBNTJBNTIy REVCOTAyRDlDQkRERTk4QUY4MkI0MjQ0MjJGNTY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTYxQTUyQTUyMkRFQjkwMkQ5Q0JEREU5OEFGODJCNDI0NDIy RjU2Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NmNzJmMDEyLWE0M2EtNGZjYi04 NmE5LWFiM2U5NTczYThkOS8wLzMxMzYzMDJlMzIzNTJlMzEzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzNjMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBl5MA0GCSqG SIb3DQEBCwUAA4IBAQBGY5/91BRqm1SKfvuNmcGAjYR/TRQNZAPHGljnmtaXiuGo HljcDBeCOHoBwpywPxQJ1KHGQLrfw1yfcNLNJAYgVHhJBCwUxhorC7BfR+nyyJct jD/Rn9kZfkhDze239pJR9cbiDzqg7iyvsZhmGIi+Am6AHueX7tOvThWJFdVd3Jxh x/E/nxzG86wzzyLHdEQopnZFKWtcF4HYCkgZgI5exGre5j05PMUBjozvPnShRvHu B3xEJUu1q4rsnRbcdl6r1/0C+rnw3n5wcxfD0l3VrYlvvdAj4YU23A/tp83tS8mB f+WMf0KmK8I+eoLdLCckoiFbUtq+OEaUMubx8xrA -----END CERTIFICATE-----Generated at Mon Nov 25 09:02:06 2024 by rpki-client on console-ams.rpki-client.org