$ rpki-client -vvf repo-rpki.idnic.net/repo/dec2a1ac-5ae4-47ad-8db1-652c7f3f7e8f/0/3136302e32352e3233362e302f32332d3234203d3e20313533313035.roa File: 3136302e32352e3233362e302f32332d3234203d3e20313533313035.roa (raw, json) Hash identifier: lWon/bpPDruvghAxoP8snJ5P79Rkgid1TXsqKBojJB4= Subject key identifier: 0C:1B:A7:04:D1:5F:5F:F6:CC:6B:11:27:F1:80:A3:53:1E:F9:BB:FF Certificate issuer: /CN=469F8799C9283F6AFAB227A7A8E070D32DC1E876 Certificate serial: 5CFCE0012C5719ACBB8D737CE9B22394F1EEAB20 Authority key identifier: 46:9F:87:99:C9:28:3F:6A:FA:B2:27:A7:A8:E0:70:D3:2D:C1:E8:76 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/469F8799C9283F6AFAB227A7A8E070D32DC1E876.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dec2a1ac-5ae4-47ad-8db1-652c7f3f7e8f/0/3136302e32352e3233362e302f32332d3234203d3e20313533313035.roa Signing time: Fri 16 Aug 2024 07:16:23 +0000 ROA not before: Fri 16 Aug 2024 07:11:23 +0000 ROA not after: Fri 15 Aug 2025 07:16:23 +0000 asID: 153105 IP address blocks: 160.25.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dec2a1ac-5ae4-47ad-8db1-652c7f3f7e8f/0/469F8799C9283F6AFAB227A7A8E070D32DC1E876.crl rsync://repo-rpki.idnic.net/repo/dec2a1ac-5ae4-47ad-8db1-652c7f3f7e8f/0/469F8799C9283F6AFAB227A7A8E070D32DC1E876.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/469F8799C9283F6AFAB227A7A8E070D32DC1E876.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 19:02:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:fc:e0:01:2c:57:19:ac:bb:8d:73:7c:e9:b2:23:94:f1:ee:ab:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=469F8799C9283F6AFAB227A7A8E070D32DC1E876 Validity Not Before: Aug 16 07:11:23 2024 GMT Not After : Aug 15 07:16:23 2025 GMT Subject: CN=0C1BA704D15F5FF6CC6B1127F180A3531EF9BBFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:6c:8b:28:c9:1f:ad:d7:d3:2e:80:7c:b7:2c: eb:6c:58:bd:b9:a1:82:a9:2d:01:f0:4f:e2:d1:e4: cb:8d:43:70:3f:96:81:de:04:fb:31:5e:92:8c:d1: c0:0e:9f:a0:68:5c:f7:19:46:e9:76:04:de:78:3e: 33:80:94:b2:49:b7:33:2a:db:2c:18:70:73:db:e0: 8c:45:7f:8b:cb:b8:e0:75:23:8c:80:13:90:d5:38: ef:fd:ed:e8:4a:b5:a4:26:30:cd:5d:99:16:14:b6: 40:34:a5:16:90:0f:37:b8:d7:29:ef:dc:c7:ed:6b: b2:42:4e:10:ef:f0:de:ff:b9:30:f9:1f:1e:de:0c: 9c:89:7b:d3:6c:0f:1f:8c:f7:31:67:40:7d:28:4a: 93:7d:85:3a:b9:63:cd:99:ff:14:7e:68:71:3e:96: 1c:8d:d2:9c:fe:7f:f7:8e:3a:e1:5e:c3:a8:2c:f0: d2:22:1c:8c:cc:55:84:fa:f8:90:fa:c6:a1:37:10: bd:65:6d:e8:9a:28:25:7b:15:5d:9c:49:14:f3:7e: 99:a1:df:dd:88:7f:71:28:fd:39:3e:17:c7:d5:a4: 6a:bc:7d:89:63:1e:76:cc:3e:9e:da:a1:f5:ae:ef: f8:64:8a:7a:90:75:3d:5d:5f:40:9d:59:cc:e6:7f: 12:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:1B:A7:04:D1:5F:5F:F6:CC:6B:11:27:F1:80:A3:53:1E:F9:BB:FF X509v3 Authority Key Identifier: keyid:46:9F:87:99:C9:28:3F:6A:FA:B2:27:A7:A8:E0:70:D3:2D:C1:E8:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dec2a1ac-5ae4-47ad-8db1-652c7f3f7e8f/0/469F8799C9283F6AFAB227A7A8E070D32DC1E876.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/469F8799C9283F6AFAB227A7A8E070D32DC1E876.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dec2a1ac-5ae4-47ad-8db1-652c7f3f7e8f/0/3136302e32352e3233362e302f32332d3234203d3e20313533313035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.236.0/23 Signature Algorithm: sha256WithRSAEncryption cb:1a:dc:25:56:dc:2d:1d:1d:0e:82:b2:c7:bf:f2:b2:11:b0: 60:a9:4a:77:49:ee:24:49:3c:86:39:c6:17:c4:e2:bc:1b:25: 42:d0:38:83:fe:ee:7d:87:ce:ad:94:21:6e:8c:8d:cc:7c:e2: 72:c7:5e:9e:9e:af:3f:2d:47:2a:ce:be:84:e0:1b:60:7b:d2: 8e:aa:be:09:16:da:d2:ec:79:72:93:14:ad:ed:41:75:4f:ca: 2c:8a:78:70:44:58:0c:cb:d9:4b:6b:54:d9:94:d2:45:a4:cb: 8b:98:2f:fd:a1:ee:49:a2:61:ea:45:29:2f:de:82:21:5e:a3: 6e:26:2a:38:aa:54:83:03:d0:8b:2f:5c:68:a9:fd:a6:25:18: e9:61:8e:f4:cf:72:e5:cc:74:fc:e4:ee:e7:65:36:7b:55:79: ca:25:4e:94:66:31:35:04:4b:34:5c:4b:1f:ae:3e:de:b6:41: 4f:5d:d3:d6:bb:a1:e7:e2:47:d4:a5:52:39:f9:97:58:63:51: d0:7e:9d:d7:51:50:7d:39:04:3d:b8:9b:df:ea:1a:be:b8:81: 47:17:02:75:5d:3c:81:58:a8:f2:53:40:9f:c5:a1:27:d8:45: d3:77:fc:50:48:ad:3f:65:b3:d6:59:ea:02:5e:ac:15:db:85: 3b:9d:f3:46 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXPzgASxXGay7jXN86bIjlPHuqyAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDY5Rjg3OTlDOTI4M0Y2QUZBQjIyN0E3QThFMDcwRDMy REMxRTg3NjAeFw0yNDA4MTYwNzExMjNaFw0yNTA4MTUwNzE2MjNaMDMxMTAvBgNV BAMTKDBDMUJBNzA0RDE1RjVGRjZDQzZCMTEyN0YxODBBMzUzMUVGOUJCRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzbIsoyR+t19MugHy3LOtsWL25 oYKpLQHwT+LR5MuNQ3A/loHeBPsxXpKM0cAOn6BoXPcZRul2BN54PjOAlLJJtzMq 2ywYcHPb4IxFf4vLuOB1I4yAE5DVOO/97ehKtaQmMM1dmRYUtkA0pRaQDze41ynv 3Mfta7JCThDv8N7/uTD5Hx7eDJyJe9NsDx+M9zFnQH0oSpN9hTq5Y82Z/xR+aHE+ lhyN0pz+f/eOOuFew6gs8NIiHIzMVYT6+JD6xqE3EL1lbeiaKCV7FV2cSRTzfpmh 392If3Eo/Tk+F8fVpGq8fYljHnbMPp7aofWu7/hkinqQdT1dX0CdWczmfxKrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDBunBNFfX/bMaxEn8YCjUx75u/8wHwYDVR0j BBgwFoAURp+HmckoP2r6sienqOBw0y3B6HYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZWMyYTFhYy01YWU0LTQ3YWQtOGRiMS02NTJjN2YzZjdlOGYvMC80NjlGODc5OUM5 MjgzRjZBRkFCMjI3QTdBOEUwNzBEMzJEQzFFODc2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDY5Rjg3OTlDOTI4M0Y2QUZBQjIyN0E3QThFMDcwRDMyREMx RTg3Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RlYzJhMWFjLTVhZTQtNDdhZC04 ZGIxLTY1MmM3ZjNmN2U4Zi8wLzMxMzYzMDJlMzIzNTJlMzIzMzM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMzMzEzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBnsMA0GCSqG SIb3DQEBCwUAA4IBAQDLGtwlVtwtHR0OgrLHv/KyEbBgqUp3Se4kSTyGOcYXxOK8 GyVC0DiD/u59h86tlCFujI3MfOJyx16enq8/LUcqzr6E4Btge9KOqr4JFtrS7Hly kxSt7UF1T8osinhwRFgMy9lLa1TZlNJFpMuLmC/9oe5JomHqRSkv3oIhXqNuJio4 qlSDA9CLL1xoqf2mJRjpYY70z3LlzHT85O7nZTZ7VXnKJU6UZjE1BEs0XEsfrj7e tkFPXdPWu6Hn4kfUpVI5+ZdYY1HQfp3XUVB9OQQ9uJvf6hq+uIFHFwJ1XTyBWKjy U0CfxaEn2EXTd/xQSK0/ZbPWWeoCXqwV24U7nfNG -----END CERTIFICATE-----Generated at Tue Nov 26 02:25:09 2024 by rpki-client on console-ams.rpki-client.org