$ rpki-client -vvf repo-rpki.idnic.net/repo/ec72ee3c-e180-4296-9dad-9500efd94890/0/3136302e32352e3137342e302f32342d3234203d3e20313533303733.roa File: 3136302e32352e3137342e302f32342d3234203d3e20313533303733.roa (raw, json) Hash identifier: UbbhlYQNDi6JszbpEsabaohj0lI6X/p1NOF16+0hgH0= Subject key identifier: 7D:15:A7:EE:86:8F:DA:FD:ED:3C:64:7D:D2:07:36:42:A0:74:4D:20 Certificate issuer: /CN=AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93 Certificate serial: 52798F4A9FCCBA59F64170C87C0BC5B0AD78ADCB Authority key identifier: AA:72:76:8F:DD:0C:61:5A:05:E4:A3:2A:06:F9:CC:B5:CA:7E:0D:93 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ec72ee3c-e180-4296-9dad-9500efd94890/0/3136302e32352e3137342e302f32342d3234203d3e20313533303733.roa Signing time: Fri 13 Dec 2024 16:21:45 +0000 ROA not before: Fri 13 Dec 2024 16:16:45 +0000 ROA not after: Fri 12 Dec 2025 16:21:45 +0000 asID: 153073 IP address blocks: 160.25.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ec72ee3c-e180-4296-9dad-9500efd94890/0/AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93.crl rsync://repo-rpki.idnic.net/repo/ec72ee3c-e180-4296-9dad-9500efd94890/0/AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 13:20:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:79:8f:4a:9f:cc:ba:59:f6:41:70:c8:7c:0b:c5:b0:ad:78:ad:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93 Validity Not Before: Dec 13 16:16:45 2024 GMT Not After : Dec 12 16:21:45 2025 GMT Subject: CN=7D15A7EE868FDAFDED3C647DD2073642A0744D20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:80:3a:72:f3:de:de:f3:4e:9c:4c:ff:53:26: 48:7b:1f:80:3b:c5:ed:90:bd:53:13:84:b0:5b:a3: 24:d0:54:13:42:c4:54:c6:61:fd:55:c8:ac:34:f4: a2:8a:2a:34:24:32:54:85:1e:24:e2:4c:52:ef:95: 56:95:cc:67:a0:37:00:07:10:8b:95:da:c6:8c:c8: 97:79:73:b3:c7:26:67:ef:15:cc:6f:bb:93:43:80: 1a:b5:d6:e0:ea:83:d4:e7:84:e6:71:fd:fe:b8:b1: df:90:af:eb:45:60:71:e8:30:16:4a:98:c2:63:ab: 7f:c6:08:dc:e5:0e:72:3e:12:6d:1b:0f:a2:51:ae: c1:aa:68:81:d5:24:8d:35:e2:f6:67:8d:4b:04:7f: 85:37:d0:14:12:48:ac:af:eb:89:40:2b:dc:a8:e8: c7:50:8e:2c:10:9e:19:8d:e4:85:23:5d:fd:5a:13: 16:8e:c3:6d:f7:02:fe:7a:71:2a:db:ed:8f:e1:4b: 0f:a4:47:a5:66:e1:8b:aa:85:75:69:12:a9:78:e3: 17:01:39:1b:bb:25:77:49:9c:66:f8:53:85:2e:5c: 48:5a:68:7f:a7:eb:2b:e4:7b:cb:8d:11:d1:41:c3: 67:0c:44:f0:e0:4f:77:7c:15:71:cc:30:cd:27:9f: f1:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:15:A7:EE:86:8F:DA:FD:ED:3C:64:7D:D2:07:36:42:A0:74:4D:20 X509v3 Authority Key Identifier: keyid:AA:72:76:8F:DD:0C:61:5A:05:E4:A3:2A:06:F9:CC:B5:CA:7E:0D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ec72ee3c-e180-4296-9dad-9500efd94890/0/AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec72ee3c-e180-4296-9dad-9500efd94890/0/3136302e32352e3137342e302f32342d3234203d3e20313533303733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.174.0/24 Signature Algorithm: sha256WithRSAEncryption 95:24:c0:0b:bf:c7:5b:51:3c:f4:92:06:42:d2:63:de:77:25: 83:09:54:9f:38:a8:31:8e:3c:5e:f5:8c:cb:ba:84:4e:64:72: d9:a5:e3:9a:af:c9:14:d9:1a:20:f3:03:71:bb:f3:de:ae:0c: f5:6a:03:e5:f9:c9:1d:b9:f0:96:b6:cc:ed:71:90:f7:ce:38: 00:49:05:56:ab:78:69:21:02:2c:80:e8:29:a8:b7:a4:22:fd: 86:76:68:1f:c1:8a:aa:37:11:84:92:64:e6:a8:bb:6c:28:ab: 44:fd:db:fe:de:cb:9f:fd:b4:c5:5b:98:b0:7f:d8:40:8c:57: 38:6d:b7:f2:36:a6:5e:b8:dd:52:ec:17:07:45:10:22:c3:be: 99:8c:36:32:a9:27:d2:f0:07:2c:ab:d8:24:71:b0:18:de:c9: ea:ab:04:38:63:f6:90:8c:bc:f1:0e:ec:58:75:21:23:f2:b7: 64:31:29:1c:2b:15:2a:f8:23:ff:ba:e6:09:21:0c:72:33:54: b3:38:27:85:12:b0:4a:9e:7e:16:4f:5d:be:8d:86:3b:f6:61: c2:19:60:5d:32:ca:f9:f1:f5:d4:88:cb:e8:31:b9:1e:98:41: a3:e3:06:2f:ee:a7:d7:3f:ed:22:e9:51:14:11:7f:d9:5b:59: 55:fb:b2:9f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUnmPSp/Muln2QXDIfAvFsK14rcswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUE3Mjc2OEZERDBDNjE1QTA1RTRBMzJBMDZGOUNDQjVD QTdFMEQ5MzAeFw0yNDEyMTMxNjE2NDVaFw0yNTEyMTIxNjIxNDVaMDMxMTAvBgNV BAMTKDdEMTVBN0VFODY4RkRBRkRFRDNDNjQ3REQyMDczNjQyQTA3NDREMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClgDpy897e806cTP9TJkh7H4A7 xe2QvVMThLBboyTQVBNCxFTGYf1VyKw09KKKKjQkMlSFHiTiTFLvlVaVzGegNwAH EIuV2saMyJd5c7PHJmfvFcxvu5NDgBq11uDqg9TnhOZx/f64sd+Qr+tFYHHoMBZK mMJjq3/GCNzlDnI+Em0bD6JRrsGqaIHVJI014vZnjUsEf4U30BQSSKyv64lAK9yo 6MdQjiwQnhmN5IUjXf1aExaOw233Av56cSrb7Y/hSw+kR6Vm4YuqhXVpEql44xcB ORu7JXdJnGb4U4UuXEhaaH+n6yvke8uNEdFBw2cMRPDgT3d8FXHMMM0nn/ERAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUfRWn7oaP2v3tPGR90gc2QqB0TSAwHwYDVR0j BBgwFoAUqnJ2j90MYVoF5KMqBvnMtcp+DZMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YzcyZWUzYy1lMTgwLTQyOTYtOWRhZC05NTAwZWZkOTQ4OTAvMC9BQTcyNzY4RkRE MEM2MTVBMDVFNEEzMkEwNkY5Q0NCNUNBN0UwRDkzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQUE3Mjc2OEZERDBDNjE1QTA1RTRBMzJBMDZGOUNDQjVDQTdF MEQ5My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VjNzJlZTNjLWUxODAtNDI5Ni05 ZGFkLTk1MDBlZmQ5NDg5MC8wLzMxMzYzMDJlMzIzNTJlMzEzNzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBmuMA0GCSqG SIb3DQEBCwUAA4IBAQCVJMALv8dbUTz0kgZC0mPedyWDCVSfOKgxjjxe9YzLuoRO ZHLZpeOar8kU2Rog8wNxu/Pergz1agPl+ckdufCWtsztcZD3zjgASQVWq3hpIQIs gOgpqLekIv2GdmgfwYqqNxGEkmTmqLtsKKtE/dv+3suf/bTFW5iwf9hAjFc4bbfy NqZeuN1S7BcHRRAiw76ZjDYyqSfS8Acsq9gkcbAY3snqqwQ4Y/aQjLzxDuxYdSEj 8rdkMSkcKxUq+CP/uuYJIQxyM1SzOCeFErBKnn4WT12+jYY79mHCGWBdMsr58fXU iMvoMbkemEGj4wYv7qfXP+0i6VEUEX/ZW1lV+7Kf -----END CERTIFICATE-----Generated at Fri Apr 18 01:55:19 2025 by rpki-client