$ rpki-client -vvf repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3133372e35392e3136302e302f32322d3234203d3e203539323831.roa File: 3133372e35392e3136302e302f32322d3234203d3e203539323831.roa (raw, json) Hash identifier: t5dSILf0M9LETh0ONTCtPeHbE5Gq+eulQJzX449lTa8= Subject key identifier: 78:80:C4:D8:98:F1:FA:63:D7:F5:7E:20:5E:F1:2E:99:50:C0:7A:A7 Certificate issuer: /CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Certificate serial: 013B34B6723ECC2C9AB66AD79099C2D57E809F00 Authority key identifier: 84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3133372e35392e3136302e302f32322d3234203d3e203539323831.roa Signing time: Mon 30 Dec 2024 09:00:00 +0000 ROA not before: Mon 30 Dec 2024 08:55:00 +0000 ROA not after: Mon 29 Dec 2025 09:00:00 +0000 asID: 59281 IP address blocks: 137.59.160.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 15:43:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:3b:34:b6:72:3e:cc:2c:9a:b6:6a:d7:90:99:c2:d5:7e:80:9f:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Validity Not Before: Dec 30 08:55:00 2024 GMT Not After : Dec 29 09:00:00 2025 GMT Subject: CN=7880C4D898F1FA63D7F57E205EF12E9950C07AA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:bb:a0:a2:30:45:48:25:28:a4:98:6e:97:74: 36:50:e4:7d:2e:1b:eb:2c:72:e3:5a:a9:b1:b7:ca: 70:96:6e:35:74:47:1f:9f:fb:fb:e1:c1:20:d6:d5: d9:40:a9:1e:2a:3f:1f:33:b9:2a:71:0e:4b:93:46: ab:cd:8d:db:1f:2d:47:9b:d1:91:51:51:f8:e3:4a: d8:d8:50:04:18:08:b3:d8:89:4d:6e:cb:2e:76:c0: 5d:97:49:87:f2:c6:9b:f2:77:96:d4:10:73:22:8b: 1e:83:f8:fa:75:05:03:d5:f8:ba:38:29:20:62:53: bc:0d:0c:e1:0d:6d:62:cf:e6:3a:93:3b:e5:16:cd: 56:d6:ca:ca:42:21:4d:af:d1:05:57:ca:7c:91:31: 1c:d9:5a:11:fb:92:1b:bc:13:df:10:6c:30:6a:5a: c7:d7:85:36:9b:af:18:6f:49:4a:c2:2f:e5:03:67: 33:8c:d7:76:b9:74:83:3e:3b:e2:d1:3d:01:36:68: 93:86:55:f2:41:70:29:13:91:71:47:f8:da:0b:b1: 3b:26:b3:4c:13:53:ab:c5:37:49:96:c8:cb:74:f2: 5e:39:bf:55:4b:0a:66:e7:66:7b:4c:8c:45:81:b9: d4:1f:09:62:10:bb:cf:0b:67:41:1b:aa:f8:15:be: fd:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:80:C4:D8:98:F1:FA:63:D7:F5:7E:20:5E:F1:2E:99:50:C0:7A:A7 X509v3 Authority Key Identifier: keyid:84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3133372e35392e3136302e302f32322d3234203d3e203539323831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 137.59.160.0/22 Signature Algorithm: sha256WithRSAEncryption 42:4b:0a:d2:be:b4:9e:9f:dd:7e:9f:ea:b6:47:96:9b:05:5b: 62:cd:e8:31:ba:9e:de:ae:e0:c4:c2:37:2e:0b:b9:aa:78:75: eb:87:06:1e:53:c0:d5:f2:f0:96:b0:74:e8:c5:ab:b8:7f:db: 39:62:9d:7d:5a:19:f1:f3:85:2a:0a:aa:a3:ab:f0:7e:38:f5: 94:d9:e7:62:4a:62:58:7b:95:43:7b:80:1d:7d:42:c1:53:d5: ac:0d:2e:6f:17:80:40:2f:7d:2d:9f:1b:53:bb:f0:05:99:29: 95:c4:3c:bb:ca:4c:ce:45:6a:0a:0c:32:a1:ac:11:7c:76:45: c2:16:22:ce:47:b2:7d:f8:ff:9f:fa:f2:f9:be:f2:62:66:78: 5b:9e:e0:79:e5:eb:68:92:44:d8:72:20:1a:e9:cb:7c:8e:69: ce:8e:6b:5f:19:27:48:df:92:1d:8a:da:b5:ee:88:29:43:62: ff:c7:ee:54:bb:85:fd:1f:d7:9b:54:c5:7c:57:90:d3:27:31: 2a:b4:84:7c:d9:a4:de:d1:a9:d6:38:3d:f5:44:b9:d7:ca:cd: f6:77:86:e3:74:6f:9f:97:df:27:30:19:c2:cf:34:47:d0:b1: 1e:2f:f3:55:61:a9:5b:9d:cc:c4:29:e3:fa:fe:ba:f1:84:1f: 18:69:c5:bb -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUATs0tnI+zCyatmrXkJnC1X6AnwAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0 ODUzMEU5RTAeFw0yNDEyMzAwODU1MDBaFw0yNTEyMjkwOTAwMDBaMDMxMTAvBgNV BAMTKDc4ODBDNEQ4OThGMUZBNjNEN0Y1N0UyMDVFRjEyRTk5NTBDMDdBQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCu6CiMEVIJSikmG6XdDZQ5H0u G+sscuNaqbG3ynCWbjV0Rx+f+/vhwSDW1dlAqR4qPx8zuSpxDkuTRqvNjdsfLUeb 0ZFRUfjjStjYUAQYCLPYiU1uyy52wF2XSYfyxpvyd5bUEHMiix6D+Pp1BQPV+Lo4 KSBiU7wNDOENbWLP5jqTO+UWzVbWyspCIU2v0QVXynyRMRzZWhH7khu8E98QbDBq WsfXhTabrxhvSUrCL+UDZzOM13a5dIM+O+LRPQE2aJOGVfJBcCkTkXFH+NoLsTsm s0wTU6vFN0mWyMt08l45v1VLCmbnZntMjEWBudQfCWIQu88LZ0EbqvgVvv2DAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUeIDE2Jjx+mPX9X4gXvEumVDAeqcwHwYDVR0j BBgwFoAUhGmHSuJo4s1OmhN+3VWZx0hTDp4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2EyZDI1Yi1jYjE4LTQ1YmUtOWZhMS0xNTRjYTE1NzkyMjMvMC84NDY5ODc0QUUy NjhFMkNENEU5QTEzN0VERDU1OTlDNzQ4NTMwRTlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0ODUz MEU5RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3YTJkMjViLWNiMTgtNDViZS05 ZmExLTE1NGNhMTU3OTIyMy8wLzMxMzMzNzJlMzUzOTJlMzEzNjMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzOTMyMzgzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAok7oDANBgkqhkiG 9w0BAQsFAAOCAQEAQksK0r60np/dfp/qtkeWmwVbYs3oMbqe3q7gxMI3Lgu5qnh1 64cGHlPA1fLwlrB06MWruH/bOWKdfVoZ8fOFKgqqo6vwfjj1lNnnYkpiWHuVQ3uA HX1CwVPVrA0ubxeAQC99LZ8bU7vwBZkplcQ8u8pMzkVqCgwyoawRfHZFwhYizkey ffj/n/ry+b7yYmZ4W57geeXraJJE2HIgGunLfI5pzo5rXxknSN+SHYrate6IKUNi /8fuVLuF/R/Xm1TFfFeQ0ycxKrSEfNmk3tGp1jg99US518rN9neG43Rvn5ffJzAZ ws80R9CxHi/zVWGpW53MxCnj+v668YQfGGnFuw== -----END CERTIFICATE-----Generated at Fri Apr 11 21:29:56 2025 by rpki-client