$ rpki-client -vvf repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3133372e35392e3136302e302f32322d3234203d3e203539323831.roa File: 3133372e35392e3136302e302f32322d3234203d3e203539323831.roa (raw, json) Hash identifier: FohL5yhjNgu5mq3paOZdCwwUNPxRA7TL9CfuDH1UJdg= Subject key identifier: 6E:6B:04:D4:4A:FE:25:63:2A:A8:60:4F:27:10:85:68:BE:AD:6A:09 Certificate issuer: /CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Certificate serial: 0A2D6305EF63C5C2DA8798F23D637AA4A126743D Authority key identifier: 84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3133372e35392e3136302e302f32322d3234203d3e203539323831.roa Signing time: Mon 29 Jan 2024 08:19:44 +0000 ROA not before: Mon 29 Jan 2024 08:14:44 +0000 ROA not after: Mon 27 Jan 2025 08:19:44 +0000 asID: 59281 IP address blocks: 137.59.160.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:2d:63:05:ef:63:c5:c2:da:87:98:f2:3d:63:7a:a4:a1:26:74:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Validity Not Before: Jan 29 08:14:44 2024 GMT Not After : Jan 27 08:19:44 2025 GMT Subject: CN=6E6B04D44AFE25632AA8604F27108568BEAD6A09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:59:73:8a:7f:82:ea:a3:c7:42:4a:1f:6e:55: 91:96:2a:8d:f1:69:06:aa:2c:d8:a1:8b:45:7c:fe: ac:83:8b:2f:40:63:69:05:d6:92:a2:36:38:2e:d8: 92:8e:ff:02:78:26:50:9f:97:0d:6e:7f:fb:36:f4: 8e:91:f9:9b:2d:8a:5d:43:fb:c0:69:d1:db:c0:75: 5e:74:c4:c8:91:60:7a:49:d6:75:85:00:aa:a0:a8: 23:a9:dd:29:ce:4f:43:b3:3b:f7:76:28:c1:58:bd: 81:f5:31:60:7e:70:a8:c5:93:47:7a:75:7b:47:2f: be:db:19:1b:49:2d:7e:6f:db:af:52:bc:3d:70:54: 93:92:53:73:73:85:1a:d2:c9:2a:d6:41:0d:06:de: aa:62:c7:18:da:e4:f0:d1:0f:e5:8e:c7:80:cb:9b: 0e:ca:3d:d7:d7:04:58:4b:3f:7b:42:89:56:6f:8a: c0:22:d0:33:e1:2e:77:a6:6a:1c:56:84:ae:72:be: 59:76:dc:d4:52:d7:e3:b9:e8:8b:e0:7f:07:b4:78: 8e:24:5b:28:e0:0d:98:bd:99:25:7d:fb:b4:1f:8a: e9:4d:10:68:5f:f0:ee:0b:c2:45:61:f3:2a:1b:e1: 0c:64:ab:ae:a7:7d:38:b6:d5:8f:cc:9a:54:12:46: 5b:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:6B:04:D4:4A:FE:25:63:2A:A8:60:4F:27:10:85:68:BE:AD:6A:09 X509v3 Authority Key Identifier: keyid:84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3133372e35392e3136302e302f32322d3234203d3e203539323831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 137.59.160.0/22 Signature Algorithm: sha256WithRSAEncryption c8:6d:31:1b:fe:00:d4:e8:4c:97:c0:f8:00:2d:b3:7e:67:bf: 70:dd:8e:db:9e:74:29:d8:ec:a3:37:41:f4:af:be:41:83:60: 6b:e5:94:51:34:d5:2d:06:37:a5:0a:9b:cb:42:f0:80:26:c0: 6a:8f:74:1d:26:9d:be:32:5a:a5:11:b4:f1:30:07:de:f6:eb: 83:32:ca:3a:fe:95:96:82:be:de:18:7a:e3:8e:83:45:80:9d: 01:25:f1:bf:82:b7:a5:e2:28:7b:21:ba:c4:10:cf:d4:e6:8d: b8:ca:43:fd:28:1a:5a:cf:8f:f1:7c:bb:03:f8:a6:20:1d:84: 49:f6:77:22:9d:de:13:7f:14:fd:83:cb:ff:fa:73:78:8e:a7: 57:cf:8d:d6:a5:91:dc:87:14:9a:93:96:a9:37:73:6e:a0:30: a1:4c:0f:a1:56:50:44:d7:83:f5:39:84:cb:fe:7f:d1:b1:75: 40:cb:7d:cc:7e:1e:ad:93:c1:31:27:03:06:e7:e2:9f:d7:65: 2c:3e:d0:65:9e:8e:9d:56:5a:81:4f:24:84:3a:69:c7:b7:b4: 09:07:6e:fe:0e:87:e1:68:e5:de:8d:f8:b0:7f:e9:03:b2:1b: 28:2f:b4:4b:ce:11:b5:39:6f:32:6f:43:7c:26:19:33:aa:69: 8a:c7:8d:0b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCi1jBe9jxcLah5jyPWN6pKEmdD0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0 ODUzMEU5RTAeFw0yNDAxMjkwODE0NDRaFw0yNTAxMjcwODE5NDRaMDMxMTAvBgNV BAMTKDZFNkIwNEQ0NEFGRTI1NjMyQUE4NjA0RjI3MTA4NTY4QkVBRDZBMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEWXOKf4Lqo8dCSh9uVZGWKo3x aQaqLNihi0V8/qyDiy9AY2kF1pKiNjgu2JKO/wJ4JlCflw1uf/s29I6R+Zstil1D +8Bp0dvAdV50xMiRYHpJ1nWFAKqgqCOp3SnOT0OzO/d2KMFYvYH1MWB+cKjFk0d6 dXtHL77bGRtJLX5v269SvD1wVJOSU3NzhRrSySrWQQ0G3qpixxja5PDRD+WOx4DL mw7KPdfXBFhLP3tCiVZvisAi0DPhLnemahxWhK5yvll23NRS1+O56Ivgfwe0eI4k WyjgDZi9mSV9+7QfiulNEGhf8O4LwkVh8yob4Qxkq66nfTi21Y/MmlQSRltbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUbmsE1Er+JWMqqGBPJxCFaL6tagkwHwYDVR0j BBgwFoAUhGmHSuJo4s1OmhN+3VWZx0hTDp4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2EyZDI1Yi1jYjE4LTQ1YmUtOWZhMS0xNTRjYTE1NzkyMjMvMC84NDY5ODc0QUUy NjhFMkNENEU5QTEzN0VERDU1OTlDNzQ4NTMwRTlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0ODUz MEU5RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3YTJkMjViLWNiMTgtNDViZS05 ZmExLTE1NGNhMTU3OTIyMy8wLzMxMzMzNzJlMzUzOTJlMzEzNjMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzOTMyMzgzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAok7oDANBgkqhkiG 9w0BAQsFAAOCAQEAyG0xG/4A1OhMl8D4AC2zfme/cN2O2550KdjsozdB9K++QYNg a+WUUTTVLQY3pQqby0LwgCbAao90HSadvjJapRG08TAH3vbrgzLKOv6VloK+3hh6 446DRYCdASXxv4K3peIoeyG6xBDP1OaNuMpD/SgaWs+P8Xy7A/imIB2ESfZ3Ip3e E38U/YPL//pzeI6nV8+N1qWR3IcUmpOWqTdzbqAwoUwPoVZQRNeD9TmEy/5/0bF1 QMt9zH4erZPBMScDBufin9dlLD7QZZ6OnVZagU8khDppx7e0CQdu/g6H4Wjl3o34 sH/pA7IbKC+0S84RtTlvMm9DfCYZM6ppiseNCw== -----END CERTIFICATE-----Generated at Fri Nov 22 08:00:08 2024 by rpki-client on console-ams.rpki-client.org