$ rpki-client -vvf repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3133372e35392e3136312e302f32342d3234203d3e203536323432.roa File: 3133372e35392e3136312e302f32342d3234203d3e203536323432.roa (raw, json) Hash identifier: Wb0IX2AKVYqw0WQT9sMcOETd5yYJEprT3xxqs/JF81E= Subject key identifier: 9F:EB:D9:5A:01:0E:30:BE:A3:28:15:78:CA:19:E8:34:89:29:9F:90 Certificate issuer: /CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Certificate serial: 026280F08C21E47871BEAC380608CD2B1417F98D Authority key identifier: 84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3133372e35392e3136312e302f32342d3234203d3e203536323432.roa Signing time: Sat 10 Feb 2024 07:00:00 +0000 ROA not before: Sat 10 Feb 2024 06:55:00 +0000 ROA not after: Sat 08 Feb 2025 07:00:00 +0000 asID: 56242 IP address blocks: 137.59.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 06:31:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:62:80:f0:8c:21:e4:78:71:be:ac:38:06:08:cd:2b:14:17:f9:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Validity Not Before: Feb 10 06:55:00 2024 GMT Not After : Feb 8 07:00:00 2025 GMT Subject: CN=9FEBD95A010E30BEA3281578CA19E83489299F90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:69:ed:10:71:2d:79:8f:82:48:42:7d:e6:6b: 40:fc:ee:ea:0a:cb:fb:9d:62:f9:81:1d:a2:d8:bb: 8b:ea:21:58:18:77:7e:d4:8e:7e:27:4f:e0:c9:d6: 75:9c:a5:ed:61:b8:85:8c:08:c0:56:f5:71:d8:b6: 60:da:3e:69:bc:bf:61:eb:57:a5:30:b3:dd:61:dc: c6:3b:61:73:85:fb:af:4a:56:32:5c:49:ff:bd:70: ab:43:18:8f:90:21:20:66:ee:20:aa:07:f4:80:1b: 50:aa:49:69:a4:14:1b:89:16:12:88:9b:98:a4:34: 06:b0:ed:36:da:7b:27:75:a4:9c:44:55:24:d0:3a: 55:39:af:8f:0f:a8:a9:71:8d:e8:a1:26:f0:32:13: 6e:94:a0:c4:bf:77:bf:dc:f2:21:64:6e:55:59:2a: fe:91:48:c1:18:9b:8a:56:c2:b4:4e:98:ee:ea:23: a4:07:52:aa:75:dd:b5:3b:7b:21:6d:23:1f:57:81: 49:09:27:b4:b5:89:76:93:f8:a6:1f:b9:6f:c1:69: f0:dd:bc:44:d8:62:d3:6c:cb:08:b5:03:77:8b:40: cf:72:5e:5b:c2:ba:3c:62:f1:ba:3b:61:58:91:8c: 96:1a:8f:f0:4d:db:59:4b:55:ba:97:bf:d9:d9:02: f7:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:EB:D9:5A:01:0E:30:BE:A3:28:15:78:CA:19:E8:34:89:29:9F:90 X509v3 Authority Key Identifier: keyid:84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3133372e35392e3136312e302f32342d3234203d3e203536323432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 137.59.161.0/24 Signature Algorithm: sha256WithRSAEncryption 19:22:95:bd:4f:bb:73:6c:c2:cf:1d:c0:dc:3a:1a:2f:93:cb: e7:f5:c3:6f:22:d5:11:ed:ed:b9:f2:40:0d:84:96:54:5d:ca: 17:f6:5c:50:75:d3:97:33:1b:60:2f:6d:7b:41:99:c5:6b:63: 39:9e:44:47:b1:16:52:33:21:90:aa:c6:5b:df:38:0c:42:b3: 56:9f:53:1e:eb:f7:17:62:95:ff:ed:37:bf:20:78:d0:ce:6c: f4:44:c0:a6:16:b7:64:89:a9:08:04:c4:3c:39:f2:0b:d2:6c: 01:62:63:1c:e7:f7:5e:83:f2:08:05:ed:15:ca:90:66:a9:6d: 94:e6:77:8f:5b:45:e1:37:fa:8a:6e:db:88:bd:9e:34:2f:49: c2:ce:fa:82:87:7d:64:c9:14:79:bd:a0:a5:85:f2:ff:cb:6c: 9e:d2:70:af:c7:ca:44:c8:57:aa:72:3a:df:36:83:de:80:39: b6:e8:9d:35:f2:fa:fe:82:34:c3:00:ef:ec:43:12:d4:a0:40: 97:97:e3:13:fd:e7:5c:c3:3b:40:c3:db:17:9c:91:a7:5c:58: fb:ff:ac:8a:5c:07:e6:c5:2e:31:1f:fc:52:26:a0:4b:91:4c: e1:a8:47:b8:a7:ef:75:76:31:86:50:73:26:88:56:fe:88:85: 5c:11:cb:ab -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAmKA8Iwh5Hhxvqw4BgjNKxQX+Y0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0 ODUzMEU5RTAeFw0yNDAyMTAwNjU1MDBaFw0yNTAyMDgwNzAwMDBaMDMxMTAvBgNV BAMTKDlGRUJEOTVBMDEwRTMwQkVBMzI4MTU3OENBMTlFODM0ODkyOTlGOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpae0QcS15j4JIQn3ma0D87uoK y/udYvmBHaLYu4vqIVgYd37Ujn4nT+DJ1nWcpe1huIWMCMBW9XHYtmDaPmm8v2Hr V6Uws91h3MY7YXOF+69KVjJcSf+9cKtDGI+QISBm7iCqB/SAG1CqSWmkFBuJFhKI m5ikNAaw7Tbaeyd1pJxEVSTQOlU5r48PqKlxjeihJvAyE26UoMS/d7/c8iFkblVZ Kv6RSMEYm4pWwrROmO7qI6QHUqp13bU7eyFtIx9XgUkJJ7S1iXaT+KYfuW/BafDd vETYYtNsywi1A3eLQM9yXlvCujxi8bo7YViRjJYaj/BN21lLVbqXv9nZAvchAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUn+vZWgEOML6jKBV4yhnoNIkpn5AwHwYDVR0j BBgwFoAUhGmHSuJo4s1OmhN+3VWZx0hTDp4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2EyZDI1Yi1jYjE4LTQ1YmUtOWZhMS0xNTRjYTE1NzkyMjMvMC84NDY5ODc0QUUy NjhFMkNENEU5QTEzN0VERDU1OTlDNzQ4NTMwRTlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0ODUz MEU5RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3YTJkMjViLWNiMTgtNDViZS05 ZmExLTE1NGNhMTU3OTIyMy8wLzMxMzMzNzJlMzUzOTJlMzEzNjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAIk7oTANBgkqhkiG 9w0BAQsFAAOCAQEAGSKVvU+7c2zCzx3A3DoaL5PL5/XDbyLVEe3tufJADYSWVF3K F/ZcUHXTlzMbYC9te0GZxWtjOZ5ER7EWUjMhkKrGW984DEKzVp9THuv3F2KV/+03 vyB40M5s9ETApha3ZImpCATEPDnyC9JsAWJjHOf3XoPyCAXtFcqQZqltlOZ3j1tF 4Tf6im7biL2eNC9Jws76god9ZMkUeb2gpYXy/8tsntJwr8fKRMhXqnI63zaD3oA5 tuidNfL6/oI0wwDv7EMS1KBAl5fjE/3nXMM7QMPbF5yRp1xY+/+silwH5sUuMR/8 UiagS5FM4ahHuKfvdXYxhlBzJohW/oiFXBHLqw== -----END CERTIFICATE-----Generated at Wed May 1 02:06:09 2024 by rpki-client on console-fra.rpki-client.org