$ rpki-client -vvf repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3133372e35392e3136322e302f32342d3234203d3e203536323432.roa File: 3133372e35392e3136322e302f32342d3234203d3e203536323432.roa (raw, json) Hash identifier: q6gnQ689gbyPRWkFyTqwu7clrVFZi6YA0qntQoU052Y= Subject key identifier: 64:05:10:F3:B0:FB:30:EA:3D:4E:6E:2F:31:AE:78:98:CD:35:D3:1E Certificate issuer: /CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Certificate serial: 7D71690F493AADC85E27DE0187DBC45FDD6D7D20 Authority key identifier: 84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3133372e35392e3136322e302f32342d3234203d3e203536323432.roa Signing time: Sat 11 Jan 2025 09:00:00 +0000 ROA not before: Sat 11 Jan 2025 08:55:00 +0000 ROA not after: Sat 10 Jan 2026 09:00:00 +0000 asID: 56242 IP address blocks: 137.59.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 11:29:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:71:69:0f:49:3a:ad:c8:5e:27:de:01:87:db:c4:5f:dd:6d:7d:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Validity Not Before: Jan 11 08:55:00 2025 GMT Not After : Jan 10 09:00:00 2026 GMT Subject: CN=640510F3B0FB30EA3D4E6E2F31AE7898CD35D31E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:19:87:e5:77:33:78:be:61:60:c4:c3:8d:03: 54:fc:2d:92:0e:f2:ab:5e:cf:1b:b5:70:8d:d4:53: a4:f5:14:c5:70:00:b3:b2:1a:fe:20:a1:4e:74:c6: 5d:a7:60:0c:5a:78:fa:46:5f:3f:74:11:d3:99:9b: b4:35:22:c8:3c:e3:17:f2:ec:e6:c6:2d:44:06:07: 00:f5:54:86:c2:4a:60:ca:e7:03:e7:38:a8:76:9e: 6a:4a:e9:1d:d6:73:47:ed:14:d1:20:cd:80:34:fa: c2:2b:d4:f4:7f:dc:6b:48:40:07:fd:9d:63:52:f6: 85:49:23:a5:c9:74:8e:63:40:8e:c2:1f:1c:d7:3f: 21:bb:3f:de:3e:7a:ce:ac:45:bd:c6:73:af:c5:5b: 3b:92:18:25:88:40:9a:a5:99:c2:ff:e8:03:9b:ff: 7a:81:fb:f8:e2:34:f2:5f:51:69:a7:17:36:9a:a7: 21:8a:45:a0:eb:b5:80:b7:b9:74:19:df:85:ba:8c: 28:f9:62:c9:db:29:b3:97:61:96:71:8e:96:c3:9a: 68:ac:b2:cb:86:36:fe:7d:0a:82:6f:7e:4a:56:9f: 6e:97:22:8d:90:d5:09:8d:c6:69:22:4a:7e:b8:77: 04:5a:4b:d5:ea:eb:31:fb:b1:9e:aa:e4:17:5f:a5: 85:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:05:10:F3:B0:FB:30:EA:3D:4E:6E:2F:31:AE:78:98:CD:35:D3:1E X509v3 Authority Key Identifier: keyid:84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3133372e35392e3136322e302f32342d3234203d3e203536323432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 137.59.162.0/24 Signature Algorithm: sha256WithRSAEncryption 23:3b:92:53:d1:2f:66:d5:dc:48:dd:be:f7:5a:c3:6e:d7:a0: 09:e2:6b:98:d3:9c:9b:b8:aa:28:36:76:a3:50:53:83:10:ef: 0d:5d:4c:24:78:ff:e7:bb:2f:a3:ab:23:33:97:61:ee:14:22: 30:cf:d1:ee:c8:d2:93:d0:e7:f2:20:c4:a7:21:13:ad:f4:8c: de:e0:04:79:91:89:b0:e6:77:f4:6b:0e:ee:70:cf:57:73:97: ef:06:d1:59:67:3a:0f:61:ff:d7:da:c8:0f:72:8f:98:dd:ff: 2d:ac:2d:bd:8b:4c:33:66:c4:6b:8f:19:d5:84:82:98:f8:78: 44:70:f7:70:2e:29:59:4d:2a:25:a6:ca:80:2e:39:72:c2:80: 0f:5f:c5:4f:73:98:48:65:0d:46:54:ed:b5:7d:4f:90:d7:7e: 63:64:15:4f:e0:69:08:f8:49:71:c8:3d:87:e5:c7:60:3b:7e: 89:c8:fa:43:e6:bb:e0:58:e8:f3:b2:26:ed:1a:98:0b:c0:fa: 10:f5:58:d0:01:61:40:58:69:73:74:46:55:e5:3d:c8:dd:4a: ad:29:f3:03:a1:91:98:09:0b:94:85:bc:ef:c9:b5:e7:db:2c: 22:12:f6:c6:db:ab:c4:b2:3e:20:69:89:12:3b:43:0a:31:76: 2d:76:ce:93 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfXFpD0k6rcheJ94Bh9vEX91tfSAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0 ODUzMEU5RTAeFw0yNTAxMTEwODU1MDBaFw0yNjAxMTAwOTAwMDBaMDMxMTAvBgNV BAMTKDY0MDUxMEYzQjBGQjMwRUEzRDRFNkUyRjMxQUU3ODk4Q0QzNUQzMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWGYfldzN4vmFgxMONA1T8LZIO 8qtezxu1cI3UU6T1FMVwALOyGv4goU50xl2nYAxaePpGXz90EdOZm7Q1Isg84xfy 7ObGLUQGBwD1VIbCSmDK5wPnOKh2nmpK6R3Wc0ftFNEgzYA0+sIr1PR/3GtIQAf9 nWNS9oVJI6XJdI5jQI7CHxzXPyG7P94+es6sRb3Gc6/FWzuSGCWIQJqlmcL/6AOb /3qB+/jiNPJfUWmnFzaapyGKRaDrtYC3uXQZ34W6jCj5YsnbKbOXYZZxjpbDmmis ssuGNv59CoJvfkpWn26XIo2Q1QmNxmkiSn64dwRaS9Xq6zH7sZ6q5BdfpYXnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZAUQ87D7MOo9Tm4vMa54mM010x4wHwYDVR0j BBgwFoAUhGmHSuJo4s1OmhN+3VWZx0hTDp4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2EyZDI1Yi1jYjE4LTQ1YmUtOWZhMS0xNTRjYTE1NzkyMjMvMC84NDY5ODc0QUUy NjhFMkNENEU5QTEzN0VERDU1OTlDNzQ4NTMwRTlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0ODUz MEU5RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3YTJkMjViLWNiMTgtNDViZS05 ZmExLTE1NGNhMTU3OTIyMy8wLzMxMzMzNzJlMzUzOTJlMzEzNjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAIk7ojANBgkqhkiG 9w0BAQsFAAOCAQEAIzuSU9EvZtXcSN2+91rDbtegCeJrmNOcm7iqKDZ2o1BTgxDv DV1MJHj/57svo6sjM5dh7hQiMM/R7sjSk9Dn8iDEpyETrfSM3uAEeZGJsOZ39GsO 7nDPV3OX7wbRWWc6D2H/19rID3KPmN3/LawtvYtMM2bEa48Z1YSCmPh4RHD3cC4p WU0qJabKgC45csKAD1/FT3OYSGUNRlTttX1PkNd+Y2QVT+BpCPhJccg9h+XHYDt+ icj6Q+a74Fjo87Im7RqYC8D6EPVY0AFhQFhpc3RGVeU9yN1KrSnzA6GRmAkLlIW8 78m159ssIhL2xturxLI+IGmJEjtDCjF2LXbOkw== -----END CERTIFICATE-----Generated at Thu Apr 10 10:32:17 2025 by rpki-client