$ rpki-client -vvf repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3133372e35392e3136322e302f32342d3234203d3e203536323432.roa File: 3133372e35392e3136322e302f32342d3234203d3e203536323432.roa (raw, json) Hash identifier: E5VrxiDCYP2KA6HHYv2unI38jseZ26gY0FkdNu76srs= Subject key identifier: 2A:AD:86:7F:38:63:16:E2:77:F8:36:2C:D1:B3:1D:E8:D1:1E:CB:1A Certificate issuer: /CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Certificate serial: 6C9C4327F1D5B0FDDFB847B875FE96EC147A215A Authority key identifier: 84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3133372e35392e3136322e302f32342d3234203d3e203536323432.roa Signing time: Sat 10 Feb 2024 09:00:00 +0000 ROA not before: Sat 10 Feb 2024 08:55:00 +0000 ROA not after: Sat 08 Feb 2025 09:00:00 +0000 asID: 56242 IP address blocks: 137.59.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 06:31:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:9c:43:27:f1:d5:b0:fd:df:b8:47:b8:75:fe:96:ec:14:7a:21:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Validity Not Before: Feb 10 08:55:00 2024 GMT Not After : Feb 8 09:00:00 2025 GMT Subject: CN=2AAD867F386316E277F8362CD1B31DE8D11ECB1A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:54:bc:cc:15:7a:8e:4d:a7:5e:1d:79:f3:2e: 58:e6:59:25:4b:62:b5:ab:a0:f9:b7:b0:4d:2c:69: 32:c3:94:94:8c:dd:f5:54:c4:5d:34:c1:ab:31:35: c9:39:c2:30:bc:6d:7d:e7:ba:a6:c1:24:48:8e:53: f1:7a:83:b3:8e:36:f5:9b:dd:73:f3:81:83:dc:28: f7:f9:5e:5e:5e:92:70:81:fd:9a:ff:08:c9:82:43: a1:61:09:6d:31:d8:4d:80:c4:dd:89:3f:25:e5:4f: 1a:c3:ae:d0:c4:94:86:ee:ce:49:9f:54:9e:01:d7: 44:60:cf:85:26:a3:42:9a:08:16:65:0f:2a:0d:ab: 8e:40:37:b6:c2:07:f3:81:53:92:f4:5a:26:d5:0d: fe:43:1b:1f:17:9a:c5:e8:df:8e:be:51:b1:dc:5f: b1:db:d2:92:3f:f5:1e:54:e5:8c:76:6e:54:12:37: 93:33:ce:49:08:6f:3d:12:1d:e5:d1:24:c5:4d:16: 65:93:51:68:48:e7:88:53:af:e3:28:68:3d:49:86: b1:8c:69:0a:e7:2f:d5:16:10:35:1c:26:99:a7:f5: ef:5a:05:7b:44:b4:ea:ee:19:d2:70:49:23:a7:e0: da:0e:a6:34:5b:77:8e:79:f4:a3:71:c8:a6:14:b5: 3f:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:AD:86:7F:38:63:16:E2:77:F8:36:2C:D1:B3:1D:E8:D1:1E:CB:1A X509v3 Authority Key Identifier: keyid:84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3133372e35392e3136322e302f32342d3234203d3e203536323432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 137.59.162.0/24 Signature Algorithm: sha256WithRSAEncryption 24:13:11:5c:62:4a:f6:d3:37:fb:b2:34:e5:c7:bc:4a:40:a3: 59:2b:e6:cb:6f:02:fd:ce:48:19:ee:48:16:e1:97:04:91:30: d2:2c:76:38:ec:de:dc:65:d6:3c:54:f3:c0:e8:da:5e:4f:37: 9a:34:46:6c:15:e2:c7:b0:a1:54:f2:d8:6a:ae:32:92:4d:20: 5f:4b:8e:b5:a2:1f:5d:13:bf:82:43:b6:a4:70:41:4d:64:7d: 04:8b:de:02:62:8b:75:33:b7:8d:5f:92:d5:a4:0c:37:0e:82: c1:3f:0a:61:28:fa:93:4d:a7:14:be:e9:60:c7:b1:7a:95:a0: b8:9b:35:16:70:19:f8:47:53:59:02:0e:8c:05:76:19:50:4c: 47:c0:8a:ee:ba:e4:8a:c1:24:b3:9c:6f:9e:52:84:2a:f1:6a: 29:9a:60:ce:75:b1:d9:be:5f:7e:11:ae:a0:54:eb:86:e8:63: a3:6e:db:a8:73:9d:7b:6d:dc:54:8d:c0:30:03:55:7e:1f:57: 02:c2:21:53:ec:a8:40:2f:6d:05:48:b8:97:4e:3a:41:8e:d0: f5:3e:a7:19:74:5d:47:a2:5d:36:bd:45:bd:46:dd:e6:71:f4: d4:6a:9a:ad:ea:e0:bc:eb:36:33:e1:8e:1f:95:31:9a:59:c5: 12:d6:42:83 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbJxDJ/HVsP3fuEe4df6W7BR6IVowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0 ODUzMEU5RTAeFw0yNDAyMTAwODU1MDBaFw0yNTAyMDgwOTAwMDBaMDMxMTAvBgNV BAMTKDJBQUQ4NjdGMzg2MzE2RTI3N0Y4MzYyQ0QxQjMxREU4RDExRUNCMUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRVLzMFXqOTadeHXnzLljmWSVL YrWroPm3sE0saTLDlJSM3fVUxF00wasxNck5wjC8bX3nuqbBJEiOU/F6g7OONvWb 3XPzgYPcKPf5Xl5eknCB/Zr/CMmCQ6FhCW0x2E2AxN2JPyXlTxrDrtDElIbuzkmf VJ4B10Rgz4Umo0KaCBZlDyoNq45AN7bCB/OBU5L0WibVDf5DGx8XmsXo346+UbHc X7Hb0pI/9R5U5Yx2blQSN5MzzkkIbz0SHeXRJMVNFmWTUWhI54hTr+MoaD1JhrGM aQrnL9UWEDUcJpmn9e9aBXtEtOruGdJwSSOn4NoOpjRbd4559KNxyKYUtT8rAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUKq2GfzhjFuJ3+DYs0bMd6NEeyxowHwYDVR0j BBgwFoAUhGmHSuJo4s1OmhN+3VWZx0hTDp4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2EyZDI1Yi1jYjE4LTQ1YmUtOWZhMS0xNTRjYTE1NzkyMjMvMC84NDY5ODc0QUUy NjhFMkNENEU5QTEzN0VERDU1OTlDNzQ4NTMwRTlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0ODUz MEU5RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3YTJkMjViLWNiMTgtNDViZS05 ZmExLTE1NGNhMTU3OTIyMy8wLzMxMzMzNzJlMzUzOTJlMzEzNjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAIk7ojANBgkqhkiG 9w0BAQsFAAOCAQEAJBMRXGJK9tM3+7I05ce8SkCjWSvmy28C/c5IGe5IFuGXBJEw 0ix2OOze3GXWPFTzwOjaXk83mjRGbBXix7ChVPLYaq4ykk0gX0uOtaIfXRO/gkO2 pHBBTWR9BIveAmKLdTO3jV+S1aQMNw6CwT8KYSj6k02nFL7pYMexepWguJs1FnAZ +EdTWQIOjAV2GVBMR8CK7rrkisEks5xvnlKEKvFqKZpgznWx2b5ffhGuoFTrhuhj o27bqHOde23cVI3AMANVfh9XAsIhU+yoQC9tBUi4l046QY7Q9T6nGXRdR6JdNr1F vUbd5nH01GqarergvOs2M+GOH5UxmlnFEtZCgw== -----END CERTIFICATE-----Generated at Wed May 1 01:36:44 2024 by rpki-client on console-ams.rpki-client.org