$ rpki-client -vvf repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0/3131372e35332e34342e302f32322d3234203d3e203538333937.roa File: 3131372e35332e34342e302f32322d3234203d3e203538333937.roa (raw, json) Hash identifier: RUJ+fgdDfmEcMq+p2FDuyvhA1g7e16X82Ihf7jq5JOo= Subject key identifier: 59:21:AC:D2:29:CE:05:04:49:E2:A2:BB:AE:7B:CA:02:C0:0D:9E:BB Certificate issuer: /CN=57D4B8269ADDA460E8F7925D0AA126ECD6F60E24 Certificate serial: 60476B03C346C8D71217DBA9A978D8278FD0B9AE Authority key identifier: 57:D4:B8:26:9A:DD:A4:60:E8:F7:92:5D:0A:A1:26:EC:D6:F6:0E:24 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0/3131372e35332e34342e302f32322d3234203d3e203538333937.roa Signing time: Fri 08 Dec 2023 23:00:02 +0000 ROA not before: Fri 08 Dec 2023 22:55:02 +0000 ROA not after: Fri 06 Dec 2024 23:00:02 +0000 asID: 58397 IP address blocks: 117.53.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0/57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.crl rsync://repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0/57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:47:6b:03:c3:46:c8:d7:12:17:db:a9:a9:78:d8:27:8f:d0:b9:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57D4B8269ADDA460E8F7925D0AA126ECD6F60E24 Validity Not Before: Dec 8 22:55:02 2023 GMT Not After : Dec 6 23:00:02 2024 GMT Subject: CN=5921ACD229CE050449E2A2BBAE7BCA02C00D9EBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:7e:fa:9d:59:6e:69:82:dc:cc:1f:b7:8c:ed: a0:ca:57:d7:6a:e5:3c:61:e8:b0:76:eb:09:bc:35: 87:20:46:8f:20:de:b3:e9:a9:fb:27:03:12:29:76: 14:a3:92:44:31:64:ed:4e:95:61:22:a3:d4:b4:d2: 55:a7:c3:c1:0d:a8:74:d7:a5:e5:54:bc:d8:a5:3e: f5:69:5c:d5:c9:75:33:8f:f0:8b:2d:a8:8a:33:52: 4e:ec:0c:65:fb:64:3e:77:44:cd:3c:cd:7a:36:a1: 8d:3d:67:e5:cc:e4:03:7c:b8:47:db:d5:1c:d4:33: 12:b3:54:80:99:ac:06:20:d4:a3:e9:25:54:41:7e: ad:2a:93:80:a4:9b:2d:18:b8:35:0a:1e:58:06:28: 5e:d5:24:75:62:7a:9c:f6:ac:d7:22:64:42:a9:c9: ab:a7:5e:ee:2d:3e:9f:f9:7f:ff:f7:b0:25:f1:0a: df:aa:0f:aa:ad:75:47:c0:14:25:c2:b5:6c:fc:d9: 55:ed:2d:70:2a:46:9b:aa:b3:0a:10:82:57:cd:5c: b7:03:98:52:06:8d:a0:e7:29:fe:69:39:f0:a9:76: 0e:68:7a:7e:bb:94:6c:1d:33:66:e2:e7:1a:8b:64: 4e:03:e5:ed:15:d2:b4:41:97:22:d1:fe:7b:3f:d9: b5:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:21:AC:D2:29:CE:05:04:49:E2:A2:BB:AE:7B:CA:02:C0:0D:9E:BB X509v3 Authority Key Identifier: keyid:57:D4:B8:26:9A:DD:A4:60:E8:F7:92:5D:0A:A1:26:EC:D6:F6:0E:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0/57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0/3131372e35332e34342e302f32322d3234203d3e203538333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.53.44.0/22 Signature Algorithm: sha256WithRSAEncryption 8f:fd:dd:63:f7:4d:42:ee:48:19:f9:1d:6f:89:f6:24:05:ef: 0a:ad:09:1c:42:07:80:6e:74:7b:64:17:80:6e:98:34:3b:93: 1e:61:aa:01:f7:94:59:f6:7b:3f:94:a8:5b:36:44:c1:ea:72: 7b:53:7f:5c:67:a8:57:4b:5b:60:bd:6b:59:3f:09:2b:7a:e3: 8d:db:c5:e4:aa:bf:86:e2:cf:e8:67:a6:78:f6:ab:7f:26:b2: 41:63:eb:7a:1c:e9:07:8f:93:bb:06:e7:b0:4d:71:a8:28:83: 59:97:e1:a9:32:6f:27:a2:c0:df:28:cd:bf:b6:3f:f9:6c:97: 21:3d:77:2b:e7:17:5a:04:3d:3f:1b:95:20:43:92:5d:cb:ee: 8d:a8:e7:f0:4e:0c:5e:58:6d:4a:26:5c:87:37:13:03:96:c1: 26:55:10:26:dc:c5:f1:82:83:5f:b9:04:cf:c5:8b:22:dc:82: df:5c:a6:0a:44:04:ec:8e:2f:b2:ec:2c:c5:e2:b8:b9:39:51: d1:0c:07:6e:e0:a2:f5:bf:fa:f5:15:83:74:67:8e:96:de:86: 1d:db:f6:cc:aa:f8:b1:df:19:41:8d:d2:6a:d4:25:36:58:20: f1:cd:c1:ac:90:0d:30:8d:06:64:90:6d:19:dc:11:3b:c2:51: 02:64:7c:2c -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUYEdrA8NGyNcSF9upqXjYJ4/Qua4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdENEI4MjY5QUREQTQ2MEU4Rjc5MjVEMEFBMTI2RUNE NkY2MEUyNDAeFw0yMzEyMDgyMjU1MDJaFw0yNDEyMDYyMzAwMDJaMDMxMTAvBgNV BAMTKDU5MjFBQ0QyMjlDRTA1MDQ0OUUyQTJCQkFFN0JDQTAyQzAwRDlFQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZfvqdWW5pgtzMH7eM7aDKV9dq 5Txh6LB26wm8NYcgRo8g3rPpqfsnAxIpdhSjkkQxZO1OlWEio9S00lWnw8ENqHTX peVUvNilPvVpXNXJdTOP8IstqIozUk7sDGX7ZD53RM08zXo2oY09Z+XM5AN8uEfb 1RzUMxKzVICZrAYg1KPpJVRBfq0qk4Ckmy0YuDUKHlgGKF7VJHViepz2rNciZEKp yaunXu4tPp/5f//3sCXxCt+qD6qtdUfAFCXCtWz82VXtLXAqRpuqswoQglfNXLcD mFIGjaDnKf5pOfCpdg5oen67lGwdM2bi5xqLZE4D5e0V0rRBlyLR/ns/2bVLAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUWSGs0inOBQRJ4qK7rnvKAsANnrswHwYDVR0j BBgwFoAUV9S4JprdpGDo95JdCqEm7Nb2DiQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZjQ5OWM1Ni1hMjQ2LTRkMTgtYmU4Ni1mNDYxZDhmNTU5YzgvMC81N0Q0QjgyNjlB RERBNDYwRThGNzkyNUQwQUExMjZFQ0Q2RjYwRTI0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTdENEI4MjY5QUREQTQ2MEU4Rjc5MjVEMEFBMTI2RUNENkY2 MEUyNC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmNDk5YzU2LWEyNDYtNGQxOC1i ZTg2LWY0NjFkOGY1NTljOC8wLzMxMzEzNzJlMzUzMzJlMzQzNDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDM1MzgzMzM5Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ1NSwwDQYJKoZIhvcN AQELBQADggEBAI/93WP3TULuSBn5HW+J9iQF7wqtCRxCB4BudHtkF4BumDQ7kx5h qgH3lFn2ez+UqFs2RMHqcntTf1xnqFdLW2C9a1k/CSt6443bxeSqv4biz+hnpnj2 q38mskFj63oc6QePk7sG57BNcagog1mX4akybyeiwN8ozb+2P/lslyE9dyvnF1oE PT8blSBDkl3L7o2o5/BODF5YbUomXIc3EwOWwSZVECbcxfGCg1+5BM/FiyLcgt9c pgpEBOyOL7LsLMXiuLk5UdEMB27govW/+vUVg3Rnjpbehh3b9syq+LHfGUGN0mrU JTZYIPHNwayQDTCNBmSQbRncETvCUQJkfCw= -----END CERTIFICATE-----Generated at Fri May 3 12:58:05 2024 by rpki-client on console-ams.rpki-client.org