$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3133372e35392e31332e302f32342d3234203d3e203338353030.roa File: 3133372e35392e31332e302f32342d3234203d3e203338353030.roa (raw, json) Hash identifier: pKmM0l86N45KZwm0JkC8SRYwfYrkQMOuJfS+kKCp8do= Subject key identifier: 42:85:7C:01:47:77:7D:88:34:C5:85:19:66:D2:B4:58:65:48:1E:47 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 32A6F588E2FE864FBA75909A34B3DE12FEE92E42 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3133372e35392e31332e302f32342d3234203d3e203338353030.roa Signing time: Mon 01 Jul 2024 01:04:45 +0000 ROA not before: Mon 01 Jul 2024 00:59:45 +0000 ROA not after: Mon 30 Jun 2025 01:04:45 +0000 asID: 38500 IP address blocks: 137.59.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:a6:f5:88:e2:fe:86:4f:ba:75:90:9a:34:b3:de:12:fe:e9:2e:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jul 1 00:59:45 2024 GMT Not After : Jun 30 01:04:45 2025 GMT Subject: CN=42857C0147777D8834C5851966D2B45865481E47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:0c:14:20:cd:ac:9b:e7:95:30:75:5f:8f:58: 12:a8:bc:0e:bf:34:1d:3f:3a:52:69:b9:ea:c7:fe: 84:e2:b7:09:b1:40:70:81:83:82:cb:15:89:37:20: 8f:34:9b:55:7f:b4:bd:6b:3d:0b:53:33:0b:b5:ae: 6a:69:96:b0:38:d5:8a:a4:98:48:f7:01:46:bf:f2: fd:fa:a5:c9:c3:00:1b:7c:70:ca:b7:03:f6:fb:7d: c0:2b:1b:4d:5e:22:15:45:62:a5:13:d0:fd:4a:ca: 2d:fc:cc:1a:53:6a:f1:ca:39:84:e2:a3:6c:bf:7f: da:ee:f6:ae:2e:35:e2:82:60:ae:86:8f:23:cb:8f: ac:14:5d:c5:b6:8f:52:c3:8b:7d:fc:fc:24:1c:81: 88:60:34:df:4e:24:b7:9e:70:5c:41:0c:8e:c0:a2: f1:50:9b:2b:16:6b:63:59:09:1a:63:a8:ce:04:df: 55:3e:47:3b:09:1c:f3:bc:05:85:54:9f:42:bc:80: 53:e2:8b:6a:1f:92:97:c6:bb:ec:e5:c8:c4:49:e8: 52:42:eb:d9:0e:b2:95:2a:bd:f6:6a:14:8f:4f:6f: 23:a8:87:f2:06:b1:7f:2f:bc:f3:7f:0f:19:36:6e: 18:18:d6:76:75:c0:1c:cd:81:66:f3:ee:18:98:71: 80:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:85:7C:01:47:77:7D:88:34:C5:85:19:66:D2:B4:58:65:48:1E:47 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3133372e35392e31332e302f32342d3234203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 137.59.13.0/24 Signature Algorithm: sha256WithRSAEncryption 23:4e:8b:6b:4f:ca:ee:4c:c1:40:4c:92:23:6f:88:be:3f:43: 4e:69:42:e0:60:be:1d:06:8a:14:1c:08:ab:37:2e:e0:8d:03: fb:cf:f6:48:4d:58:a3:a0:8b:70:16:66:a2:54:09:0b:e1:58: 5f:05:ae:2f:20:6a:f7:d6:cf:0d:b4:0c:59:f4:8f:25:7d:75: a4:59:b9:3f:8f:0d:70:76:6b:fa:67:b3:09:ea:2c:7b:78:a0: 8f:87:af:89:0e:88:53:25:da:0a:66:04:0d:da:a0:a5:e8:69: 7d:b1:51:35:01:75:b4:ea:00:c2:a7:55:fd:54:b3:ac:d3:28: f0:7f:29:fd:b8:be:5f:9b:86:bb:17:cb:83:22:c5:99:99:4b: e7:71:20:82:f4:ab:7f:14:3e:06:e7:fd:3c:af:8b:af:f1:09: 26:ab:fc:e8:81:70:07:b2:1b:19:27:aa:f4:4d:ad:48:a1:de: b2:97:43:33:57:10:f2:09:9f:6c:e4:71:80:16:b6:6c:b8:5e: 5c:f7:02:38:c9:e1:9a:cf:58:41:cf:6f:9d:37:cb:a8:8e:e9: f5:04:e5:a2:7f:37:99:f5:52:5f:ff:c9:6b:e1:f8:ae:db:55: 64:96:9e:cd:47:9a:2c:e2:61:6b:a7:53:82:58:88:c0:e3:d6: 55:fc:80:0e -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUMqb1iOL+hk+6dZCaNLPeEv7pLkIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNDA3MDEwMDU5NDVaFw0yNTA2MzAwMTA0NDVaMDMxMTAvBgNV BAMTKDQyODU3QzAxNDc3NzdEODgzNEM1ODUxOTY2RDJCNDU4NjU0ODFFNDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSDBQgzayb55UwdV+PWBKovA6/ NB0/OlJpuerH/oTitwmxQHCBg4LLFYk3II80m1V/tL1rPQtTMwu1rmpplrA41Yqk mEj3AUa/8v36pcnDABt8cMq3A/b7fcArG01eIhVFYqUT0P1Kyi38zBpTavHKOYTi o2y/f9ru9q4uNeKCYK6GjyPLj6wUXcW2j1LDi338/CQcgYhgNN9OJLeecFxBDI7A ovFQmysWa2NZCRpjqM4E31U+RzsJHPO8BYVUn0K8gFPii2ofkpfGu+zlyMRJ6FJC 69kOspUqvfZqFI9PbyOoh/IGsX8vvPN/Dxk2bhgY1nZ1wBzNgWbz7hiYcYClAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUQoV8AUd3fYg0xYUZZtK0WGVIHkcwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMxMzMzNzJlMzUzOTJlMzEzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzNTMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACJOw0wDQYJKoZIhvcN AQELBQADggEBACNOi2tPyu5MwUBMkiNviL4/Q05pQuBgvh0GihQcCKs3LuCNA/vP 9khNWKOgi3AWZqJUCQvhWF8Fri8gavfWzw20DFn0jyV9daRZuT+PDXB2a/pnswnq LHt4oI+Hr4kOiFMl2gpmBA3aoKXoaX2xUTUBdbTqAMKnVf1Us6zTKPB/Kf24vl+b hrsXy4MixZmZS+dxIIL0q38UPgbn/Tyvi6/xCSar/OiBcAeyGxknqvRNrUih3rKX QzNXEPIJn2zkcYAWtmy4Xlz3AjjJ4ZrPWEHPb503y6iO6fUE5aJ/N5n1Ul//yWvh +K7bVWSWns1HmiziYWunU4JYiMDj1lX8gA4= -----END CERTIFICATE-----Generated at Thu Nov 21 23:33:00 2024 by rpki-client on console-ams.rpki-client.org