$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3133372e35392e31342e302f32342d3234203d3e203338353030.roa File: 3133372e35392e31342e302f32342d3234203d3e203338353030.roa (raw, json) Hash identifier: wqxXgoPAkQNKaWpdoRcEwNeMU8YvEX1OVvWJwgaKZRo= Subject key identifier: CE:28:A1:B0:9E:FF:77:E0:30:83:1F:14:F2:DA:55:C7:82:E7:89:6A Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 2678B3C9CE998B2C79965B7D30CE2F2FD57BB225 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3133372e35392e31342e302f32342d3234203d3e203338353030.roa Signing time: Mon 01 Jul 2024 01:04:47 +0000 ROA not before: Mon 01 Jul 2024 00:59:47 +0000 ROA not after: Mon 30 Jun 2025 01:04:47 +0000 asID: 38500 IP address blocks: 137.59.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:78:b3:c9:ce:99:8b:2c:79:96:5b:7d:30:ce:2f:2f:d5:7b:b2:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jul 1 00:59:47 2024 GMT Not After : Jun 30 01:04:47 2025 GMT Subject: CN=CE28A1B09EFF77E030831F14F2DA55C782E7896A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:1c:95:f3:d5:5b:5a:12:2f:99:70:65:94:03: 18:c8:dc:f1:41:7c:c6:f0:4c:aa:fe:db:4a:c8:70: 84:c1:c8:83:46:20:82:e2:3f:46:d6:69:48:96:ca: 32:4a:9f:af:a8:5a:96:2f:23:ef:0a:cb:fe:ac:54: bd:8e:16:8a:b5:a7:ab:38:d8:d2:e3:97:98:c1:0e: c7:06:1b:70:a9:e4:eb:88:16:d6:ea:d8:d3:6b:68: c8:2a:3d:39:f0:80:40:76:bd:a7:8f:53:98:3e:6d: 99:9f:21:64:ed:49:46:16:d7:eb:08:f7:7e:c8:71: 33:24:0c:84:32:8c:0f:e1:9e:2c:bc:65:b1:7b:03: f9:1d:2f:f9:d7:4d:22:fc:18:cc:a8:8c:63:7b:2c: 39:a4:db:4b:69:50:d7:43:5c:32:5c:0f:9b:32:c7: 41:4a:22:4b:83:f9:ed:30:c3:03:a4:10:7b:71:c8: e0:80:35:ce:38:d5:02:62:44:14:14:a8:47:9e:b0: c0:f6:d9:b1:03:f5:07:7d:11:0c:3e:88:70:de:b7: 4c:b0:eb:0c:d0:3b:37:52:7c:f2:55:7d:8b:92:df: 85:b3:a4:a5:0e:d7:07:e3:cc:bc:03:6a:52:f9:94: 42:e5:12:b2:20:90:91:a3:70:c8:6c:be:e7:44:c8: 60:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:28:A1:B0:9E:FF:77:E0:30:83:1F:14:F2:DA:55:C7:82:E7:89:6A X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3133372e35392e31342e302f32342d3234203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 137.59.14.0/24 Signature Algorithm: sha256WithRSAEncryption 60:73:23:81:36:a8:af:18:4f:79:38:c4:cc:6e:d8:e1:e0:c2: 43:3b:95:26:5b:ae:8d:f4:87:a3:9d:e9:27:98:e9:96:c1:a5: 82:56:fc:b4:45:ca:7d:f2:d1:4b:24:d7:d5:79:da:2b:65:4f: ad:e7:22:6d:df:62:1e:81:cd:e5:86:a2:84:28:90:80:11:43: cf:50:2e:87:4a:97:4a:30:ef:06:a4:88:ea:4f:39:80:dd:47: d7:dc:6a:cf:18:b5:77:df:81:bd:b1:11:0d:33:88:ef:c5:0f: 85:ff:72:d0:2c:4e:3d:11:c3:80:58:81:5c:e3:dd:57:95:f0: db:be:9e:bf:bf:10:52:58:fd:93:fc:27:43:fb:b2:32:a2:c0: 0c:0f:be:a2:b4:fa:ca:a0:f8:b9:2f:65:35:3f:09:1f:3c:29: ce:e5:24:af:31:dd:66:d5:b3:71:e4:ee:1c:6b:1d:b6:f0:44: eb:74:60:91:4f:11:13:71:52:69:d5:ca:b9:a2:d6:53:bc:ef: d6:9a:f6:bd:6c:ec:8d:8e:0f:52:94:9f:db:d5:ee:bf:1f:30: 15:95:77:8d:13:38:4d:33:25:e8:72:58:a8:9c:e8:5d:07:28: 4b:41:b7:5e:d7:b9:ac:b2:1a:85:99:47:bb:40:5b:ae:12:ce: 94:9b:71:2f -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUJnizyc6Ziyx5llt9MM4vL9V7siUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNDA3MDEwMDU5NDdaFw0yNTA2MzAwMTA0NDdaMDMxMTAvBgNV BAMTKENFMjhBMUIwOUVGRjc3RTAzMDgzMUYxNEYyREE1NUM3ODJFNzg5NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjHJXz1VtaEi+ZcGWUAxjI3PFB fMbwTKr+20rIcITByINGIILiP0bWaUiWyjJKn6+oWpYvI+8Ky/6sVL2OFoq1p6s4 2NLjl5jBDscGG3Cp5OuIFtbq2NNraMgqPTnwgEB2vaePU5g+bZmfIWTtSUYW1+sI 937IcTMkDIQyjA/hniy8ZbF7A/kdL/nXTSL8GMyojGN7LDmk20tpUNdDXDJcD5sy x0FKIkuD+e0wwwOkEHtxyOCANc441QJiRBQUqEeesMD22bED9Qd9EQw+iHDet0yw 6wzQOzdSfPJVfYuS34WzpKUO1wfjzLwDalL5lELlErIgkJGjcMhsvudEyGDVAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUziihsJ7/d+Awgx8U8tpVx4LniWowHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMxMzMzNzJlMzUzOTJlMzEzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzNTMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACJOw4wDQYJKoZIhvcN AQELBQADggEBAGBzI4E2qK8YT3k4xMxu2OHgwkM7lSZbro30h6Od6SeY6ZbBpYJW /LRFyn3y0Usk19V52itlT63nIm3fYh6BzeWGooQokIARQ89QLodKl0ow7wakiOpP OYDdR9fcas8YtXffgb2xEQ0ziO/FD4X/ctAsTj0Rw4BYgVzj3VeV8Nu+nr+/EFJY /ZP8J0P7sjKiwAwPvqK0+sqg+LkvZTU/CR88Kc7lJK8x3WbVs3Hk7hxrHbbwROt0 YJFPERNxUmnVyrmi1lO879aa9r1s7I2OD1KUn9vV7r8fMBWVd40TOE0zJehyWKic 6F0HKEtBt17XuayyGoWZR7tAW64SzpSbcS8= -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org