$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3133372e35392e31352e302f32342d3234203d3e203338353030.roa File: 3133372e35392e31352e302f32342d3234203d3e203338353030.roa (raw, json) Hash identifier: nl48j1D6iX1/Yru+wGEu5dOcsUS0RrCwuDZD9KggzB8= Subject key identifier: 12:BB:7C:93:B3:CC:CC:F4:C4:F2:B8:48:83:EB:A1:88:2E:5A:ED:55 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 498ABD12AAA9568549E22840EAAF8761716738A3 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3133372e35392e31352e302f32342d3234203d3e203338353030.roa Signing time: Mon 01 Jul 2024 01:04:44 +0000 ROA not before: Mon 01 Jul 2024 00:59:44 +0000 ROA not after: Mon 30 Jun 2025 01:04:44 +0000 asID: 38500 IP address blocks: 137.59.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:8a:bd:12:aa:a9:56:85:49:e2:28:40:ea:af:87:61:71:67:38:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jul 1 00:59:44 2024 GMT Not After : Jun 30 01:04:44 2025 GMT Subject: CN=12BB7C93B3CCCCF4C4F2B84883EBA1882E5AED55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:59:14:66:41:96:8d:79:ba:5f:0a:c6:bb:12: 1a:6e:55:2d:49:2c:51:8e:d5:4d:b7:7c:b7:e4:2b: e5:ac:97:cc:ab:3b:80:64:d5:48:48:95:87:2b:37: fd:eb:32:90:ff:c7:f6:92:87:07:57:4d:19:1b:3f: 23:55:8c:7f:cb:20:83:81:de:ff:72:0e:cd:41:ac: e1:07:a6:73:89:63:1e:5a:95:03:e2:41:ba:9c:47: 0f:38:ba:c5:6e:c7:7f:8f:80:04:ea:a9:ad:01:d0: 81:81:67:91:5c:0e:35:96:fd:e0:a3:d1:51:f8:22: 98:3b:d1:24:78:21:57:86:59:da:42:b4:35:81:b9: 6d:53:6e:2b:41:d8:83:7a:da:ec:65:0b:bb:0c:d2: 9a:97:32:12:b7:48:b9:0b:b2:f0:7e:55:6b:05:36: 3c:00:0d:50:63:75:fb:60:f0:d3:99:86:ad:ad:76: 37:f6:7b:61:bb:2b:6e:cb:f5:cf:42:fc:96:db:71: cf:7a:78:06:29:26:d6:bf:e5:0a:70:b1:e9:51:45: 15:62:2f:e5:c4:65:a3:f7:7b:70:6d:08:60:24:ec: 3a:5b:b0:c3:82:f9:fa:2f:90:58:8d:7f:f3:fb:06: c9:f9:33:f6:02:19:3a:6b:2e:78:ca:4f:b3:af:44: 90:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:BB:7C:93:B3:CC:CC:F4:C4:F2:B8:48:83:EB:A1:88:2E:5A:ED:55 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3133372e35392e31352e302f32342d3234203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 137.59.15.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:4e:c1:b2:62:2d:c0:30:fb:a4:14:57:b4:0e:7d:e7:83:f7: 43:8f:97:50:16:98:b7:61:e4:c7:20:3b:b6:cf:1c:12:4b:eb: 2f:4e:61:01:26:a9:e0:7f:33:b5:a4:b0:15:e1:b6:73:53:05: 7a:d6:3e:ae:d4:8e:85:a9:e9:8e:b7:45:cf:13:47:5b:c4:e7: d9:1a:52:72:d8:e2:2c:e9:5c:e8:d0:bd:45:46:bb:db:23:81: a3:60:0d:9f:0a:1c:c6:ae:01:3f:a7:32:57:2f:3f:0e:3f:8d: 3d:a2:e2:07:a5:72:0a:2e:d5:bf:d0:06:ae:a5:15:79:37:ac: c6:e6:08:cd:d8:e5:07:27:c7:1b:6a:99:3c:9a:ba:fc:4f:4a: bb:c0:a0:5c:e6:46:03:e3:7f:be:43:4e:28:45:8f:5e:2f:2d: bd:98:bf:57:cb:1e:55:1a:d3:b6:dc:4e:cf:4a:33:d2:f1:8b: a2:06:ac:45:9e:16:43:70:a0:78:c9:14:c0:44:fb:43:47:ca: 47:6a:d1:ce:01:cd:1f:37:5e:32:3b:43:66:b1:65:63:d3:7e: 1d:6d:d6:f7:0c:27:e5:9c:03:9e:31:20:65:f3:79:ba:0e:f3: 37:cd:f6:1a:7a:a6:32:ba:ea:59:45:c3:a0:15:4e:4f:71:ee: 82:43:1b:3e -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUSYq9EqqpVoVJ4ihA6q+HYXFnOKMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNDA3MDEwMDU5NDRaFw0yNTA2MzAwMTA0NDRaMDMxMTAvBgNV BAMTKDEyQkI3QzkzQjNDQ0NDRjRDNEYyQjg0ODgzRUJBMTg4MkU1QUVENTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQWRRmQZaNebpfCsa7EhpuVS1J LFGO1U23fLfkK+Wsl8yrO4Bk1UhIlYcrN/3rMpD/x/aShwdXTRkbPyNVjH/LIIOB 3v9yDs1BrOEHpnOJYx5alQPiQbqcRw84usVux3+PgATqqa0B0IGBZ5FcDjWW/eCj 0VH4Ipg70SR4IVeGWdpCtDWBuW1TbitB2IN62uxlC7sM0pqXMhK3SLkLsvB+VWsF NjwADVBjdftg8NOZhq2tdjf2e2G7K27L9c9C/Jbbcc96eAYpJta/5QpwselRRRVi L+XEZaP3e3BtCGAk7DpbsMOC+fovkFiNf/P7Bsn5M/YCGTprLnjKT7OvRJBZAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUErt8k7PMzPTE8rhIg+uhiC5a7VUwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMxMzMzNzJlMzUzOTJlMzEzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzNTMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACJOw8wDQYJKoZIhvcN AQELBQADggEBAD1OwbJiLcAw+6QUV7QOfeeD90OPl1AWmLdh5McgO7bPHBJL6y9O YQEmqeB/M7WksBXhtnNTBXrWPq7UjoWp6Y63Rc8TR1vE59kaUnLY4izpXOjQvUVG u9sjgaNgDZ8KHMauAT+nMlcvPw4/jT2i4gelcgou1b/QBq6lFXk3rMbmCM3Y5Qcn xxtqmTyauvxPSrvAoFzmRgPjf75DTihFj14vLb2Yv1fLHlUa07bcTs9KM9Lxi6IG rEWeFkNwoHjJFMBE+0NHykdq0c4BzR83XjI7Q2axZWPTfh1t1vcMJ+WcA54xIGXz eboO8zfN9hp6pjK66llFw6AVTk9x7oJDGz4= -----END CERTIFICATE-----Generated at Thu Nov 21 23:33:00 2024 by rpki-client on console-ams.rpki-client.org