$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3139372e302f32342d3234203d3e20313339393934.roa File: 3134302e3231332e3139372e302f32342d3234203d3e20313339393934.roa (raw, json) Hash identifier: SJxjDtyKKsV6RQMnItbVr0K+TFaVNVSZWJWDKsDBfRE= Subject key identifier: 0A:9D:BF:17:EB:FC:6C:26:A5:27:50:A7:2A:A4:4A:5E:4D:01:3E:D9 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 3242273CE43657C0C99E7F37307A70F18129F35A Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3139372e302f32342d3234203d3e20313339393934.roa Signing time: Sun 27 Aug 2023 05:00:01 +0000 ROA not before: Sun 27 Aug 2023 04:55:01 +0000 ROA not after: Sun 25 Aug 2024 05:00:01 +0000 asID: 139994 IP address blocks: 140.213.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 01:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:42:27:3c:e4:36:57:c0:c9:9e:7f:37:30:7a:70:f1:81:29:f3:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Aug 27 04:55:01 2023 GMT Not After : Aug 25 05:00:01 2024 GMT Subject: CN=0A9DBF17EBFC6C26A52750A72AA44A5E4D013ED9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:2e:d2:b4:25:01:31:eb:06:3e:07:cd:15:e0: a2:69:cf:e6:03:75:21:50:f7:1d:a0:10:08:2c:01: 99:fa:56:40:a5:6a:3c:2f:8a:94:3f:f9:38:46:53: e1:b0:f6:44:74:a1:a1:a7:17:98:d2:e6:f3:61:d7: 3c:0f:1d:06:f3:dc:6c:82:89:f7:82:7f:66:20:36: 42:dd:6f:e3:df:93:9c:fc:b2:ed:ec:68:5e:a2:d1: ea:65:1e:d9:f9:ce:22:be:b0:77:97:5e:24:90:43: c2:b3:4f:b4:bb:59:73:4f:bc:2f:69:7c:d3:39:53: 43:df:f3:88:bc:f4:c7:3b:26:c6:5d:c1:ae:f8:1d: a5:de:8c:51:f7:da:5c:d8:a5:83:3b:f3:be:38:3e: 89:bf:f1:80:cd:ee:8b:8d:e4:38:92:1e:b0:74:c6: 91:4a:3c:92:f0:28:ea:14:0e:72:6b:a2:2b:49:3e: 0d:cb:c5:1c:0f:d1:43:78:39:2c:d4:40:d2:ec:70: 81:ef:88:2a:e5:73:17:f2:37:8a:2a:c3:aa:84:4f: 52:91:35:e4:65:ba:e9:8a:39:6e:cb:18:3b:fc:f4: 3f:f2:2c:a8:9d:49:97:54:8d:e6:c4:b0:d6:52:fa: 00:4a:95:7e:d8:c4:fc:ec:b7:71:ea:32:a2:ff:69: 33:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:9D:BF:17:EB:FC:6C:26:A5:27:50:A7:2A:A4:4A:5E:4D:01:3E:D9 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3139372e302f32342d3234203d3e20313339393934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.213.197.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:a9:93:dd:fa:8c:6e:d1:fd:ac:10:89:6a:83:02:ff:9f:78: 98:ac:e2:41:8a:f5:f9:0e:c8:51:2b:d7:d9:a6:1b:b1:a7:43: 79:94:ee:53:8f:ef:3a:5e:cb:28:83:be:86:23:d7:af:99:af: da:67:ab:e3:3c:df:12:c4:24:d9:21:e8:b3:49:28:a7:58:04: 32:f0:74:2a:05:d3:3c:e1:7a:06:f5:72:85:0c:f8:ee:9e:40: 98:05:e9:d4:c0:e9:6a:7c:c2:aa:b7:4e:ba:67:0c:47:10:a9: 8c:70:86:ce:9d:34:3d:6c:44:9a:2d:05:55:cd:7d:79:d3:e0: af:ff:97:ac:9d:da:04:b4:29:ab:fb:5b:6b:90:62:a3:33:95: 39:39:90:ac:0e:2b:0d:b0:68:c1:25:b2:e7:11:be:b1:ed:ce: 3f:c8:a0:f1:fe:38:15:0a:6b:3e:e0:bf:c8:a4:33:e9:19:6f: b2:2a:5b:6a:69:20:a7:fb:13:62:b4:d4:9d:41:b9:a9:74:d7: 38:0c:3c:04:8f:97:c2:48:be:9e:46:3d:91:0e:69:20:bf:85: f6:2f:14:f7:4a:00:58:13:dc:ce:62:00:14:ff:80:73:3c:ef: a2:f3:56:4e:2f:d9:e1:fb:77:c6:d7:c7:f4:2f:2c:c9:90:91: 9d:68:10:84 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUMkInPOQ2V8DJnn83MHpw8YEp81owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTIzMDgyNzA0NTUwMVoX DTI0MDgyNTA1MDAwMVowMzExMC8GA1UEAxMoMEE5REJGMTdFQkZDNkMyNkE1Mjc1 MEE3MkFBNDRBNUU0RDAxM0VEOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK4u0rQlATHrBj4HzRXgomnP5gN1IVD3HaAQCCwBmfpWQKVqPC+KlD/5OEZT 4bD2RHShoacXmNLm82HXPA8dBvPcbIKJ94J/ZiA2Qt1v49+TnPyy7exoXqLR6mUe 2fnOIr6wd5deJJBDwrNPtLtZc0+8L2l80zlTQ9/ziLz0xzsmxl3Brvgdpd6MUffa XNilgzvzvjg+ib/xgM3ui43kOJIesHTGkUo8kvAo6hQOcmuiK0k+DcvFHA/RQ3g5 LNRA0uxwge+IKuVzF/I3iirDqoRPUpE15GW66Yo5bssYO/z0P/IsqJ1Jl1SN5sSw 1lL6AEqVftjE/Oy3ceoyov9pM6kCAwEAAaOCAgMwggH/MB0GA1UdDgQWBBQKnb8X 6/xsJqUnUKcqpEpeTQE+2TAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGGBggrBgEFBQcBCwR6MHgwdgYIKwYBBQUHMAuGanJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNDMwMmUz MjMxMzMyZTMxMzkzNzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzOTM5Mzkz NC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAIzVxTANBgkqhkiG9w0BAQsFAAOCAQEAe6mT3fqMbtH9rBCJ aoMC/594mKziQYr1+Q7IUSvX2aYbsadDeZTuU4/vOl7LKIO+hiPXr5mv2mer4zzf EsQk2SHos0kop1gEMvB0KgXTPOF6BvVyhQz47p5AmAXp1MDpanzCqrdOumcMRxCp jHCGzp00PWxEmi0FVc19edPgr/+XrJ3aBLQpq/tba5BiozOVOTmQrA4rDbBowSWy 5xG+se3OP8ig8f44FQprPuC/yKQz6Rlvsipbamkgp/sTYrTUnUG5qXTXOAw8BI+X wki+nkY9kQ5pIL+F9i8U90oAWBPczmIAFP+AczzvovNWTi/Z4ft3xtfH9C8syZCR nWgQhA== -----END CERTIFICATE-----Generated at Thu Apr 25 00:30:07 2024 by rpki-client on console-fra.rpki-client.org