$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e32302e3231302e302f32342d3234203d3e203634333038.roa File: 3135372e32302e3231302e302f32342d3234203d3e203634333038.roa (raw, json) Hash identifier: KVyt265iFmVTO5c5LFdumfj+GOLcCNU+NjliVFzNkNU= Subject key identifier: 80:3B:30:89:05:26:76:EE:11:A9:26:C8:DA:94:FA:B3:8F:4B:EB:40 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 26C4969A233E9E9500311B9B81C1B515D5E616EB Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e32302e3231302e302f32342d3234203d3e203634333038.roa Signing time: Tue 19 Mar 2024 02:48:54 +0000 ROA not before: Tue 19 Mar 2024 02:43:54 +0000 ROA not after: Tue 18 Mar 2025 02:48:54 +0000 asID: 64308 IP address blocks: 157.20.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 13:31:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:c4:96:9a:23:3e:9e:95:00:31:1b:9b:81:c1:b5:15:d5:e6:16:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Mar 19 02:43:54 2024 GMT Not After : Mar 18 02:48:54 2025 GMT Subject: CN=803B3089052676EE11A926C8DA94FAB38F4BEB40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:78:60:c0:69:22:78:9c:70:9c:7f:76:1e:e8: 76:e9:99:dd:04:35:bc:ec:d9:75:08:b5:ca:c4:cc: 5a:02:aa:60:1d:5f:a2:78:bd:06:45:2a:4a:d2:30: 63:30:25:f5:1c:a6:32:92:34:6c:45:02:47:ae:6b: 36:1c:dd:29:bd:18:ed:a2:43:ff:80:6d:9e:e2:c3: c6:ec:ba:2e:d2:f6:0a:c0:e6:84:81:d9:cc:8f:d8: 04:a6:32:02:3a:de:c1:a8:51:31:1e:aa:17:47:b8: 5b:71:7c:f7:f8:9b:1c:20:92:56:f0:d5:fc:62:d1: 5a:14:fa:56:ac:c2:46:5e:d0:75:76:10:8b:0b:69: f2:86:ce:da:d9:35:29:68:11:39:cf:26:13:81:6e: 1d:86:29:bd:82:62:49:80:ae:52:4b:e1:8a:5d:c2: 05:f5:d4:c6:f3:4c:d8:93:8c:10:3f:ac:2e:2b:80: 25:fb:bc:25:62:22:fc:d7:55:b6:99:e1:d5:d3:84: 95:ef:8b:15:6c:3e:fc:ec:3c:d8:a1:0e:bb:90:b0: b1:65:17:a7:be:89:61:2a:7a:1e:cb:ef:2a:e3:8c: 0d:7c:a3:5b:21:49:7a:94:5d:96:06:f7:7b:be:a0: b6:a3:16:4d:a5:4f:bf:93:5c:b4:78:ac:f0:56:49: aa:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:3B:30:89:05:26:76:EE:11:A9:26:C8:DA:94:FA:B3:8F:4B:EB:40 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e32302e3231302e302f32342d3234203d3e203634333038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.210.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:4b:bf:c9:44:49:da:6a:ec:27:97:e0:56:47:4c:b1:48:43: 37:33:f8:f3:90:15:1c:b6:98:e3:5a:6a:01:0b:13:e4:26:15: 2c:10:02:4e:2d:5c:d4:9f:73:5a:20:10:72:4b:d4:22:e0:06: ed:37:17:57:af:5c:be:c8:24:db:8a:4d:1c:6c:d6:09:d2:20: aa:53:7d:dc:03:1d:2c:69:83:cd:ea:f2:bc:30:9b:d8:c2:78: 56:b7:f1:01:f7:e2:2d:ac:68:a9:4a:03:30:5c:3e:de:7e:90: 6c:f1:e7:0b:69:3b:41:12:2b:75:f3:b7:d0:15:ac:ef:a3:82: 26:11:b6:b1:d8:6e:86:96:7a:9e:eb:27:b3:fe:19:f8:c2:53: 1f:d1:6c:2b:83:e1:54:53:93:8e:d8:bf:13:40:86:53:46:2f: 85:c1:84:cd:80:a1:8f:a4:32:4b:5e:da:9e:c5:d1:2f:a3:74: fa:c7:34:b9:71:4b:cf:44:90:c5:d9:81:9a:5f:fa:b4:48:38: e9:8e:57:43:c2:ac:ac:33:55:a0:6b:a9:37:67:d8:e9:8c:6a: fa:8c:5e:c9:1a:a5:c1:cb:f5:ed:8b:72:5f:f7:df:5f:46:30: e0:0f:eb:0c:e0:0c:0c:68:8d:3d:c8:9c:aa:77:b1:a1:aa:f5: 3b:b3:4a:5d -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUJsSWmiM+npUAMRubgcG1FdXmFuswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDMxOTAyNDM1NFoX DTI1MDMxODAyNDg1NFowMzExMC8GA1UEAxMoODAzQjMwODkwNTI2NzZFRTExQTky NkM4REE5NEZBQjM4RjRCRUI0MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANN4YMBpIniccJx/dh7odumZ3QQ1vOzZdQi1ysTMWgKqYB1foni9BkUqStIw YzAl9RymMpI0bEUCR65rNhzdKb0Y7aJD/4BtnuLDxuy6LtL2CsDmhIHZzI/YBKYy AjrewahRMR6qF0e4W3F89/ibHCCSVvDV/GLRWhT6VqzCRl7QdXYQiwtp8obO2tk1 KWgROc8mE4FuHYYpvYJiSYCuUkvhil3CBfXUxvNM2JOMED+sLiuAJfu8JWIi/NdV tpnh1dOEle+LFWw+/Ow82KEOu5CwsWUXp76JYSp6HsvvKuOMDXyjWyFJepRdlgb3 e76gtqMWTaVPv5NctHis8FZJqukCAwEAAaOCAf8wggH7MB0GA1UdDgQWBBSAOzCJ BSZ27hGpJsjalPqzj0vrQDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGCBggrBgEFBQcBCwR2MHQwcgYIKwYBBQUHMAuGZnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz MjMwMmUzMjMxMzAyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNjM0MzMzMDM4LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAnRTSMA0GCSqGSIb3DQEBCwUAA4IBAQB7S7/JREnaauwnl+BWR0yx SEM3M/jzkBUctpjjWmoBCxPkJhUsEAJOLVzUn3NaIBByS9Qi4AbtNxdXr1y+yCTb ik0cbNYJ0iCqU33cAx0saYPN6vK8MJvYwnhWt/EB9+ItrGipSgMwXD7efpBs8ecL aTtBEit187fQFazvo4ImEbax2G6Glnqe6yez/hn4wlMf0Wwrg+FUU5OO2L8TQIZT Ri+FwYTNgKGPpDJLXtqexdEvo3T6xzS5cUvPRJDF2YGaX/q0SDjpjldDwqysM1Wg a6k3Z9jpjGr6jF7JGqXBy/Xti3Jf999fRjDgD+sM4AwMaI09yJyqd7GhqvU7s0pd -----END CERTIFICATE-----Generated at Thu May 2 14:31:25 2024 by rpki-client on console-fra.rpki-client.org