$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3139362e302f32342d3234203d3e20313339393934.roa File: 3134302e3231332e3139362e302f32342d3234203d3e20313339393934.roa (raw, json) Hash identifier: DBZ+xumUkEUq+bCT7F5+j1Kv472nEdgcBzLtTpgi+iQ= Subject key identifier: 5E:57:2F:6B:9C:AD:CC:8C:C0:2E:2D:F1:66:9F:74:73:39:D5:7E:6D Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 2FFD0DA53BB0184041D0C527FE4F1C803BEA77F9 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3139362e302f32342d3234203d3e20313339393934.roa Signing time: Sun 28 Jul 2024 06:00:01 +0000 ROA not before: Sun 28 Jul 2024 05:55:01 +0000 ROA not after: Sun 27 Jul 2025 06:00:01 +0000 asID: 139994 IP address blocks: 140.213.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:fd:0d:a5:3b:b0:18:40:41:d0:c5:27:fe:4f:1c:80:3b:ea:77:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jul 28 05:55:01 2024 GMT Not After : Jul 27 06:00:01 2025 GMT Subject: CN=5E572F6B9CADCC8CC02E2DF1669F747339D57E6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:dd:13:dd:c5:fa:13:50:ec:60:f3:94:82:7b: b9:a7:ae:4c:60:aa:92:4d:66:3f:bd:64:37:b8:32: 85:61:b3:17:ff:b3:60:27:28:1c:8a:5b:e4:c5:31: 95:51:ca:c0:e1:b0:29:8e:ff:5c:95:d5:93:11:52: 8b:72:49:5a:5a:d5:bf:6a:3a:08:b0:bb:fa:b6:30: 9f:36:e5:2d:e3:67:45:e5:ca:91:4e:3e:29:18:8f: 44:cc:0b:bd:fa:03:fd:ae:d5:be:8b:24:85:55:53: 55:a7:36:f2:1b:c9:e2:38:dd:07:b5:59:d1:ad:7d: de:68:23:5d:4a:f2:0a:10:fe:87:03:9b:11:fd:8f: 87:f9:96:50:b5:ab:36:64:17:a7:7c:e5:ef:d5:76: a5:f6:26:61:02:77:3e:13:dd:e8:53:6b:da:81:5b: e8:d4:1e:7b:19:27:59:70:ee:6c:bd:90:07:b0:77: 77:80:50:b8:1f:a2:9f:33:d7:9f:23:15:9b:05:7a: 72:17:6a:47:c7:3a:c9:b8:42:76:94:70:63:e0:51: 72:00:d6:86:79:d9:9c:f3:25:58:c5:51:b4:38:e8: 73:40:5f:d2:81:58:2b:23:29:cc:95:9c:a1:b0:37: 98:46:5d:13:7a:bd:26:34:60:67:83:b4:8f:0d:80: a3:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:57:2F:6B:9C:AD:CC:8C:C0:2E:2D:F1:66:9F:74:73:39:D5:7E:6D X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3139362e302f32342d3234203d3e20313339393934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.213.196.0/24 Signature Algorithm: sha256WithRSAEncryption 98:5a:b5:42:ef:e9:30:9c:ff:c9:bb:8c:5a:0c:a2:f1:41:0f: 6c:7f:25:db:9c:bb:f4:46:ec:36:b8:51:ff:06:a8:90:49:9d: a0:4f:6e:66:65:93:87:a4:a1:fb:60:06:06:9b:30:dc:f3:21: c2:50:ce:d9:35:7d:92:ef:74:94:e0:02:0f:ee:51:1b:4c:3e: de:a8:90:40:cc:e9:26:de:61:28:9d:72:7d:2b:f0:40:23:55: ba:d0:be:4b:86:e5:83:fc:fc:00:f1:c7:64:a0:f6:ce:ba:f4: 8d:81:60:c7:bf:b9:1f:48:ad:cc:1c:32:e9:82:b2:99:62:89: b9:fd:da:71:10:22:2c:f0:4a:49:5f:72:50:b8:10:3e:dc:16: e0:c7:65:10:b5:d9:89:03:bb:17:2d:2a:24:7a:34:bb:05:2f: 7b:f2:8a:b2:d3:b3:4e:e7:82:83:ea:0d:98:13:b9:31:fc:9f: 6b:b7:a3:6c:00:42:10:2b:30:81:73:31:d0:d3:48:b0:8d:24: 94:60:58:3c:28:a9:a0:9d:cd:0f:08:cd:de:ec:61:df:81:35: 2a:c2:81:ff:12:cf:bf:4e:8c:44:1a:5b:a6:8b:ed:e7:96:5f: e5:26:b1:b4:7f:91:16:31:80:22:1e:13:74:8c:df:22:08:80: 2c:5d:53:b5 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUL/0NpTuwGEBB0MUn/k8cgDvqd/kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDcyODA1NTUwMVoX DTI1MDcyNzA2MDAwMVowMzExMC8GA1UEAxMoNUU1NzJGNkI5Q0FEQ0M4Q0MwMkUy REYxNjY5Rjc0NzMzOUQ1N0U2RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALLdE93F+hNQ7GDzlIJ7uaeuTGCqkk1mP71kN7gyhWGzF/+zYCcoHIpb5MUx lVHKwOGwKY7/XJXVkxFSi3JJWlrVv2o6CLC7+rYwnzblLeNnReXKkU4+KRiPRMwL vfoD/a7VvoskhVVTVac28hvJ4jjdB7VZ0a193mgjXUryChD+hwObEf2Ph/mWULWr NmQXp3zl79V2pfYmYQJ3PhPd6FNr2oFb6NQeexknWXDubL2QB7B3d4BQuB+inzPX nyMVmwV6chdqR8c6ybhCdpRwY+BRcgDWhnnZnPMlWMVRtDjoc0Bf0oFYKyMpzJWc obA3mEZdE3q9JjRgZ4O0jw2Ao8sCAwEAAaOCAgMwggH/MB0GA1UdDgQWBBReVy9r nK3MjMAuLfFmn3RzOdV+bTAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGGBggrBgEFBQcBCwR6MHgwdgYIKwYBBQUHMAuGanJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNDMwMmUz MjMxMzMyZTMxMzkzNjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzOTM5Mzkz NC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAIzVxDANBgkqhkiG9w0BAQsFAAOCAQEAmFq1Qu/pMJz/ybuM Wgyi8UEPbH8l25y79EbsNrhR/waokEmdoE9uZmWTh6Sh+2AGBpsw3PMhwlDO2TV9 ku90lOACD+5RG0w+3qiQQMzpJt5hKJ1yfSvwQCNVutC+S4blg/z8APHHZKD2zrr0 jYFgx7+5H0itzBwy6YKymWKJuf3acRAiLPBKSV9yULgQPtwW4MdlELXZiQO7Fy0q JHo0uwUve/KKstOzTueCg+oNmBO5Mfyfa7ejbABCECswgXMx0NNIsI0klGBYPCip oJ3NDwjN3uxh34E1KsKB/xLPv06MRBpbpovt55Zf5SaxtH+RFjGAIh4TdIzfIgiA LF1TtQ== -----END CERTIFICATE-----Generated at Wed Nov 20 06:21:50 2024 by rpki-client on console-ams.rpki-client.org