$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3139382e302f32342d3234203d3e20313339393934.roa File: 3134302e3231332e3139382e302f32342d3234203d3e20313339393934.roa (raw, json) Hash identifier: UcadFXlPmU9JeMpKlngbRnDr0KGE5h4Gx4HFeifVeO0= Subject key identifier: DF:5F:10:1C:4A:18:66:EF:38:60:33:71:23:0A:58:36:CE:DE:90:7B Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 5A5799A0F7DFB0BA6B67717E140C4277444B09D9 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3139382e302f32342d3234203d3e20313339393934.roa Signing time: Sun 28 Jul 2024 06:00:00 +0000 ROA not before: Sun 28 Jul 2024 05:55:00 +0000 ROA not after: Sun 27 Jul 2025 06:00:00 +0000 asID: 139994 IP address blocks: 140.213.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:57:99:a0:f7:df:b0:ba:6b:67:71:7e:14:0c:42:77:44:4b:09:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jul 28 05:55:00 2024 GMT Not After : Jul 27 06:00:00 2025 GMT Subject: CN=DF5F101C4A1866EF38603371230A5836CEDE907B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d2:70:02:11:52:22:d9:b9:a3:ae:71:ff:b2: 6f:b8:5e:23:60:c3:5f:95:fa:26:06:2f:01:f6:1e: 0b:44:30:3f:66:02:dc:75:90:a3:63:65:49:76:ea: ed:38:3d:94:9d:ca:e1:ba:03:f4:a2:d0:62:62:a2: 11:8b:4d:89:9a:7d:b9:81:b4:2b:ae:ab:0c:84:bf: 2d:ea:ee:5a:c5:95:6d:d6:69:dc:76:92:6f:65:92: 63:bd:f6:c1:ce:31:ca:a6:42:76:ba:0a:62:55:09: 5b:32:46:1d:d0:32:09:05:d1:02:c5:a2:f7:fd:ab: 02:52:de:c0:98:df:5c:fb:b6:b3:10:23:db:3f:99: be:1d:71:b8:d5:ff:71:70:cf:c7:6c:2b:77:8c:73: 32:b1:43:13:8f:6f:2d:79:ef:d7:3f:2b:a1:79:79: a6:eb:72:50:c9:f1:17:68:86:40:7b:e1:ce:75:3c: f0:f2:7f:af:22:2e:4b:77:7c:23:05:86:4e:c4:13: 4c:a9:de:1b:f0:d9:9b:97:03:19:af:15:c0:ac:c7: ef:c0:58:76:6f:b9:82:e7:24:f0:ba:94:e1:c6:f8: 2b:87:52:89:6f:29:a3:e2:71:c9:6f:31:4d:48:41: a0:07:1a:93:6a:f0:88:7c:69:23:06:58:1d:cc:c5: f4:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:5F:10:1C:4A:18:66:EF:38:60:33:71:23:0A:58:36:CE:DE:90:7B X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3139382e302f32342d3234203d3e20313339393934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.213.198.0/24 Signature Algorithm: sha256WithRSAEncryption 84:c6:9c:b0:43:31:ca:fe:71:4c:39:bf:b4:5d:7e:d5:42:f0: 5d:e2:0a:14:24:8a:7d:4d:11:16:bb:59:bf:ee:41:bb:6f:7e: 3f:63:11:a6:2a:22:6f:8e:2f:20:37:10:64:bf:a1:3d:60:99: 59:94:50:a4:7a:56:f9:85:d3:6d:1f:53:4d:2e:0a:90:2d:83: f8:05:4c:d0:48:a5:e7:4b:cb:38:79:63:a2:58:8e:0d:9c:88: e3:58:4b:8f:07:46:3e:74:ad:3f:4b:fe:3c:cc:01:ee:29:ee: cc:5a:a3:55:64:ee:62:e6:0e:81:57:24:87:0c:05:4f:56:f9: ad:15:e8:2e:9a:df:db:7a:96:7b:b0:5f:2c:f6:fa:1c:0c:4c: 57:46:f7:e4:c3:61:bf:c5:30:92:b7:59:36:e5:a7:75:99:2e: ba:60:fb:41:92:4f:66:ea:d1:cc:07:10:0a:14:4f:23:07:60: 1b:00:08:e9:cc:49:7a:9e:23:23:62:92:d9:68:b9:15:71:ce: c9:dd:dc:ac:ad:85:94:30:4c:ad:4c:32:63:34:b2:97:23:6a: 3a:61:88:bc:8f:71:05:37:e8:85:92:48:1a:e8:8d:f1:e1:ee: 5c:af:51:36:68:3b:73:f6:47:14:09:d2:b8:2e:df:f8:77:b0: 05:f9:c3:d2 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUWleZoPffsLprZ3F+FAxCd0RLCdkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDcyODA1NTUwMFoX DTI1MDcyNzA2MDAwMFowMzExMC8GA1UEAxMoREY1RjEwMUM0QTE4NjZFRjM4NjAz MzcxMjMwQTU4MzZDRURFOTA3QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM7ScAIRUiLZuaOucf+yb7heI2DDX5X6JgYvAfYeC0QwP2YC3HWQo2NlSXbq 7Tg9lJ3K4boD9KLQYmKiEYtNiZp9uYG0K66rDIS/LeruWsWVbdZp3HaSb2WSY732 wc4xyqZCdroKYlUJWzJGHdAyCQXRAsWi9/2rAlLewJjfXPu2sxAj2z+Zvh1xuNX/ cXDPx2wrd4xzMrFDE49vLXnv1z8roXl5putyUMnxF2iGQHvhznU88PJ/ryIuS3d8 IwWGTsQTTKneG/DZm5cDGa8VwKzH78BYdm+5guck8LqU4cb4K4dSiW8po+JxyW8x TUhBoAcak2rwiHxpIwZYHczF9MMCAwEAAaOCAgMwggH/MB0GA1UdDgQWBBTfXxAc Shhm7zhgM3EjClg2zt6QezAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGGBggrBgEFBQcBCwR6MHgwdgYIKwYBBQUHMAuGanJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNDMwMmUz MjMxMzMyZTMxMzkzODJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzOTM5Mzkz NC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAIzVxjANBgkqhkiG9w0BAQsFAAOCAQEAhMacsEMxyv5xTDm/ tF1+1ULwXeIKFCSKfU0RFrtZv+5Bu29+P2MRpioib44vIDcQZL+hPWCZWZRQpHpW +YXTbR9TTS4KkC2D+AVM0Eil50vLOHljoliODZyI41hLjwdGPnStP0v+PMwB7inu zFqjVWTuYuYOgVckhwwFT1b5rRXoLprf23qWe7BfLPb6HAxMV0b35MNhv8UwkrdZ NuWndZkuumD7QZJPZurRzAcQChRPIwdgGwAI6cxJep4jI2KS2Wi5FXHOyd3crK2F lDBMrUwyYzSylyNqOmGIvI9xBTfohZJIGuiN8eHuXK9RNmg7c/ZHFAnSuC7f+Hew BfnD0g== -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org