$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3230312e302f32342d3234203d3e20313339393934.roa File: 3134302e3231332e3230312e302f32342d3234203d3e20313339393934.roa (raw, json) Hash identifier: XdLtpvv4nmrP0yEpRq3vzppErPLapliyaQRdF3yyDOw= Subject key identifier: 9D:AA:A8:25:7B:9E:88:1A:DD:73:7A:E4:00:6E:D5:6C:5C:FD:DB:F1 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 0EAC49940E41C57B3FA02BD92B6918C43374083B Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3230312e302f32342d3234203d3e20313339393934.roa Signing time: Sun 27 Aug 2023 05:00:00 +0000 ROA not before: Sun 27 Aug 2023 04:55:00 +0000 ROA not after: Sun 25 Aug 2024 05:00:00 +0000 asID: 139994 IP address blocks: 140.213.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 21:23:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:ac:49:94:0e:41:c5:7b:3f:a0:2b:d9:2b:69:18:c4:33:74:08:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Aug 27 04:55:00 2023 GMT Not After : Aug 25 05:00:00 2024 GMT Subject: CN=9DAAA8257B9E881ADD737AE4006ED56C5CFDDBF1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:43:84:0e:40:75:1a:9f:14:b0:37:2e:3a:cb: 1d:e3:d9:86:d0:77:46:84:85:73:db:8b:44:c9:a7: ea:90:1a:43:ca:75:1b:4c:26:b0:00:33:c9:d3:c5: f7:37:24:7e:d6:10:d0:3e:ff:d6:b9:86:55:25:75: 9f:39:f4:bf:29:c1:fe:77:b4:ab:b8:81:0b:ab:6a: 2e:6f:a7:d8:41:be:5e:3b:8d:ef:3b:2c:f6:db:58: a3:24:02:b3:0a:4f:34:75:2c:c4:2a:8b:09:ea:bb: 5c:a3:63:83:2d:92:9e:06:d6:9e:d3:e0:44:75:1f: a8:fd:cd:22:d4:96:24:39:3b:b2:17:4d:3b:59:33: 0c:e2:38:47:0a:cf:da:e7:35:cc:31:36:63:19:f2: 2c:25:08:61:b2:8d:10:e9:8c:2e:7c:ef:72:69:3b: 1b:ad:cb:dd:f0:fa:a1:69:83:c1:77:f4:69:1d:c7: 9a:ce:c4:f4:2a:49:d5:ce:96:82:06:fe:e5:cf:33: c6:fe:85:e7:49:04:47:7a:5d:43:99:33:67:1e:1f: 06:99:cf:ba:f9:31:73:6e:d3:d8:cd:a8:ad:0d:d1: 6d:64:34:09:bd:ba:d8:99:cc:8a:c5:47:35:91:53: c4:5d:8e:47:48:3a:8e:44:3f:57:fa:d7:11:55:8d: 50:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:AA:A8:25:7B:9E:88:1A:DD:73:7A:E4:00:6E:D5:6C:5C:FD:DB:F1 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3230312e302f32342d3234203d3e20313339393934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.213.201.0/24 Signature Algorithm: sha256WithRSAEncryption 78:aa:91:3e:d4:dc:ef:50:c6:16:dd:2b:1c:c8:21:b7:af:79: 5f:4a:7f:ef:73:f1:a5:f3:09:ba:d3:d5:95:d1:91:7b:ae:be: 9f:67:3c:e2:c8:2a:2f:d7:f1:4b:42:f7:2c:aa:50:29:91:9a: 66:66:7b:4f:bb:ce:71:28:87:2d:72:56:9d:42:38:df:f2:59: 1f:f5:c1:77:ef:ac:d4:de:3a:f0:d2:43:e2:31:ec:ce:a3:7f: ec:35:43:36:f5:30:19:29:bc:91:95:e2:fb:84:a4:cf:8f:b7: f7:4b:29:93:76:4f:b2:94:75:89:5d:73:17:74:ac:c3:d6:c4: d4:76:3a:b3:7b:14:86:3b:3c:7b:8c:7c:9b:2d:2f:a7:37:55: 7e:52:39:67:fb:88:c5:ec:71:e7:28:04:24:1d:34:e6:fa:2e: 22:02:47:07:49:94:91:a3:3a:39:bc:61:7c:cb:1b:a1:d4:f3: 30:a0:22:f7:88:b7:3f:80:27:7f:00:07:ec:d9:45:da:2c:aa: e2:e5:55:04:12:06:58:b4:2e:f8:83:77:35:5c:b3:0c:b3:9b: 2b:44:9f:c6:55:ad:6d:ad:07:07:f5:a9:a9:71:3e:c4:d6:b9: 0b:da:ee:90:44:7e:15:75:bc:63:41:44:68:bf:1f:61:ce:39: 79:68:00:45 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUDqxJlA5BxXs/oCvZK2kYxDN0CDswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTIzMDgyNzA0NTUwMFoX DTI0MDgyNTA1MDAwMFowMzExMC8GA1UEAxMoOURBQUE4MjU3QjlFODgxQURENzM3 QUU0MDA2RUQ1NkM1Q0ZEREJGMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMVDhA5AdRqfFLA3LjrLHePZhtB3RoSFc9uLRMmn6pAaQ8p1G0wmsAAzydPF 9zckftYQ0D7/1rmGVSV1nzn0vynB/ne0q7iBC6tqLm+n2EG+XjuN7zss9ttYoyQC swpPNHUsxCqLCeq7XKNjgy2SngbWntPgRHUfqP3NItSWJDk7shdNO1kzDOI4RwrP 2uc1zDE2YxnyLCUIYbKNEOmMLnzvcmk7G63L3fD6oWmDwXf0aR3Hms7E9CpJ1c6W ggb+5c8zxv6F50kER3pdQ5kzZx4fBpnPuvkxc27T2M2orQ3RbWQ0Cb262JnMisVH NZFTxF2OR0g6jkQ/V/rXEVWNUK0CAwEAAaOCAgMwggH/MB0GA1UdDgQWBBSdqqgl e56IGt1zeuQAbtVsXP3b8TAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGGBggrBgEFBQcBCwR6MHgwdgYIKwYBBQUHMAuGanJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNDMwMmUz MjMxMzMyZTMyMzAzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzOTM5Mzkz NC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAIzVyTANBgkqhkiG9w0BAQsFAAOCAQEAeKqRPtTc71DGFt0r HMght695X0p/73PxpfMJutPVldGRe66+n2c84sgqL9fxS0L3LKpQKZGaZmZ7T7vO cSiHLXJWnUI43/JZH/XBd++s1N468NJD4jHszqN/7DVDNvUwGSm8kZXi+4Skz4+3 90spk3ZPspR1iV1zF3Ssw9bE1HY6s3sUhjs8e4x8my0vpzdVflI5Z/uIxexx5ygE JB005vouIgJHB0mUkaM6ObxhfMsbodTzMKAi94i3P4AnfwAH7NlF2iyq4uVVBBIG WLQu+IN3NVyzDLObK0SfxlWtba0HB/WpqXE+xNa5C9rukER+FXW8Y0FEaL8fYc45 eWgARQ== -----END CERTIFICATE-----Generated at Wed May 1 19:11:09 2024 by rpki-client on console-fra.rpki-client.org