$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3230322e302f32342d3234203d3e20313339393934.roa File: 3134302e3231332e3230322e302f32342d3234203d3e20313339393934.roa (raw, json) Hash identifier: Ee9XXvP+ZbV7f59wUu5jdHGiInzKjRaph67FS1lYhsU= Subject key identifier: A7:41:D4:A4:7A:A9:B3:7B:2D:8B:93:74:EA:AC:2F:A5:D3:FB:DF:16 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 342BFF4D529EC357D21DC001F6D6EBC572FFB5D1 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3230322e302f32342d3234203d3e20313339393934.roa Signing time: Sun 28 Jul 2024 05:00:00 +0000 ROA not before: Sun 28 Jul 2024 04:55:00 +0000 ROA not after: Sun 27 Jul 2025 05:00:00 +0000 asID: 139994 IP address blocks: 140.213.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:2b:ff:4d:52:9e:c3:57:d2:1d:c0:01:f6:d6:eb:c5:72:ff:b5:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jul 28 04:55:00 2024 GMT Not After : Jul 27 05:00:00 2025 GMT Subject: CN=A741D4A47AA9B37B2D8B9374EAAC2FA5D3FBDF16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:09:dd:e9:f8:45:35:eb:74:a2:78:70:aa:e8: e8:38:11:52:ff:80:15:aa:14:9d:d1:80:d5:27:b9: 3e:97:df:78:95:d7:3a:9e:62:11:7d:dc:95:75:53: 8a:20:89:8e:36:45:3f:c1:a9:72:00:ca:91:0c:e6: b5:7c:64:c8:1c:46:25:1b:34:6b:34:be:b6:a1:df: ea:82:61:d6:0a:dd:28:6f:3c:3d:57:bd:59:f8:47: 8d:2a:75:d0:0d:55:6a:46:e0:26:9d:4d:6b:5b:13: 06:ab:9a:40:3d:56:2f:20:90:a5:0a:c9:ca:63:a6: fd:5c:c4:62:94:a0:4a:b6:f9:65:7b:eb:68:f7:c6: 48:36:85:8a:d1:af:48:b1:cf:18:16:33:29:83:88: 7c:46:b8:d2:05:74:98:bf:da:aa:19:34:4f:a5:0c: 11:16:a1:32:95:13:5a:79:bb:f8:34:53:dc:8e:18: 69:6d:3e:8c:72:e3:8b:da:3b:d9:11:13:52:36:21: 28:a2:e2:6e:51:8c:a9:5b:e2:07:6a:2c:dd:b6:72: 67:6a:8c:0e:1b:6a:18:06:fa:22:fe:c1:96:bd:8d: d3:97:a9:fe:32:7f:5d:b7:df:66:6c:aa:9a:51:c4: a6:b5:4f:8a:05:79:29:d1:87:c7:da:77:75:97:bc: 1e:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:41:D4:A4:7A:A9:B3:7B:2D:8B:93:74:EA:AC:2F:A5:D3:FB:DF:16 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3230322e302f32342d3234203d3e20313339393934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.213.202.0/24 Signature Algorithm: sha256WithRSAEncryption 73:2f:83:04:8e:bd:ad:f1:da:80:b8:1f:6d:88:53:ce:8a:3e: 8d:33:48:6b:19:5c:80:34:fc:bd:c2:30:d6:7f:d8:6d:95:be: 31:b9:9c:ff:65:fc:41:2f:21:a9:1d:c4:c6:ad:f6:d5:7b:0f: 8a:b1:ea:cf:6d:f8:bd:8c:cb:bc:ba:54:eb:29:de:21:50:a5: ec:2e:bc:9a:a3:42:e4:de:4a:2d:1e:15:61:76:55:67:92:0f: d5:7b:31:c9:b3:25:3d:e9:5e:14:74:e3:ee:95:5f:86:19:d2: 38:20:87:19:39:51:7b:66:55:bb:73:2a:a5:14:4e:00:6a:c9: 32:e7:3e:57:71:a3:46:d7:41:6e:ca:1b:4f:c4:74:01:15:d2: b5:f3:a5:9c:d2:4b:b0:e0:b8:c1:a1:73:9a:ec:b5:ef:91:4b: 63:84:e1:16:ce:97:80:02:b1:95:d1:3e:d3:75:9d:7b:52:fe: 72:f3:4f:9a:2c:f1:8d:e7:f4:8e:16:d3:30:83:22:fb:df:d9: ae:84:19:d0:22:bb:a5:2f:0f:9a:02:d4:0b:19:26:9b:f9:92: 9a:0e:19:fa:07:8a:c7:c5:ff:13:16:2b:eb:70:5c:fe:9c:8f: 4b:8b:71:1e:ad:62:ac:49:e8:8a:00:53:36:53:42:a6:35:8e: 9d:31:e2:16 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUNCv/TVKew1fSHcAB9tbrxXL/tdEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDcyODA0NTUwMFoX DTI1MDcyNzA1MDAwMFowMzExMC8GA1UEAxMoQTc0MUQ0QTQ3QUE5QjM3QjJEOEI5 Mzc0RUFBQzJGQTVEM0ZCREYxNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMwJ3en4RTXrdKJ4cKro6DgRUv+AFaoUndGA1Se5PpffeJXXOp5iEX3clXVT iiCJjjZFP8GpcgDKkQzmtXxkyBxGJRs0azS+tqHf6oJh1grdKG88PVe9WfhHjSp1 0A1VakbgJp1Na1sTBquaQD1WLyCQpQrJymOm/VzEYpSgSrb5ZXvraPfGSDaFitGv SLHPGBYzKYOIfEa40gV0mL/aqhk0T6UMERahMpUTWnm7+DRT3I4YaW0+jHLji9o7 2RETUjYhKKLiblGMqVviB2os3bZyZ2qMDhtqGAb6Iv7Blr2N05ep/jJ/XbffZmyq mlHEprVPigV5KdGHx9p3dZe8HqECAwEAAaOCAgMwggH/MB0GA1UdDgQWBBSnQdSk eqmzey2Lk3TqrC+l0/vfFjAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGGBggrBgEFBQcBCwR6MHgwdgYIKwYBBQUHMAuGanJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNDMwMmUz MjMxMzMyZTMyMzAzMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzOTM5Mzkz NC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAIzVyjANBgkqhkiG9w0BAQsFAAOCAQEAcy+DBI69rfHagLgf bYhTzoo+jTNIaxlcgDT8vcIw1n/YbZW+Mbmc/2X8QS8hqR3Exq321XsPirHqz234 vYzLvLpU6yneIVCl7C68mqNC5N5KLR4VYXZVZ5IP1XsxybMlPeleFHTj7pVfhhnS OCCHGTlRe2ZVu3MqpRROAGrJMuc+V3GjRtdBbsobT8R0ARXStfOlnNJLsOC4waFz muy175FLY4ThFs6XgAKxldE+03Wde1L+cvNPmizxjef0jhbTMIMi+9/ZroQZ0CK7 pS8PmgLUCxkmm/mSmg4Z+geKx8X/ExYr63Bc/pyPS4txHq1irEnoigBTNlNCpjWO nTHiFg== -----END CERTIFICATE-----Generated at Wed Nov 20 06:21:50 2024 by rpki-client on console-ams.rpki-client.org