$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3230332e302f32342d3234203d3e20313339393934.roa File: 3134302e3231332e3230332e302f32342d3234203d3e20313339393934.roa (raw, json) Hash identifier: MsD09O1S2LSi7CCEa5WOP5IchdmlykAOCmCFI8P0kMI= Subject key identifier: 33:D6:8F:F0:80:90:25:2A:57:8B:F5:B2:D3:DF:FB:E2:63:DF:8A:1B Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 4DFF695E0F93B630A42ECA8C134F6B0289837E2B Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3230332e302f32342d3234203d3e20313339393934.roa Signing time: Sun 28 Jul 2024 06:00:01 +0000 ROA not before: Sun 28 Jul 2024 05:55:01 +0000 ROA not after: Sun 27 Jul 2025 06:00:01 +0000 asID: 139994 IP address blocks: 140.213.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:ff:69:5e:0f:93:b6:30:a4:2e:ca:8c:13:4f:6b:02:89:83:7e:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jul 28 05:55:01 2024 GMT Not After : Jul 27 06:00:01 2025 GMT Subject: CN=33D68FF08090252A578BF5B2D3DFFBE263DF8A1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a8:23:91:b4:01:1a:37:5a:a6:f5:76:c4:b5: 44:e9:01:4b:9b:c1:fe:ae:60:9d:4e:0a:15:86:1c: 49:3c:07:1d:bf:4f:89:43:81:37:8f:80:3a:64:3f: ad:5b:3d:76:b4:0d:f2:6e:98:9a:9c:de:df:0f:8e: df:8f:c5:17:1c:e9:fc:fa:85:e6:c9:19:54:e1:22: 92:da:33:1b:2d:29:05:f5:ba:bc:99:a7:c3:2e:6c: 5d:e2:9c:74:ee:12:53:48:9c:bc:2f:c5:10:c4:f0: 59:87:ba:29:6f:36:b3:bc:0b:fe:f6:41:8c:46:49: c9:8d:4e:25:65:3a:5c:ba:83:57:20:21:be:ff:f9: 69:37:78:3f:63:75:4f:52:c4:3b:eb:6a:bc:69:29: 83:5c:81:d5:c3:5f:c8:49:f1:3c:e0:a2:9a:12:a5: a9:21:87:a4:aa:50:dc:07:29:ab:7d:57:01:3b:24: c6:c7:3c:ba:a2:3b:6a:01:b5:2e:93:e4:fc:27:17: 4b:6f:7e:e5:17:6d:c4:29:a0:7c:64:81:84:fe:b4: f9:53:d1:4e:cb:09:52:f7:35:1b:99:5a:c4:4f:9f: fd:63:e0:44:42:c8:7b:24:50:99:32:0e:36:d0:92: c2:e8:6c:e8:bb:8c:f1:82:4c:93:40:ec:6a:9d:0f: 36:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:D6:8F:F0:80:90:25:2A:57:8B:F5:B2:D3:DF:FB:E2:63:DF:8A:1B X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3230332e302f32342d3234203d3e20313339393934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.213.203.0/24 Signature Algorithm: sha256WithRSAEncryption 76:a5:ff:72:2c:59:68:e2:36:eb:92:4e:26:30:14:0b:3c:0f: d3:70:06:a8:75:6e:9f:cf:58:5f:18:76:f6:b9:3c:71:ea:47: e4:47:61:b3:ea:f1:20:8e:ab:5e:a8:2e:e3:68:fc:dc:5e:95: 21:dd:70:28:41:60:16:41:77:04:f3:06:98:c4:e0:0a:c0:4e: 11:a7:6e:75:93:64:00:e6:7c:94:b7:31:77:c1:ee:22:93:08: 63:c0:79:eb:98:f4:64:3f:6b:de:a6:4b:36:a2:2e:57:7b:c9: 6e:d4:f9:cd:c7:d1:90:38:ee:dc:1a:d8:46:3c:ef:97:49:32: 2a:12:0c:29:84:85:0c:5a:e9:c1:1e:97:e4:bb:d9:5e:19:47: 29:c5:34:f1:07:f3:e5:26:15:3a:f7:0d:fa:ba:2c:66:77:0d: 85:ad:ba:e7:42:72:b5:fe:ef:9e:36:ff:31:2e:2d:de:38:51: 85:20:43:bf:8d:07:5e:f1:11:1f:4b:5d:dd:c9:0f:48:ae:bf: 38:ee:56:b9:03:20:b3:2a:68:81:8f:dd:29:88:13:55:f7:82: 63:4a:89:4e:6b:e4:e0:d9:03:7b:bc:5c:f0:92:8e:94:9a:5d: 50:bb:d9:0c:ce:32:9d:56:bb:b9:eb:64:c3:ee:00:b7:6a:e4: c0:37:f6:93 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUTf9pXg+TtjCkLsqME09rAomDfiswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDcyODA1NTUwMVoX DTI1MDcyNzA2MDAwMVowMzExMC8GA1UEAxMoMzNENjhGRjA4MDkwMjUyQTU3OEJG NUIyRDNERkZCRTI2M0RGOEExQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMKoI5G0ARo3Wqb1dsS1ROkBS5vB/q5gnU4KFYYcSTwHHb9PiUOBN4+AOmQ/ rVs9drQN8m6Ympze3w+O34/FFxzp/PqF5skZVOEiktozGy0pBfW6vJmnwy5sXeKc dO4SU0icvC/FEMTwWYe6KW82s7wL/vZBjEZJyY1OJWU6XLqDVyAhvv/5aTd4P2N1 T1LEO+tqvGkpg1yB1cNfyEnxPOCimhKlqSGHpKpQ3Acpq31XATskxsc8uqI7agG1 LpPk/CcXS29+5RdtxCmgfGSBhP60+VPRTssJUvc1G5laxE+f/WPgRELIeyRQmTIO NtCSwuhs6LuM8YJMk0Dsap0PNg8CAwEAAaOCAgMwggH/MB0GA1UdDgQWBBQz1o/w gJAlKleL9bLT3/viY9+KGzAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGGBggrBgEFBQcBCwR6MHgwdgYIKwYBBQUHMAuGanJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNDMwMmUz MjMxMzMyZTMyMzAzMzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzOTM5Mzkz NC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAIzVyzANBgkqhkiG9w0BAQsFAAOCAQEAdqX/cixZaOI265JO JjAUCzwP03AGqHVun89YXxh29rk8cepH5Edhs+rxII6rXqgu42j83F6VId1wKEFg FkF3BPMGmMTgCsBOEadudZNkAOZ8lLcxd8HuIpMIY8B565j0ZD9r3qZLNqIuV3vJ btT5zcfRkDju3BrYRjzvl0kyKhIMKYSFDFrpwR6X5LvZXhlHKcU08Qfz5SYVOvcN +rosZncNha2650Jytf7vnjb/MS4t3jhRhSBDv40HXvERH0td3ckPSK6/OO5WuQMg sypogY/dKYgTVfeCY0qJTmvk4NkDe7xc8JKOlJpdULvZDM4ynVa7uetkw+4At2rk wDf2kw== -----END CERTIFICATE-----Generated at Wed Nov 20 06:21:50 2024 by rpki-client on console-ams.rpki-client.org