$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31302e302e302f32332d3234203d3e20313532303739.roa File: 3135372e31302e302e302f32332d3234203d3e20313532303739.roa (raw, json) Hash identifier: tOOwzqQ6IcsLdHf18l145eYJdrLYL9ExVoMAoFIKVYE= Subject key identifier: 08:A2:D3:8F:97:BC:21:F8:BD:52:C1:B5:F9:42:56:C2:0C:33:2F:D1 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 097F6A22F546FC2FA84070D12BBB854ADFAD619C Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31302e302e302f32332d3234203d3e20313532303739.roa Signing time: Fri 01 Mar 2024 03:05:57 +0000 ROA not before: Fri 01 Mar 2024 03:00:57 +0000 ROA not after: Fri 28 Feb 2025 03:05:57 +0000 asID: 152079 IP address blocks: 157.10.0.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:7f:6a:22:f5:46:fc:2f:a8:40:70:d1:2b:bb:85:4a:df:ad:61:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Mar 1 03:00:57 2024 GMT Not After : Feb 28 03:05:57 2025 GMT Subject: CN=08A2D38F97BC21F8BD52C1B5F94256C20C332FD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8f:8e:55:d2:36:8b:20:60:5e:09:aa:24:3b: 9b:b4:cc:31:7c:6f:fb:48:93:55:90:66:52:e6:5f: 42:d2:6f:47:f0:73:45:fa:d5:d8:4f:52:0f:ff:02: b2:74:f7:bb:19:7e:26:e5:38:d3:48:ee:30:95:22: 5b:ff:98:1c:4e:50:4d:92:29:c6:b7:d1:72:aa:a0: 70:6c:bf:a2:30:0e:32:f6:f0:bd:8e:10:41:c3:ff: e9:ab:de:6d:b3:55:7c:f3:8b:fe:c0:57:a0:7d:24: c4:ab:ab:a4:64:b9:74:9b:4b:75:8e:1d:06:b4:90: 26:9d:c6:28:ff:26:52:f9:3c:46:95:45:b5:0e:ba: d4:bf:cf:08:7c:6b:52:6e:06:4e:10:7d:9e:e7:aa: 9f:ba:f7:8c:a9:75:36:97:bd:85:85:2a:6d:bf:e2: e1:00:38:c0:c0:1d:fc:58:91:a8:57:bf:6f:a3:f6: f7:0b:48:34:06:71:5a:47:12:76:18:10:61:25:43: da:19:07:39:ed:c3:53:21:1a:6f:49:fe:aa:d3:8b: f9:dd:43:72:cd:64:dd:6e:30:98:e6:a0:fe:a5:cd: be:23:88:fb:e9:ba:7a:ee:c3:ee:fb:c5:78:79:67: 3b:7e:1c:7e:d9:1b:0a:c0:4f:bc:0a:52:19:0c:a0: a2:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:A2:D3:8F:97:BC:21:F8:BD:52:C1:B5:F9:42:56:C2:0C:33:2F:D1 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31302e302e302f32332d3234203d3e20313532303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.0.0/23 Signature Algorithm: sha256WithRSAEncryption 1f:a5:5d:2e:be:f5:bb:cd:b0:35:a9:e1:76:1e:74:e9:e5:dd: 69:b4:5a:dd:52:9c:4d:a8:91:89:b6:b1:52:dd:7c:ac:f8:99: d7:82:a0:2e:fe:0f:4c:38:59:1e:80:d3:4f:66:07:5f:d2:b6: 77:66:73:c0:6e:b8:0f:14:fb:cc:3c:26:5f:dd:63:21:bf:6d: 38:99:e3:b3:46:41:79:70:71:10:c7:ad:7d:21:8b:8e:28:68: 88:fa:54:1b:28:4b:47:df:20:16:da:18:ab:d8:80:ef:79:19: a8:91:2f:75:ba:58:ad:a1:14:b4:da:0f:5e:48:97:7e:b7:3b: ad:73:df:bf:50:b7:e7:85:32:b6:44:54:92:ee:b5:88:19:be: a0:fd:e9:97:0f:b0:e9:53:a9:b3:a3:a8:05:fb:11:1e:a4:6d: f5:be:d4:bf:a6:19:c0:d9:b7:93:0f:0d:06:50:73:16:43:bb: d1:49:43:4d:08:a1:5e:26:7d:a0:02:8d:51:8a:b9:f6:96:d1: f8:18:8b:59:13:6f:8a:69:12:40:5a:a7:26:46:8c:82:b1:d8: ba:6f:b7:39:dc:7d:7f:b0:0b:9f:b9:3c:4c:2f:26:e3:33:33: 85:c0:c3:a3:32:aa:e3:05:b8:5e:3a:c6:97:68:91:8e:b2:b3: 7c:cd:67:9c -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUCX9qIvVG/C+oQHDRK7uFSt+tYZwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDMwMTAzMDA1N1oX DTI1MDIyODAzMDU1N1owMzExMC8GA1UEAxMoMDhBMkQzOEY5N0JDMjFGOEJENTJD MUI1Rjk0MjU2QzIwQzMzMkZEMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMGPjlXSNosgYF4JqiQ7m7TMMXxv+0iTVZBmUuZfQtJvR/BzRfrV2E9SD/8C snT3uxl+JuU400juMJUiW/+YHE5QTZIpxrfRcqqgcGy/ojAOMvbwvY4QQcP/6ave bbNVfPOL/sBXoH0kxKurpGS5dJtLdY4dBrSQJp3GKP8mUvk8RpVFtQ661L/PCHxr Um4GThB9nueqn7r3jKl1Npe9hYUqbb/i4QA4wMAd/FiRqFe/b6P29wtINAZxWkcS dhgQYSVD2hkHOe3DUyEab0n+qtOL+d1Dcs1k3W4wmOag/qXNviOI++m6eu7D7vvF eHlnO34cftkbCsBPvApSGQygor8CAwEAAaOCAf0wggH5MB0GA1UdDgQWBBQIotOP l7wh+L1SwbX5QlbCDDMv0TAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGABggrBgEFBQcBCwR0MHIwcAYIKwYBBQUHMAuGZHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz MTMwMmUzMDJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzczOS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAZ0KADANBgkqhkiG9w0BAQsFAAOCAQEAH6VdLr71u82wNanhdh506eXd abRa3VKcTaiRibaxUt18rPiZ14KgLv4PTDhZHoDTT2YHX9K2d2ZzwG64DxT7zDwm X91jIb9tOJnjs0ZBeXBxEMetfSGLjihoiPpUGyhLR98gFtoYq9iA73kZqJEvdbpY raEUtNoPXkiXfrc7rXPfv1C354UytkRUku61iBm+oP3plw+w6VOps6OoBfsRHqRt 9b7Uv6YZwNm3kw8NBlBzFkO70UlDTQihXiZ9oAKNUYq59pbR+BiLWRNvimkSQFqn JkaMgrHYum+3Odx9f7ALn7k8TC8m4zMzhcDDozKq4wW4XjrGl2iRjrKzfM1nnA== -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org