$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31302e3138322e302f32332d3234203d3e20313532333434.roa File: 3135372e31302e3138322e302f32332d3234203d3e20313532333434.roa (raw, json) Hash identifier: h1kC/xnWCJ7nuLbDL3wNEWaSsyzNZOZ5P0qvQM1xkfQ= Subject key identifier: D0:9F:36:B1:90:B3:CA:F3:EA:DC:54:8A:92:0E:E1:F3:2D:66:9D:ED Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 5F7144876329DEB9098F3549C8BEC344C45CAB50 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31302e3138322e302f32332d3234203d3e20313532333434.roa Signing time: Mon 12 Feb 2024 07:49:00 +0000 ROA not before: Mon 12 Feb 2024 07:44:00 +0000 ROA not after: Mon 10 Feb 2025 07:49:00 +0000 asID: 152344 IP address blocks: 157.10.182.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:71:44:87:63:29:de:b9:09:8f:35:49:c8:be:c3:44:c4:5c:ab:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Feb 12 07:44:00 2024 GMT Not After : Feb 10 07:49:00 2025 GMT Subject: CN=D09F36B190B3CAF3EADC548A920EE1F32D669DED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d1:1d:0a:c5:6c:c9:17:7f:47:01:e9:a8:86: 1b:e8:42:b6:ac:c2:5d:a8:e7:7b:60:c9:0e:2e:96: 43:bf:51:2b:e1:4c:b6:f6:b1:e3:f6:2b:2a:9e:94: c7:50:45:a9:0b:61:d0:c0:9d:da:66:41:35:d1:f7: 3f:c6:d6:4e:bc:c5:d0:1e:23:5c:ed:a1:fb:b4:0d: 08:f0:b9:a9:c6:3e:7d:f9:cb:c0:35:a1:ca:f2:78: 02:41:3a:5e:c0:8e:f9:8f:33:42:36:c3:37:4c:12: 42:45:0c:f5:0b:a1:36:23:ce:4f:a2:c0:b6:3a:3f: c2:ff:26:25:bd:82:5a:58:53:a5:95:eb:c0:9a:31: c3:ed:1e:de:6f:fe:4c:12:ed:eb:c4:1f:5e:71:e8: 48:3f:6a:22:46:ca:0f:ba:33:06:08:0b:3d:b2:fd: 33:f5:97:22:4f:4d:b0:e3:65:5b:ff:4d:30:96:bb: e1:8d:7c:4b:8f:55:93:58:3d:41:5d:c4:b0:fe:e4: 39:6d:e1:59:bc:c8:c9:c1:4f:0d:e3:0b:f0:59:1a: a4:f5:0a:99:be:7b:04:1e:f4:51:b1:81:b4:13:19: e5:2f:4c:fd:bc:8a:d8:2c:4c:d6:b2:f2:78:25:82: e8:c9:92:c7:29:3d:1f:f9:4b:ea:ed:34:11:c9:39: 4e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:9F:36:B1:90:B3:CA:F3:EA:DC:54:8A:92:0E:E1:F3:2D:66:9D:ED X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31302e3138322e302f32332d3234203d3e20313532333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.182.0/23 Signature Algorithm: sha256WithRSAEncryption 96:32:53:ab:d5:07:e9:f5:b6:ab:5c:a7:59:40:55:4f:22:3e: 06:c5:a5:cb:06:cb:bf:0c:b7:9e:d3:49:26:a7:4b:7a:2d:26: 09:f4:91:6a:c0:f5:a4:f7:78:af:18:28:97:29:56:f3:04:e2: df:1c:e4:00:e9:91:90:54:4f:e3:46:90:04:ca:70:b4:9d:a5: 2d:38:5a:89:02:e2:3a:49:8c:e1:2e:eb:f0:ac:f0:b1:4f:b8: f3:76:dd:1b:3b:ea:7d:91:df:15:0c:e6:7a:07:35:c1:d7:d7: be:48:eb:f0:5d:45:1f:74:0d:f2:da:07:6f:a2:28:03:3f:40: 4a:cb:09:90:00:9b:af:85:11:dd:f5:95:42:1e:14:3c:93:84: 71:cb:56:79:90:e0:88:6a:f6:18:46:10:13:ed:50:f0:23:18: 5c:e3:88:a0:a1:f7:13:5d:d3:13:f8:fb:7a:70:7e:14:38:24: 95:7f:e7:63:e2:b7:44:58:b2:df:46:3b:30:c7:44:c2:3d:03: f4:b2:ce:f5:d8:41:7e:04:cb:f0:d6:a7:1d:07:e0:f7:8a:66: bb:88:e7:8d:68:48:5d:da:c6:98:c1:c6:9f:3a:a8:f7:20:69: f9:df:76:1c:dc:42:38:97:c1:75:01:ec:d4:86:94:0e:93:a4: 76:70:47:97 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIUX3FEh2Mp3rkJjzVJyL7DRMRcq1AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDIxMjA3NDQwMFoX DTI1MDIxMDA3NDkwMFowMzExMC8GA1UEAxMoRDA5RjM2QjE5MEIzQ0FGM0VBREM1 NDhBOTIwRUUxRjMyRDY2OURFRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMTRHQrFbMkXf0cB6aiGG+hCtqzCXajne2DJDi6WQ79RK+FMtvax4/YrKp6U x1BFqQth0MCd2mZBNdH3P8bWTrzF0B4jXO2h+7QNCPC5qcY+ffnLwDWhyvJ4AkE6 XsCO+Y8zQjbDN0wSQkUM9QuhNiPOT6LAtjo/wv8mJb2CWlhTpZXrwJoxw+0e3m/+ TBLt68QfXnHoSD9qIkbKD7ozBggLPbL9M/WXIk9NsONlW/9NMJa74Y18S49Vk1g9 QV3EsP7kOW3hWbzIycFPDeML8FkapPUKmb57BB70UbGBtBMZ5S9M/byK2CxM1rLy eCWC6MmSxyk9H/lL6u00Eck5TqcCAwEAAaOCAgEwggH9MB0GA1UdDgQWBBTQnzax kLPK8+rcVIqSDuHzLWad7TAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGEBggrBgEFBQcBCwR4MHYwdAYIKwYBBQUHMAuGaHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz MTMwMmUzMTM4MzIyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzMTM1MzIzMzM0MzQu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAGdCrYwDQYJKoZIhvcNAQELBQADggEBAJYyU6vVB+n1tqtcp1lA VU8iPgbFpcsGy78Mt57TSSanS3otJgn0kWrA9aT3eK8YKJcpVvME4t8c5ADpkZBU T+NGkATKcLSdpS04WokC4jpJjOEu6/Cs8LFPuPN23Rs76n2R3xUM5noHNcHX175I 6/BdRR90DfLaB2+iKAM/QErLCZAAm6+FEd31lUIeFDyThHHLVnmQ4Ihq9hhGEBPt UPAjGFzjiKCh9xNd0xP4+3pwfhQ4JJV/52Pit0RYst9GOzDHRMI9A/SyzvXYQX4E y/DWpx0H4PeKZruI541oSF3axpjBxp86qPcgafnfdhzcQjiXwXUB7NSGlA6TpHZw R5c= -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org