$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31302e3232322e302f32332d3234203d3e20313431383938.roa File: 3135372e31302e3232322e302f32332d3234203d3e20313431383938.roa (raw, json) Hash identifier: ftruBrxTedKpU191PfKkRl0E5U4mdpsSrCaPh35ywOo= Subject key identifier: FA:6A:25:90:25:81:36:71:AC:C1:04:85:68:7F:67:03:9B:BD:10:92 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 4EF0576BA58A5E4C60A7578E727FD7EB1416AAC4 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31302e3232322e302f32332d3234203d3e20313431383938.roa Signing time: Wed 31 Jan 2024 02:29:55 +0000 ROA not before: Wed 31 Jan 2024 02:24:55 +0000 ROA not after: Wed 29 Jan 2025 02:29:55 +0000 asID: 141898 IP address blocks: 157.10.222.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:f0:57:6b:a5:8a:5e:4c:60:a7:57:8e:72:7f:d7:eb:14:16:aa:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 31 02:24:55 2024 GMT Not After : Jan 29 02:29:55 2025 GMT Subject: CN=FA6A259025813671ACC10485687F67039BBD1092 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:86:7f:d5:89:be:69:52:08:e8:78:26:83:cf: f2:6b:91:27:b1:f3:2b:ee:3e:e1:35:07:1e:8d:78: 9c:83:e5:d5:f2:31:70:93:a8:27:00:d2:2f:35:fc: ef:5d:2b:a8:48:71:79:95:a0:61:f3:61:78:c9:50: a6:fb:2c:52:8e:28:68:6c:67:b8:aa:79:36:55:78: ab:2a:27:96:c6:ee:78:24:38:1d:f2:7f:a8:26:4b: 1b:8a:5a:0e:f9:b1:e4:bd:7d:36:15:c7:31:70:76: 81:2c:e0:fd:d1:d3:90:64:28:39:9e:b3:0b:16:d6: d7:05:fb:d4:ca:f7:66:7f:6b:66:dc:4d:e0:9d:4d: 7b:22:54:55:ba:5a:54:4c:66:1f:ac:30:6b:1f:b5: e2:86:03:d4:8e:05:26:d7:17:f4:8f:2a:4c:74:70: 58:23:ea:04:49:15:f4:90:69:77:f3:74:99:63:ea: 7e:2e:c4:ac:c4:55:27:c0:82:77:52:25:f6:e1:9f: cc:70:c3:77:87:56:36:99:41:7d:c2:2d:41:e7:97: fa:87:7f:b6:b8:3e:bd:dd:74:d1:46:5e:ad:4e:3f: bc:d5:71:c6:09:f1:34:ff:52:99:8e:43:aa:86:5b: 9b:ba:54:81:bd:16:28:22:1a:b8:74:95:4e:ba:15: a7:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:6A:25:90:25:81:36:71:AC:C1:04:85:68:7F:67:03:9B:BD:10:92 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31302e3232322e302f32332d3234203d3e20313431383938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.222.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:55:b2:7a:eb:7c:5b:f3:8d:4d:0a:63:30:9e:18:f2:db:93: a7:81:8b:4c:a1:94:5d:74:90:4d:ad:3e:2a:39:98:ea:fc:e4: 08:6b:17:c9:4a:8a:8d:84:af:a2:84:6a:09:79:ea:af:be:30: 22:6b:bf:ed:f8:33:04:1d:dc:d7:0b:1c:77:a3:3e:ac:2e:5f: 1c:df:30:62:1b:48:79:bd:1a:55:3e:2a:29:c5:da:b1:bb:98: e3:66:da:69:41:cd:6d:d7:c5:7a:f3:7c:8f:be:94:30:79:38: f9:fd:f1:d6:e1:e9:0a:36:7f:7d:b7:2c:23:75:d7:3c:a8:e6: 37:a6:45:31:b6:37:3e:53:ec:c1:d2:98:1a:eb:92:49:e9:01: 8e:c6:ae:53:78:dc:79:e8:8a:43:e6:c4:d9:50:5d:ec:f5:7e: 9b:38:ea:59:9e:d8:2a:f0:a6:7a:c0:c3:d2:bc:3c:05:46:e8: 3a:a7:c8:83:e3:e7:a3:94:48:d1:8e:58:22:df:4c:dd:b7:89: 1f:c7:71:cc:d5:c8:ee:10:06:d4:f1:19:65:fd:d3:ef:cb:d8: d1:36:a7:65:86:c4:15:2e:f0:fd:cd:ab:6d:19:24:26:cd:6d: 9c:0f:0c:3a:c3:34:fc:06:a0:10:ce:3d:3c:11:aa:3e:75:af: a9:be:b8:8c -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIUTvBXa6WKXkxgp1eOcn/X6xQWqsQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDEzMTAyMjQ1NVoX DTI1MDEyOTAyMjk1NVowMzExMC8GA1UEAxMoRkE2QTI1OTAyNTgxMzY3MUFDQzEw NDg1Njg3RjY3MDM5QkJEMTA5MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMuGf9WJvmlSCOh4JoPP8muRJ7HzK+4+4TUHHo14nIPl1fIxcJOoJwDSLzX8 710rqEhxeZWgYfNheMlQpvssUo4oaGxnuKp5NlV4qyonlsbueCQ4HfJ/qCZLG4pa Dvmx5L19NhXHMXB2gSzg/dHTkGQoOZ6zCxbW1wX71Mr3Zn9rZtxN4J1NeyJUVbpa VExmH6wwax+14oYD1I4FJtcX9I8qTHRwWCPqBEkV9JBpd/N0mWPqfi7ErMRVJ8CC d1Il9uGfzHDDd4dWNplBfcItQeeX+od/trg+vd100UZerU4/vNVxxgnxNP9SmY5D qoZbm7pUgb0WKCIauHSVTroVp7sCAwEAAaOCAgEwggH9MB0GA1UdDgQWBBT6aiWQ JYE2cazBBIVof2cDm70QkjAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGEBggrBgEFBQcBCwR4MHYwdAYIKwYBBQUHMAuGaHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz MTMwMmUzMjMyMzIyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzMTM0MzEzODM5Mzgu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAGdCt4wDQYJKoZIhvcNAQELBQADggEBAI9VsnrrfFvzjU0KYzCe GPLbk6eBi0yhlF10kE2tPio5mOr85AhrF8lKio2Er6KEagl56q++MCJrv+34MwQd 3NcLHHejPqwuXxzfMGIbSHm9GlU+KinF2rG7mONm2mlBzW3XxXrzfI++lDB5OPn9 8dbh6Qo2f323LCN11zyo5jemRTG2Nz5T7MHSmBrrkknpAY7GrlN43HnoikPmxNlQ Xez1fps46lme2CrwpnrAw9K8PAVG6DqnyIPj56OUSNGOWCLfTN23iR/HcczVyO4Q BtTxGWX90+/L2NE2p2WGxBUu8P3Nq20ZJCbNbZwPDDrDNPwGoBDOPTwRqj51r6m+ uIw= -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org