$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31302e3235342e302f32332d3234203d3e20313532333539.roa File: 3135372e31302e3235342e302f32332d3234203d3e20313532333539.roa (raw, json) Hash identifier: RIrAElOVXWxVet+yNV+oDIjng75jbKOVkxALRzpUG3g= Subject key identifier: 9A:6A:A0:9B:16:A6:E2:39:91:DF:2F:69:42:F4:67:4B:50:CC:CC:26 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 124FE379C0CA7CDC97146F6BAE1C3722B004D1AB Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31302e3235342e302f32332d3234203d3e20313532333539.roa Signing time: Thu 01 Feb 2024 08:11:21 +0000 ROA not before: Thu 01 Feb 2024 08:06:21 +0000 ROA not after: Thu 30 Jan 2025 08:11:21 +0000 asID: 152359 IP address blocks: 157.10.254.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:4f:e3:79:c0:ca:7c:dc:97:14:6f:6b:ae:1c:37:22:b0:04:d1:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Feb 1 08:06:21 2024 GMT Not After : Jan 30 08:11:21 2025 GMT Subject: CN=9A6AA09B16A6E23991DF2F6942F4674B50CCCC26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1b:87:af:5e:e6:f5:ba:59:87:e7:51:76:9e: 92:a9:69:58:a7:27:72:66:76:6c:14:99:59:04:2a: 94:ff:56:3e:1c:b7:bd:71:5e:9d:03:a9:03:d6:68: 65:0e:b5:bd:d4:06:19:70:24:38:05:c6:7c:2a:29: ec:d5:09:73:43:c0:44:ea:25:68:ec:d7:d6:29:dd: 15:82:fa:a2:7f:40:d6:f0:b8:93:0b:d0:11:09:7a: 6c:ad:7d:c0:2f:85:4a:d1:18:94:a7:01:53:0d:cd: 48:8f:2a:c6:45:92:a5:fc:9a:f0:a1:5b:31:7e:4f: 88:8f:4a:e2:ad:aa:af:ea:56:a1:e2:eb:8d:57:54: 7a:2b:5e:23:7a:b3:62:4f:a7:14:47:6b:50:82:33: f2:c5:90:7f:94:be:0c:57:89:a6:98:2b:24:b8:fe: 96:d2:5d:f5:71:3e:84:21:4d:71:3e:60:59:e2:1d: e0:18:44:21:41:c4:11:4a:79:32:a9:d7:11:1d:6b: 87:f8:1c:04:56:8b:02:e9:1e:d0:0e:1a:51:72:fc: 0e:e7:c8:c0:6e:55:9b:5f:b2:36:dd:ae:22:d2:23: 6d:57:f3:7d:40:2f:69:a2:83:7d:10:c8:7a:cc:7a: a4:19:45:85:d2:26:5d:82:92:94:57:a9:69:0e:f4: 4c:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:6A:A0:9B:16:A6:E2:39:91:DF:2F:69:42:F4:67:4B:50:CC:CC:26 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31302e3235342e302f32332d3234203d3e20313532333539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.254.0/23 Signature Algorithm: sha256WithRSAEncryption 62:90:f7:7b:e5:fa:38:2e:89:ae:c5:05:36:99:85:45:34:f4: 2b:07:ed:8c:f7:bf:18:ab:91:5b:e4:b2:74:1d:c4:43:81:f8: 85:d7:52:f5:c1:fc:4a:95:31:6a:ef:8f:6a:13:9d:ac:1a:09: b6:26:6c:eb:b2:08:0c:21:b6:6d:3a:29:0c:27:35:1f:57:4b: 4e:28:98:d2:c6:c9:e1:cf:ed:54:39:17:13:f8:a8:99:24:a6: 8b:32:30:6d:74:7b:11:cf:fc:32:01:93:2f:04:4f:6e:a9:e4: fe:1a:b7:e7:5f:24:5f:b4:05:32:d7:d8:b3:74:e3:82:b7:a9: ef:12:1e:d4:a6:46:63:3c:8b:70:41:9f:f8:f8:d4:85:13:b2: 6a:78:49:ac:b7:eb:34:83:15:c1:b1:46:8f:49:fa:7c:e8:88: 8b:81:3c:7f:10:fc:72:6c:6d:b0:00:a6:85:28:e9:94:9c:1e: b2:0f:f0:28:5a:b1:c5:34:02:09:17:8f:25:93:28:1a:41:72: fd:75:b5:5d:aa:b1:5c:ea:61:c1:ef:b3:1a:8a:8d:52:3b:f0: 36:1c:3b:ba:f3:8d:56:72:36:51:ca:45:4e:fb:ec:56:d1:a4: b0:15:86:69:97:c1:9d:47:fe:af:dc:cc:9a:ab:4e:2f:ea:66: 2d:dc:c6:66 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIUEk/jecDKfNyXFG9rrhw3IrAE0aswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDIwMTA4MDYyMVoX DTI1MDEzMDA4MTEyMVowMzExMC8GA1UEAxMoOUE2QUEwOUIxNkE2RTIzOTkxREYy RjY5NDJGNDY3NEI1MENDQ0MyNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKQbh69e5vW6WYfnUXaekqlpWKcncmZ2bBSZWQQqlP9WPhy3vXFenQOpA9Zo ZQ61vdQGGXAkOAXGfCop7NUJc0PAROolaOzX1indFYL6on9A1vC4kwvQEQl6bK19 wC+FStEYlKcBUw3NSI8qxkWSpfya8KFbMX5PiI9K4q2qr+pWoeLrjVdUeiteI3qz Yk+nFEdrUIIz8sWQf5S+DFeJppgrJLj+ltJd9XE+hCFNcT5gWeId4BhEIUHEEUp5 MqnXER1rh/gcBFaLAuke0A4aUXL8DufIwG5Vm1+yNt2uItIjbVfzfUAvaaKDfRDI esx6pBlFhdImXYKSlFepaQ70TA8CAwEAAaOCAgEwggH9MB0GA1UdDgQWBBSaaqCb FqbiOZHfL2lC9GdLUMzMJjAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGEBggrBgEFBQcBCwR4MHYwdAYIKwYBBQUHMAuGaHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz MTMwMmUzMjM1MzQyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzMTM1MzIzMzM1Mzku cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAGdCv4wDQYJKoZIhvcNAQELBQADggEBAGKQ93vl+jguia7FBTaZ hUU09CsH7Yz3vxirkVvksnQdxEOB+IXXUvXB/EqVMWrvj2oTnawaCbYmbOuyCAwh tm06KQwnNR9XS04omNLGyeHP7VQ5FxP4qJkkposyMG10exHP/DIBky8ET26p5P4a t+dfJF+0BTLX2LN044K3qe8SHtSmRmM8i3BBn/j41IUTsmp4Say36zSDFcGxRo9J +nzoiIuBPH8Q/HJsbbAApoUo6ZScHrIP8ChascU0AgkXjyWTKBpBcv11tV2qsVzq YcHvsxqKjVI78DYcO7rzjVZyNlHKRU777FbRpLAVhmmXwZ1H/q/czJqrTi/qZi3c xmY= -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org