$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e3131382e302f32342d3234203d3e20313532343031.roa File: 3135372e31352e3131382e302f32342d3234203d3e20313532343031.roa (raw, json) Hash identifier: 5jX+EwC29E13Gqk2viGhCqYXDyRDJsAx9xIeDBQg44c= Subject key identifier: CC:91:0D:B6:F0:91:4C:27:2B:30:48:B5:9C:DD:89:08:2C:EB:48:4B Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 0CFE117E8C0BB998043D979EFF2546C41B126B3C Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e3131382e302f32342d3234203d3e20313532343031.roa Signing time: Fri 15 Mar 2024 07:08:19 +0000 ROA not before: Fri 15 Mar 2024 07:03:19 +0000 ROA not after: Fri 14 Mar 2025 07:08:19 +0000 asID: 152401 IP address blocks: 157.15.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:fe:11:7e:8c:0b:b9:98:04:3d:97:9e:ff:25:46:c4:1b:12:6b:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Mar 15 07:03:19 2024 GMT Not After : Mar 14 07:08:19 2025 GMT Subject: CN=CC910DB6F0914C272B3048B59CDD89082CEB484B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ca:49:b3:0d:18:4d:7e:f3:86:2f:af:1e:24: 3a:c4:77:a3:8c:5d:36:bd:e6:99:63:10:f8:83:f9: ae:d6:88:32:12:6e:2b:f6:18:40:11:42:5a:30:e9: e5:ff:f8:84:92:6a:42:17:e7:4a:0f:02:a2:24:7e: 00:9c:10:75:db:0a:bb:c2:9e:bb:a8:fb:87:38:fc: 4d:14:38:e4:12:c3:13:e2:c8:83:4b:b1:15:f0:36: 61:81:fa:97:8a:38:5e:bb:3a:11:db:6c:53:cc:d6: 53:a0:fe:85:23:d2:33:6c:3e:3e:a7:57:b8:26:4d: 86:d2:52:dc:7e:93:2c:0a:b7:34:92:68:e0:57:df: 8d:ff:35:9c:50:4b:a3:03:02:33:28:04:82:76:ed: cb:8b:5f:c0:86:d2:eb:2c:be:0a:b8:8c:cc:62:b6: 75:f9:56:b9:1b:8b:8f:c5:a9:0b:e3:fc:b9:6f:d7: ae:8a:ac:f7:b3:a4:95:04:5b:b4:ff:3c:da:7e:a2: bd:49:7c:c6:f7:f9:b9:cf:e9:8c:a4:99:df:ef:55: 5e:7d:d2:21:ce:04:00:87:ea:e6:05:f3:5c:8b:16: e1:a1:f5:b2:a6:d2:a5:fa:ca:35:c3:c3:f2:42:7b: 85:5a:b9:78:4d:ec:56:b6:1b:bd:5e:ff:5e:20:68: 87:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:91:0D:B6:F0:91:4C:27:2B:30:48:B5:9C:DD:89:08:2C:EB:48:4B X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e3131382e302f32342d3234203d3e20313532343031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.118.0/24 Signature Algorithm: sha256WithRSAEncryption 60:f9:8c:b7:93:bf:15:be:2e:ce:44:f4:39:4c:75:a4:c7:8b: 74:7f:98:a0:2b:e9:a4:a1:f8:f8:f5:f3:f3:3e:09:71:9b:d9: 6c:8d:88:32:11:2f:f2:a2:a0:1b:51:53:46:bd:f5:b0:50:bb: 30:2a:e6:ed:40:a1:c5:17:f4:47:00:af:bc:fc:a9:cc:a8:df: 25:ba:63:05:a5:4d:39:20:29:71:51:3d:e3:5f:0a:0a:1c:de: ce:a6:12:fd:38:4b:65:56:ae:8a:cb:67:3e:d2:98:98:83:e3: c6:6e:7e:37:74:45:4a:55:86:d7:f6:58:c8:ca:c8:03:fd:70: 12:0d:6e:8d:30:ca:2a:96:6c:e2:e2:b5:d5:8a:84:2f:c4:0e: 8c:a0:73:6f:de:09:51:4b:b3:7e:dc:84:82:15:64:be:3c:b6: af:5c:8a:dd:9a:32:0f:8a:a6:5b:66:01:9a:ea:42:79:d2:97: 79:8f:18:f1:ed:79:4e:65:3d:32:7e:4f:d0:a9:4d:a0:47:d4: c6:11:01:59:f1:88:bf:6c:df:dd:a5:7d:65:9e:f2:c3:16:d0: 31:e3:ea:a9:2a:cd:94:87:06:46:76:2a:d1:89:29:af:23:a3: 91:de:fd:ad:4e:f2:eb:e5:d2:e3:45:a0:4a:1d:6e:85:ee:8e: 23:ca:18:1e -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIUDP4RfowLuZgEPZee/yVGxBsSazwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDMxNTA3MDMxOVoX DTI1MDMxNDA3MDgxOVowMzExMC8GA1UEAxMoQ0M5MTBEQjZGMDkxNEMyNzJCMzA0 OEI1OUNERDg5MDgyQ0VCNDg0QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM3KSbMNGE1+84Yvrx4kOsR3o4xdNr3mmWMQ+IP5rtaIMhJuK/YYQBFCWjDp 5f/4hJJqQhfnSg8CoiR+AJwQddsKu8Keu6j7hzj8TRQ45BLDE+LIg0uxFfA2YYH6 l4o4Xrs6EdtsU8zWU6D+hSPSM2w+PqdXuCZNhtJS3H6TLAq3NJJo4Fffjf81nFBL owMCMygEgnbty4tfwIbS6yy+CriMzGK2dflWuRuLj8WpC+P8uW/Xroqs97OklQRb tP882n6ivUl8xvf5uc/pjKSZ3+9VXn3SIc4EAIfq5gXzXIsW4aH1sqbSpfrKNcPD 8kJ7hVq5eE3sVrYbvV7/XiBoh80CAwEAAaOCAgEwggH9MB0GA1UdDgQWBBTMkQ22 8JFMJyswSLWc3YkILOtISzAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGEBggrBgEFBQcBCwR4MHYwdAYIKwYBBQUHMAuGaHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz MTM1MmUzMTMxMzgyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM1MzIzNDMwMzEu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBACdD3YwDQYJKoZIhvcNAQELBQADggEBAGD5jLeTvxW+Ls5E9DlM daTHi3R/mKAr6aSh+Pj18/M+CXGb2WyNiDIRL/KioBtRU0a99bBQuzAq5u1AocUX 9EcAr7z8qcyo3yW6YwWlTTkgKXFRPeNfCgoc3s6mEv04S2VWrorLZz7SmJiD48Zu fjd0RUpVhtf2WMjKyAP9cBINbo0wyiqWbOLitdWKhC/EDoygc2/eCVFLs37chIIV ZL48tq9cit2aMg+KpltmAZrqQnnSl3mPGPHteU5lPTJ+T9CpTaBH1MYRAVnxiL9s 392lfWWe8sMW0DHj6qkqzZSHBkZ2KtGJKa8jo5He/a1O8uvl0uNFoEodboXujiPK GB4= -----END CERTIFICATE-----Generated at Wed Nov 20 06:21:51 2024 by rpki-client on console-ams.rpki-client.org