$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e3136382e302f32332d3234203d3e20313532333830.roa File: 3135372e31352e3136382e302f32332d3234203d3e20313532333830.roa (raw, json) Hash identifier: tNZGIjhr7qMghn7wf8/ku2q26n+ZTxNR/RYnBWUP/Dg= Subject key identifier: B7:29:E2:71:2E:BF:A3:F0:55:AE:F5:3E:6A:CB:20:B4:0A:6E:5E:48 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 2219151EDD2F1FE9E62CF04489DA79CC12FE4632 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e3136382e302f32332d3234203d3e20313532333830.roa Signing time: Wed 08 May 2024 03:48:04 +0000 ROA not before: Wed 08 May 2024 03:43:04 +0000 ROA not after: Wed 07 May 2025 03:48:04 +0000 asID: 152380 IP address blocks: 157.15.168.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:19:15:1e:dd:2f:1f:e9:e6:2c:f0:44:89:da:79:cc:12:fe:46:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: May 8 03:43:04 2024 GMT Not After : May 7 03:48:04 2025 GMT Subject: CN=B729E2712EBFA3F055AEF53E6ACB20B40A6E5E48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:cd:7d:70:d1:d9:50:48:5d:e8:3f:7b:e6:ee: e5:a9:96:f7:77:9c:41:32:7e:e4:d3:23:dd:cd:d2: bc:e4:77:f3:9d:7a:e9:13:85:51:d3:8b:7d:7c:f1: a4:12:40:79:0d:99:e3:0b:94:c5:e8:d0:2f:1d:ba: ae:7f:8f:23:8b:48:93:c7:5d:d5:a5:f9:6c:37:36: 1f:06:fe:53:f3:21:a5:75:88:ad:49:d8:28:df:32: 4a:bb:1c:12:c4:67:6b:74:64:4e:8f:fb:04:37:ff: a4:1f:6f:8d:7f:51:9e:e4:90:76:b9:af:95:0a:40: c0:e3:9e:9e:8d:98:fd:bb:d9:94:9d:48:5a:02:7f: d7:0d:eb:39:0d:7b:93:0f:80:08:ed:b2:4c:07:21: 15:6a:19:ff:ce:ab:71:13:20:fa:d4:7b:a3:fa:5d: 5f:1b:1c:8d:09:a1:8d:ec:be:11:45:6e:c1:38:01: b6:ee:c3:8d:f7:1b:c2:73:f7:d3:33:c5:46:7e:53: 96:02:4f:f6:51:c0:21:e7:90:7e:db:4e:56:3f:ea: 78:c6:aa:76:79:39:42:38:23:68:93:c2:a8:9f:8b: e4:f1:47:0d:87:dd:e5:2d:be:db:4f:f9:71:2f:16: 72:39:c5:9e:f9:5c:a6:30:a8:4f:b5:f6:42:95:cd: b8:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:29:E2:71:2E:BF:A3:F0:55:AE:F5:3E:6A:CB:20:B4:0A:6E:5E:48 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e3136382e302f32332d3234203d3e20313532333830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.168.0/23 Signature Algorithm: sha256WithRSAEncryption 78:96:01:fb:b7:63:3a:5c:86:60:62:77:98:12:c3:4e:88:a3: d6:0c:5b:29:1c:34:7d:09:a6:a2:1d:7d:33:46:a7:f5:c6:b4: 61:bd:c1:f8:44:92:ea:c5:6a:c9:e8:0a:56:68:5e:4f:ca:ff: ed:86:8d:10:25:77:4c:ae:e1:06:72:4d:59:64:03:d6:1f:c5: c3:22:dd:7b:48:b5:60:4d:10:7f:f6:94:52:6d:91:40:94:de: da:f7:8a:6c:15:14:c2:1e:f5:7e:21:8d:d6:85:fa:27:01:8e: 72:81:0f:3e:d4:cf:41:2f:d1:41:62:97:cc:b0:b1:29:41:c4: e0:50:b8:de:ee:39:3b:1a:b7:9b:1c:60:81:57:2b:55:78:da: 1d:4a:89:43:e4:e6:e0:43:01:7c:ef:35:03:79:7c:ec:f1:d3: 04:15:61:87:62:8d:8c:e2:6e:6d:e7:6f:a0:a5:cf:bc:ee:17: 16:69:43:9d:64:9f:ed:29:be:49:bc:27:d2:2b:08:63:c4:b7: e5:40:1c:9a:bd:23:1f:ba:53:25:a3:14:e6:12:62:93:51:e2: 99:f7:d3:b7:0d:0d:f1:2a:27:34:e4:84:08:c0:a4:da:fd:2a: 3d:68:ae:92:9d:6b:c3:56:79:c7:49:a7:01:9c:0d:36:e9:9f: 2f:0f:38:6c -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIUIhkVHt0vH+nmLPBEidp5zBL+RjIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDUwODAzNDMwNFoX DTI1MDUwNzAzNDgwNFowMzExMC8GA1UEAxMoQjcyOUUyNzEyRUJGQTNGMDU1QUVG NTNFNkFDQjIwQjQwQTZFNUU0ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL3NfXDR2VBIXeg/e+bu5amW93ecQTJ+5NMj3c3SvOR385166ROFUdOLfXzx pBJAeQ2Z4wuUxejQLx26rn+PI4tIk8dd1aX5bDc2Hwb+U/MhpXWIrUnYKN8ySrsc EsRna3RkTo/7BDf/pB9vjX9RnuSQdrmvlQpAwOOeno2Y/bvZlJ1IWgJ/1w3rOQ17 kw+ACO2yTAchFWoZ/86rcRMg+tR7o/pdXxscjQmhjey+EUVuwTgBtu7DjfcbwnP3 0zPFRn5TlgJP9lHAIeeQfttOVj/qeMaqdnk5QjgjaJPCqJ+L5PFHDYfd5S2+20/5 cS8WcjnFnvlcpjCoT7X2QpXNuEUCAwEAAaOCAgEwggH9MB0GA1UdDgQWBBS3KeJx Lr+j8FWu9T5qyyC0Cm5eSDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGEBggrBgEFBQcBCwR4MHYwdAYIKwYBBQUHMAuGaHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz MTM1MmUzMTM2MzgyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzMTM1MzIzMzM4MzAu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAGdD6gwDQYJKoZIhvcNAQELBQADggEBAHiWAfu3YzpchmBid5gS w06Io9YMWykcNH0JpqIdfTNGp/XGtGG9wfhEkurFasnoClZoXk/K/+2GjRAld0yu 4QZyTVlkA9YfxcMi3XtItWBNEH/2lFJtkUCU3tr3imwVFMIe9X4hjdaF+icBjnKB Dz7Uz0Ev0UFil8ywsSlBxOBQuN7uOTsat5scYIFXK1V42h1KiUPk5uBDAXzvNQN5 fOzx0wQVYYdijYzibm3nb6Clz7zuFxZpQ51kn+0pvkm8J9IrCGPEt+VAHJq9Ix+6 UyWjFOYSYpNR4pn307cNDfEqJzTkhAjApNr9Kj1orpKda8NWecdJpwGcDTbpny8P OGw= -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org