$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e3137322e302f32332d3234203d3e20313532333833.roa File: 3135372e31352e3137322e302f32332d3234203d3e20313532333833.roa (raw, json) Hash identifier: EXmOC7gHoVFynDqoo6lRK3qVSI5AEw2a86dKIpHPCrc= Subject key identifier: 3A:00:CA:C1:78:20:89:B1:12:37:1D:AF:84:B6:E7:6B:68:09:E7:39 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 6EA1C88E271B989538DE63D3752BFA3032290657 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e3137322e302f32332d3234203d3e20313532333833.roa Signing time: Mon 26 Feb 2024 03:53:43 +0000 ROA not before: Mon 26 Feb 2024 03:48:43 +0000 ROA not after: Mon 24 Feb 2025 03:53:43 +0000 asID: 152383 IP address blocks: 157.15.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 00:47:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:a1:c8:8e:27:1b:98:95:38:de:63:d3:75:2b:fa:30:32:29:06:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Feb 26 03:48:43 2024 GMT Not After : Feb 24 03:53:43 2025 GMT Subject: CN=3A00CAC1782089B112371DAF84B6E76B6809E739 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:42:0a:1a:f6:96:55:9f:1c:38:7f:4b:1c:23: 48:f4:6f:57:3f:fc:a4:b0:08:1b:cb:65:8a:c9:ba: 55:90:97:69:32:94:54:fd:23:4b:eb:df:92:45:62: 0c:ff:ae:99:cb:31:61:39:92:90:c6:fe:4a:50:1a: 52:bf:1c:d6:e6:d3:a7:a2:f5:8b:03:7f:f5:e5:65: 4c:5b:e6:85:61:23:b0:87:6b:29:cf:77:68:6a:f0: 17:88:8f:6a:ad:5e:f2:2c:e2:0c:be:8c:d8:b3:0d: e9:c4:39:a4:24:31:7a:71:84:4f:8d:69:0f:6a:6c: d2:38:f7:3a:e3:60:d0:7e:e0:24:aa:27:c5:c8:39: 3b:cc:aa:27:f2:11:02:02:40:48:c8:3d:32:9f:04: 93:07:da:ce:1a:92:22:02:ef:69:45:a5:b0:e9:61: c1:06:5e:1d:d9:9b:4d:49:b7:02:ea:01:14:e3:5b: ff:7a:9e:23:41:6f:3f:07:23:b2:46:e1:48:dc:4c: ac:6e:be:40:c1:35:87:8d:83:56:79:ba:52:0a:5e: 72:e5:62:39:74:26:cb:a3:43:ea:05:68:ba:c9:a0: 0a:82:fa:a9:bf:56:3b:4b:c8:a4:04:2a:b4:f4:47: aa:88:85:df:08:16:56:07:fb:43:7f:5b:7a:10:39: d4:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:00:CA:C1:78:20:89:B1:12:37:1D:AF:84:B6:E7:6B:68:09:E7:39 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e3137322e302f32332d3234203d3e20313532333833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.172.0/23 Signature Algorithm: sha256WithRSAEncryption 11:43:99:eb:bd:a7:a9:8f:ef:b1:87:76:ce:83:da:6c:ee:ee: 43:57:8b:9b:eb:18:36:03:29:4c:86:e4:6e:17:c8:5f:53:a0: ca:1e:e1:bb:d4:99:a7:cd:fd:d6:2b:ed:a0:3b:4b:75:b1:ac: 3c:bb:2b:47:fd:9e:d4:76:10:61:2d:5a:14:37:3a:29:ef:3c: a1:88:cc:ef:9c:25:86:6b:3a:0b:03:c5:a3:f6:d8:4f:6c:ed: 27:81:24:99:80:9d:0c:70:c8:95:95:42:14:32:ec:60:ce:c6: 40:b3:88:80:ab:dd:47:78:4f:f3:fb:0a:e9:71:fd:0c:9a:3e: 45:da:12:8d:69:fd:09:76:b5:f2:8f:b2:d8:e4:d0:5b:1c:c9: d3:16:a7:d6:dc:df:4e:e3:50:6c:df:67:f6:49:5e:07:17:30: f9:f5:39:4b:95:c5:b1:34:2f:59:8b:ec:8d:e8:42:e4:30:7f: 9e:0f:76:d9:37:62:dd:80:82:4e:03:22:e6:dd:aa:05:b6:f3: a7:66:b9:67:9f:ac:3f:a0:06:6d:8a:af:67:0e:72:3f:b4:fe: b7:9d:6f:98:2d:94:9e:84:4b:d9:6b:62:81:11:04:67:ba:73: 18:29:54:99:70:84:b4:cf:3a:38:cc:54:62:0d:b1:e2:4f:08: e1:23:e6:9c -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIUbqHIjicbmJU43mPTdSv6MDIpBlcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDIyNjAzNDg0M1oX DTI1MDIyNDAzNTM0M1owMzExMC8GA1UEAxMoM0EwMENBQzE3ODIwODlCMTEyMzcx REFGODRCNkU3NkI2ODA5RTczOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMtCChr2llWfHDh/SxwjSPRvVz/8pLAIG8tlism6VZCXaTKUVP0jS+vfkkVi DP+umcsxYTmSkMb+SlAaUr8c1ubTp6L1iwN/9eVlTFvmhWEjsIdrKc93aGrwF4iP aq1e8iziDL6M2LMN6cQ5pCQxenGET41pD2ps0jj3OuNg0H7gJKonxcg5O8yqJ/IR AgJASMg9Mp8EkwfazhqSIgLvaUWlsOlhwQZeHdmbTUm3AuoBFONb/3qeI0FvPwcj skbhSNxMrG6+QME1h42DVnm6UgpecuViOXQmy6ND6gVousmgCoL6qb9WO0vIpAQq tPRHqoiF3wgWVgf7Q39behA51FsCAwEAAaOCAgEwggH9MB0GA1UdDgQWBBQ6AMrB eCCJsRI3Ha+EtudraAnnOTAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGEBggrBgEFBQcBCwR4MHYwdAYIKwYBBQUHMAuGaHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz MTM1MmUzMTM3MzIyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzMTM1MzIzMzM4MzMu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAGdD6wwDQYJKoZIhvcNAQELBQADggEBABFDmeu9p6mP77GHds6D 2mzu7kNXi5vrGDYDKUyG5G4XyF9ToMoe4bvUmafN/dYr7aA7S3WxrDy7K0f9ntR2 EGEtWhQ3OinvPKGIzO+cJYZrOgsDxaP22E9s7SeBJJmAnQxwyJWVQhQy7GDOxkCz iICr3Ud4T/P7Culx/QyaPkXaEo1p/Ql2tfKPstjk0FscydMWp9bc307jUGzfZ/ZJ XgcXMPn1OUuVxbE0L1mL7I3oQuQwf54Pdtk3Yt2Agk4DIubdqgW286dmuWefrD+g Bm2Kr2cOcj+0/redb5gtlJ6ES9lrYoERBGe6cxgpVJlwhLTPOjjMVGINseJPCOEj 5pw= -----END CERTIFICATE-----Generated at Fri May 17 18:13:31 2024 by rpki-client on console-fra.rpki-client.org