$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e3231302e302f32332d3234203d3e20313532333933.roa File: 3135372e31352e3231302e302f32332d3234203d3e20313532333933.roa (raw, json) Hash identifier: GSlaQL4ojWRVCaFO17eC456Ny9O1/w41sW4LAyxC2v8= Subject key identifier: C1:C4:C4:25:76:47:2A:08:DD:D6:42:58:5A:04:8F:AA:63:81:F1:5A Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 63EBF056DD69CBE889C806A4FA7FD39524E744F1 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e3231302e302f32332d3234203d3e20313532333933.roa Signing time: Wed 28 Feb 2024 03:32:15 +0000 ROA not before: Wed 28 Feb 2024 03:27:15 +0000 ROA not after: Wed 26 Feb 2025 03:32:15 +0000 asID: 152393 IP address blocks: 157.15.210.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:eb:f0:56:dd:69:cb:e8:89:c8:06:a4:fa:7f:d3:95:24:e7:44:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Feb 28 03:27:15 2024 GMT Not After : Feb 26 03:32:15 2025 GMT Subject: CN=C1C4C42576472A08DDD642585A048FAA6381F15A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:25:54:49:eb:a6:4f:96:d5:73:94:cd:29:b5: 86:7c:82:b9:e4:1a:e5:56:ca:e6:4d:bb:f3:01:56: 65:67:89:ea:ab:96:47:ad:56:d5:68:5e:84:bf:c1: 25:ef:e9:ee:06:38:28:68:2a:43:2c:68:37:31:45: dd:01:da:da:cc:1d:8c:87:a4:fd:c8:dd:60:0c:9b: b2:ed:e6:b9:23:11:49:9c:9c:b6:83:9f:b0:20:6d: 55:77:29:f4:0f:22:f5:73:38:45:76:eb:c1:83:08: 58:c7:c3:04:71:74:1c:1e:fd:d0:1a:3f:dd:79:bf: 38:06:10:86:2e:45:34:4b:2c:5c:84:9a:57:ee:aa: 36:3c:b7:68:ff:62:aa:af:94:a1:33:f9:a5:6a:ce: dc:f8:90:42:8f:68:c8:90:dc:02:24:9a:11:81:98: 46:8e:05:22:7c:a5:e6:02:d5:25:e4:2c:c7:72:e3: da:60:27:20:33:0f:59:72:2f:1a:0a:0f:47:e1:0d: 83:a7:f4:49:15:15:e7:0c:2d:22:45:93:0d:87:76: 3c:64:69:0d:f5:51:ab:e7:25:16:7f:59:25:95:7f: eb:80:59:09:ee:67:d2:1f:9e:42:54:e2:db:c2:6c: 8d:40:95:ba:9c:ee:41:8f:3e:1a:da:5c:a5:18:ee: 4e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:C4:C4:25:76:47:2A:08:DD:D6:42:58:5A:04:8F:AA:63:81:F1:5A X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e3231302e302f32332d3234203d3e20313532333933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.210.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:d7:29:dd:c4:65:94:b9:7c:83:11:2a:69:84:2a:7d:04:55: 2a:e9:48:25:f0:0e:78:43:d2:3e:28:a9:a0:1e:d0:3f:74:22: 01:51:4a:e2:80:5e:1c:7c:bc:26:5f:6e:ae:76:f8:5f:15:c5: 76:da:35:62:74:83:ec:74:79:5d:a0:33:7c:de:28:e1:12:28: d6:4f:0a:ec:c9:7d:08:a5:14:73:45:d8:26:1e:8a:2d:21:c9: fc:77:af:eb:0e:e0:c7:f8:cd:d9:ea:3b:a3:b6:46:8e:80:95: 5a:0d:28:5a:df:ae:04:de:b7:81:c3:b8:82:f5:ce:3b:9a:b9: 9a:52:f3:59:5f:20:41:7b:58:e8:52:f9:3d:ca:90:0d:1c:2f: 2a:57:07:df:d7:d0:50:3a:47:76:fe:c3:68:d8:61:e3:bb:2c: ff:38:72:7e:7f:b0:2a:98:1a:72:11:c8:af:11:ba:4e:9c:9f: 59:0a:cf:a0:48:c0:2e:2e:0f:52:bc:65:99:90:e4:d0:87:12: 62:48:e9:f1:2d:35:d8:20:77:4d:9c:02:f1:f8:07:6b:ae:21: ab:57:d6:f0:74:02:85:62:77:ac:eb:d5:2b:1c:ea:2d:42:83: b3:94:34:cb:ae:1b:04:0d:6a:10:a8:fe:ca:7b:a3:77:f6:ab: 22:fe:ef:39 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIUY+vwVt1py+iJyAak+n/TlSTnRPEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDIyODAzMjcxNVoX DTI1MDIyNjAzMzIxNVowMzExMC8GA1UEAxMoQzFDNEM0MjU3NjQ3MkEwOERERDY0 MjU4NUEwNDhGQUE2MzgxRjE1QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANQlVEnrpk+W1XOUzSm1hnyCueQa5VbK5k278wFWZWeJ6quWR61W1WhehL/B Je/p7gY4KGgqQyxoNzFF3QHa2swdjIek/cjdYAybsu3muSMRSZyctoOfsCBtVXcp 9A8i9XM4RXbrwYMIWMfDBHF0HB790Bo/3Xm/OAYQhi5FNEssXISaV+6qNjy3aP9i qq+UoTP5pWrO3PiQQo9oyJDcAiSaEYGYRo4FInyl5gLVJeQsx3Lj2mAnIDMPWXIv GgoPR+ENg6f0SRUV5wwtIkWTDYd2PGRpDfVRq+clFn9ZJZV/64BZCe5n0h+eQlTi 28JsjUCVupzuQY8+GtpcpRjuTtMCAwEAAaOCAgEwggH9MB0GA1UdDgQWBBTBxMQl dkcqCN3WQlhaBI+qY4HxWjAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGEBggrBgEFBQcBCwR4MHYwdAYIKwYBBQUHMAuGaHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz MTM1MmUzMjMxMzAyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzMTM1MzIzMzM5MzMu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAGdD9IwDQYJKoZIhvcNAQELBQADggEBAA7XKd3EZZS5fIMRKmmE Kn0EVSrpSCXwDnhD0j4oqaAe0D90IgFRSuKAXhx8vCZfbq52+F8VxXbaNWJ0g+x0 eV2gM3zeKOESKNZPCuzJfQilFHNF2CYeii0hyfx3r+sO4Mf4zdnqO6O2Ro6AlVoN KFrfrgTet4HDuIL1zjuauZpS81lfIEF7WOhS+T3KkA0cLypXB9/X0FA6R3b+w2jY YeO7LP84cn5/sCqYGnIRyK8Ruk6cn1kKz6BIwC4uD1K8ZZmQ5NCHEmJI6fEtNdgg d02cAvH4B2uuIatX1vB0AoVid6zr1Ssc6i1Cg7OUNMuuGwQNahCo/sp7o3f2qyL+ 7zk= -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org