$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e34382e302f32332d3234203d3e20313439333533.roa File: 3135372e31352e34382e302f32332d3234203d3e20313439333533.roa (raw, json) Hash identifier: XtBYcVDI6C0QUoLywlVMdoZLqKZHrovdI4dMBFokaWM= Subject key identifier: 4A:E9:58:CE:A3:62:04:F2:C1:09:19:1E:49:36:DA:8C:84:74:8A:5E Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 7F6DFCB9079F00D866E6004E5E7598F91690BB72 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e34382e302f32332d3234203d3e20313439333533.roa Signing time: Tue 06 Feb 2024 07:19:37 +0000 ROA not before: Tue 06 Feb 2024 07:14:37 +0000 ROA not after: Tue 04 Feb 2025 07:19:37 +0000 asID: 149353 IP address blocks: 157.15.48.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:6d:fc:b9:07:9f:00:d8:66:e6:00:4e:5e:75:98:f9:16:90:bb:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Feb 6 07:14:37 2024 GMT Not After : Feb 4 07:19:37 2025 GMT Subject: CN=4AE958CEA36204F2C109191E4936DA8C84748A5E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f2:c7:cb:86:e3:c4:42:ec:ac:a7:16:f9:dd: db:b8:6e:4d:75:da:97:1b:e8:c3:ba:fa:d4:6b:d7: 25:38:f8:6c:c1:a0:4d:a2:9c:c9:e7:dd:ad:16:70: d2:d2:3c:4d:8e:0e:fa:c1:aa:e3:43:91:da:0b:b2: fe:26:89:64:f4:f9:6b:b2:2c:59:d6:4c:79:67:20: 5d:e7:bd:b4:52:d4:47:3f:6d:cf:85:96:f4:c0:a4: 68:03:ab:8b:10:9f:65:fa:74:3f:20:59:90:80:90: 2f:77:10:ee:63:b1:52:28:d2:be:f0:d7:e1:33:c6: f0:70:5a:19:7f:9f:3a:3b:89:83:89:0e:b8:af:3c: 87:e9:3f:8b:9a:7e:8b:17:79:ca:dd:31:69:f8:19: 45:68:c3:3f:ec:d6:45:b7:db:4c:5c:88:8b:ab:d9: be:8e:69:b9:a0:04:16:3a:8d:aa:e0:3c:c8:eb:35: ea:9c:71:7e:e8:34:26:7e:d7:06:9b:f4:8e:48:bc: 0f:4e:f5:2e:be:35:22:09:6d:a7:68:56:3e:83:a2: 48:ef:84:88:fd:92:b0:c2:e3:37:bb:e5:c3:5b:32: 4b:ea:f9:f1:f7:18:ba:02:e4:0d:b2:92:9a:2c:2e: 53:d3:c3:77:26:42:ed:84:ae:63:7e:e4:92:f2:ea: 48:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:E9:58:CE:A3:62:04:F2:C1:09:19:1E:49:36:DA:8C:84:74:8A:5E X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e34382e302f32332d3234203d3e20313439333533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.48.0/23 Signature Algorithm: sha256WithRSAEncryption 15:67:fd:ec:15:03:71:35:e6:82:a0:c9:eb:79:4a:10:9b:6c: 23:9c:eb:e8:2b:b1:bf:dd:a3:ea:9c:f6:7e:95:4a:b5:a6:25: 84:22:2c:76:12:43:29:fb:31:d2:1b:b2:2e:0c:13:6a:14:fa: a4:ee:de:9d:b1:0b:9a:dd:e9:4d:32:bf:31:04:89:80:4c:bd: 93:a2:46:2d:d7:71:e2:e5:9e:0e:45:3d:34:64:73:82:a4:6a: 8a:6e:d0:16:59:26:f2:cc:43:05:bb:17:ad:a7:a1:c6:d9:c3: b5:54:3d:d6:0d:37:db:2f:20:d3:d4:87:31:e5:c9:1c:15:60: 06:48:c7:cb:f4:2d:a8:cd:b1:c4:3f:f4:54:27:f2:b4:5a:6d: a3:8e:94:7a:e2:68:91:e7:14:0f:ff:e3:eb:4e:2a:20:41:3a: a0:be:a2:8e:0c:05:eb:46:98:86:e0:3e:d6:55:46:86:53:3e: f8:ff:5c:93:1d:cd:18:af:84:96:86:b7:63:10:e0:4c:e2:fd: a6:7b:b7:66:57:07:42:a7:31:be:86:8a:5d:5c:87:ac:ec:f1: 7b:47:21:e5:34:d0:61:a4:39:23:59:54:84:76:7c:21:0f:ec: da:fa:1f:88:08:fc:88:9d:9a:b4:bc:15:59:71:23:81:54:23: 46:7d:7d:42 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUf238uQefANhm5gBOXnWY+RaQu3IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDIwNjA3MTQzN1oX DTI1MDIwNDA3MTkzN1owMzExMC8GA1UEAxMoNEFFOTU4Q0VBMzYyMDRGMkMxMDkx OTFFNDkzNkRBOEM4NDc0OEE1RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALXyx8uG48RC7KynFvnd27huTXXalxvow7r61GvXJTj4bMGgTaKcyefdrRZw 0tI8TY4O+sGq40OR2guy/iaJZPT5a7IsWdZMeWcgXee9tFLURz9tz4WW9MCkaAOr ixCfZfp0PyBZkICQL3cQ7mOxUijSvvDX4TPG8HBaGX+fOjuJg4kOuK88h+k/i5p+ ixd5yt0xafgZRWjDP+zWRbfbTFyIi6vZvo5puaAEFjqNquA8yOs16pxxfug0Jn7X Bpv0jki8D071Lr41Igltp2hWPoOiSO+EiP2SsMLjN7vlw1syS+r58fcYugLkDbKS miwuU9PDdyZC7YSuY37kkvLqSN0CAwEAAaOCAf8wggH7MB0GA1UdDgQWBBRK6VjO o2IE8sEJGR5JNtqMhHSKXjAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGCBggrBgEFBQcBCwR2MHQwcgYIKwYBBQUHMAuGZnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz MTM1MmUzNDM4MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzEzNDM5MzMzNTMzLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnQ8wMA0GCSqGSIb3DQEBCwUAA4IBAQAVZ/3sFQNxNeaCoMnreUoQ m2wjnOvoK7G/3aPqnPZ+lUq1piWEIix2EkMp+zHSG7IuDBNqFPqk7t6dsQua3elN Mr8xBImATL2TokYt13Hi5Z4ORT00ZHOCpGqKbtAWWSbyzEMFuxetp6HG2cO1VD3W DTfbLyDT1Icx5ckcFWAGSMfL9C2ozbHEP/RUJ/K0Wm2jjpR64miR5xQP/+PrTiog QTqgvqKODAXrRpiG4D7WVUaGUz74/1yTHc0Yr4SWhrdjEOBM4v2me7dmVwdCpzG+ hopdXIes7PF7RyHlNNBhpDkjWVSEdnwhD+za+h+ICPyInZq0vBVZcSOBVCNGfX1C -----END CERTIFICATE-----Generated at Wed Nov 20 06:21:51 2024 by rpki-client on console-ams.rpki-client.org