$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e36342e302f32332d3234203d3e20313532333735.roa File: 3135372e31352e36342e302f32332d3234203d3e20313532333735.roa (raw, json) Hash identifier: lqVkp8Vf/Vrss+PC9Obaqauwh5SzoY63gErzrqOklzI= Subject key identifier: AF:74:78:E5:0D:4D:06:EC:9E:D0:BE:31:3C:92:BD:A8:57:56:FF:DB Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 79990C85B1960926025BF37115998F0B4AB67C69 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e36342e302f32332d3234203d3e20313532333735.roa Signing time: Wed 15 May 2024 02:31:28 +0000 ROA not before: Wed 15 May 2024 02:26:28 +0000 ROA not after: Wed 14 May 2025 02:31:28 +0000 asID: 152375 IP address blocks: 157.15.64.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:99:0c:85:b1:96:09:26:02:5b:f3:71:15:99:8f:0b:4a:b6:7c:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: May 15 02:26:28 2024 GMT Not After : May 14 02:31:28 2025 GMT Subject: CN=AF7478E50D4D06EC9ED0BE313C92BDA85756FFDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:da:12:76:e5:99:53:53:81:73:36:9f:e0:bf: 9e:a8:b2:9e:f3:f0:58:a7:a6:6c:de:66:a6:5a:2d: f5:47:bc:65:2b:06:98:49:a3:ed:6c:fb:d4:4c:81: 98:dc:0a:c1:53:ac:6b:12:9b:0e:14:37:e4:2a:39: 86:96:66:98:33:ba:73:f8:0f:8d:cc:d3:b9:d3:bd: cc:f5:50:99:00:a7:f8:0c:2b:dd:49:1e:8b:5f:47: 97:3c:3e:8b:dc:f5:63:84:79:b9:a0:c2:e8:e9:d4: 43:7d:a5:86:ba:e1:97:1b:f0:9d:e1:c8:9f:dc:99: 93:65:3c:f8:dc:be:5a:7d:bf:8a:40:b8:95:48:73: 7c:4f:65:55:7f:9a:21:90:e8:cd:1e:b2:05:74:bf: 20:b3:64:9b:62:96:45:3d:0e:0f:b5:b6:e7:bd:19: d5:0d:06:b5:0b:14:91:87:98:8a:84:be:c8:f4:7f: 73:45:3f:75:3f:35:11:8a:ff:77:39:2c:ad:94:22: 66:1c:dd:60:b3:3f:46:a9:e5:e3:94:08:0e:ab:c5: 9b:79:71:c3:07:b0:3a:bf:c0:a0:fd:19:fe:b7:a9: 93:68:3f:64:ae:2d:6e:67:74:e4:0b:5f:05:92:2e: 3d:ce:28:89:e2:ab:b7:42:3b:04:13:69:25:76:f3: 08:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:74:78:E5:0D:4D:06:EC:9E:D0:BE:31:3C:92:BD:A8:57:56:FF:DB X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e36342e302f32332d3234203d3e20313532333735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.64.0/23 Signature Algorithm: sha256WithRSAEncryption 19:9a:06:95:5b:47:cb:2c:dd:e5:af:9f:56:33:cd:5c:b0:d8: 80:1b:7e:3a:87:70:e0:dd:89:5f:33:f6:ed:91:3a:ed:36:f1: e1:c2:a7:20:fe:53:e8:a5:8d:d2:1c:a5:60:3d:b7:d3:ff:39: 80:c6:f2:47:ad:04:75:f4:71:97:7e:07:07:f3:f3:d6:f2:47: c3:e2:ea:11:bd:f6:2a:62:a5:d0:09:88:0a:53:d3:40:19:46: 23:2a:d5:01:ec:c0:50:d2:08:e6:39:5d:80:84:cd:a8:98:86: 5c:56:09:d9:7d:e6:d7:00:96:82:eb:a0:f0:89:9a:96:03:8f: cf:0c:6f:46:2c:e7:fb:cb:0c:31:13:9d:19:97:24:72:0a:3b: 82:1a:13:c1:5f:d8:2c:e9:00:09:93:ed:64:03:69:97:fc:f1: c4:e8:9d:6f:4e:3f:7a:df:43:55:70:9d:cf:ed:d1:95:5b:11: 1c:1e:77:85:d2:89:0d:a0:e7:29:98:19:ba:53:c8:75:a1:60: 79:1b:b1:9c:9a:ba:7b:74:79:1d:dd:f8:45:4a:db:7f:9f:79: 81:18:ae:3c:dd:4b:45:d1:0b:b0:57:8b:10:c8:61:c9:3e:c0: 4b:81:c2:33:ce:73:55:f9:f0:51:ec:bc:a8:af:d3:89:1d:e9: 61:a2:1b:f6 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUeZkMhbGWCSYCW/NxFZmPC0q2fGkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDUxNTAyMjYyOFoX DTI1MDUxNDAyMzEyOFowMzExMC8GA1UEAxMoQUY3NDc4RTUwRDREMDZFQzlFRDBC RTMxM0M5MkJEQTg1NzU2RkZEQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK/aEnblmVNTgXM2n+C/nqiynvPwWKembN5mplot9Ue8ZSsGmEmj7Wz71EyB mNwKwVOsaxKbDhQ35Co5hpZmmDO6c/gPjczTudO9zPVQmQCn+Awr3Ukei19Hlzw+ i9z1Y4R5uaDC6OnUQ32lhrrhlxvwneHIn9yZk2U8+Ny+Wn2/ikC4lUhzfE9lVX+a IZDozR6yBXS/ILNkm2KWRT0OD7W2570Z1Q0GtQsUkYeYioS+yPR/c0U/dT81EYr/ dzksrZQiZhzdYLM/Rqnl45QIDqvFm3lxwwewOr/AoP0Z/repk2g/ZK4tbmd05Atf BZIuPc4oieKrt0I7BBNpJXbzCOUCAwEAAaOCAf8wggH7MB0GA1UdDgQWBBSvdHjl DU0G7J7QvjE8kr2oV1b/2zAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGCBggrBgEFBQcBCwR2MHQwcgYIKwYBBQUHMAuGZnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz MTM1MmUzNjM0MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNzM1LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnQ9AMA0GCSqGSIb3DQEBCwUAA4IBAQAZmgaVW0fLLN3lr59WM81c sNiAG346h3Dg3YlfM/btkTrtNvHhwqcg/lPopY3SHKVgPbfT/zmAxvJHrQR19HGX fgcH8/PW8kfD4uoRvfYqYqXQCYgKU9NAGUYjKtUB7MBQ0gjmOV2AhM2omIZcVgnZ febXAJaC66DwiZqWA4/PDG9GLOf7ywwxE50ZlyRyCjuCGhPBX9gs6QAJk+1kA2mX /PHE6J1vTj9630NVcJ3P7dGVWxEcHneF0okNoOcpmBm6U8h1oWB5G7Gcmrp7dHkd 3fhFStt/n3mBGK483UtF0QuwV4sQyGHJPsBLgcIzznNV+fBR7Lyor9OJHelhohv2 -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org