$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e37382e302f32332d3234203d3e20313532333637.roa File: 3135372e31352e37382e302f32332d3234203d3e20313532333637.roa (raw, json) Hash identifier: jYIrpQNL3YJL3UQ4RkKKZOrYiVjtk6sbXHL1UdMNWnA= Subject key identifier: 72:2C:8A:71:51:97:93:4B:4F:C7:83:DE:C3:E8:8C:56:44:27:94:09 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 3103A1E17CE4009DD3A9BAFD0176DE8C85F53C31 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e37382e302f32332d3234203d3e20313532333637.roa Signing time: Mon 26 Feb 2024 06:23:26 +0000 ROA not before: Mon 26 Feb 2024 06:18:26 +0000 ROA not after: Mon 24 Feb 2025 06:23:26 +0000 asID: 152367 IP address blocks: 157.15.78.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:03:a1:e1:7c:e4:00:9d:d3:a9:ba:fd:01:76:de:8c:85:f5:3c:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Feb 26 06:18:26 2024 GMT Not After : Feb 24 06:23:26 2025 GMT Subject: CN=722C8A715197934B4FC783DEC3E88C5644279409 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:ff:09:c0:b3:0e:fb:36:07:8f:a2:bc:c4:e6: a2:44:6f:67:b1:0c:59:9c:c2:b6:46:69:37:ef:58: 5a:9c:93:9b:ff:52:84:26:d8:bb:cb:52:62:57:16: 6f:96:8b:59:6f:f8:06:ae:00:eb:ee:1d:b4:aa:57: 9f:74:42:83:de:f9:d4:d2:fa:b0:5b:01:53:76:bd: 44:c9:a2:4d:0c:9d:85:f5:dd:d3:bf:f8:c9:48:09: e1:60:f7:dc:12:5b:ab:32:83:aa:4a:05:ff:41:c8: 32:2c:0d:d6:c4:db:79:22:01:09:ab:16:87:70:b9: 7c:e7:ad:8e:02:4a:6c:10:54:4a:0c:a7:cd:cb:6a: 0d:7b:15:7d:53:43:ab:43:bd:f6:cd:4a:53:d4:dd: fe:bc:19:65:2f:ce:56:ae:bf:07:8c:1a:58:aa:dc: e0:ca:59:c1:46:a5:54:db:91:3a:ca:6a:71:50:14: ed:f5:b9:27:52:66:1d:a9:62:6b:64:ab:86:7f:91: ff:20:90:8c:ff:2a:01:9f:96:fc:96:64:3f:d0:95: d0:f9:8a:c7:00:b2:97:f7:8e:98:9f:fe:61:e4:02: e8:cb:a0:88:25:cf:f6:fc:33:4f:3b:0c:9b:a8:bf: 19:7b:f6:64:53:1b:fa:cd:34:9f:b0:c5:59:fb:1a: 3e:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:2C:8A:71:51:97:93:4B:4F:C7:83:DE:C3:E8:8C:56:44:27:94:09 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e37382e302f32332d3234203d3e20313532333637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.78.0/23 Signature Algorithm: sha256WithRSAEncryption 65:3a:b6:a9:e9:f0:5c:2a:5f:77:d3:c0:d5:22:81:4f:c8:31: 74:0f:b9:9d:4d:25:47:46:94:60:00:86:59:c5:cc:ef:0c:59: b9:b0:c7:ce:52:c3:e7:a3:69:87:91:c9:54:8e:f9:5a:f3:c6: ee:d1:55:d0:62:52:5d:2d:37:7f:e3:dd:df:70:1b:ef:91:34: 14:42:32:57:75:79:c1:1f:43:48:9f:7c:62:23:a5:9d:6c:7d: 39:dc:92:a2:76:93:a1:79:94:30:c2:c9:9e:98:52:dd:63:05: c4:cb:e3:eb:cb:7b:46:28:9d:66:c5:62:49:70:aa:74:a3:65: 0e:3d:38:43:27:20:c3:a3:18:19:80:ec:09:a9:c9:57:31:1c: 4b:79:4d:c5:ca:2f:f8:7e:49:d2:52:45:dc:96:72:a9:ee:da: 4c:3f:b9:43:0d:01:0d:d5:ef:55:15:fb:9a:3b:23:d4:fe:4e: 8e:26:39:3e:a6:b1:a1:bb:d0:a3:99:6a:5e:cc:21:6e:ce:1b: de:f9:79:78:f9:4c:89:56:e2:3a:8f:22:5b:ec:bf:4b:f4:0d: ec:da:c8:b7:15:f0:bd:b1:8c:4d:b4:96:ec:37:4d:17:be:34: 48:c3:13:1f:2e:ca:32:b7:89:af:11:9f:53:42:aa:7c:97:22: 75:8f:eb:2a -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUMQOh4XzkAJ3Tqbr9AXbejIX1PDEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDIyNjA2MTgyNloX DTI1MDIyNDA2MjMyNlowMzExMC8GA1UEAxMoNzIyQzhBNzE1MTk3OTM0QjRGQzc4 M0RFQzNFODhDNTY0NDI3OTQwOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOP/CcCzDvs2B4+ivMTmokRvZ7EMWZzCtkZpN+9YWpyTm/9ShCbYu8tSYlcW b5aLWW/4Bq4A6+4dtKpXn3RCg9751NL6sFsBU3a9RMmiTQydhfXd07/4yUgJ4WD3 3BJbqzKDqkoF/0HIMiwN1sTbeSIBCasWh3C5fOetjgJKbBBUSgynzctqDXsVfVND q0O99s1KU9Td/rwZZS/OVq6/B4waWKrc4MpZwUalVNuROspqcVAU7fW5J1JmHali a2Srhn+R/yCQjP8qAZ+W/JZkP9CV0PmKxwCyl/eOmJ/+YeQC6MugiCXP9vwzTzsM m6i/GXv2ZFMb+s00n7DFWfsaPs0CAwEAAaOCAf8wggH7MB0GA1UdDgQWBBRyLIpx UZeTS0/Hg97D6IxWRCeUCTAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGCBggrBgEFBQcBCwR2MHQwcgYIKwYBBQUHMAuGZnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz MTM1MmUzNzM4MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNjM3LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnQ9OMA0GCSqGSIb3DQEBCwUAA4IBAQBlOrap6fBcKl9308DVIoFP yDF0D7mdTSVHRpRgAIZZxczvDFm5sMfOUsPno2mHkclUjvla88bu0VXQYlJdLTd/ 493fcBvvkTQUQjJXdXnBH0NIn3xiI6WdbH053JKidpOheZQwwsmemFLdYwXEy+Pr y3tGKJ1mxWJJcKp0o2UOPThDJyDDoxgZgOwJqclXMRxLeU3Fyi/4fknSUkXclnKp 7tpMP7lDDQEN1e9VFfuaOyPU/k6OJjk+prGhu9CjmWpezCFuzhve+Xl4+UyJVuI6 jyJb7L9L9A3s2si3FfC9sYxNtJbsN00XvjRIwxMfLsoyt4mvEZ9TQqp8lyJ1j+sq -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org