$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e32302e3133302e302f32332d3234203d3e20313532343134.roa File: 3135372e32302e3133302e302f32332d3234203d3e20313532343134.roa (raw, json) Hash identifier: frmWzo876i1wKnqegS/my2C7TOWVBOh4iMBMAZPLdV4= Subject key identifier: CA:52:CF:2D:55:EE:09:09:D6:78:80:47:B0:CD:23:44:2A:0C:9A:33 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 314DEC2B2E09420E1E245E89C583A86C42ADD6CF Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e32302e3133302e302f32332d3234203d3e20313532343134.roa Signing time: Wed 20 Mar 2024 06:36:38 +0000 ROA not before: Wed 20 Mar 2024 06:31:38 +0000 ROA not after: Wed 19 Mar 2025 06:36:38 +0000 asID: 152414 IP address blocks: 157.20.130.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:4d:ec:2b:2e:09:42:0e:1e:24:5e:89:c5:83:a8:6c:42:ad:d6:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Mar 20 06:31:38 2024 GMT Not After : Mar 19 06:36:38 2025 GMT Subject: CN=CA52CF2D55EE0909D6788047B0CD23442A0C9A33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:6d:7e:25:43:27:21:83:b9:99:c9:b6:69:02: 66:be:c6:01:ff:d8:df:d8:c9:97:06:e1:9a:96:fa: 4f:7d:f2:f1:70:f9:eb:b0:62:43:e8:a1:8d:51:58: cb:b5:2e:f6:35:36:b6:95:17:06:af:36:bc:aa:aa: 78:73:ee:58:b0:53:67:9d:49:4c:f6:ed:53:01:8f: 72:23:ad:b4:4e:da:39:2d:a1:8d:cc:cb:6b:89:e0: d4:7a:10:a2:2c:6f:ba:75:cf:81:99:36:01:b8:29: ce:2a:d8:b5:28:0f:4a:23:50:b9:d1:d4:2a:72:97: 63:8e:dc:93:22:08:ac:f6:0b:1a:9b:4d:0d:09:95: 33:47:05:b3:49:c2:3d:ea:be:91:b8:e4:7f:e4:13: 6a:c5:4e:d9:b3:2d:f3:1d:89:c5:37:b7:4e:5b:d8: 45:91:3a:9e:46:8c:ff:32:f4:42:f2:7d:34:d1:b7: 94:da:f3:04:48:97:1c:b0:bb:99:d5:b7:54:56:63: cb:5f:3c:14:db:48:89:eb:e4:a2:c1:e7:c4:1d:0e: 08:7a:02:4b:0d:e9:06:a5:ac:3b:ce:bd:dc:ad:7f: c6:ff:a6:f1:9a:21:72:08:ab:d8:fe:a7:8b:dd:2c: 7e:8d:6e:1c:f2:53:a4:75:e8:e3:c8:3e:50:71:96: 98:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:52:CF:2D:55:EE:09:09:D6:78:80:47:B0:CD:23:44:2A:0C:9A:33 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e32302e3133302e302f32332d3234203d3e20313532343134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.130.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:70:c2:a6:20:93:dd:91:f8:52:2e:d8:3f:33:f3:80:11:c1: 5a:cd:06:e6:6c:b7:b0:3b:a0:9f:8d:94:4a:5f:2c:a5:ca:cb: d7:29:59:d3:a8:fc:d5:79:e4:06:5f:06:cb:84:b3:e8:70:be: 0d:30:90:e0:e6:26:fa:ab:3a:6c:dd:23:d9:f5:61:78:1f:f4: 1c:79:a1:73:c4:4a:86:3c:46:9b:1d:24:42:9c:4c:dc:af:d4: 19:78:60:38:fe:57:10:20:cf:bb:5f:ed:c1:91:6b:c8:b1:dc: 8a:42:53:ea:0e:3d:7b:30:c8:29:df:90:92:92:15:bb:6d:4a: 89:3f:05:bd:71:7b:e1:8e:a9:f1:75:36:9a:19:e7:0d:e0:8e: a5:d8:c1:3f:d7:df:10:38:1c:13:81:9f:b2:b1:33:12:75:87: 44:8d:d5:fd:43:32:da:95:2b:95:dc:d0:29:7d:36:c5:82:8f: ee:64:5b:42:1d:4d:89:fc:23:56:b6:8e:5a:a9:12:2b:6f:b8: e5:89:05:a8:2d:a4:1a:34:79:26:60:2f:47:be:2b:a5:19:32: 49:c2:c5:74:83:bb:a9:db:2a:91:16:6a:16:6c:60:a5:18:26: ed:50:d8:11:ba:b7:fc:67:f2:a1:a4:a6:69:af:cd:7a:40:72: 9d:b0:d2:68 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIUMU3sKy4JQg4eJF6JxYOobEKt1s8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDMyMDA2MzEzOFoX DTI1MDMxOTA2MzYzOFowMzExMC8GA1UEAxMoQ0E1MkNGMkQ1NUVFMDkwOUQ2Nzg4 MDQ3QjBDRDIzNDQyQTBDOUEzMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALBtfiVDJyGDuZnJtmkCZr7GAf/Y39jJlwbhmpb6T33y8XD567BiQ+ihjVFY y7Uu9jU2tpUXBq82vKqqeHPuWLBTZ51JTPbtUwGPciOttE7aOS2hjczLa4ng1HoQ oixvunXPgZk2AbgpzirYtSgPSiNQudHUKnKXY47ckyIIrPYLGptNDQmVM0cFs0nC Peq+kbjkf+QTasVO2bMt8x2JxTe3TlvYRZE6nkaM/zL0QvJ9NNG3lNrzBEiXHLC7 mdW3VFZjy188FNtIievkosHnxB0OCHoCSw3pBqWsO8693K1/xv+m8Zohcgir2P6n i90sfo1uHPJTpHXo48g+UHGWmH8CAwEAAaOCAgEwggH9MB0GA1UdDgQWBBTKUs8t Ve4JCdZ4gEewzSNEKgyaMzAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGEBggrBgEFBQcBCwR4MHYwdAYIKwYBBQUHMAuGaHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz MjMwMmUzMTMzMzAyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzMTM1MzIzNDMxMzQu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAGdFIIwDQYJKoZIhvcNAQELBQADggEBAFpwwqYgk92R+FIu2D8z 84ARwVrNBuZst7A7oJ+NlEpfLKXKy9cpWdOo/NV55AZfBsuEs+hwvg0wkODmJvqr OmzdI9n1YXgf9Bx5oXPESoY8RpsdJEKcTNyv1Bl4YDj+VxAgz7tf7cGRa8ix3IpC U+oOPXswyCnfkJKSFbttSok/Bb1xe+GOqfF1NpoZ5w3gjqXYwT/X3xA4HBOBn7Kx MxJ1h0SN1f1DMtqVK5Xc0Cl9NsWCj+5kW0IdTYn8I1a2jlqpEitvuOWJBagtpBo0 eSZgL0e+K6UZMknCxXSDu6nbKpEWahZsYKUYJu1Q2BG6t/xn8qGkpmmvzXpAcp2w 0mg= -----END CERTIFICATE-----Generated at Wed Nov 20 06:21:51 2024 by rpki-client on console-ams.rpki-client.org