$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e32302e3234332e302f32342d3234203d3e20313338303931.roa File: 3135372e32302e3234332e302f32342d3234203d3e20313338303931.roa (raw, json) Hash identifier: yLoLgHPt1NtfF/7p1MJcRcR8itiktpVwt0YL9jv+N0Y= Subject key identifier: 5A:88:A5:13:08:DE:F2:C3:7F:9F:24:0B:80:4E:10:27:DC:CC:2B:99 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 78B05517BA586733F4CD3269AA8713324F8E547A Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e32302e3234332e302f32342d3234203d3e20313338303931.roa Signing time: Mon 08 Jul 2024 08:56:02 +0000 ROA not before: Mon 08 Jul 2024 08:51:02 +0000 ROA not after: Mon 07 Jul 2025 08:56:02 +0000 asID: 138091 IP address blocks: 157.20.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:b0:55:17:ba:58:67:33:f4:cd:32:69:aa:87:13:32:4f:8e:54:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jul 8 08:51:02 2024 GMT Not After : Jul 7 08:56:02 2025 GMT Subject: CN=5A88A51308DEF2C37F9F240B804E1027DCCC2B99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b6:22:10:e8:95:aa:c1:be:64:e3:26:5a:56: 84:33:ae:b4:0b:b4:f0:6b:4e:b6:85:a8:5e:71:9c: 20:01:82:07:fc:e7:ca:75:80:eb:90:1d:18:c3:eb: da:be:7c:43:cf:96:69:96:b9:f4:78:8d:f2:9f:2d: b3:02:dd:10:20:f9:a5:4c:7e:5d:f3:84:53:5c:55: 71:6d:9f:94:4d:89:49:e2:16:c2:db:62:9d:eb:48: 07:fa:0e:94:f2:88:5f:07:49:8a:7f:27:0f:ec:87: 82:87:b0:08:60:37:e4:1c:2c:7e:04:06:46:d4:df: 33:0f:99:58:6c:37:9d:b6:8f:0f:87:3e:6d:79:ac: cb:e4:77:67:10:fb:e7:4b:b5:ff:58:37:12:c1:f8: a8:f3:eb:51:3f:34:4d:d2:68:d8:ce:73:9b:5d:f8: 6e:a4:59:ba:7f:a3:ab:df:19:10:32:c4:4b:a0:0a: 5a:9c:cb:b5:f0:19:b0:f0:10:83:b9:1b:37:ff:68: 81:0e:6f:e6:90:45:3f:37:08:b0:a0:94:27:78:75: 36:00:aa:5b:96:8d:fb:99:86:59:e4:76:61:81:6c: 29:f4:d9:ef:ba:01:22:ce:73:7f:eb:19:bd:2a:a7: 63:d7:36:e0:1e:3e:51:1c:62:e7:c5:69:16:08:1d: ac:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:88:A5:13:08:DE:F2:C3:7F:9F:24:0B:80:4E:10:27:DC:CC:2B:99 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e32302e3234332e302f32342d3234203d3e20313338303931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.243.0/24 Signature Algorithm: sha256WithRSAEncryption 04:c2:86:79:b3:c7:c1:7b:66:db:bb:25:4c:3d:c0:1f:9b:a0: c1:46:09:e7:de:d0:5b:25:49:7d:f4:31:cc:3a:d1:ac:4b:53: b6:89:6b:d0:9a:fe:a9:f4:c7:a8:64:90:79:36:99:97:8c:dc: 01:f1:b8:78:ca:36:83:7d:a6:6d:a1:99:95:9e:80:2c:a4:47: 87:31:54:f0:05:88:5e:bb:13:b5:29:2a:07:4a:9f:09:84:12: 54:79:1f:55:f1:8d:cb:83:c7:50:47:f0:f3:ed:20:2b:5f:7d: 03:fb:ef:73:07:f3:b1:55:09:2e:8f:f3:e0:0a:cb:82:d2:cb: 4f:23:5d:9a:d8:50:ad:f7:a0:1e:86:fb:7d:29:a2:0f:c4:8e: df:7d:9c:22:0c:ff:88:65:bd:af:f6:99:53:aa:d0:61:6c:67: 66:98:a7:76:80:1b:09:3e:80:30:92:dd:a8:13:4c:1d:cf:44: 1c:86:69:8c:11:c9:a8:93:6e:a6:36:7e:60:f3:e0:13:d6:34: 53:b4:25:14:0d:c6:9c:c9:69:3c:f7:cf:42:2b:9b:50:99:21: b6:48:de:69:13:49:c5:bf:6e:01:06:67:00:61:0c:99:c1:c7: 96:01:04:a2:e7:3f:74:d5:b9:fc:6a:ca:bb:6c:e4:23:e5:ca: dc:3d:12:17 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIUeLBVF7pYZzP0zTJpqocTMk+OVHowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDcwODA4NTEwMloX DTI1MDcwNzA4NTYwMlowMzExMC8GA1UEAxMoNUE4OEE1MTMwOERFRjJDMzdGOUYy NDBCODA0RTEwMjdEQ0NDMkI5OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN+2IhDolarBvmTjJlpWhDOutAu08GtOtoWoXnGcIAGCB/znynWA65AdGMPr 2r58Q8+WaZa59HiN8p8tswLdECD5pUx+XfOEU1xVcW2flE2JSeIWwttinetIB/oO lPKIXwdJin8nD+yHgoewCGA35BwsfgQGRtTfMw+ZWGw3nbaPD4c+bXmsy+R3ZxD7 50u1/1g3EsH4qPPrUT80TdJo2M5zm134bqRZun+jq98ZEDLES6AKWpzLtfAZsPAQ g7kbN/9ogQ5v5pBFPzcIsKCUJ3h1NgCqW5aN+5mGWeR2YYFsKfTZ77oBIs5zf+sZ vSqnY9c24B4+URxi58VpFggdrJUCAwEAAaOCAgEwggH9MB0GA1UdDgQWBBRaiKUT CN7yw3+fJAuAThAn3MwrmTAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGEBggrBgEFBQcBCwR4MHYwdAYIKwYBBQUHMAuGaHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz MjMwMmUzMjM0MzMyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM5MzEu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBACdFPMwDQYJKoZIhvcNAQELBQADggEBAATChnmzx8F7Ztu7JUw9 wB+boMFGCefe0FslSX30Mcw60axLU7aJa9Ca/qn0x6hkkHk2mZeM3AHxuHjKNoN9 pm2hmZWegCykR4cxVPAFiF67E7UpKgdKnwmEElR5H1XxjcuDx1BH8PPtICtffQP7 73MH87FVCS6P8+AKy4LSy08jXZrYUK33oB6G+30pog/Ejt99nCIM/4hlva/2mVOq 0GFsZ2aYp3aAGwk+gDCS3agTTB3PRByGaYwRyaiTbqY2fmDz4BPWNFO0JRQNxpzJ aTz3z0Irm1CZIbZI3mkTScW/bgEGZwBhDJnBx5YBBKLnP3TVufxqyrts5CPlytw9 Ehc= -----END CERTIFICATE-----Generated at Wed Nov 20 06:21:51 2024 by rpki-client on console-ams.rpki-client.org