$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e32302e33302e302f32332d3234203d3e20313532333836.roa File: 3135372e32302e33302e302f32332d3234203d3e20313532333836.roa (raw, json) Hash identifier: fMQrJTpHdJy5xnd8AEm79HhM6FHn4Sj0MTLcrkihB9w= Subject key identifier: 10:7F:B5:17:BE:D6:38:CD:38:AB:C4:BC:CE:15:D1:BC:B6:84:70:02 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 4501651CC9FBBE80349B4AB3D7DD34689175CDF9 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e32302e33302e302f32332d3234203d3e20313532333836.roa Signing time: Fri 22 Mar 2024 06:46:44 +0000 ROA not before: Fri 22 Mar 2024 06:41:44 +0000 ROA not after: Fri 21 Mar 2025 06:46:44 +0000 asID: 152386 IP address blocks: 157.20.30.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:01:65:1c:c9:fb:be:80:34:9b:4a:b3:d7:dd:34:68:91:75:cd:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Mar 22 06:41:44 2024 GMT Not After : Mar 21 06:46:44 2025 GMT Subject: CN=107FB517BED638CD38ABC4BCCE15D1BCB6847002 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:8a:f3:a6:f7:ff:c3:c5:0c:84:f6:c1:91:93: 0c:62:32:68:7b:58:80:c4:64:b7:46:eb:75:c7:ff: 9b:f3:86:5a:48:41:09:2d:3c:4d:d7:92:8f:77:d0: 85:b9:42:b4:f7:da:d0:a5:e4:af:b4:be:d1:51:89: a4:37:7d:d6:e8:d9:c9:1f:ee:ec:d7:b8:8f:3e:52: 5e:53:05:af:38:ff:48:cc:04:b7:80:dd:75:e2:57: d0:99:52:9b:a6:e0:bc:54:32:c4:39:2b:f1:8d:da: 6f:84:c2:95:68:38:39:85:a5:c4:6c:70:6d:fa:3b: e8:95:69:a4:aa:f4:12:d8:82:0f:c9:2e:46:fb:02: e7:32:cc:25:60:73:b2:97:5f:52:ca:f4:ca:60:04: e1:64:2e:50:d0:66:46:08:65:a7:bb:c3:11:de:8e: b9:8e:2b:bf:66:1d:99:b3:c8:89:d1:71:bb:8b:6d: 16:6c:ef:a7:a8:5b:94:c7:d6:25:0a:60:6d:65:80: 02:7a:bb:fa:0e:49:77:56:d4:da:60:ac:2d:b8:d6: a3:a5:12:da:b7:59:84:b5:98:a2:45:6b:28:4a:d0: 70:76:67:36:7f:7b:c2:4a:1c:b8:a9:c0:33:38:48: 10:a0:5e:a3:19:a2:5f:7a:9a:e0:c7:16:c4:b8:fd: a6:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:7F:B5:17:BE:D6:38:CD:38:AB:C4:BC:CE:15:D1:BC:B6:84:70:02 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e32302e33302e302f32332d3234203d3e20313532333836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.30.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:92:a6:0c:b8:64:61:36:ce:ae:6d:01:ba:67:37:bc:e0:da: 06:ca:91:ca:38:79:c0:17:de:f6:e1:ee:20:7c:3a:d7:e2:29: 27:b7:08:1a:42:37:84:c5:19:7d:a7:6c:1b:9d:6e:35:07:08: f8:c5:cc:9c:7c:c3:f5:be:ae:ba:72:6f:01:7d:84:db:3a:71: 1d:2c:22:a3:70:dc:f3:0e:75:8b:30:21:69:a5:09:c0:0c:3e: c8:38:a9:26:83:f1:db:92:9d:32:89:c5:b2:57:b1:81:c0:bc: df:67:5e:77:d0:cc:19:48:55:1b:b4:0f:26:8f:ec:48:5f:98: 1f:50:d6:d4:d2:c0:eb:52:41:b3:03:5d:32:54:62:71:7c:fc: 91:7f:8a:74:d9:03:9f:18:58:1e:14:97:5d:a0:88:e1:61:37: 7d:a7:d8:68:aa:a6:7f:fd:0e:6d:5c:77:43:e6:33:28:d8:50: be:9e:d2:e6:63:33:71:11:b7:48:5a:c6:5a:10:18:69:54:24: 2b:a7:49:26:64:94:95:a9:9c:02:4d:50:8f:59:c7:10:3c:fc: 67:21:20:4c:42:9a:35:a8:f8:a8:e4:37:ee:a6:03:2d:40:82: 4f:9c:8c:2e:73:e5:c9:df:42:16:32:fe:57:01:3e:ac:0e:cc: 96:05:4b:08 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIURQFlHMn7voA0m0qz1900aJF1zfkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDMyMjA2NDE0NFoX DTI1MDMyMTA2NDY0NFowMzExMC8GA1UEAxMoMTA3RkI1MTdCRUQ2MzhDRDM4QUJD NEJDQ0UxNUQxQkNCNjg0NzAwMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANqK86b3/8PFDIT2wZGTDGIyaHtYgMRkt0brdcf/m/OGWkhBCS08TdeSj3fQ hblCtPfa0KXkr7S+0VGJpDd91ujZyR/u7Ne4jz5SXlMFrzj/SMwEt4DddeJX0JlS m6bgvFQyxDkr8Y3ab4TClWg4OYWlxGxwbfo76JVppKr0EtiCD8kuRvsC5zLMJWBz spdfUsr0ymAE4WQuUNBmRghlp7vDEd6OuY4rv2YdmbPIidFxu4ttFmzvp6hblMfW JQpgbWWAAnq7+g5Jd1bU2mCsLbjWo6US2rdZhLWYokVrKErQcHZnNn97wkocuKnA MzhIEKBeoxmiX3qa4McWxLj9pqcCAwEAAaOCAf8wggH7MB0GA1UdDgQWBBQQf7UX vtY4zTirxLzOFdG8toRwAjAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGCBggrBgEFBQcBCwR2MHQwcgYIKwYBBQUHMAuGZnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz MjMwMmUzMzMwMmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzODM2LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnRQeMA0GCSqGSIb3DQEBCwUAA4IBAQBtkqYMuGRhNs6ubQG6Zze8 4NoGypHKOHnAF9724e4gfDrX4ikntwgaQjeExRl9p2wbnW41Bwj4xcycfMP1vq66 cm8BfYTbOnEdLCKjcNzzDnWLMCFppQnADD7IOKkmg/Hbkp0yicWyV7GBwLzfZ153 0MwZSFUbtA8mj+xIX5gfUNbU0sDrUkGzA10yVGJxfPyRf4p02QOfGFgeFJddoIjh YTd9p9hoqqZ//Q5tXHdD5jMo2FC+ntLmYzNxEbdIWsZaEBhpVCQrp0kmZJSVqZwC TVCPWccQPPxnISBMQpo1qPio5DfupgMtQIJPnIwuc+XJ30IWMv5XAT6sDsyWBUsI -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org