$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e32302e33322e302f32342d3234203d3e20313532333930.roa File: 3135372e32302e33322e302f32342d3234203d3e20313532333930.roa (raw, json) Hash identifier: GEHoz8dmzufIK14GNT6WLuLkA2cC+Je9fvo8FUwfTh4= Subject key identifier: 37:4A:E0:8D:B7:EA:DA:70:AA:90:E9:9F:F9:39:EE:43:91:30:5F:0D Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 5D24ABB17A764B766BDB4CDEFB341C3CD22F972F Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e32302e33322e302f32342d3234203d3e20313532333930.roa Signing time: Wed 28 Feb 2024 02:29:05 +0000 ROA not before: Wed 28 Feb 2024 02:24:05 +0000 ROA not after: Wed 26 Feb 2025 02:29:05 +0000 asID: 152390 IP address blocks: 157.20.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 00:47:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:24:ab:b1:7a:76:4b:76:6b:db:4c:de:fb:34:1c:3c:d2:2f:97:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Feb 28 02:24:05 2024 GMT Not After : Feb 26 02:29:05 2025 GMT Subject: CN=374AE08DB7EADA70AA90E99FF939EE4391305F0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:62:61:50:92:b5:35:f7:ea:6b:46:a6:51:e6: a9:49:1f:80:84:69:5a:30:25:10:ef:34:74:af:ab: 85:cc:c8:75:21:c0:a6:74:37:dd:89:c7:50:6f:6d: 26:e6:41:8b:5a:a5:cb:d9:9b:c2:d6:25:d7:28:61: 27:00:1b:07:ab:2a:1e:27:47:65:d1:f5:17:ab:7a: 69:63:d6:f1:fc:cc:d4:0e:e0:c1:aa:d3:5f:28:dc: dd:89:9d:73:c8:56:86:dd:7e:7a:03:92:e2:c5:21: 4a:2e:a1:16:b2:3a:06:ef:b2:8a:eb:c1:97:75:48: 1c:3c:63:e9:99:e4:87:97:1c:8c:03:99:88:24:4b: 0e:4f:53:e0:a3:3d:14:a7:10:31:85:e4:ee:0d:c0: 71:e8:ac:ae:e3:b6:bb:8f:b3:98:d4:0a:68:7b:b8: d9:c0:32:05:36:71:01:bb:3d:a2:7f:92:d6:f9:d7: 14:56:15:0d:93:e8:d9:6c:a1:31:72:70:1f:b9:a5: e6:8d:9f:aa:26:a9:c2:a8:26:bd:dc:8f:3e:42:ee: e0:f3:59:22:9d:d7:91:05:5c:ac:bc:0b:a9:48:00: ad:82:4e:19:20:d9:02:0e:11:2d:25:46:d5:8f:90: 5a:ae:80:4d:8d:ec:bc:87:f1:8d:ed:7c:3d:d7:9c: 10:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:4A:E0:8D:B7:EA:DA:70:AA:90:E9:9F:F9:39:EE:43:91:30:5F:0D X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e32302e33322e302f32342d3234203d3e20313532333930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.32.0/24 Signature Algorithm: sha256WithRSAEncryption 05:43:9a:64:31:92:13:03:38:3c:ae:70:08:fd:5c:52:7c:fb: 8b:ed:5a:3f:dc:7f:96:09:9a:67:b8:b3:cd:e7:96:61:b5:d8: f5:9a:3c:a2:5d:58:0b:19:76:4e:0c:8e:3a:c6:c7:4d:69:d5: 33:3e:be:57:c2:42:35:eb:be:4d:55:d7:72:47:f0:0d:99:f4: a5:76:fb:61:56:c7:ee:8e:6f:c0:4a:64:f7:e2:95:c3:b4:ee: e9:a4:68:a3:4e:44:04:19:25:53:2c:34:eb:b6:2b:ac:ce:b3: 3e:de:a5:f4:4a:f3:6d:58:31:58:b2:ae:b0:c4:d5:ae:a9:b1: 9d:6e:6e:7e:75:68:1b:35:b4:c5:81:dc:e9:a2:87:36:62:53: ba:52:f8:c1:71:99:20:08:59:58:13:34:40:70:0a:21:fa:e5: a2:21:aa:e3:49:52:79:4b:bb:31:bc:6d:e2:4f:6e:a1:10:ac: 07:de:8b:31:5c:bd:25:1b:57:50:05:b6:4d:80:91:7b:f1:4e: fa:9c:66:40:86:17:e5:06:50:f6:ad:f0:15:bb:e6:a1:40:fb: be:24:1c:d4:3b:6f:08:7b:95:ca:96:b7:d5:3b:95:d3:d4:c0: 46:2f:53:63:9f:70:1d:62:11:3e:7b:90:0f:19:95:9b:07:3b: b0:30:71:a4 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUXSSrsXp2S3Zr20ze+zQcPNIvly8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDIyODAyMjQwNVoX DTI1MDIyNjAyMjkwNVowMzExMC8GA1UEAxMoMzc0QUUwOERCN0VBREE3MEFBOTBF OTlGRjkzOUVFNDM5MTMwNUYwRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALpiYVCStTX36mtGplHmqUkfgIRpWjAlEO80dK+rhczIdSHApnQ33YnHUG9t JuZBi1qly9mbwtYl1yhhJwAbB6sqHidHZdH1F6t6aWPW8fzM1A7gwarTXyjc3Ymd c8hWht1+egOS4sUhSi6hFrI6Bu+yiuvBl3VIHDxj6Znkh5ccjAOZiCRLDk9T4KM9 FKcQMYXk7g3AceisruO2u4+zmNQKaHu42cAyBTZxAbs9on+S1vnXFFYVDZPo2Wyh MXJwH7ml5o2fqiapwqgmvdyPPkLu4PNZIp3XkQVcrLwLqUgArYJOGSDZAg4RLSVG 1Y+QWq6ATY3svIfxje18PdecEAECAwEAAaOCAf8wggH7MB0GA1UdDgQWBBQ3SuCN t+racKqQ6Z/5Oe5DkTBfDTAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGCBggrBgEFBQcBCwR2MHQwcgYIKwYBBQUHMAuGZnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz MjMwMmUzMzMyMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzOTMwLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAnRQgMA0GCSqGSIb3DQEBCwUAA4IBAQAFQ5pkMZITAzg8rnAI/VxS fPuL7Vo/3H+WCZpnuLPN55Zhtdj1mjyiXVgLGXZODI46xsdNadUzPr5XwkI1675N VddyR/ANmfSldvthVsfujm/ASmT34pXDtO7ppGijTkQEGSVTLDTrtiuszrM+3qX0 SvNtWDFYsq6wxNWuqbGdbm5+dWgbNbTFgdzpooc2YlO6UvjBcZkgCFlYEzRAcAoh +uWiIarjSVJ5S7sxvG3iT26hEKwH3osxXL0lG1dQBbZNgJF78U76nGZAhhflBlD2 rfAVu+ahQPu+JBzUO28Ie5XKlrfVO5XT1MBGL1Njn3AdYhE+e5APGZWbBzuwMHGk -----END CERTIFICATE-----Generated at Fri May 17 18:13:31 2024 by rpki-client on console-fra.rpki-client.org