$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e32302e34362e302f32332d3234203d3e20313532333934.roa File: 3135372e32302e34362e302f32332d3234203d3e20313532333934.roa (raw, json) Hash identifier: BfIq2xwHoiBsyhYyRlqUuSH4BPwkSkogAZzpvMXgEnc= Subject key identifier: 23:13:9C:7E:39:C6:59:BC:8E:19:03:90:C6:F6:76:95:A1:AA:7B:45 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 72B33E9288F4CA7DCDD415C819C70F93B2C37BBC Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e32302e34362e302f32332d3234203d3e20313532333934.roa Signing time: Fri 01 Mar 2024 03:21:48 +0000 ROA not before: Fri 01 Mar 2024 03:16:48 +0000 ROA not after: Fri 28 Feb 2025 03:21:48 +0000 asID: 152394 IP address blocks: 157.20.46.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:b3:3e:92:88:f4:ca:7d:cd:d4:15:c8:19:c7:0f:93:b2:c3:7b:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Mar 1 03:16:48 2024 GMT Not After : Feb 28 03:21:48 2025 GMT Subject: CN=23139C7E39C659BC8E190390C6F67695A1AA7B45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:74:84:b6:78:3c:07:fc:72:9e:a5:3f:27:a1: 61:8c:c5:99:ea:d6:f7:1f:28:7e:9b:e0:2b:14:ce: 34:8b:fa:07:47:a1:81:1d:84:08:a1:74:14:3b:44: b2:ac:2c:4e:73:ad:46:cd:71:20:f1:38:b4:ae:8b: 22:a8:37:fe:13:24:20:34:b2:45:0d:4a:06:82:cd: d9:cd:a8:c3:5f:f4:0c:bc:44:08:f7:9b:33:83:e3: 0d:73:88:f1:a4:7f:b2:8b:09:f0:57:39:60:69:db: 68:30:7c:50:2d:89:e8:ee:fd:64:c7:82:ab:d3:07: 2d:fc:e5:b5:61:f7:66:44:6f:9d:46:fc:c2:4d:31: 6f:a6:c3:a9:11:87:98:47:67:03:0a:23:05:d4:9f: 45:1b:8b:7e:33:8b:b5:83:7a:0a:e3:42:46:cf:60: af:fc:e5:eb:30:6e:04:89:40:8d:ea:4f:0a:c6:57: 99:d5:b5:53:50:0a:85:ab:7c:10:ea:a0:fd:31:8c: fb:f3:17:89:a6:76:41:32:57:54:8c:d5:01:11:f6: 68:e8:5a:70:dc:53:b9:fa:35:59:f2:51:40:a4:07: 72:77:2d:4a:71:13:ae:fc:0c:6c:81:4b:54:a4:78: e9:7d:f9:a4:7c:66:f7:bb:61:ad:6e:da:a4:09:24: 60:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:13:9C:7E:39:C6:59:BC:8E:19:03:90:C6:F6:76:95:A1:AA:7B:45 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e32302e34362e302f32332d3234203d3e20313532333934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.46.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:aa:6d:da:d4:d6:ed:56:1e:cd:c4:46:c5:dd:b4:35:41:87: 97:e4:f5:b0:d8:37:5c:51:d2:e0:9b:1f:f8:94:f5:4c:ed:7e: 1c:67:38:9b:d2:0f:c3:9a:0b:f6:af:89:84:63:f0:10:fd:6d: f2:48:fd:01:4a:5e:3e:77:0f:ef:ca:0a:b1:cd:d3:ca:96:f8: c8:51:65:78:15:1c:ff:11:c3:1d:8c:f7:50:57:a8:98:1b:13: ad:f0:7c:f2:33:a2:a9:4e:b7:06:99:5b:a8:6a:c9:37:51:dd: 1d:a6:32:d3:31:ec:0b:18:6a:fe:a4:ab:53:ef:09:d2:c9:33: bd:e5:28:13:ca:75:68:05:bc:8c:e4:30:06:f6:87:2d:82:12: 0e:3c:ff:b4:a6:20:de:25:6c:57:53:d6:ce:c7:08:22:83:db: ec:64:54:32:83:37:a4:ed:c4:9b:9e:9d:77:4a:3e:eb:7a:ed: af:2d:a2:37:49:5f:f2:fc:1e:49:6e:c8:15:e6:1f:d1:7c:0b: 4c:05:2f:4a:f3:ad:58:22:95:d3:22:3d:a2:6d:9c:80:8c:74: da:51:44:91:c4:c4:64:42:c8:42:58:c9:73:bb:b1:73:8d:0a: b5:ac:71:8c:6b:1d:18:5f:5d:42:3d:fa:da:10:41:b7:cc:77: f2:13:0e:c2 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUcrM+koj0yn3N1BXIGccPk7LDe7wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDMwMTAzMTY0OFoX DTI1MDIyODAzMjE0OFowMzExMC8GA1UEAxMoMjMxMzlDN0UzOUM2NTlCQzhFMTkw MzkwQzZGNjc2OTVBMUFBN0I0NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALl0hLZ4PAf8cp6lPyehYYzFmerW9x8ofpvgKxTONIv6B0ehgR2ECKF0FDtE sqwsTnOtRs1xIPE4tK6LIqg3/hMkIDSyRQ1KBoLN2c2ow1/0DLxECPebM4PjDXOI 8aR/sosJ8Fc5YGnbaDB8UC2J6O79ZMeCq9MHLfzltWH3ZkRvnUb8wk0xb6bDqRGH mEdnAwojBdSfRRuLfjOLtYN6CuNCRs9gr/zl6zBuBIlAjepPCsZXmdW1U1AKhat8 EOqg/TGM+/MXiaZ2QTJXVIzVARH2aOhacNxTufo1WfJRQKQHcnctSnETrvwMbIFL VKR46X35pHxm97thrW7apAkkYPMCAwEAAaOCAf8wggH7MB0GA1UdDgQWBBQjE5x+ OcZZvI4ZA5DG9naVoap7RTAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGCBggrBgEFBQcBCwR2MHQwcgYIKwYBBQUHMAuGZnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz MjMwMmUzNDM2MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzOTM0LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnRQuMA0GCSqGSIb3DQEBCwUAA4IBAQAbqm3a1NbtVh7NxEbF3bQ1 QYeX5PWw2DdcUdLgmx/4lPVM7X4cZzib0g/Dmgv2r4mEY/AQ/W3ySP0BSl4+dw/v ygqxzdPKlvjIUWV4FRz/EcMdjPdQV6iYGxOt8HzyM6KpTrcGmVuoask3Ud0dpjLT MewLGGr+pKtT7wnSyTO95SgTynVoBbyM5DAG9octghIOPP+0piDeJWxXU9bOxwgi g9vsZFQygzek7cSbnp13Sj7reu2vLaI3SV/y/B5JbsgV5h/RfAtMBS9K861YIpXT Ij2ibZyAjHTaUUSRxMRkQshCWMlzu7FzjQq1rHGMax0YX11CPfraEEG3zHfyEw7C -----END CERTIFICATE-----Generated at Wed Nov 20 06:21:51 2024 by rpki-client on console-ams.rpki-client.org