$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e32302e39322e302f32332d3234203d3e20313532343037.roa File: 3135372e32302e39322e302f32332d3234203d3e20313532343037.roa (raw, json) Hash identifier: vPNzCWIyYtOZe7f96h5td6D6Uft0FnbonKfbUAHHDjE= Subject key identifier: 9A:B1:1C:47:1D:25:D5:04:3D:F2:C2:65:6F:EB:F3:10:F5:5F:45:12 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 789A04FBEB4B208EB64D428E1494CC0393DEEA6B Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e32302e39322e302f32332d3234203d3e20313532343037.roa Signing time: Wed 13 Mar 2024 04:51:09 +0000 ROA not before: Wed 13 Mar 2024 04:46:09 +0000 ROA not after: Wed 12 Mar 2025 04:51:09 +0000 asID: 152407 IP address blocks: 157.20.92.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:9a:04:fb:eb:4b:20:8e:b6:4d:42:8e:14:94:cc:03:93:de:ea:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Mar 13 04:46:09 2024 GMT Not After : Mar 12 04:51:09 2025 GMT Subject: CN=9AB11C471D25D5043DF2C2656FEBF310F55F4512 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7b:e0:d8:a1:21:7b:04:da:98:a0:26:29:b6: 1c:77:5e:5d:b4:14:f0:78:8d:56:52:80:50:7a:ee: 4b:38:f8:e5:20:ae:e9:d8:a3:d7:65:84:f6:ba:b2: bb:05:fa:a8:72:f4:aa:8c:22:49:93:83:b4:84:38: c3:3f:06:b1:bb:ad:29:55:d0:c5:30:ff:e8:b1:a4: 03:51:e4:2d:4b:25:30:8a:12:95:62:e5:e6:74:a1: bf:1d:16:73:1b:04:e6:78:66:15:aa:32:49:ce:d4: 59:83:53:c7:e7:81:24:88:e5:50:82:2e:ea:4a:3a: 7f:35:7e:a8:6f:1c:e9:9c:b7:e4:e8:65:19:c3:30: 78:46:8d:d8:2d:a7:2a:55:d3:b7:2b:95:79:c9:5d: 5b:c0:a1:76:ff:92:d1:53:82:64:ab:21:99:16:f9: 22:ac:b4:14:4f:1d:2c:e8:4d:b5:c3:3a:ff:d1:3a: 9c:1c:c7:1b:da:a3:e1:18:13:f2:97:7f:4f:14:46: 8a:f6:43:79:af:c8:98:d8:11:d1:19:b9:2f:c8:4b: 7b:9a:6b:73:f2:53:8d:f4:37:48:c4:68:1f:dc:0d: c3:3a:c5:4a:79:67:65:5d:a1:50:bb:0a:e3:08:b1: 6d:ce:3e:9b:0c:11:0e:76:f9:4a:2e:31:eb:89:61: d3:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:B1:1C:47:1D:25:D5:04:3D:F2:C2:65:6F:EB:F3:10:F5:5F:45:12 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e32302e39322e302f32332d3234203d3e20313532343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.92.0/23 Signature Algorithm: sha256WithRSAEncryption 84:55:6b:3d:10:ee:58:8d:c7:c5:bf:ff:28:12:1c:8a:19:aa: 2b:83:5b:a8:81:d8:03:a3:6d:b0:05:dc:87:66:0a:2d:94:53: 2a:24:14:9e:03:aa:14:3d:4d:f2:11:c5:70:8a:55:68:c1:26: 30:60:a2:5d:1c:e8:30:db:ce:15:df:17:83:86:7e:57:b5:b1: a3:c1:5a:40:56:80:78:b3:38:9e:a0:8b:57:7f:39:7b:92:f2: bb:48:ce:e4:50:09:59:e8:6a:ca:04:5e:4c:fb:3d:35:5a:75: 67:4c:48:d4:08:05:41:49:60:84:8e:3c:cc:50:73:bb:c6:7b: b1:94:23:ff:e5:20:c6:c4:57:62:26:1e:9d:71:6e:d9:a4:b2: fe:3e:47:16:c5:9e:9f:88:1d:65:29:de:55:72:27:52:ff:cd: 4e:4b:37:c4:21:95:bb:74:c0:79:ec:5f:d3:31:78:1b:2d:12: bf:09:ae:20:b5:d8:43:bd:9a:d2:09:ab:43:ad:30:23:52:2b: a0:8b:98:c4:41:15:51:30:88:5b:67:b8:f9:81:82:93:4a:f9: 18:de:e3:c0:20:0e:a0:13:29:42:e7:1d:8f:11:d6:55:3a:0f: 91:c0:b9:9b:0b:66:eb:5d:90:ee:3b:b9:af:2b:43:3c:c5:02: 67:ba:b0:aa -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUeJoE++tLII62TUKOFJTMA5Pe6mswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDMxMzA0NDYwOVoX DTI1MDMxMjA0NTEwOVowMzExMC8GA1UEAxMoOUFCMTFDNDcxRDI1RDUwNDNERjJD MjY1NkZFQkYzMTBGNTVGNDUxMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALV74NihIXsE2pigJim2HHdeXbQU8HiNVlKAUHruSzj45SCu6dij12WE9rqy uwX6qHL0qowiSZODtIQ4wz8GsbutKVXQxTD/6LGkA1HkLUslMIoSlWLl5nShvx0W cxsE5nhmFaoySc7UWYNTx+eBJIjlUIIu6ko6fzV+qG8c6Zy35OhlGcMweEaN2C2n KlXTtyuVecldW8Chdv+S0VOCZKshmRb5Iqy0FE8dLOhNtcM6/9E6nBzHG9qj4RgT 8pd/TxRGivZDea/ImNgR0Rm5L8hLe5prc/JTjfQ3SMRoH9wNwzrFSnlnZV2hULsK 4wixbc4+mwwRDnb5Si4x64lh050CAwEAAaOCAf8wggH7MB0GA1UdDgQWBBSasRxH HSXVBD3ywmVv6/MQ9V9FEjAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGCBggrBgEFBQcBCwR2MHQwcgYIKwYBBQUHMAuGZnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz MjMwMmUzOTMyMmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMDM3LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnRRcMA0GCSqGSIb3DQEBCwUAA4IBAQCEVWs9EO5YjcfFv/8oEhyK Gaorg1uogdgDo22wBdyHZgotlFMqJBSeA6oUPU3yEcVwilVowSYwYKJdHOgw284V 3xeDhn5XtbGjwVpAVoB4szieoItXfzl7kvK7SM7kUAlZ6GrKBF5M+z01WnVnTEjU CAVBSWCEjjzMUHO7xnuxlCP/5SDGxFdiJh6dcW7ZpLL+PkcWxZ6fiB1lKd5VcidS /81OSzfEIZW7dMB57F/TMXgbLRK/Ca4gtdhDvZrSCatDrTAjUiugi5jEQRVRMIhb Z7j5gYKTSvkY3uPAIA6gEylC5x2PEdZVOg+RwLmbC2brXZDuO7mvK0M8xQJnurCq -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org