$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e32302e39362e302f32332d3234203d3e20313336303532.roa File: 3135372e32302e39362e302f32332d3234203d3e20313336303532.roa (raw, json) Hash identifier: gJxDBEKXvXjzRHVYn6pVvXTdTCj6ubuB+orH4Shdorw= Subject key identifier: EA:FC:31:2F:74:D7:97:CB:3C:D4:8E:D3:C3:21:DA:75:4C:21:09:62 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 4996CC5FC288B1C6A692CDB0832AAB2A2F4BD091 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e32302e39362e302f32332d3234203d3e20313336303532.roa Signing time: Mon 04 Mar 2024 03:45:54 +0000 ROA not before: Mon 04 Mar 2024 03:40:54 +0000 ROA not after: Mon 03 Mar 2025 03:45:54 +0000 asID: 136052 IP address blocks: 157.20.96.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:96:cc:5f:c2:88:b1:c6:a6:92:cd:b0:83:2a:ab:2a:2f:4b:d0:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Mar 4 03:40:54 2024 GMT Not After : Mar 3 03:45:54 2025 GMT Subject: CN=EAFC312F74D797CB3CD48ED3C321DA754C210962 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:91:0f:58:6f:ec:78:b6:be:94:e1:fa:d0:35: 58:45:91:c0:e9:4f:cd:45:d1:20:d1:73:ac:4d:44: 6d:b2:1d:37:58:95:85:d5:15:5f:4b:75:c0:a1:1d: ff:d0:8c:f2:f7:33:88:91:b8:53:be:2f:a1:13:76: bb:16:1d:2b:f7:b3:d6:4d:40:fb:c6:1b:7f:a6:0b: 77:2b:7a:69:36:b6:27:09:9e:2a:34:a7:a9:70:77: 97:af:a1:b3:0b:bc:d9:9d:f9:03:ba:cc:74:67:b6: ae:af:0b:16:35:91:63:b5:78:39:99:d8:43:8e:b6: ba:28:52:5d:f1:ca:f4:81:56:39:98:3a:ac:7a:8b: d0:a3:13:94:e1:3e:cf:cf:6b:e5:d1:80:bd:dd:f6: ba:1f:a1:72:56:17:64:64:df:99:20:02:07:35:80: e5:b0:e8:04:a0:fb:0e:fa:7e:3e:37:14:30:6a:20: 51:84:93:61:0f:61:d1:64:81:06:c0:6f:6b:ab:e6: fe:27:a6:0f:c1:7e:b8:35:e4:50:e1:cf:82:f0:da: e0:35:02:f4:a3:76:e1:71:c4:6c:70:77:ea:61:21: b6:0e:61:67:ca:52:4e:24:ea:a1:f3:5f:be:0f:11: e5:a6:7a:8c:5e:a2:ce:5b:a4:c6:03:98:4f:e0:50: 77:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:FC:31:2F:74:D7:97:CB:3C:D4:8E:D3:C3:21:DA:75:4C:21:09:62 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e32302e39362e302f32332d3234203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.96.0/23 Signature Algorithm: sha256WithRSAEncryption 3e:8d:94:b1:a9:a2:a5:4c:4e:2e:25:66:44:70:1b:ea:1e:42: ed:bd:98:9b:22:a6:71:71:c8:d8:06:33:69:75:09:1c:ca:8d: 88:1f:0c:24:f2:d4:dc:d3:b6:20:4d:1a:6b:0b:aa:8f:83:7f: 98:09:96:73:f3:27:d3:89:3a:9a:0d:8c:9e:0f:a7:d3:88:bd: a9:73:86:64:df:4b:17:95:09:32:99:ee:00:ea:43:f7:77:4f: 9b:60:98:42:2d:a3:e3:a2:2f:f6:53:66:ce:34:8c:2b:e9:2b: f3:c2:3c:ea:17:04:56:86:f5:07:b3:54:c3:41:aa:5e:9d:cb: 06:a5:a1:2e:2d:15:af:b6:af:42:1c:d7:1b:8d:2f:a8:89:b5: 6e:b2:ff:8b:e2:46:47:f2:6f:1d:b6:02:56:74:06:a7:75:2b: 9f:d9:94:ab:12:0a:ca:72:42:b6:8c:f5:67:f8:3d:75:84:ca: 46:e0:a8:b5:22:28:f0:ed:16:df:d1:d3:d1:84:87:12:8e:30: d8:4b:3c:53:8f:00:1a:3f:de:1b:b4:01:46:f9:9b:ee:f8:cc: f0:42:d8:1d:b1:87:98:c8:b9:cb:4f:71:4c:24:16:50:c4:7c: 17:7c:2e:58:8a:d7:5c:9f:77:0f:2f:2e:3e:b8:66:b0:b0:c7: 01:36:24:c9 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUSZbMX8KIscamks2wgyqrKi9L0JEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDMwNDAzNDA1NFoX DTI1MDMwMzAzNDU1NFowMzExMC8GA1UEAxMoRUFGQzMxMkY3NEQ3OTdDQjNDRDQ4 RUQzQzMyMURBNzU0QzIxMDk2MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANeRD1hv7Hi2vpTh+tA1WEWRwOlPzUXRINFzrE1EbbIdN1iVhdUVX0t1wKEd /9CM8vcziJG4U74voRN2uxYdK/ez1k1A+8Ybf6YLdyt6aTa2JwmeKjSnqXB3l6+h swu82Z35A7rMdGe2rq8LFjWRY7V4OZnYQ462uihSXfHK9IFWOZg6rHqL0KMTlOE+ z89r5dGAvd32uh+hclYXZGTfmSACBzWA5bDoBKD7Dvp+PjcUMGogUYSTYQ9h0WSB BsBva6vm/iemD8F+uDXkUOHPgvDa4DUC9KN24XHEbHB36mEhtg5hZ8pSTiTqofNf vg8R5aZ6jF6izlukxgOYT+BQd0UCAwEAAaOCAf8wggH7MB0GA1UdDgQWBBTq/DEv dNeXyzzUjtPDIdp1TCEJYjAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGCBggrBgEFBQcBCwR2MHQwcgYIKwYBBQUHMAuGZnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz MjMwMmUzOTM2MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzNTMyLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnRRgMA0GCSqGSIb3DQEBCwUAA4IBAQA+jZSxqaKlTE4uJWZEcBvq HkLtvZibIqZxccjYBjNpdQkcyo2IHwwk8tTc07YgTRprC6qPg3+YCZZz8yfTiTqa DYyeD6fTiL2pc4Zk30sXlQkyme4A6kP3d0+bYJhCLaPjoi/2U2bONIwr6Svzwjzq FwRWhvUHs1TDQapencsGpaEuLRWvtq9CHNcbjS+oibVusv+L4kZH8m8dtgJWdAan dSuf2ZSrEgrKckK2jPVn+D11hMpG4Ki1Iijw7Rbf0dPRhIcSjjDYSzxTjwAaP94b tAFG+Zvu+MzwQtgdsYeYyLnLT3FMJBZQxHwXfC5Yitdcn3cPLy4+uGawsMcBNiTJ -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org