$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3131322e302f32332d3234203d3e2034383030.roa File: 3135372e36362e3131322e302f32332d3234203d3e2034383030.roa (raw, json) Hash identifier: 0ORbBkuDPCN/wOL/lkIO70WU/Sv6icylJQnZ5YXdxDo= Subject key identifier: 07:45:33:CF:70:3E:0B:05:79:88:22:4E:11:D2:66:B2:50:44:A1:CE Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 4C5424610CE10E8BC4307E6B69CB7AE366A704D2 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3131322e302f32332d3234203d3e2034383030.roa Signing time: Sun 30 Jun 2024 01:59:54 +0000 ROA not before: Sun 30 Jun 2024 01:54:54 +0000 ROA not after: Sun 29 Jun 2025 01:59:54 +0000 asID: 4800 IP address blocks: 157.66.112.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:54:24:61:0c:e1:0e:8b:c4:30:7e:6b:69:cb:7a:e3:66:a7:04:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jun 30 01:54:54 2024 GMT Not After : Jun 29 01:59:54 2025 GMT Subject: CN=074533CF703E0B057988224E11D266B25044A1CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:68:60:35:a3:af:fc:dd:8d:d6:77:1a:35:fa: 0f:e0:46:84:37:0f:5d:c1:0d:91:65:07:2c:67:71: 90:88:64:55:2d:f5:9a:c6:2e:2c:37:ba:e1:b4:92: 9a:43:bb:62:87:4c:fd:19:67:78:03:21:7b:27:a5: 28:66:28:df:e7:b3:40:e5:cf:80:0a:3e:2c:25:29: be:b3:5b:42:70:ff:1f:7c:92:44:69:4d:9e:10:89: 17:59:5a:2a:b8:8d:81:94:41:0b:d3:e8:a3:fa:3e: d8:c4:ad:aa:f5:17:e1:67:c4:b2:a3:8e:81:07:3b: ba:0a:78:5b:f6:af:46:7a:e2:c6:e1:c6:9b:ad:ad: 4f:4c:10:24:95:d1:2c:92:64:d0:8f:d2:d1:e3:e0: aa:77:27:8e:75:fa:2c:df:52:5c:06:fe:8a:7f:f1: 6c:fa:cc:f8:42:02:37:7a:bd:d9:f4:3e:c4:c8:6d: 38:a1:9a:36:73:ff:a7:c5:92:03:9c:9c:79:38:26: 41:3c:8f:08:50:de:fc:2b:e7:ea:b7:e1:db:6b:9b: bd:58:54:3f:b8:1d:e5:2b:80:b0:a0:b8:44:52:97: aa:a9:88:6e:ae:c8:15:9a:2a:29:a8:b5:54:ee:79: 35:a3:ba:79:90:31:73:6b:80:4c:72:96:33:a4:2c: 57:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:45:33:CF:70:3E:0B:05:79:88:22:4E:11:D2:66:B2:50:44:A1:CE X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3131322e302f32332d3234203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.112.0/23 Signature Algorithm: sha256WithRSAEncryption 35:b4:e0:42:7c:b4:03:20:21:5c:ce:96:0f:5a:32:cd:2e:a9: 06:c1:f6:2a:70:50:26:dc:29:21:d5:56:0e:c0:6d:19:01:6c: 82:0f:63:fa:73:3e:f4:33:fd:41:ec:29:66:68:d3:4a:e5:21: c2:cd:4b:f9:bc:69:52:5e:c2:e5:dc:70:f1:c7:af:ac:85:2a: 0d:b2:53:c3:4c:0b:0f:bb:aa:b7:5f:55:73:5d:68:42:61:7a: 3e:0e:36:c3:dd:2c:ec:8a:bb:60:cb:83:88:7c:0b:bd:ef:c7: 6e:33:76:3f:4a:29:97:a2:4b:b1:f8:10:98:66:43:bb:8f:cd: 46:72:07:ce:43:9b:b2:9e:b4:9c:29:1c:fd:2d:e1:6b:ea:f5: ec:09:4e:2a:5f:d1:3c:92:66:fd:81:f4:51:d7:66:96:c7:91: d0:b7:f0:b8:ef:9b:37:b9:25:1b:f7:5b:39:88:a6:83:9d:0e: d5:37:56:93:63:c1:e7:ed:18:7d:87:5a:d4:e7:dc:88:31:55: c6:7e:20:d2:99:d1:e1:09:48:92:98:5e:13:57:97:42:23:2f: ff:dc:8f:de:0c:27:7f:d3:bc:0a:c3:e2:1d:1f:0d:10:bb:7d: 02:50:bd:b2:7a:a0:b5:02:8f:2c:60:3a:b0:67:42:27:01:8d: d3:eb:d3:77 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUTFQkYQzhDovEMH5ract642anBNIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDYzMDAxNTQ1NFoX DTI1MDYyOTAxNTk1NFowMzExMC8GA1UEAxMoMDc0NTMzQ0Y3MDNFMEIwNTc5ODgy MjRFMTFEMjY2QjI1MDQ0QTFDRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMRoYDWjr/zdjdZ3GjX6D+BGhDcPXcENkWUHLGdxkIhkVS31msYuLDe64bSS mkO7YodM/RlneAMheyelKGYo3+ezQOXPgAo+LCUpvrNbQnD/H3ySRGlNnhCJF1la KriNgZRBC9Poo/o+2MStqvUX4WfEsqOOgQc7ugp4W/avRnrixuHGm62tT0wQJJXR LJJk0I/S0ePgqncnjnX6LN9SXAb+in/xbPrM+EICN3q92fQ+xMhtOKGaNnP/p8WS A5yceTgmQTyPCFDe/Cvn6rfh22ubvVhUP7gd5SuAsKC4RFKXqqmIbq7IFZoqKai1 VO55NaO6eZAxc2uATHKWM6QsV88CAwEAAaOCAf0wggH5MB0GA1UdDgQWBBQHRTPP cD4LBXmIIk4R0mayUEShzjAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGABggrBgEFBQcBCwR0MHIwcAYIKwYBBQUHMAuGZHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz NjM2MmUzMTMxMzIyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzNDM4MzAzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAZ1CcDANBgkqhkiG9w0BAQsFAAOCAQEANbTgQny0AyAhXM6WD1oyzS6p BsH2KnBQJtwpIdVWDsBtGQFsgg9j+nM+9DP9QewpZmjTSuUhws1L+bxpUl7C5dxw 8cevrIUqDbJTw0wLD7uqt19Vc11oQmF6Pg42w90s7Iq7YMuDiHwLve/HbjN2P0op l6JLsfgQmGZDu4/NRnIHzkObsp60nCkc/S3ha+r17AlOKl/RPJJm/YH0UddmlseR 0LfwuO+bN7klG/dbOYimg50O1TdWk2PB5+0YfYda1OfciDFVxn4g0pnR4QlIkphe E1eXQiMv/9yP3gwnf9O8CsPiHR8NELt9AlC9snqgtQKPLGA6sGdCJwGN0+vTdw== -----END CERTIFICATE-----Generated at Wed Nov 20 06:21:51 2024 by rpki-client on console-ams.rpki-client.org