$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3133362e302f32332d3234203d3e2034383030.roa File: 3135372e36362e3133362e302f32332d3234203d3e2034383030.roa (raw, json) Hash identifier: dYcHoMVZHClY/jvJm7QRUz7kMA8ylehrDww+RD9exqU= Subject key identifier: CC:2A:3D:78:6C:EE:D2:9C:E7:96:14:25:C9:90:59:89:F1:60:B7:CB Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 4003D06F65DC5EC03EE58942475AEFE34F4D5077 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3133362e302f32332d3234203d3e2034383030.roa Signing time: Sun 30 Jun 2024 01:59:54 +0000 ROA not before: Sun 30 Jun 2024 01:54:54 +0000 ROA not after: Sun 29 Jun 2025 01:59:54 +0000 asID: 4800 IP address blocks: 157.66.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:03:d0:6f:65:dc:5e:c0:3e:e5:89:42:47:5a:ef:e3:4f:4d:50:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jun 30 01:54:54 2024 GMT Not After : Jun 29 01:59:54 2025 GMT Subject: CN=CC2A3D786CEED29CE7961425C9905989F160B7CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:6d:18:43:bf:45:6a:e8:d0:8c:4f:17:8b:f8: d3:a7:54:fe:91:1b:af:73:3c:62:58:bc:92:35:94: 13:6c:84:a3:27:53:e8:c7:31:f4:14:bc:54:2c:42: da:96:0c:28:0c:a7:04:a6:4d:89:7d:21:ee:da:37: 59:af:d7:73:9c:6d:c0:8a:9b:d2:60:ae:b0:68:93: 48:04:92:26:f5:9d:4b:2c:55:d7:fd:3a:11:aa:d0: 54:ea:3a:63:d8:30:16:f5:cf:0a:65:4f:e7:2d:33: 35:5f:cd:84:01:1b:65:32:28:ce:01:3d:c6:18:eb: f6:a3:95:6c:5f:9b:5e:77:32:3a:dd:20:b8:d3:91: 71:ca:8d:7e:8e:87:f1:74:9f:5c:99:ac:70:a7:c0: 01:43:3a:fb:b8:a3:a4:2e:33:f0:42:e1:e6:fb:46: 48:b1:ce:99:ea:62:35:d7:3b:41:fa:23:b5:3e:bb: e2:d0:3e:65:ce:ce:62:b9:1b:89:07:2b:cb:43:db: 1d:27:73:da:eb:e7:50:58:fa:7c:24:64:f4:4a:3e: d5:c1:99:f3:d2:f9:00:57:8f:c5:b1:68:d1:9d:98: 20:0e:e1:d8:0b:2a:2c:eb:af:d8:6b:e6:cb:bc:77: 9e:ec:e4:cf:91:34:52:37:4a:87:88:62:04:a4:80: 93:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:2A:3D:78:6C:EE:D2:9C:E7:96:14:25:C9:90:59:89:F1:60:B7:CB X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3133362e302f32332d3234203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.136.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:9c:ca:ab:8d:60:47:b0:b0:60:7f:b9:07:ca:c1:35:95:45: 47:cf:0c:bb:24:90:3c:dd:53:94:e3:34:37:d1:73:bc:82:78: eb:b4:68:a3:01:f6:c1:69:55:69:e1:90:6c:d0:c0:5a:9d:8d: 23:66:b9:ed:6e:51:97:52:ee:b0:1a:8d:34:6e:e2:b8:76:27: 25:1d:4f:70:4a:0f:fa:03:0b:0a:84:e1:39:27:11:44:de:4c: f3:44:50:67:1e:75:c5:ab:f7:b7:31:b3:42:91:07:e2:29:d7: 93:07:13:c3:b0:5a:7a:af:39:b9:48:6a:3a:48:6e:3b:8f:85: 7a:ff:e3:2f:85:7e:aa:c4:ce:64:96:77:ba:e4:5a:36:6c:79: 61:68:d3:7a:68:c9:27:5e:4e:c8:a0:47:2c:d7:24:75:9e:97: 7c:ef:d4:be:ae:b4:fc:ef:e1:f1:72:73:d2:53:42:b5:f2:0b: 70:c0:2a:da:bd:39:d2:c5:80:39:50:c4:8a:3a:9a:bf:36:8b: 9f:96:c5:67:13:b2:41:3b:f7:29:e8:50:d5:82:f9:99:21:be: d7:93:01:6f:3d:d2:51:d7:b1:6b:7a:2c:4b:ef:8f:8e:b0:ae: f0:2a:aa:38:8e:fe:d4:6e:c1:0d:5c:42:12:f0:5d:46:fb:1b: 5d:84:17:ea -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUQAPQb2XcXsA+5YlCR1rv409NUHcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDYzMDAxNTQ1NFoX DTI1MDYyOTAxNTk1NFowMzExMC8GA1UEAxMoQ0MyQTNENzg2Q0VFRDI5Q0U3OTYx NDI1Qzk5MDU5ODlGMTYwQjdDQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANRtGEO/RWro0IxPF4v406dU/pEbr3M8Yli8kjWUE2yEoydT6Mcx9BS8VCxC 2pYMKAynBKZNiX0h7to3Wa/Xc5xtwIqb0mCusGiTSASSJvWdSyxV1/06EarQVOo6 Y9gwFvXPCmVP5y0zNV/NhAEbZTIozgE9xhjr9qOVbF+bXncyOt0guNORccqNfo6H 8XSfXJmscKfAAUM6+7ijpC4z8ELh5vtGSLHOmepiNdc7QfojtT674tA+Zc7OYrkb iQcry0PbHSdz2uvnUFj6fCRk9Eo+1cGZ89L5AFePxbFo0Z2YIA7h2AsqLOuv2Gvm y7x3nuzkz5E0UjdKh4hiBKSAk4MCAwEAAaOCAf0wggH5MB0GA1UdDgQWBBTMKj14 bO7SnOeWFCXJkFmJ8WC3yzAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGABggrBgEFBQcBCwR0MHIwcAYIKwYBBQUHMAuGZHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz NjM2MmUzMTMzMzYyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzNDM4MzAzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAZ1CiDANBgkqhkiG9w0BAQsFAAOCAQEAjZzKq41gR7CwYH+5B8rBNZVF R88MuySQPN1TlOM0N9FzvIJ467RoowH2wWlVaeGQbNDAWp2NI2a57W5Rl1LusBqN NG7iuHYnJR1PcEoP+gMLCoThOScRRN5M80RQZx51xav3tzGzQpEH4inXkwcTw7Ba eq85uUhqOkhuO4+Fev/jL4V+qsTOZJZ3uuRaNmx5YWjTemjJJ15OyKBHLNckdZ6X fO/Uvq60/O/h8XJz0lNCtfILcMAq2r050sWAOVDEijqavzaLn5bFZxOyQTv3KehQ 1YL5mSG+15MBbz3SUdexa3osS++PjrCu8CqqOI7+1G7BDVxCEvBdRvsbXYQX6g== -----END CERTIFICATE-----Generated at Wed Nov 20 06:21:51 2024 by rpki-client on console-ams.rpki-client.org