$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3133382e302f32342d3234203d3e20313431363632.roa File: 3135372e36362e3133382e302f32342d3234203d3e20313431363632.roa (raw, json) Hash identifier: MApB0t5E0dWbD+F5eyxnWgvkeApqqSwFfD4jjllVT3Y= Subject key identifier: 88:C9:60:BE:6F:0C:B8:6D:03:FC:2B:75:08:DC:95:02:7A:12:8D:51 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 17A318D7A8EFB3E6884198CA2659FE0B88D8497D Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3133382e302f32342d3234203d3e20313431363632.roa Signing time: Mon 06 May 2024 03:32:33 +0000 ROA not before: Mon 06 May 2024 03:27:33 +0000 ROA not after: Mon 05 May 2025 03:32:33 +0000 asID: 141662 IP address blocks: 157.66.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:a3:18:d7:a8:ef:b3:e6:88:41:98:ca:26:59:fe:0b:88:d8:49:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: May 6 03:27:33 2024 GMT Not After : May 5 03:32:33 2025 GMT Subject: CN=88C960BE6F0CB86D03FC2B7508DC95027A128D51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:9f:b9:8d:b2:8c:95:b3:06:d8:b3:2e:af:02: d7:89:ee:e9:57:b9:72:01:92:26:75:e5:c7:bc:a3: 98:9a:0b:6f:1b:db:99:23:cd:2d:da:bf:20:10:03: 95:45:d0:fe:44:c5:c6:01:d4:4b:e9:e7:3f:bd:80: 2a:12:b5:94:6a:93:0f:9e:d9:4f:6f:42:a2:56:b4: 15:32:71:81:85:f6:ab:89:7a:24:55:10:7f:40:95: 5e:86:2c:af:c6:88:01:0d:a2:79:67:7f:54:d6:ea: 55:1e:48:49:4f:87:a1:b2:53:a2:00:f5:74:e6:73: 55:36:bb:d5:1b:0a:60:f2:2b:4e:07:b1:96:96:c5: 86:f9:2e:5c:9f:d1:0f:3d:80:8d:28:80:09:19:9d: 31:65:4a:15:cb:22:3c:f4:da:31:5a:a8:cc:91:09: 78:69:5f:42:3b:18:d9:0b:76:20:03:57:07:3d:8e: 0d:f7:80:dc:5d:e5:e8:96:17:8a:92:3e:2c:5b:5b: 62:6e:06:fc:23:01:18:e7:92:6f:53:56:33:56:b1: 4e:66:a3:e8:c2:15:81:4e:88:2c:ce:f4:d1:03:1d: 50:b9:ef:22:2e:d0:bb:57:57:0c:f9:89:2f:20:22: ad:fc:80:d7:6c:5e:dc:9e:85:67:6a:82:cc:6b:ed: 8b:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:C9:60:BE:6F:0C:B8:6D:03:FC:2B:75:08:DC:95:02:7A:12:8D:51 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3133382e302f32342d3234203d3e20313431363632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.138.0/24 Signature Algorithm: sha256WithRSAEncryption 02:47:5f:59:f1:b5:b6:94:0b:95:f4:b9:41:8a:88:8c:18:71: 76:0d:ad:bd:f8:49:b6:03:b0:de:2d:dc:eb:d6:c5:f3:dc:e9: 9d:54:9b:b6:f5:04:70:87:64:f0:e6:4a:75:2b:29:de:1c:48: 3a:2f:ba:3e:44:b6:12:22:c4:90:a0:56:4c:fb:7c:4f:16:57: da:9d:ac:72:10:49:85:78:38:d1:50:e6:4f:41:63:91:34:16: a6:7a:38:37:2c:8d:5d:ab:38:37:e7:ae:0d:ac:14:96:61:ef: 79:dd:f6:80:0f:b7:4e:d5:5d:f2:6f:98:b8:ff:82:2c:a7:e5: 5c:be:b1:8c:6f:39:22:43:d6:ba:f3:02:1c:2a:3f:96:09:46: f6:17:94:6a:b9:30:38:8c:a4:48:e9:25:88:27:e6:28:2a:63: 84:34:6a:d8:83:de:fa:de:a0:00:d1:df:c7:60:ab:59:f2:4b: fa:2e:62:90:f0:2d:41:ac:0d:d4:e4:f9:4f:fc:0f:13:94:44: 75:df:fa:23:2e:5b:b4:f3:dd:f1:ca:8c:6b:2c:4e:13:92:fc: 22:62:85:db:f3:9d:5c:74:d4:07:6d:2b:31:d5:ae:a0:e8:1d: 85:ec:73:49:cf:35:d4:ce:43:77:f9:d6:0e:aa:5f:0e:1c:58: 26:74:d1:f7 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIUF6MY16jvs+aIQZjKJln+C4jYSX0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDUwNjAzMjczM1oX DTI1MDUwNTAzMzIzM1owMzExMC8GA1UEAxMoODhDOTYwQkU2RjBDQjg2RDAzRkMy Qjc1MDhEQzk1MDI3QTEyOEQ1MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN+fuY2yjJWzBtizLq8C14nu6Ve5cgGSJnXlx7yjmJoLbxvbmSPNLdq/IBAD lUXQ/kTFxgHUS+nnP72AKhK1lGqTD57ZT29Cola0FTJxgYX2q4l6JFUQf0CVXoYs r8aIAQ2ieWd/VNbqVR5ISU+HobJTogD1dOZzVTa71RsKYPIrTgexlpbFhvkuXJ/R Dz2AjSiACRmdMWVKFcsiPPTaMVqozJEJeGlfQjsY2Qt2IANXBz2ODfeA3F3l6JYX ipI+LFtbYm4G/CMBGOeSb1NWM1axTmaj6MIVgU6ILM700QMdULnvIi7Qu1dXDPmJ LyAirfyA12xe3J6FZ2qCzGvti0ECAwEAAaOCAgEwggH9MB0GA1UdDgQWBBSIyWC+ bwy4bQP8K3UI3JUCehKNUTAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGEBggrBgEFBQcBCwR4MHYwdAYIKwYBBQUHMAuGaHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz NjM2MmUzMTMzMzgyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjM2MzIu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBACdQoowDQYJKoZIhvcNAQELBQADggEBAAJHX1nxtbaUC5X0uUGK iIwYcXYNrb34SbYDsN4t3OvWxfPc6Z1Um7b1BHCHZPDmSnUrKd4cSDovuj5EthIi xJCgVkz7fE8WV9qdrHIQSYV4ONFQ5k9BY5E0FqZ6ODcsjV2rODfnrg2sFJZh73nd 9oAPt07VXfJvmLj/giyn5Vy+sYxvOSJD1rrzAhwqP5YJRvYXlGq5MDiMpEjpJYgn 5igqY4Q0atiD3vreoADR38dgq1nyS/ouYpDwLUGsDdTk+U/8DxOURHXf+iMuW7Tz 3fHKjGssThOS/CJihdvznVx01AdtKzHVrqDoHYXsc0nPNdTOQ3f51g6qXw4cWCZ0 0fc= -----END CERTIFICATE-----Generated at Wed Nov 20 06:21:51 2024 by rpki-client on console-ams.rpki-client.org