$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3138382e302f32332d3234203d3e20313338303737.roa File: 3135372e36362e3138382e302f32332d3234203d3e20313338303737.roa (raw, json) Hash identifier: 7aTH3NUf3GSd/mQ6ujugq1Mcx0YrsZCTL40gm1iMD44= Subject key identifier: F8:92:73:A9:82:C0:CA:5D:17:AB:74:D6:5A:83:9C:09:0C:D2:33:85 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 1F99DBF05AB947EE1A2DC6C8137AFBD7E237914E Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3138382e302f32332d3234203d3e20313338303737.roa Signing time: Wed 05 Jun 2024 15:27:22 +0000 ROA not before: Wed 05 Jun 2024 15:22:22 +0000 ROA not after: Wed 04 Jun 2025 15:27:22 +0000 asID: 138077 IP address blocks: 157.66.188.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 03:51:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:99:db:f0:5a:b9:47:ee:1a:2d:c6:c8:13:7a:fb:d7:e2:37:91:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jun 5 15:22:22 2024 GMT Not After : Jun 4 15:27:22 2025 GMT Subject: CN=F89273A982C0CA5D17AB74D65A839C090CD23385 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5d:84:04:17:d4:e4:56:97:1a:d2:f9:a4:78: a9:a8:2c:55:2a:2a:13:b1:03:75:97:1b:c2:31:c7: d7:17:c2:86:e7:fd:f2:49:00:08:17:db:4f:45:af: fe:12:ed:6a:fa:d1:1d:e1:75:34:4e:bb:62:26:0b: 84:20:6a:3b:ef:40:4a:c2:1a:6e:62:e4:c3:fd:1f: fe:6b:13:a3:6f:a0:d4:83:16:06:93:e6:cc:57:20: 30:00:2b:73:c1:01:5b:64:14:69:cb:77:f6:ed:17: 58:e7:71:40:80:fb:0b:9a:53:6e:1c:76:6f:97:43: 5a:12:d9:c1:0d:17:4a:f1:e5:48:80:5b:f9:63:fa: c3:15:14:ae:6f:25:8d:89:cb:61:1c:10:f2:eb:2b: 99:2c:53:50:6d:59:06:d7:68:27:d3:66:31:80:2d: 87:10:19:8b:1c:ce:91:d3:d7:d9:b2:d4:16:41:9f: 7b:3d:99:22:93:8e:6f:7f:4d:89:d4:6d:d4:dc:4b: 53:68:c6:8e:61:6e:5b:18:8c:92:e6:d5:4c:70:e7: 6e:a8:69:ef:3e:fd:32:06:95:b6:fc:81:a8:5a:9c: 22:17:76:f8:84:8a:ec:43:e5:f9:1a:74:e5:62:3b: fa:40:9a:d5:01:71:73:09:f6:7b:45:28:e3:ed:6c: 07:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:92:73:A9:82:C0:CA:5D:17:AB:74:D6:5A:83:9C:09:0C:D2:33:85 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3138382e302f32332d3234203d3e20313338303737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.188.0/23 Signature Algorithm: sha256WithRSAEncryption 2f:eb:97:0d:d7:80:82:c1:36:4c:b2:a2:0e:df:87:ec:fe:6b: 83:d8:8e:7f:ea:2b:4f:65:b5:12:2d:aa:69:17:91:1c:b8:c6: 91:c0:6c:5d:d7:ae:d6:98:69:04:e3:35:ac:57:73:ca:56:17: 42:ad:3d:11:03:6f:3c:5f:63:58:74:20:12:10:0c:8e:eb:65: f8:60:9c:e7:6f:1d:5b:98:1c:09:f8:8f:5b:80:e2:ae:0a:b6: 9d:55:10:fd:da:f1:80:da:a3:68:31:8a:51:be:2c:20:e5:f2: 94:ae:05:9e:d1:29:a6:85:64:ee:7c:c4:55:3f:cd:24:ec:bb: ff:ed:c9:af:3e:9a:0b:4a:0d:04:85:cf:07:3d:d4:91:19:81: 13:26:65:da:62:7c:22:68:a8:1c:8e:30:1f:d5:8d:0b:01:a8: d1:5e:8b:8d:a3:14:41:0c:37:a2:50:bc:cd:56:f7:21:aa:1c: 91:1d:1f:30:d6:c9:3b:aa:b5:e1:eb:d7:86:4f:4f:eb:c8:ae: 74:5b:62:d2:11:8a:45:16:18:bd:8b:27:6c:ce:d2:91:8d:6d: 83:f8:05:c5:a4:21:3e:75:bb:8f:d1:a2:5e:ac:53:8a:bc:98: c3:8d:3f:74:5c:13:2c:92:7e:e1:ac:3f:fd:1c:a4:cc:87:44: 87:80:02:d6 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIUH5nb8Fq5R+4aLcbIE3r71+I3kU4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDYwNTE1MjIyMloX DTI1MDYwNDE1MjcyMlowMzExMC8GA1UEAxMoRjg5MjczQTk4MkMwQ0E1RDE3QUI3 NEQ2NUE4MzlDMDkwQ0QyMzM4NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMJdhAQX1ORWlxrS+aR4qagsVSoqE7EDdZcbwjHH1xfChuf98kkACBfbT0Wv /hLtavrRHeF1NE67YiYLhCBqO+9ASsIabmLkw/0f/msTo2+g1IMWBpPmzFcgMAAr c8EBW2QUact39u0XWOdxQID7C5pTbhx2b5dDWhLZwQ0XSvHlSIBb+WP6wxUUrm8l jYnLYRwQ8usrmSxTUG1ZBtdoJ9NmMYAthxAZixzOkdPX2bLUFkGfez2ZIpOOb39N idRt1NxLU2jGjmFuWxiMkubVTHDnbqhp7z79MgaVtvyBqFqcIhd2+ISK7EPl+Rp0 5WI7+kCa1QFxcwn2e0Uo4+1sB/MCAwEAAaOCAgEwggH9MB0GA1UdDgQWBBT4knOp gsDKXRerdNZag5wJDNIzhTAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGEBggrBgEFBQcBCwR4MHYwdAYIKwYBBQUHMAuGaHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz NjM2MmUzMTM4MzgyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM3Mzcu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAGdQrwwDQYJKoZIhvcNAQELBQADggEBAC/rlw3XgILBNkyyog7f h+z+a4PYjn/qK09ltRItqmkXkRy4xpHAbF3XrtaYaQTjNaxXc8pWF0KtPREDbzxf Y1h0IBIQDI7rZfhgnOdvHVuYHAn4j1uA4q4Ktp1VEP3a8YDao2gxilG+LCDl8pSu BZ7RKaaFZO58xFU/zSTsu//tya8+mgtKDQSFzwc91JEZgRMmZdpifCJoqByOMB/V jQsBqNFei42jFEEMN6JQvM1W9yGqHJEdHzDWyTuqteHr14ZPT+vIrnRbYtIRikUW GL2LJ2zO0pGNbYP4BcWkIT51u4/Rol6sU4q8mMONP3RcEyySfuGsP/0cpMyHRIeA AtY= -----END CERTIFICATE-----Generated at Fri Jun 21 21:25:33 2024 by rpki-client on console-ams.rpki-client.org