$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3230322e302f32332d3234203d3e2034383030.roa File: 3135372e36362e3230322e302f32332d3234203d3e2034383030.roa (raw, json) Hash identifier: T4eeVwXW5OKKc4ezuS8HVrqxYMVHod5iqgrFqm0csTw= Subject key identifier: F0:D0:38:C3:D2:6F:D7:3D:54:11:A2:E6:2D:1B:FD:7F:E1:2F:83:EF Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 05767F620CFCD75225EB93BCDEABFAB225A220A1 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3230322e302f32332d3234203d3e2034383030.roa Signing time: Sun 30 Jun 2024 01:59:53 +0000 ROA not before: Sun 30 Jun 2024 01:54:53 +0000 ROA not after: Sun 29 Jun 2025 01:59:53 +0000 asID: 4800 IP address blocks: 157.66.202.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:76:7f:62:0c:fc:d7:52:25:eb:93:bc:de:ab:fa:b2:25:a2:20:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jun 30 01:54:53 2024 GMT Not After : Jun 29 01:59:53 2025 GMT Subject: CN=F0D038C3D26FD73D5411A2E62D1BFD7FE12F83EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b8:db:b6:47:66:0b:a9:07:67:cb:9b:82:c0: 1f:99:ee:76:2a:f2:fa:c2:47:cb:7b:50:12:d0:0f: 0b:69:eb:2b:22:08:80:9d:2a:94:e3:15:ad:7a:93: 2e:71:df:f7:92:4b:8e:00:fa:23:e4:90:e5:2e:a7: f4:a7:86:33:df:c0:31:9c:0f:8c:2e:1f:d0:05:9c: 9d:ff:b0:ea:6e:a2:ec:05:e5:05:2c:ca:21:da:ff: 91:6d:ff:20:22:24:6c:f2:96:a1:ad:38:22:0d:a1: f1:9b:c6:65:61:1c:6f:30:c5:3a:dd:ec:f1:f2:0b: b0:06:3e:90:42:4e:1c:ef:ca:6c:4d:3b:f1:b1:c3: 78:a3:b8:99:bb:be:a7:ea:e4:f9:1e:98:0f:00:c8: c9:d9:90:9c:b0:1b:e8:0a:21:10:eb:e1:61:fe:fc: 2a:50:7a:f4:79:e7:d2:c9:0b:5c:9d:f6:5d:71:6f: f1:d4:b6:31:ec:2b:90:ce:55:4c:8e:1d:3d:29:58: f7:2a:b4:f6:94:e8:fe:13:b2:84:2e:c8:3f:b1:d0: 1e:b9:e3:d2:e7:16:22:2d:f2:ae:7e:8f:cf:40:dd: ff:4c:d3:47:b5:f0:fc:9d:f3:06:76:d3:db:d3:b5: 36:15:52:9c:9d:fe:81:e2:26:c9:21:5f:f4:66:71: 43:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:D0:38:C3:D2:6F:D7:3D:54:11:A2:E6:2D:1B:FD:7F:E1:2F:83:EF X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3230322e302f32332d3234203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.202.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:67:76:3c:51:23:8d:c2:01:ac:2e:f0:d8:54:bb:9b:dd:5f: 75:8d:05:d5:bc:95:c4:29:e8:82:54:77:b7:f6:76:43:1f:e8: 77:a3:d4:f7:5e:d1:f3:dd:c2:ea:ed:6d:6c:84:be:c5:29:87: bc:99:d7:4a:56:d9:33:47:1b:79:0f:63:ac:01:84:30:4c:5a: 7a:a5:84:76:31:48:a8:77:01:e2:36:8f:d9:62:fd:29:77:34: c3:09:b1:71:c5:3a:c2:dc:97:e3:b7:9f:cb:8f:1f:ed:7d:25: 1c:2c:f2:7f:89:f0:88:7a:ee:9b:0e:63:fd:34:49:fc:aa:09: 74:ff:d6:57:e5:62:95:37:3d:c0:4e:70:d6:58:6f:93:b8:4a: 22:d2:0d:99:15:6b:c2:54:a9:a3:ec:f1:f5:9a:44:b6:21:65: a7:a6:14:ed:17:da:65:57:39:64:21:3e:c9:e5:dc:84:1e:c0: cd:89:73:b3:0b:d6:58:5d:5f:bf:0f:88:05:a4:e1:f1:7b:95: f7:d0:42:b9:d7:6a:ca:a0:26:08:22:95:ff:55:0b:92:dc:46: 29:74:73:ee:0f:b4:1c:29:5a:b9:c8:43:cb:1b:91:f1:bc:b5: 65:d0:fe:ed:cd:b6:4b:cd:58:ad:46:66:e7:a5:5c:71:53:b8: cb:38:3a:1f -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUBXZ/Ygz811Il65O83qv6siWiIKEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDYzMDAxNTQ1M1oX DTI1MDYyOTAxNTk1M1owMzExMC8GA1UEAxMoRjBEMDM4QzNEMjZGRDczRDU0MTFB MkU2MkQxQkZEN0ZFMTJGODNFRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKm427ZHZgupB2fLm4LAH5nudiry+sJHy3tQEtAPC2nrKyIIgJ0qlOMVrXqT LnHf95JLjgD6I+SQ5S6n9KeGM9/AMZwPjC4f0AWcnf+w6m6i7AXlBSzKIdr/kW3/ ICIkbPKWoa04Ig2h8ZvGZWEcbzDFOt3s8fILsAY+kEJOHO/KbE078bHDeKO4mbu+ p+rk+R6YDwDIydmQnLAb6AohEOvhYf78KlB69Hnn0skLXJ32XXFv8dS2MewrkM5V TI4dPSlY9yq09pTo/hOyhC7IP7HQHrnj0ucWIi3yrn6Pz0Dd/0zTR7Xw/J3zBnbT 29O1NhVSnJ3+geImySFf9GZxQ2cCAwEAAaOCAf0wggH5MB0GA1UdDgQWBBTw0DjD 0m/XPVQRouYtG/1/4S+D7zAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGABggrBgEFBQcBCwR0MHIwcAYIKwYBBQUHMAuGZHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz NjM2MmUzMjMwMzIyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzNDM4MzAzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAZ1CyjANBgkqhkiG9w0BAQsFAAOCAQEASmd2PFEjjcIBrC7w2FS7m91f dY0F1byVxCnoglR3t/Z2Qx/od6PU917R893C6u1tbIS+xSmHvJnXSlbZM0cbeQ9j rAGEMExaeqWEdjFIqHcB4jaP2WL9KXc0wwmxccU6wtyX47efy48f7X0lHCzyf4nw iHrumw5j/TRJ/KoJdP/WV+VilTc9wE5w1lhvk7hKItINmRVrwlSpo+zx9ZpEtiFl p6YU7RfaZVc5ZCE+yeXchB7AzYlzswvWWF1fvw+IBaTh8XuV99BCuddqyqAmCCKV /1ULktxGKXRz7g+0HClauchDyxuR8by1ZdD+7c22S81YrUZm56VccVO4yzg6Hw== -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org