$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3231322e302f32332d3234203d3e2034383030.roa File: 3135372e36362e3231322e302f32332d3234203d3e2034383030.roa (raw, json) Hash identifier: xt1UqDgtJnXzPqLNfsRBhsHCd4nm3clU0nHALPWBAAw= Subject key identifier: 0B:1E:E9:B9:8C:45:8F:75:DB:AF:48:9C:45:BE:4B:7A:CE:F3:B9:A3 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 1EA1414F2062FF65EDED0C77AC1708BF932A0C8A Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3231322e302f32332d3234203d3e2034383030.roa Signing time: Sun 30 Jun 2024 01:59:55 +0000 ROA not before: Sun 30 Jun 2024 01:54:55 +0000 ROA not after: Sun 29 Jun 2025 01:59:55 +0000 asID: 4800 IP address blocks: 157.66.212.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:a1:41:4f:20:62:ff:65:ed:ed:0c:77:ac:17:08:bf:93:2a:0c:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jun 30 01:54:55 2024 GMT Not After : Jun 29 01:59:55 2025 GMT Subject: CN=0B1EE9B98C458F75DBAF489C45BE4B7ACEF3B9A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:77:d4:32:b9:00:90:18:75:c0:b7:26:ae:29: da:eb:1a:c0:32:a3:e7:8c:a9:86:10:5d:82:9a:81: ed:95:65:5d:e0:a8:07:a1:c6:fa:55:16:1d:a6:59: c2:5a:2d:71:a9:f0:bb:a4:4b:5d:f3:f4:a1:dc:ac: 22:4a:93:4b:af:33:96:e7:e3:c3:5e:60:05:f9:6e: b9:f5:59:e7:70:52:73:14:f7:58:fd:3d:62:5f:39: 4d:94:d8:9c:49:72:a5:d5:a4:98:b1:9e:66:b3:fc: ba:21:c9:a0:fd:d5:c7:a7:53:9f:9b:90:03:94:90: f2:dd:d4:8d:b2:32:38:5d:75:0d:36:17:25:71:f5: 3b:ad:e0:fb:80:1e:96:c4:0c:50:84:df:c8:c1:b2: ca:06:48:eb:3a:98:9a:cb:c9:6d:6d:b1:fc:f8:46: 4d:0a:03:73:11:57:20:44:d5:8c:de:91:9b:a0:d9: 6d:d6:0f:ed:3e:1d:f5:b9:09:7c:77:7a:0c:d6:45: 13:34:88:4e:6a:64:f8:bf:03:76:cc:33:d1:6f:b5: bf:87:a6:b5:b5:ed:54:5d:a2:6f:7a:da:c2:22:15: 46:99:55:a6:4b:cc:22:99:10:61:33:91:4e:0d:fd: a9:31:70:8e:7f:6b:8f:28:51:8d:b1:64:07:42:46: 17:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:1E:E9:B9:8C:45:8F:75:DB:AF:48:9C:45:BE:4B:7A:CE:F3:B9:A3 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3231322e302f32332d3234203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.212.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:d9:e4:ef:f5:16:cd:8b:0e:65:be:0e:b3:c5:33:39:48:16: 3b:38:b9:85:03:c5:7a:72:2d:12:98:7b:2a:04:41:64:ba:cd: 1b:c0:70:1e:5e:34:63:a5:8e:2d:3c:4c:e7:e3:1e:40:ed:2e: 6f:dc:ad:4a:a1:25:c9:78:65:3a:3d:1f:e5:77:a5:4a:48:a4: ba:1c:80:80:41:72:a1:bd:10:b6:f0:cd:c6:b7:94:8f:65:4d: b7:8c:7a:15:d0:4f:b3:2e:7b:d7:b9:29:5e:67:a8:52:c9:99: 1c:07:b1:ae:aa:3c:6e:b3:35:9f:50:4a:65:e6:bc:97:46:91: c1:ef:c0:33:20:d6:86:82:f2:17:10:36:18:f3:e6:f2:71:97: 03:99:7f:60:12:7c:8f:e3:84:af:40:56:fe:5f:cb:63:d3:a1: 34:15:aa:61:98:02:f9:28:e1:86:17:0e:02:fa:46:0a:01:ac: 2d:86:e7:a2:c5:0c:f3:3f:84:e6:1e:26:f0:16:99:50:ec:f4: 26:a1:2f:b6:7d:b3:89:93:2c:16:af:3b:ea:97:96:20:3e:5b: 6c:ab:9e:02:cd:7f:18:e3:d8:c5:99:38:66:98:22:ba:08:25: 1f:b4:2c:2b:e5:a9:cf:c8:5c:bb:1f:04:08:e6:e7:7a:e6:43: a4:01:7d:ef -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUHqFBTyBi/2Xt7Qx3rBcIv5MqDIowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDYzMDAxNTQ1NVoX DTI1MDYyOTAxNTk1NVowMzExMC8GA1UEAxMoMEIxRUU5Qjk4QzQ1OEY3NURCQUY0 ODlDNDVCRTRCN0FDRUYzQjlBMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJp31DK5AJAYdcC3Jq4p2usawDKj54yphhBdgpqB7ZVlXeCoB6HG+lUWHaZZ wlotcanwu6RLXfP0odysIkqTS68zlufjw15gBfluufVZ53BScxT3WP09Yl85TZTY nElypdWkmLGeZrP8uiHJoP3Vx6dTn5uQA5SQ8t3UjbIyOF11DTYXJXH1O63g+4Ae lsQMUITfyMGyygZI6zqYmsvJbW2x/PhGTQoDcxFXIETVjN6Rm6DZbdYP7T4d9bkJ fHd6DNZFEzSITmpk+L8Ddswz0W+1v4emtbXtVF2ib3rawiIVRplVpkvMIpkQYTOR Tg39qTFwjn9rjyhRjbFkB0JGF7sCAwEAAaOCAf0wggH5MB0GA1UdDgQWBBQLHum5 jEWPdduvSJxFvkt6zvO5ozAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGABggrBgEFBQcBCwR0MHIwcAYIKwYBBQUHMAuGZHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz NjM2MmUzMjMxMzIyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzNDM4MzAzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAZ1C1DANBgkqhkiG9w0BAQsFAAOCAQEAGtnk7/UWzYsOZb4Os8UzOUgW Ozi5hQPFenItEph7KgRBZLrNG8BwHl40Y6WOLTxM5+MeQO0ub9ytSqElyXhlOj0f 5XelSkikuhyAgEFyob0QtvDNxreUj2VNt4x6FdBPsy5717kpXmeoUsmZHAexrqo8 brM1n1BKZea8l0aRwe/AMyDWhoLyFxA2GPPm8nGXA5l/YBJ8j+OEr0BW/l/LY9Oh NBWqYZgC+SjhhhcOAvpGCgGsLYbnosUM8z+E5h4m8BaZUOz0JqEvtn2ziZMsFq87 6peWID5bbKueAs1/GOPYxZk4ZpgiugglH7QsK+Wpz8hcux8ECObneuZDpAF97w== -----END CERTIFICATE-----Generated at Wed Nov 20 06:21:51 2024 by rpki-client on console-ams.rpki-client.org