$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3231342e302f32332d3234203d3e2034383030.roa File: 3135372e36362e3231342e302f32332d3234203d3e2034383030.roa (raw, json) Hash identifier: STge6uU6WOAa7W24MrB1T6wfBa1lQJuhEo4n3k++7IA= Subject key identifier: 39:96:9C:3D:38:94:DB:23:CA:7C:C7:FE:34:58:66:08:79:C0:CD:6A Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 6B6ED6BE8E5D09C813801585E63ACEECA18FD934 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3231342e302f32332d3234203d3e2034383030.roa Signing time: Sun 30 Jun 2024 01:59:53 +0000 ROA not before: Sun 30 Jun 2024 01:54:53 +0000 ROA not after: Sun 29 Jun 2025 01:59:53 +0000 asID: 4800 IP address blocks: 157.66.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:6e:d6:be:8e:5d:09:c8:13:80:15:85:e6:3a:ce:ec:a1:8f:d9:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jun 30 01:54:53 2024 GMT Not After : Jun 29 01:59:53 2025 GMT Subject: CN=39969C3D3894DB23CA7CC7FE3458660879C0CD6A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:1e:69:85:ec:60:e0:10:b4:84:b2:c1:4a:e1: 55:c6:95:75:e1:52:e8:0d:0e:c3:25:ff:a1:1e:af: dc:3f:a4:92:6c:88:6f:0d:5b:20:7d:c6:da:aa:bb: f6:de:f8:c6:bf:36:32:78:d6:76:a7:ed:10:9a:4c: 63:ab:00:b2:34:09:ce:8c:ec:ce:4a:63:15:79:63: 97:20:14:59:d7:d6:2e:3f:41:fa:2f:e3:8c:30:11: 03:65:ea:4b:02:e4:a0:b1:39:8a:9c:65:ea:41:f1: 32:9b:79:2f:12:89:eb:ec:4c:97:e7:3c:e0:37:49: 1e:cd:84:88:d8:51:07:2f:5d:9c:03:50:52:2d:c8: 0e:76:52:b6:63:33:e4:c4:e1:9c:e3:b3:3e:63:e3: 2a:2c:6e:07:a2:68:6e:8d:21:c3:a4:20:13:61:88: 93:7e:11:b1:34:e7:92:99:75:a6:44:06:14:fc:57: 8f:79:83:67:25:9f:61:52:94:5a:38:3e:29:11:7f: 3c:e0:24:88:6c:53:28:67:93:b8:07:0b:0c:86:78: 5f:2a:54:5e:a2:c2:df:9a:19:50:04:61:4f:87:4b: b0:b4:13:5a:4e:c0:bc:db:47:1c:08:84:d2:d7:09: d2:79:d3:ec:ea:db:3c:2e:d9:75:63:52:08:6d:a4: 62:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:96:9C:3D:38:94:DB:23:CA:7C:C7:FE:34:58:66:08:79:C0:CD:6A X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3231342e302f32332d3234203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.214.0/23 Signature Algorithm: sha256WithRSAEncryption 25:19:bd:7c:8f:79:a0:2b:07:23:0d:1e:06:5c:b4:d1:6c:57: 87:4a:8e:d0:36:9f:f9:5a:b3:53:ed:c7:d6:51:cb:47:b6:45: b3:cd:61:f5:c1:bc:ce:19:41:86:5b:46:a4:d5:14:67:8d:07: 80:b2:fd:d3:fe:d8:0e:74:03:4f:8e:ee:ec:02:e7:89:04:58: 30:ff:1f:9e:8e:75:82:92:e0:4a:d6:8a:9a:48:94:18:a0:3b: 73:36:6b:9f:e9:6c:c9:63:2f:ed:b9:36:02:8e:4b:ef:93:be: e4:d6:2f:21:d5:1c:1a:2f:20:76:72:6e:10:3b:4d:66:0c:ef: c5:c7:77:f0:f1:4f:66:9a:dd:f0:80:c0:cb:a1:0b:d3:5e:6a: 57:7b:ac:92:65:71:ec:4f:b4:0a:2c:ff:a2:b4:b3:5d:69:82: ac:71:a5:0f:e7:80:08:71:b7:b6:0a:81:40:8f:ee:1a:c8:dd: 85:0e:bc:90:fc:47:e1:6b:98:72:d7:61:ff:28:be:9d:19:a4: 4f:bd:83:8d:6f:ae:48:5f:1a:99:0e:3b:93:60:35:d9:14:7b: b9:46:9c:3f:e1:72:7c:52:12:4e:0d:0d:8f:c6:ab:21:76:ca: 6f:76:3b:71:92:ee:18:7f:7a:61:cb:2e:87:54:3d:3b:2f:a8: c7:01:58:15 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUa27Wvo5dCcgTgBWF5jrO7KGP2TQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDYzMDAxNTQ1M1oX DTI1MDYyOTAxNTk1M1owMzExMC8GA1UEAxMoMzk5NjlDM0QzODk0REIyM0NBN0ND N0ZFMzQ1ODY2MDg3OUMwQ0Q2QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALUeaYXsYOAQtISywUrhVcaVdeFS6A0OwyX/oR6v3D+kkmyIbw1bIH3G2qq7 9t74xr82MnjWdqftEJpMY6sAsjQJzozszkpjFXljlyAUWdfWLj9B+i/jjDARA2Xq SwLkoLE5ipxl6kHxMpt5LxKJ6+xMl+c84DdJHs2EiNhRBy9dnANQUi3IDnZStmMz 5MThnOOzPmPjKixuB6Jobo0hw6QgE2GIk34RsTTnkpl1pkQGFPxXj3mDZyWfYVKU Wjg+KRF/POAkiGxTKGeTuAcLDIZ4XypUXqLC35oZUARhT4dLsLQTWk7AvNtHHAiE 0tcJ0nnT7OrbPC7ZdWNSCG2kYi0CAwEAAaOCAf0wggH5MB0GA1UdDgQWBBQ5lpw9 OJTbI8p8x/40WGYIecDNajAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGABggrBgEFBQcBCwR0MHIwcAYIKwYBBQUHMAuGZHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz NjM2MmUzMjMxMzQyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzNDM4MzAzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAZ1C1jANBgkqhkiG9w0BAQsFAAOCAQEAJRm9fI95oCsHIw0eBly00WxX h0qO0Daf+VqzU+3H1lHLR7ZFs81h9cG8zhlBhltGpNUUZ40HgLL90/7YDnQDT47u 7ALniQRYMP8fno51gpLgStaKmkiUGKA7czZrn+lsyWMv7bk2Ao5L75O+5NYvIdUc Gi8gdnJuEDtNZgzvxcd38PFPZprd8IDAy6EL015qV3uskmVx7E+0Ciz/orSzXWmC rHGlD+eACHG3tgqBQI/uGsjdhQ68kPxH4WuYctdh/yi+nRmkT72DjW+uSF8amQ47 k2A12RR7uUacP+FyfFISTg0Nj8arIXbKb3Y7cZLuGH96Ycsuh1Q9Oy+oxwFYFQ== -----END CERTIFICATE-----Generated at Wed Nov 20 06:21:51 2024 by rpki-client on console-ams.rpki-client.org