$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3234302e302f32332d3233203d3e20313336303933.roa File: 3135372e36362e3234302e302f32332d3233203d3e20313336303933.roa (raw, json) Hash identifier: /y29giQwO3sjfsC6IDK3nr16RRuCsrWSkhTy3j4bsbE= Subject key identifier: 8D:89:E5:5F:FA:0E:90:29:35:7F:01:51:A4:FD:F4:64:1B:2F:C1:62 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 401AA9F14BDAE7CFEB7D6595C192C9DDAEFE641B Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3234302e302f32332d3233203d3e20313336303933.roa Signing time: Mon 02 Sep 2024 03:50:00 +0000 ROA not before: Mon 02 Sep 2024 03:45:00 +0000 ROA not after: Mon 01 Sep 2025 03:50:00 +0000 asID: 136093 IP address blocks: 157.66.240.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:1a:a9:f1:4b:da:e7:cf:eb:7d:65:95:c1:92:c9:dd:ae:fe:64:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Sep 2 03:45:00 2024 GMT Not After : Sep 1 03:50:00 2025 GMT Subject: CN=8D89E55FFA0E9029357F0151A4FDF4641B2FC162 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:7f:33:05:f4:80:1c:49:58:c7:26:7c:ad:d7: 91:c3:11:f3:93:cd:aa:64:53:e1:be:bd:81:ef:d0: 44:3c:f5:bf:8a:ab:8c:78:99:eb:c6:46:e9:b4:54: 28:e6:5e:2c:e5:ee:77:27:e7:5f:6f:6f:f9:61:c2: 71:50:b0:cb:6c:80:c4:1c:60:58:89:c5:88:a4:8a: 3c:25:dc:da:67:c1:f5:5b:57:b0:93:8f:33:03:b5: 6b:3f:a8:c4:9a:01:25:94:32:4d:ca:e1:10:5a:dd: b8:a9:82:ce:83:2d:2f:2c:5a:b6:34:ed:93:9b:63: 8f:33:a9:3a:45:36:26:6e:40:89:1b:dd:61:5d:42: 62:be:2d:fa:64:7a:48:a2:d7:e0:b0:c5:fd:51:7f: 9f:04:a5:01:d1:95:33:32:38:4f:d0:9f:c9:7c:c8: 52:02:e7:90:da:8d:34:73:7f:3b:7a:d2:57:0b:15: c6:e2:db:e1:b2:8b:f7:75:af:53:a6:a6:d0:82:a8: 22:bc:43:cf:41:62:22:62:92:b6:c3:ab:3c:e5:dc: bb:2a:a8:b3:fe:2d:79:2b:3f:f9:2e:b5:4a:c1:90: 79:65:c4:43:a6:3d:b1:67:ca:69:da:af:c5:6b:b5: 89:df:70:a0:85:03:41:e2:32:a5:e1:3a:74:8e:1a: 07:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:89:E5:5F:FA:0E:90:29:35:7F:01:51:A4:FD:F4:64:1B:2F:C1:62 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3234302e302f32332d3233203d3e20313336303933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.240.0/23 Signature Algorithm: sha256WithRSAEncryption 97:04:56:49:28:fb:a6:4c:42:fb:6c:a9:95:6c:a2:06:e7:82: f2:c5:44:8d:6e:37:a8:36:24:f0:ed:28:73:52:d2:06:0d:85: 76:23:92:d9:77:38:34:59:ea:ea:d7:9e:9b:a9:08:f4:94:f7: 95:65:e4:e5:35:19:45:18:dd:a2:8c:69:25:e7:dc:b2:82:81: 4e:28:53:0c:3d:a7:03:3a:28:3c:54:f5:35:4b:8b:84:e4:76: 32:26:39:51:1b:2a:76:d1:02:5b:b6:15:3b:f0:b9:e6:91:b8: f8:ea:c7:5e:e3:39:c7:d9:32:50:bf:21:58:d2:78:7b:9d:0b: d2:ea:79:9d:eb:b2:9c:86:cc:bd:da:4f:bd:4e:9b:e4:0d:47: 95:13:97:56:e9:8f:8e:68:b6:9e:bc:ad:05:0f:df:1d:76:0b: 59:03:fc:8e:fa:78:61:01:e1:71:5a:15:1f:c8:6e:50:52:0a: ca:f2:6d:54:4d:fa:d3:fe:b6:f6:e4:bc:c7:8f:22:0e:00:56: f6:a0:5d:71:b9:1e:73:96:4f:c4:57:c6:11:28:73:b8:01:5f: cb:06:df:3a:35:a4:31:61:04:5b:7b:81:03:6b:3a:e0:a6:81: e7:38:c1:52:3f:bf:cd:ea:36:34:d7:7c:5e:40:14:e7:75:90: 86:ea:77:8d -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIUQBqp8Uva58/rfWWVwZLJ3a7+ZBswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDkwMjAzNDUwMFoX DTI1MDkwMTAzNTAwMFowMzExMC8GA1UEAxMoOEQ4OUU1NUZGQTBFOTAyOTM1N0Yw MTUxQTRGREY0NjQxQjJGQzE2MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK9/MwX0gBxJWMcmfK3XkcMR85PNqmRT4b69ge/QRDz1v4qrjHiZ68ZG6bRU KOZeLOXudyfnX29v+WHCcVCwy2yAxBxgWInFiKSKPCXc2mfB9VtXsJOPMwO1az+o xJoBJZQyTcrhEFrduKmCzoMtLyxatjTtk5tjjzOpOkU2Jm5AiRvdYV1CYr4t+mR6 SKLX4LDF/VF/nwSlAdGVMzI4T9CfyXzIUgLnkNqNNHN/O3rSVwsVxuLb4bKL93Wv U6am0IKoIrxDz0FiImKStsOrPOXcuyqos/4teSs/+S61SsGQeWXEQ6Y9sWfKadqv xWu1id9woIUDQeIypeE6dI4aBz0CAwEAAaOCAgEwggH9MB0GA1UdDgQWBBSNieVf +g6QKTV/AVGk/fRkGy/BYjAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGEBggrBgEFBQcBCwR4MHYwdAYIKwYBBQUHMAuGaHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz NjM2MmUzMjM0MzAyZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzMTMzMzYzMDM5MzMu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAGdQvAwDQYJKoZIhvcNAQELBQADggEBAJcEVkko+6ZMQvtsqZVs ogbngvLFRI1uN6g2JPDtKHNS0gYNhXYjktl3ODRZ6urXnpupCPSU95Vl5OU1GUUY 3aKMaSXn3LKCgU4oUww9pwM6KDxU9TVLi4TkdjImOVEbKnbRAlu2FTvwueaRuPjq x17jOcfZMlC/IVjSeHudC9LqeZ3rspyGzL3aT71Om+QNR5UTl1bpj45otp68rQUP 3x12C1kD/I76eGEB4XFaFR/IblBSCsrybVRN+tP+tvbkvMePIg4AVvagXXG5HnOW T8RXxhEoc7gBX8sG3zo1pDFhBFt7gQNrOuCmgec4wVI/v83qNjTXfF5AFOd1kIbq d40= -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org