$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3234322e302f32332d3233203d3e20313336303933.roa File: 3135372e36362e3234322e302f32332d3233203d3e20313336303933.roa (raw, json) Hash identifier: LuIUtMNVdpLRAtJ6DKzULmUmXIqz5tGkmVvBPqA3vtA= Subject key identifier: 0E:8A:45:B8:3A:39:16:9C:EB:6F:40:10:59:BB:88:A0:3A:7E:27:27 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 1D292DE1853DA80B80BBF747DA829696D59F4798 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3234322e302f32332d3233203d3e20313336303933.roa Signing time: Mon 02 Sep 2024 03:50:00 +0000 ROA not before: Mon 02 Sep 2024 03:45:00 +0000 ROA not after: Mon 01 Sep 2025 03:50:00 +0000 asID: 136093 IP address blocks: 157.66.242.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:29:2d:e1:85:3d:a8:0b:80:bb:f7:47:da:82:96:96:d5:9f:47:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Sep 2 03:45:00 2024 GMT Not After : Sep 1 03:50:00 2025 GMT Subject: CN=0E8A45B83A39169CEB6F401059BB88A03A7E2727 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4a:04:a5:bb:75:5d:10:00:d4:42:ce:c7:20: 8d:93:91:37:d2:93:d8:aa:5e:ca:1b:a5:ad:ac:f8: ab:37:be:9a:f8:b6:44:e1:0a:08:18:07:8b:0c:6a: 52:e6:68:1a:e5:2c:5d:cc:51:23:84:b0:4f:49:8d: 37:d1:c6:d9:9b:59:01:c6:0c:3c:fc:d5:2c:89:b6: 22:3f:d3:9f:98:3a:0a:df:34:26:57:0b:e3:73:63: b4:43:22:6f:73:8f:20:ef:62:7a:11:2f:06:e7:4e: 35:39:13:4b:20:24:94:0c:23:f9:0f:40:72:9d:3c: 56:78:36:48:12:d7:e7:51:1e:8a:9f:09:f9:db:16: 53:63:bc:6b:b3:d2:6c:a5:e9:d8:df:5a:32:71:02: 23:2a:4c:c8:6e:45:bc:a7:27:f2:07:e0:18:2b:41: 1c:4e:76:83:6b:06:18:a3:fb:96:7a:41:61:78:3c: ea:d7:b2:a1:5a:fa:25:e2:30:5e:1d:9f:0c:97:de: 00:0f:5f:7b:05:b3:a8:a6:92:44:1d:4c:b0:4c:28: a0:f4:23:45:1b:d1:42:1e:b7:3c:c0:7e:44:22:ad: df:83:18:2e:ad:1a:fe:b4:7d:2f:ed:bf:80:12:11: 07:95:6a:7a:9a:56:69:f4:76:89:4a:56:d3:51:fa: 5a:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:8A:45:B8:3A:39:16:9C:EB:6F:40:10:59:BB:88:A0:3A:7E:27:27 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3234322e302f32332d3233203d3e20313336303933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.242.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:6a:f5:59:d3:66:ab:98:83:42:88:83:35:14:2c:a5:9e:e3: 51:8f:96:be:4d:b6:9d:eb:7f:14:bd:de:64:d3:cf:14:65:7e: 17:4a:6f:6f:cc:33:9e:7b:f0:1d:ee:c9:f5:d4:99:6d:e5:86: 7b:5e:0c:f5:a0:79:af:cb:c7:9c:1f:d8:04:8d:29:4d:4b:fd: 08:e8:37:1c:ca:6e:0d:39:52:eb:28:83:b4:60:a5:82:ca:4a: ae:0b:78:cc:5d:ba:b2:cf:d7:bd:86:46:60:9d:15:c3:8c:f6: f0:00:fc:79:08:b2:c8:64:c0:aa:d4:00:4c:4c:11:6b:9a:3a: 7a:30:e5:9a:67:e7:6b:40:73:fc:b0:7e:69:26:4e:b5:38:fb: 08:72:6e:2e:00:c4:41:f8:5f:98:23:52:f2:d2:28:97:3f:e1: f5:60:ff:21:ec:fd:93:a6:5a:74:9d:88:c4:4e:07:18:59:1a: f7:77:aa:ef:a4:c3:d2:0f:74:03:a3:7e:c9:06:5c:e8:cc:5b: 44:19:f4:df:31:e5:0a:d2:f4:d4:ac:95:b7:68:91:cf:b3:ee: 9c:e1:2e:e9:20:02:e6:e3:41:e9:98:b9:7f:e0:77:86:44:a4: 74:b7:6c:97:b2:a1:ee:5b:82:30:a0:f1:83:c3:21:34:6f:c7: f7:46:fc:67 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIUHSkt4YU9qAuAu/dH2oKWltWfR5gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDkwMjAzNDUwMFoX DTI1MDkwMTAzNTAwMFowMzExMC8GA1UEAxMoMEU4QTQ1QjgzQTM5MTY5Q0VCNkY0 MDEwNTlCQjg4QTAzQTdFMjcyNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALlKBKW7dV0QANRCzscgjZORN9KT2Kpeyhulraz4qze+mvi2ROEKCBgHiwxq UuZoGuUsXcxRI4SwT0mNN9HG2ZtZAcYMPPzVLIm2Ij/Tn5g6Ct80JlcL43NjtEMi b3OPIO9iehEvBudONTkTSyAklAwj+Q9Acp08Vng2SBLX51Eeip8J+dsWU2O8a7PS bKXp2N9aMnECIypMyG5FvKcn8gfgGCtBHE52g2sGGKP7lnpBYXg86teyoVr6JeIw Xh2fDJfeAA9fewWzqKaSRB1MsEwooPQjRRvRQh63PMB+RCKt34MYLq0a/rR9L+2/ gBIRB5VqeppWafR2iUpW01H6WtcCAwEAAaOCAgEwggH9MB0GA1UdDgQWBBQOikW4 OjkWnOtvQBBZu4igOn4nJzAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGEBggrBgEFBQcBCwR4MHYwdAYIKwYBBQUHMAuGaHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz NjM2MmUzMjM0MzIyZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzMTMzMzYzMDM5MzMu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAGdQvIwDQYJKoZIhvcNAQELBQADggEBAA5q9VnTZquYg0KIgzUU LKWe41GPlr5Ntp3rfxS93mTTzxRlfhdKb2/MM5578B3uyfXUmW3lhnteDPWgea/L x5wf2ASNKU1L/QjoNxzKbg05Uusog7RgpYLKSq4LeMxdurLP172GRmCdFcOM9vAA /HkIsshkwKrUAExMEWuaOnow5Zpn52tAc/ywfmkmTrU4+whybi4AxEH4X5gjUvLS KJc/4fVg/yHs/ZOmWnSdiMROBxhZGvd3qu+kw9IPdAOjfskGXOjMW0QZ9N8x5QrS 9NSslbdokc+z7pzhLukgAubjQemYuX/gd4ZEpHS3bJeyoe5bgjCg8YPDITRvx/dG /Gc= -----END CERTIFICATE-----Generated at Wed Nov 20 06:21:51 2024 by rpki-client on console-ams.rpki-client.org