$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e35302e302f32332d3234203d3e20313532343338.roa File: 3135372e36362e35302e302f32332d3234203d3e20313532343338.roa (raw, json) Hash identifier: yy4AjmLaBUMFlGKIew5yIYtfOZqRhgssccp8ffvjgLE= Subject key identifier: 43:A1:70:F4:6F:D8:E6:7F:B4:09:59:81:FA:96:AC:2A:1B:CB:D1:93 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 65BFA9923A707E3C2B7F99D4412C6DA99FF9A58F Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e35302e302f32332d3234203d3e20313532343338.roa Signing time: Wed 03 Apr 2024 13:22:55 +0000 ROA not before: Wed 03 Apr 2024 13:17:55 +0000 ROA not after: Wed 02 Apr 2025 13:22:55 +0000 asID: 152438 IP address blocks: 157.66.50.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:bf:a9:92:3a:70:7e:3c:2b:7f:99:d4:41:2c:6d:a9:9f:f9:a5:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Apr 3 13:17:55 2024 GMT Not After : Apr 2 13:22:55 2025 GMT Subject: CN=43A170F46FD8E67FB4095981FA96AC2A1BCBD193 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:eb:5e:82:82:18:d1:b6:c5:33:5d:0f:ce:57: 4e:ce:7c:2b:1a:96:f6:f6:2e:af:4e:cc:bb:56:4f: 14:30:cf:a3:4b:25:af:c5:ea:d3:12:f7:13:bd:73: a7:1f:94:b4:9b:52:8f:b7:64:1a:df:ac:66:be:60: 41:b2:78:3b:cb:69:21:f3:ab:6f:72:67:3b:92:1d: 23:ee:8c:d7:66:7c:23:87:2f:10:0d:0a:ea:b8:ed: 4c:70:83:83:0c:90:20:f6:92:2b:90:ad:9b:36:62: 4b:b9:ec:9f:7a:04:5f:31:5d:7c:5c:09:28:91:c8: a4:d4:49:22:59:63:38:09:4c:5e:fe:e4:a2:35:90: eb:04:a5:1d:29:11:0c:ec:ec:1e:1f:8d:df:b8:08: 27:99:d3:4a:85:fa:ae:c9:d6:bd:5f:91:f3:bd:91: 3c:58:e5:b6:e6:1d:f8:41:a1:6f:fa:9a:90:d7:68: af:65:f9:da:08:44:f6:48:1c:eb:5f:b1:ea:67:88: 01:6a:ec:fa:73:c9:1f:5e:71:71:d4:22:ae:ba:8a: c0:f1:c9:9d:03:2b:47:6b:1c:7d:0a:03:55:7f:cc: b4:c5:31:b5:de:32:d8:49:76:9a:6a:2c:5a:34:70: 72:18:aa:43:af:1a:8f:62:ad:f4:c8:dd:66:b3:fa: e7:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:A1:70:F4:6F:D8:E6:7F:B4:09:59:81:FA:96:AC:2A:1B:CB:D1:93 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e35302e302f32332d3234203d3e20313532343338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.50.0/23 Signature Algorithm: sha256WithRSAEncryption 96:db:f7:6f:4d:d2:69:50:d2:35:32:9a:cf:3a:15:88:0d:7d: 36:ca:f2:7a:86:86:46:94:e2:6a:42:f5:70:14:f4:7a:42:52: eb:03:18:0f:0e:c4:ca:f5:dc:d2:fe:cc:0c:9e:3d:ed:88:64: 0f:1b:0e:a8:0a:88:04:e5:e2:78:95:a2:1b:a6:a0:6b:e8:76: a8:05:92:1a:de:29:8d:06:34:d8:39:b1:c6:86:f4:fc:0c:48: 61:1c:91:bf:a8:b5:66:7f:c4:48:4b:c3:03:48:4b:3a:21:43: e5:22:b7:c3:8d:66:41:2a:d0:65:27:e5:e6:4f:81:7e:de:df: 62:bb:28:12:e0:27:ec:63:bf:16:4f:12:5e:6f:5d:30:b3:02: b4:c6:8d:b3:b2:1c:54:2b:2c:bb:f5:d4:6c:87:73:88:85:89: 05:02:82:ae:d7:83:75:09:bf:e2:b5:f9:48:dc:b7:60:e8:44: 86:e9:73:e8:97:80:4e:0e:61:71:e5:2b:ee:32:ab:94:1a:bb: 5f:46:f5:2f:25:fb:14:ff:13:3c:d4:c6:ec:44:63:09:01:86: 81:7a:0b:6f:f6:33:a0:4b:d8:7c:08:0d:b1:05:38:3a:c4:77: 3f:7f:1d:40:ab:b5:ef:0f:05:da:c5:d5:fb:fa:e3:67:6e:ae: 40:11:11:4e -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUZb+pkjpwfjwrf5nUQSxtqZ/5pY8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDQwMzEzMTc1NVoX DTI1MDQwMjEzMjI1NVowMzExMC8GA1UEAxMoNDNBMTcwRjQ2RkQ4RTY3RkI0MDk1 OTgxRkE5NkFDMkExQkNCRDE5MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANPrXoKCGNG2xTNdD85XTs58KxqW9vYur07Mu1ZPFDDPo0slr8Xq0xL3E71z px+UtJtSj7dkGt+sZr5gQbJ4O8tpIfOrb3JnO5IdI+6M12Z8I4cvEA0K6rjtTHCD gwyQIPaSK5CtmzZiS7nsn3oEXzFdfFwJKJHIpNRJIlljOAlMXv7kojWQ6wSlHSkR DOzsHh+N37gIJ5nTSoX6rsnWvV+R872RPFjltuYd+EGhb/qakNdor2X52ghE9kgc 61+x6meIAWrs+nPJH15xcdQirrqKwPHJnQMrR2scfQoDVX/MtMUxtd4y2El2mmos WjRwchiqQ68aj2Kt9MjdZrP65/ECAwEAAaOCAf8wggH7MB0GA1UdDgQWBBRDoXD0 b9jmf7QJWYH6lqwqG8vRkzAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGCBggrBgEFBQcBCwR2MHQwcgYIKwYBBQUHMAuGZnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz NjM2MmUzNTMwMmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMzM4LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnUIyMA0GCSqGSIb3DQEBCwUAA4IBAQCW2/dvTdJpUNI1MprPOhWI DX02yvJ6hoZGlOJqQvVwFPR6QlLrAxgPDsTK9dzS/swMnj3tiGQPGw6oCogE5eJ4 laIbpqBr6HaoBZIa3imNBjTYObHGhvT8DEhhHJG/qLVmf8RIS8MDSEs6IUPlIrfD jWZBKtBlJ+XmT4F+3t9iuygS4CfsY78WTxJeb10wswK0xo2zshxUKyy79dRsh3OI hYkFAoKu14N1Cb/itflI3Ldg6ESG6XPol4BODmFx5SvuMquUGrtfRvUvJfsU/xM8 1MbsRGMJAYaBegtv9jOgS9h8CA2xBTg6xHc/fx1Aq7XvDwXaxdX7+uNnbq5AERFO -----END CERTIFICATE-----Generated at Wed Nov 20 06:21:51 2024 by rpki-client on console-ams.rpki-client.org