$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e35322e302f32332d3234203d3e2034383030.roa File: 3135372e36362e35322e302f32332d3234203d3e2034383030.roa (raw, json) Hash identifier: SBhwmjFnPlaKIVcALuTM6zaDYAolbgb1VqZburTnJR8= Subject key identifier: FA:F5:D5:28:02:74:E5:BA:8B:0D:A5:B7:7F:0B:B3:74:38:3A:7B:46 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 6D2D7E87060BF3D497ED82763F4499F73300DFA4 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e35322e302f32332d3234203d3e2034383030.roa Signing time: Sun 30 Jun 2024 01:59:53 +0000 ROA not before: Sun 30 Jun 2024 01:54:53 +0000 ROA not after: Sun 29 Jun 2025 01:59:53 +0000 asID: 4800 IP address blocks: 157.66.52.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:2d:7e:87:06:0b:f3:d4:97:ed:82:76:3f:44:99:f7:33:00:df:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jun 30 01:54:53 2024 GMT Not After : Jun 29 01:59:53 2025 GMT Subject: CN=FAF5D5280274E5BA8B0DA5B77F0BB374383A7B46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ef:8c:45:ad:29:b5:af:9c:51:3c:a6:95:80: 2d:29:a1:9f:30:b2:f4:58:35:0a:53:24:f4:f9:f9: de:4e:75:66:a1:cc:86:14:0c:b3:32:19:ca:f9:70: c2:6b:41:66:c1:02:59:8f:2c:fa:cf:12:e8:5b:52: 07:a8:e2:47:86:2d:90:47:2c:e5:4c:db:23:9d:18: f5:e2:f1:ea:65:28:21:3f:ab:22:c0:79:4a:a2:d4: fe:b6:51:47:f4:25:78:fc:65:05:71:74:4e:e7:e7: 23:a5:56:05:02:13:27:33:c5:26:63:22:b8:c2:fe: 69:9e:f5:7d:0e:a6:ec:c7:7c:a0:aa:d1:76:47:d5: d7:4c:fd:97:33:92:66:4a:74:a9:35:be:40:d3:0e: e3:e4:41:59:91:69:62:f9:04:10:a1:db:a5:72:02: 0f:15:5e:a1:0c:00:1e:4a:e5:29:1a:a0:93:1a:61: a8:a2:e0:03:7b:50:f8:32:3f:37:cb:b1:f2:78:7a: a8:c5:7f:27:bf:e5:3f:79:f1:ff:73:c6:ab:9d:71: f1:a5:3e:d8:9c:ae:28:f0:cf:35:b4:7c:f6:67:15: 09:f3:13:a8:b3:ae:bb:f4:ba:25:90:2f:d1:5b:8b: c5:6a:df:f8:1e:f1:41:36:97:c3:80:9e:ac:eb:94: 4c:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:F5:D5:28:02:74:E5:BA:8B:0D:A5:B7:7F:0B:B3:74:38:3A:7B:46 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e35322e302f32332d3234203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.52.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:88:f0:4a:8c:79:ad:17:f6:d0:5e:20:1b:4e:9a:8b:62:51: f9:e4:63:0f:3e:9f:cd:16:65:24:90:5d:02:d4:4a:cd:7f:08: 56:01:1f:79:64:a9:e2:f5:67:01:07:36:b7:aa:ca:06:53:46: bb:92:32:3d:c9:d5:61:bc:1a:42:a6:cd:a0:da:bd:ea:62:a6: 9b:2e:ba:53:b6:8f:58:02:b7:17:2b:2f:8f:cb:6b:4c:dd:e7: c3:8f:fb:fc:f8:37:28:e8:23:b1:41:76:6c:43:19:13:ee:c0: 89:e2:cb:5f:41:28:1a:00:7e:0b:6f:5a:0c:8d:90:dc:14:db: 5c:2f:b7:2b:92:d6:fc:38:c4:b3:96:c0:83:04:9d:e0:ed:f2: d8:f0:f6:af:4d:fc:0f:1d:ea:be:2f:ee:3f:47:4f:d0:6f:f5: dc:dd:17:1f:27:0a:1e:5c:d6:06:59:7f:87:b3:db:1a:b9:e3: 25:cd:05:f0:72:27:93:3c:71:0f:9f:1f:cc:2b:cd:42:f6:53: 90:72:89:d1:a0:bf:15:d1:53:69:e0:79:35:f3:75:bc:e1:fa: c2:a2:72:af:a0:2a:57:62:53:8e:1b:38:5b:8d:7c:94:49:8e: d2:d5:ac:84:21:a1:cd:9e:a5:64:de:bc:d4:8d:04:b7:3a:ac: 0b:65:84:07 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUbS1+hwYL89SX7YJ2P0SZ9zMA36QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDYzMDAxNTQ1M1oX DTI1MDYyOTAxNTk1M1owMzExMC8GA1UEAxMoRkFGNUQ1MjgwMjc0RTVCQThCMERB NUI3N0YwQkIzNzQzODNBN0I0NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMDvjEWtKbWvnFE8ppWALSmhnzCy9Fg1ClMk9Pn53k51ZqHMhhQMszIZyvlw wmtBZsECWY8s+s8S6FtSB6jiR4YtkEcs5UzbI50Y9eLx6mUoIT+rIsB5SqLU/rZR R/QlePxlBXF0TufnI6VWBQITJzPFJmMiuML+aZ71fQ6m7Md8oKrRdkfV10z9lzOS Zkp0qTW+QNMO4+RBWZFpYvkEEKHbpXICDxVeoQwAHkrlKRqgkxphqKLgA3tQ+DI/ N8ux8nh6qMV/J7/lP3nx/3PGq51x8aU+2JyuKPDPNbR89mcVCfMTqLOuu/S6JZAv 0VuLxWrf+B7xQTaXw4CerOuUTO8CAwEAAaOCAfowggH2MB0GA1UdDgQWBBT69dUo AnTluosNpbd/C7N0ODp7RjAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMH4GCCsGAQUFBwELBHIwcDBuBggrBgEFBQcwC4ZicnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS8zMTM1MzcyZTM2 MzYyZTM1MzIyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzNDM4MzAzMC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAZ1CNDANBgkqhkiG9w0BAQsFAAOCAQEAjYjwSox5rRf20F4gG06ai2JR+eRj Dz6fzRZlJJBdAtRKzX8IVgEfeWSp4vVnAQc2t6rKBlNGu5IyPcnVYbwaQqbNoNq9 6mKmmy66U7aPWAK3Fysvj8trTN3nw4/7/Pg3KOgjsUF2bEMZE+7AieLLX0EoGgB+ C29aDI2Q3BTbXC+3K5LW/DjEs5bAgwSd4O3y2PD2r038Dx3qvi/uP0dP0G/13N0X HycKHlzWBll/h7PbGrnjJc0F8HInkzxxD58fzCvNQvZTkHKJ0aC/FdFTaeB5NfN1 vOH6wqJyr6AqV2JTjhs4W418lEmO0tWshCGhzZ6lZN681I0EtzqsC2WEBw== -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org