$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e38342e302f32332d3234203d3e20313339393831.roa File: 3135372e36362e38342e302f32332d3234203d3e20313339393831.roa (raw, json) Hash identifier: UwghBxLjKyd2di1G1KoDzPcvU1ninheTXAM40M2/0/0= Subject key identifier: 1E:60:E4:18:0D:3E:10:DB:36:B4:81:E0:95:FE:06:F2:AD:39:4B:B7 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 6A41EEC5AA47341797A9FF1262586B9253C1120E Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e38342e302f32332d3234203d3e20313339393831.roa Signing time: Mon 01 Jul 2024 12:32:14 +0000 ROA not before: Mon 01 Jul 2024 12:27:14 +0000 ROA not after: Mon 30 Jun 2025 12:32:14 +0000 asID: 139981 IP address blocks: 157.66.84.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:41:ee:c5:aa:47:34:17:97:a9:ff:12:62:58:6b:92:53:c1:12:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jul 1 12:27:14 2024 GMT Not After : Jun 30 12:32:14 2025 GMT Subject: CN=1E60E4180D3E10DB36B481E095FE06F2AD394BB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ea:a4:c9:cb:58:22:03:1b:b0:e2:c2:9c:24: 5f:c0:de:a8:64:cc:31:17:04:29:e6:79:a0:2a:a4: 79:c4:a4:ab:8a:96:f9:89:1f:56:00:3a:01:33:22: 96:9e:ff:73:f9:9d:13:58:01:85:c2:96:62:49:36: d5:0b:76:71:02:df:fa:6c:c8:6f:60:fe:95:b4:10: 14:0c:ef:36:b5:22:24:6b:c9:21:00:8d:88:90:2b: 1d:01:bd:a9:af:dc:b0:b7:4b:53:12:e1:46:0f:69: 65:79:f8:9f:a2:3a:e0:07:1f:40:a7:0c:93:a0:15: 49:72:91:97:b9:ff:e4:a3:db:d9:bd:1e:83:c2:63: cc:17:55:6b:25:c7:85:94:4a:0b:f2:f7:52:dc:fd: 52:d6:4f:61:09:17:3d:90:99:8c:9b:65:9f:95:24: 82:f6:1d:c7:f3:49:af:b5:23:70:11:84:33:65:43: 66:a6:b6:7c:62:3c:7f:9f:23:2b:1b:9c:5a:d2:5c: 8f:8e:de:ba:70:e5:46:11:98:1d:8c:85:8b:e6:bd: 1c:a8:55:79:13:29:c5:63:58:15:d7:6f:55:3b:c9: d3:6a:0d:07:b4:26:1f:63:1d:f2:69:89:20:5a:cf: 68:2c:9f:6e:34:0f:0d:ab:01:d0:87:cc:23:c6:78: 1f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:60:E4:18:0D:3E:10:DB:36:B4:81:E0:95:FE:06:F2:AD:39:4B:B7 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e38342e302f32332d3234203d3e20313339393831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.84.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:ce:b0:72:d1:f5:cf:57:be:35:b2:ab:0c:48:6d:3a:74:d4: e7:9a:3e:fa:04:82:20:c7:8e:7c:d7:bd:8b:91:86:62:68:23: 2b:80:1a:3f:a5:94:ff:ab:d7:ae:f9:24:74:3d:b3:96:e0:de: f1:ea:b4:00:e7:27:41:63:66:1a:90:d6:e1:fa:10:eb:94:77: a4:7e:47:1c:06:df:8f:53:e1:76:85:1b:5c:d2:45:a1:2d:f4: 96:86:f0:cf:d1:5a:08:88:57:f7:3b:c9:6a:c2:17:85:24:98: 81:0c:4a:3f:e3:23:7e:ee:2f:8f:45:44:73:12:1b:59:dc:71: e1:69:3b:80:c8:8c:10:e7:a9:59:13:60:f3:94:31:e4:b4:a7: d4:dc:11:97:38:eb:1a:67:22:04:7f:b2:d1:9b:97:f3:dd:20: 40:82:60:c2:49:0f:80:60:c1:f7:38:51:45:0e:fa:9b:82:ee: 02:6d:8d:2a:35:1b:f8:7d:a1:10:e4:2f:d0:1a:1e:26:68:6c: ca:99:66:f6:25:b0:27:60:58:c2:17:b8:43:86:81:8b:1b:36: 17:4d:5f:3f:23:c4:6f:d3:25:59:61:e5:36:38:f5:86:78:e4: 2f:ad:56:15:8a:cf:35:78:22:6d:1d:ae:47:89:00:8f:5c:3d: b3:58:a1:f7 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUakHuxapHNBeXqf8SYlhrklPBEg4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDcwMTEyMjcxNFoX DTI1MDYzMDEyMzIxNFowMzExMC8GA1UEAxMoMUU2MEU0MTgwRDNFMTBEQjM2QjQ4 MUUwOTVGRTA2RjJBRDM5NEJCNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANfqpMnLWCIDG7DiwpwkX8DeqGTMMRcEKeZ5oCqkecSkq4qW+YkfVgA6ATMi lp7/c/mdE1gBhcKWYkk21Qt2cQLf+mzIb2D+lbQQFAzvNrUiJGvJIQCNiJArHQG9 qa/csLdLUxLhRg9pZXn4n6I64AcfQKcMk6AVSXKRl7n/5KPb2b0eg8JjzBdVayXH hZRKC/L3Utz9UtZPYQkXPZCZjJtln5UkgvYdx/NJr7UjcBGEM2VDZqa2fGI8f58j KxucWtJcj47eunDlRhGYHYyFi+a9HKhVeRMpxWNYFddvVTvJ02oNB7QmH2Md8mmJ IFrPaCyfbjQPDasB0IfMI8Z4H3ECAwEAAaOCAf8wggH7MB0GA1UdDgQWBBQeYOQY DT4Q2za0geCV/gbyrTlLtzAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGCBggrBgEFBQcBCwR2MHQwcgYIKwYBBQUHMAuGZnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz NjM2MmUzODM0MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzODMxLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnUJUMA0GCSqGSIb3DQEBCwUAA4IBAQBKzrBy0fXPV741sqsMSG06 dNTnmj76BIIgx458172LkYZiaCMrgBo/pZT/q9eu+SR0PbOW4N7x6rQA5ydBY2Ya kNbh+hDrlHekfkccBt+PU+F2hRtc0kWhLfSWhvDP0VoIiFf3O8lqwheFJJiBDEo/ 4yN+7i+PRURzEhtZ3HHhaTuAyIwQ56lZE2DzlDHktKfU3BGXOOsaZyIEf7LRm5fz 3SBAgmDCSQ+AYMH3OFFFDvqbgu4CbY0qNRv4faEQ5C/QGh4maGzKmWb2JbAnYFjC F7hDhoGLGzYXTV8/I8Rv0yVZYeU2OPWGeOQvrVYVis81eCJtHa5HiQCPXD2zWKH3 -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org