$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135382e3134302e3138382e302f32332d3234203d3e20313333373938.roa File: 3135382e3134302e3138382e302f32332d3234203d3e20313333373938.roa (raw, json) Hash identifier: p9hWbn4qYIgWtHu1deMJg4wUbiVXB2CxVdRfv4jv5bY= Subject key identifier: 97:B4:15:C4:27:9D:07:71:E8:15:3D:CA:88:2C:B3:56:53:B9:5B:19 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 68A0461B457FE4EF551584F1DA3E33576BE8050E Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135382e3134302e3138382e302f32332d3234203d3e20313333373938.roa Signing time: Wed 07 Feb 2024 02:59:50 +0000 ROA not before: Wed 07 Feb 2024 02:54:50 +0000 ROA not after: Wed 05 Feb 2025 02:59:50 +0000 asID: 133798 IP address blocks: 158.140.188.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 00:47:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:a0:46:1b:45:7f:e4:ef:55:15:84:f1:da:3e:33:57:6b:e8:05:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Feb 7 02:54:50 2024 GMT Not After : Feb 5 02:59:50 2025 GMT Subject: CN=97B415C4279D0771E8153DCA882CB35653B95B19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:07:69:6c:3b:8d:22:9e:2a:d8:f1:0c:18:75: c0:4d:7d:30:46:0c:89:9c:64:f1:8f:7b:e1:d1:d8: de:39:31:21:2d:21:bd:be:6d:9d:c7:48:28:c9:4b: 7b:14:9b:9a:2f:66:c2:6c:0d:11:07:07:af:51:e1: cc:22:5d:42:a9:42:f1:29:45:67:48:14:21:14:2e: ab:7a:b9:d7:95:4f:58:cc:f1:17:9e:f9:bc:8d:c9: c8:40:2b:bf:f7:5f:8c:83:32:f4:ad:16:1e:9e:2c: b2:0a:33:1e:22:31:dd:ab:88:75:7e:dd:6e:4c:4f: 64:1e:de:f4:1d:e2:6e:ca:6f:7e:f9:8d:b5:0f:b8: 68:c7:fd:5b:0a:d2:db:1d:2e:cc:3a:24:c1:a7:85: 64:6a:6e:4f:9a:0f:26:2a:e5:5e:8a:8a:09:33:b1: 5b:2d:9f:a3:1f:50:fe:54:14:4b:13:a1:ce:2d:db: 92:bc:3c:21:2f:1b:07:cc:1d:0a:6c:ce:c5:94:97: 00:93:7b:d5:ed:e6:8b:91:dc:b2:d4:08:ed:e6:85: 7e:be:af:4c:54:33:20:52:63:b2:97:c7:bd:fe:b6: b6:1f:39:a4:01:a2:bb:d4:1d:29:4d:20:7a:4a:73: 5b:6b:31:e6:cf:6c:5b:85:06:3d:48:75:9f:a1:e6: a2:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:B4:15:C4:27:9D:07:71:E8:15:3D:CA:88:2C:B3:56:53:B9:5B:19 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135382e3134302e3138382e302f32332d3234203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.188.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:9f:f0:ea:cf:cd:b6:69:5b:ad:77:9e:86:9b:6f:5f:49:2e: e5:aa:b0:57:d5:aa:a2:76:1d:2c:9d:5e:17:1e:a8:5a:19:83: 48:5b:04:e3:56:32:70:34:cf:eb:f4:96:f4:ce:ee:bc:28:fb: cf:4f:9e:c6:35:d5:4a:ab:e1:1b:f8:81:1f:9f:08:0c:05:1a: 3f:3c:14:79:c3:c3:8a:27:f5:25:df:fa:f4:4d:04:fe:88:6b: 8a:5c:86:46:bc:1e:94:5b:8a:20:9e:90:b6:92:5e:22:f3:7b: 1f:cd:43:de:34:e6:9d:3d:7d:be:ba:26:50:59:2e:de:bc:4a: 6c:62:47:9f:2c:d3:ad:2a:85:e4:e6:f5:5a:2f:8d:91:eb:2a: 22:b6:f1:b5:39:81:62:9c:6d:31:00:b1:8c:f7:1f:5e:f1:75: 77:65:74:bd:e7:4e:a0:82:6b:60:e7:52:53:46:0f:6c:51:97: b0:fa:b9:a0:3c:d2:63:80:f9:49:8f:a4:c6:c7:8b:e5:35:f3: d0:be:6e:1e:22:a3:7e:ac:3f:1b:f3:91:c8:90:3a:96:54:a7: 8f:e9:18:67:02:03:23:31:4f:c6:8f:15:ab:89:08:47:7c:43: c3:46:61:55:73:7d:67:7d:7c:ad:60:33:f8:e2:bf:77:d3:f2: 1f:9f:71:1a -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUaKBGG0V/5O9VFYTx2j4zV2voBQ4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDIwNzAyNTQ1MFoX DTI1MDIwNTAyNTk1MFowMzExMC8GA1UEAxMoOTdCNDE1QzQyNzlEMDc3MUU4MTUz RENBODgyQ0IzNTY1M0I5NUIxOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM0HaWw7jSKeKtjxDBh1wE19MEYMiZxk8Y974dHY3jkxIS0hvb5tncdIKMlL exSbmi9mwmwNEQcHr1HhzCJdQqlC8SlFZ0gUIRQuq3q515VPWMzxF575vI3JyEAr v/dfjIMy9K0WHp4ssgozHiIx3auIdX7dbkxPZB7e9B3ibspvfvmNtQ+4aMf9WwrS 2x0uzDokwaeFZGpuT5oPJirlXoqKCTOxWy2fox9Q/lQUSxOhzi3bkrw8IS8bB8wd CmzOxZSXAJN71e3mi5HcstQI7eaFfr6vTFQzIFJjspfHvf62th85pAGiu9QdKU0g ekpzW2sx5s9sW4UGPUh1n6HmoqMCAwEAAaOCAgMwggH/MB0GA1UdDgQWBBSXtBXE J50HcegVPcqILLNWU7lbGTAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGGBggrBgEFBQcBCwR6MHgwdgYIKwYBBQUHMAuGanJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM4MmUz MTM0MzAyZTMxMzgzODJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMxMzMzMzM3Mzkz OC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ6MvDANBgkqhkiG9w0BAQsFAAOCAQEAXJ/w6s/NtmlbrXee hptvX0ku5aqwV9WqonYdLJ1eFx6oWhmDSFsE41YycDTP6/SW9M7uvCj7z0+exjXV SqvhG/iBH58IDAUaPzwUecPDiif1Jd/69E0E/ohrilyGRrwelFuKIJ6QtpJeIvN7 H81D3jTmnT19vromUFku3rxKbGJHnyzTrSqF5Ob1Wi+NkesqIrbxtTmBYpxtMQCx jPcfXvF1d2V0vedOoIJrYOdSU0YPbFGXsPq5oDzSY4D5SY+kxseL5TXz0L5uHiKj fqw/G/ORyJA6llSnj+kYZwIDIzFPxo8Vq4kIR3xDw0ZhVXN9Z318rWAz+OK/d9Py H59xGg== -----END CERTIFICATE-----Generated at Fri May 17 17:47:04 2024 by rpki-client on console-ams.rpki-client.org