$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e3138372e3134332e302f32342d3234203d3e20313338313331.roa File: 3136302e3138372e3134332e302f32342d3234203d3e20313338313331.roa (raw, json) Hash identifier: lxxTUQrj83I5326odUT3Awd5gkJp2aPbbUc7GZaSKig= Subject key identifier: 0F:BD:BC:2B:DE:B0:EF:FC:F8:D5:0A:13:E5:61:5A:B6:8C:9F:3F:F9 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 2492EF5D7C42B15C51483181B8E3CA1576AE6E3B Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e3138372e3134332e302f32342d3234203d3e20313338313331.roa Signing time: Thu 10 Oct 2024 06:54:27 +0000 ROA not before: Thu 10 Oct 2024 06:49:27 +0000 ROA not after: Thu 09 Oct 2025 06:54:27 +0000 asID: 138131 IP address blocks: 160.187.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:92:ef:5d:7c:42:b1:5c:51:48:31:81:b8:e3:ca:15:76:ae:6e:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Oct 10 06:49:27 2024 GMT Not After : Oct 9 06:54:27 2025 GMT Subject: CN=0FBDBC2BDEB0EFFCF8D50A13E5615AB68C9F3FF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:7e:9e:b9:c0:c2:17:23:c2:41:48:7b:a6:f2: a1:47:42:f2:fd:68:7e:82:87:bb:a8:7c:c1:7c:8b: 01:11:0f:7d:ac:96:4a:fa:6f:9e:7d:c8:46:5a:14: 9f:a0:fc:79:a1:70:24:ea:bf:e6:f8:0e:47:2e:aa: 83:eb:67:fb:5c:09:8c:ba:f1:97:7d:3d:2a:e8:fe: 87:98:d2:c8:27:9a:f7:2e:c7:49:ec:b7:e3:51:60: 2f:a7:0e:71:8e:7f:84:af:89:83:e7:76:62:a9:11: e2:7e:9f:01:87:c7:43:cf:45:a7:71:8a:ad:78:b8: 48:bc:b9:e0:1f:fc:7b:29:d1:9e:83:ef:0e:8c:32: 7f:60:fb:7d:16:c4:a6:80:f8:95:0f:87:06:60:99: 79:61:30:0e:13:98:c7:c6:0a:90:4d:e7:c4:38:99: 07:ec:cb:85:0b:e0:66:2b:13:f1:d3:ce:02:eb:48: e6:d9:e3:a6:2c:25:99:61:b9:be:1b:f8:46:10:f1: 4a:bf:91:e3:3c:4a:6e:70:24:70:78:bd:60:60:2b: 68:95:87:f9:c3:ed:d0:76:1a:cf:af:df:cc:94:68: b9:af:7a:16:93:df:cc:39:49:4c:75:4e:7f:23:4a: 86:10:0f:5b:3e:e0:19:c4:a0:67:f1:57:7b:0e:11: c1:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:BD:BC:2B:DE:B0:EF:FC:F8:D5:0A:13:E5:61:5A:B6:8C:9F:3F:F9 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e3138372e3134332e302f32342d3234203d3e20313338313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.143.0/24 Signature Algorithm: sha256WithRSAEncryption 60:fd:71:12:97:92:9d:dd:cc:64:0d:2f:d4:aa:5d:30:d8:cc: 23:fd:ff:db:f8:f4:a1:3f:a9:e4:55:a8:7e:b2:d4:e0:45:e8: 87:48:b1:51:42:e1:16:0a:94:b0:69:c5:84:1f:8e:df:05:c6: 73:6e:33:c0:7f:1f:40:31:5e:3f:34:4d:cc:86:16:74:92:c5: 6d:52:36:0f:0f:1a:c8:63:9b:05:52:7a:12:d0:4f:90:07:ee: 48:ef:8d:6e:67:1f:40:8f:14:4e:41:b0:a2:1f:ca:04:29:c5: 08:06:5f:22:c9:0e:c6:28:69:fa:c7:7c:21:45:9c:7e:ec:40: 06:79:9e:c1:77:6a:62:1c:47:49:b6:9e:09:86:2d:de:7a:ac: b7:b9:32:70:23:82:fe:29:aa:0e:cc:5a:ea:22:fc:11:4b:60: a3:3c:b4:6b:c9:65:56:44:a8:8b:74:13:d7:61:a4:98:9e:7d: c9:f9:6e:a5:08:7f:d0:25:9d:46:ac:53:ab:2d:ac:57:e7:f6: 70:f5:b6:37:a3:4a:9a:ce:8b:2b:cf:d8:b4:47:58:68:13:96: 77:df:ef:a0:e9:7c:a3:4e:fa:e0:44:a6:36:70:e9:2e:47:43: c2:5e:90:7f:c1:19:2a:37:cb:3d:e3:33:09:dc:5c:9f:f5:6d: ce:ba:be:07 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUJJLvXXxCsVxRSDGBuOPKFXaubjswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MTAxMDA2NDkyN1oX DTI1MTAwOTA2NTQyN1owMzExMC8GA1UEAxMoMEZCREJDMkJERUIwRUZGQ0Y4RDUw QTEzRTU2MTVBQjY4QzlGM0ZGOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALt+nrnAwhcjwkFIe6byoUdC8v1ofoKHu6h8wXyLAREPfayWSvpvnn3IRloU n6D8eaFwJOq/5vgORy6qg+tn+1wJjLrxl309Kuj+h5jSyCea9y7HSey341FgL6cO cY5/hK+Jg+d2YqkR4n6fAYfHQ89Fp3GKrXi4SLy54B/8eynRnoPvDowyf2D7fRbE poD4lQ+HBmCZeWEwDhOYx8YKkE3nxDiZB+zLhQvgZisT8dPOAutI5tnjpiwlmWG5 vhv4RhDxSr+R4zxKbnAkcHi9YGAraJWH+cPt0HYaz6/fzJRoua96FpPfzDlJTHVO fyNKhhAPWz7gGcSgZ/FXew4RwccCAwEAAaOCAgMwggH/MB0GA1UdDgQWBBQPvbwr 3rDv/PjVChPlYVq2jJ8/+TAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGGBggrBgEFBQcBCwR6MHgwdgYIKwYBBQUHMAuGanJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNjMwMmUz MTM4MzcyZTMxMzQzMzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzODMxMzMz MS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKC7jzANBgkqhkiG9w0BAQsFAAOCAQEAYP1xEpeSnd3MZA0v 1KpdMNjMI/3/2/j0oT+p5FWofrLU4EXoh0ixUULhFgqUsGnFhB+O3wXGc24zwH8f QDFePzRNzIYWdJLFbVI2Dw8ayGObBVJ6EtBPkAfuSO+NbmcfQI8UTkGwoh/KBCnF CAZfIskOxihp+sd8IUWcfuxABnmewXdqYhxHSbaeCYYt3nqst7kycCOC/imqDsxa 6iL8EUtgozy0a8llVkSoi3QT12GkmJ59yflupQh/0CWdRqxTqy2sV+f2cPW2N6NK ms6LK8/YtEdYaBOWd9/voOl8o0764ESmNnDpLkdDwl6Qf8EZKjfLPeMzCdxcn/Vt zrq+Bw== -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org