$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e31392e33322e302f32332d3234203d3e20313338383432.roa File: 3136302e31392e33322e302f32332d3234203d3e20313338383432.roa (raw, json) Hash identifier: sWOJDmnKwhRC3MU8hfxsWPD8jMd3m8JvJZ7Yx7KK9Ro= Subject key identifier: DB:DA:A7:8B:75:36:45:8B:5F:ED:47:3A:9D:67:54:94:BE:E4:65:0C Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 71F675F672CA2293E44841A099DAD19DF8D7021F Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e31392e33322e302f32332d3234203d3e20313338383432.roa Signing time: Fri 14 Jun 2024 08:52:38 +0000 ROA not before: Fri 14 Jun 2024 08:47:38 +0000 ROA not after: Fri 13 Jun 2025 08:52:38 +0000 asID: 138842 IP address blocks: 160.19.32.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:f6:75:f6:72:ca:22:93:e4:48:41:a0:99:da:d1:9d:f8:d7:02:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jun 14 08:47:38 2024 GMT Not After : Jun 13 08:52:38 2025 GMT Subject: CN=DBDAA78B7536458B5FED473A9D675494BEE4650C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:78:dc:e5:74:03:6c:d0:70:01:d8:38:cb:65: 33:02:6f:20:45:49:d5:8e:09:69:a1:56:66:5e:db: c1:16:e5:98:c6:6c:8a:1d:a8:3b:35:ff:20:91:0a: 39:84:e3:db:45:f7:b9:83:1a:98:98:79:ad:42:d7: 94:17:2c:01:01:7b:3c:ae:31:bd:40:79:81:b6:4b: 53:98:05:ea:d7:c9:e0:14:75:4b:32:11:95:71:d9: 90:33:2b:16:fa:54:61:59:29:47:5a:38:d4:af:16: da:57:46:5f:7e:88:9c:06:33:8d:6d:89:52:c5:67: b0:57:80:90:c8:42:8c:63:cd:e7:a4:c9:a1:19:c9: a2:e6:ab:07:43:a9:c1:3b:12:c4:3b:ee:c2:bc:04: 73:27:08:4f:f9:59:06:49:f0:ed:13:83:a6:2e:5a: 77:2f:b0:83:56:22:49:02:0a:32:0b:91:55:24:5d: 4c:bf:a5:5a:a1:59:42:41:43:4f:94:5b:53:c1:e6: eb:6c:9b:f8:05:e2:e0:b5:b3:3b:16:08:0b:77:c2: 31:c1:bc:5a:f5:5f:59:48:88:08:26:9a:7b:ca:ca: 2b:93:d0:11:2c:86:47:64:e0:f2:53:7c:a1:03:ef: 75:01:7a:b0:b6:c4:aa:c0:5d:76:b0:bc:8f:da:7e: 14:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:DA:A7:8B:75:36:45:8B:5F:ED:47:3A:9D:67:54:94:BE:E4:65:0C X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e31392e33322e302f32332d3234203d3e20313338383432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.32.0/23 Signature Algorithm: sha256WithRSAEncryption 91:67:dc:a3:8c:b4:e0:db:30:8c:cf:a2:6f:4d:19:56:83:b2: 94:63:c0:ca:ec:1e:8f:67:1c:38:8d:0e:58:c3:33:96:8a:c4: 36:34:d4:99:a5:75:7b:58:5f:43:ea:48:e2:94:89:cc:ec:27: 15:f2:23:ab:11:42:d9:3c:21:5c:1d:50:83:cb:ec:91:43:1f: bf:55:ff:3f:5c:44:aa:75:60:7d:ff:a3:cd:47:74:82:01:45: 46:cc:aa:23:fd:a7:3f:69:39:05:4e:eb:ab:57:53:95:e5:55: 12:d7:09:3e:ab:59:b2:0b:ea:f7:02:2c:08:e4:9c:05:a6:95: ae:13:4b:cc:4a:ca:76:28:04:db:8c:f1:d5:a6:37:dd:09:cb: 43:d2:da:7d:43:ce:aa:50:f0:b5:24:3b:6e:a2:92:54:74:4e: ed:e8:be:2d:71:c6:52:e8:55:da:56:99:56:68:9d:0c:a9:95: c5:a9:48:9f:89:30:80:d9:13:1e:85:b2:c2:1b:06:61:00:a4: fb:2f:ea:e6:75:e1:d9:04:89:f6:20:f4:be:f1:16:e9:76:0b: a1:b1:9c:a3:69:30:a7:90:87:d1:cd:73:ca:c6:be:9f:05:87: a1:94:c0:ea:a2:a0:61:97:14:f8:ed:bc:50:eb:f1:8a:3a:57: 15:8c:02:03 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUcfZ19nLKIpPkSEGgmdrRnfjXAh8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDYxNDA4NDczOFoX DTI1MDYxMzA4NTIzOFowMzExMC8GA1UEAxMoREJEQUE3OEI3NTM2NDU4QjVGRUQ0 NzNBOUQ2NzU0OTRCRUU0NjUwQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALp43OV0A2zQcAHYOMtlMwJvIEVJ1Y4JaaFWZl7bwRblmMZsih2oOzX/IJEK OYTj20X3uYMamJh5rULXlBcsAQF7PK4xvUB5gbZLU5gF6tfJ4BR1SzIRlXHZkDMr FvpUYVkpR1o41K8W2ldGX36InAYzjW2JUsVnsFeAkMhCjGPN56TJoRnJouarB0Op wTsSxDvuwrwEcycIT/lZBknw7RODpi5ady+wg1YiSQIKMguRVSRdTL+lWqFZQkFD T5RbU8Hm62yb+AXi4LWzOxYIC3fCMcG8WvVfWUiICCaae8rKK5PQESyGR2Tg8lN8 oQPvdQF6sLbEqsBddrC8j9p+FJkCAwEAAaOCAf8wggH7MB0GA1UdDgQWBBTb2qeL dTZFi1/tRzqdZ1SUvuRlDDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGCBggrBgEFBQcBCwR2MHQwcgYIKwYBBQUHMAuGZnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNjMwMmUz MTM5MmUzMzMyMmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNDMyLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoBMgMA0GCSqGSIb3DQEBCwUAA4IBAQCRZ9yjjLTg2zCMz6JvTRlW g7KUY8DK7B6PZxw4jQ5YwzOWisQ2NNSZpXV7WF9D6kjilInM7CcV8iOrEULZPCFc HVCDy+yRQx+/Vf8/XESqdWB9/6PNR3SCAUVGzKoj/ac/aTkFTuurV1OV5VUS1wk+ q1myC+r3AiwI5JwFppWuE0vMSsp2KATbjPHVpjfdCctD0tp9Q86qUPC1JDtuopJU dE7t6L4tccZS6FXaVplWaJ0MqZXFqUifiTCA2RMehbLCGwZhAKT7L+rmdeHZBIn2 IPS+8RbpdguhsZyjaTCnkIfRzXPKxr6fBYehlMDqoqBhlxT47bxQ6/GKOlcVjAID -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org