$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32302e3231322e302f32342d3234203d3e20313532343332.roa File: 3136302e32302e3231322e302f32342d3234203d3e20313532343332.roa (raw, json) Hash identifier: yV186JVGKPoz9kPKIAVnMsDIgGT31GqGa/G0bz0Oefs= Subject key identifier: 8B:AE:59:19:BE:2F:C6:8D:F9:39:8D:64:7B:A5:E3:D4:6C:82:73:15 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 25E6F0E0024784CA149D24B5821A73D2513A54E2 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32302e3231322e302f32342d3234203d3e20313532343332.roa Signing time: Tue 28 May 2024 08:03:03 +0000 ROA not before: Tue 28 May 2024 07:58:03 +0000 ROA not after: Tue 27 May 2025 08:03:03 +0000 asID: 152432 IP address blocks: 160.20.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:e6:f0:e0:02:47:84:ca:14:9d:24:b5:82:1a:73:d2:51:3a:54:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: May 28 07:58:03 2024 GMT Not After : May 27 08:03:03 2025 GMT Subject: CN=8BAE5919BE2FC68DF9398D647BA5E3D46C827315 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:cb:16:f4:5d:36:ad:22:73:7a:19:c7:4e:8e: cd:9b:58:ba:08:7f:87:4b:2f:fc:64:55:3e:e1:ef: e5:95:e7:cd:87:bc:51:3d:68:bb:32:41:3c:42:f5: 46:79:7f:21:1b:71:6f:b8:42:58:55:19:c5:b3:56: a6:3e:ac:61:a6:c8:f7:2b:84:dd:94:97:9b:83:bf: e6:f1:ea:6c:36:af:d5:98:39:8c:78:77:21:ab:cd: a2:db:d8:84:3e:7f:7f:39:b6:ac:28:13:40:8f:4a: ed:87:20:5c:76:01:d4:3e:ea:34:97:86:2f:69:4c: 36:c8:66:77:f5:1f:33:35:84:e8:c2:68:31:c9:5b: ce:38:92:ca:c6:82:52:ca:1c:ad:63:c5:dd:99:74: f4:e2:49:47:28:56:13:b5:bb:f3:7b:2e:9b:f0:36: ea:4c:3c:04:85:68:16:d6:05:30:08:4d:d9:87:d5: 8c:3d:e3:14:1e:04:a4:06:ab:e4:68:39:a8:31:18: d3:15:8f:2e:2d:58:26:f0:9f:32:69:4c:3b:29:bc: be:88:a9:ef:df:eb:6e:fe:71:99:c2:90:43:dc:5b: 17:54:27:14:04:3d:68:1f:c4:e5:59:cc:d9:ce:3e: f7:6e:82:f0:ba:af:a1:21:23:e0:29:88:b7:d6:5e: 88:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:AE:59:19:BE:2F:C6:8D:F9:39:8D:64:7B:A5:E3:D4:6C:82:73:15 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32302e3231322e302f32342d3234203d3e20313532343332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.20.212.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:68:8f:b3:c8:44:5f:c6:6a:32:36:10:2a:2e:5a:58:82:04: e3:81:0b:e1:33:53:ca:84:6c:52:c0:92:8a:bb:25:7b:d2:40: 31:b0:4d:8b:b8:53:26:77:3d:d9:e2:8b:f7:c0:db:20:20:e2: 15:b8:80:fb:e9:c5:19:56:2c:d5:07:aa:42:d1:0d:17:1d:fd: 91:63:e9:76:d5:20:9e:14:1e:87:85:7e:c2:8c:17:86:bc:66: 56:66:53:ad:26:02:d9:26:61:d5:e7:ab:7e:ae:8a:2b:5d:dd: 6d:b2:49:3a:ef:29:ef:44:60:f1:c6:a0:20:35:0e:b3:b4:83: 21:26:d8:62:7a:02:c0:33:a8:31:22:00:f7:80:e9:79:80:a5: b0:86:33:e4:9d:6a:78:55:f5:61:ae:9b:67:85:48:e9:b3:2c: 4a:dd:c9:23:b3:6f:31:e4:c1:bf:3a:9b:60:64:4a:6d:a8:d6: 88:75:bc:4b:dd:f4:dd:e5:da:c8:97:e8:3f:21:cd:d4:52:bd: 7a:1b:0d:26:bb:ed:e0:14:e1:5f:6c:8e:8c:de:89:6d:c0:ec: 3f:84:32:65:82:f4:54:d5:76:64:ae:91:52:0c:88:e4:26:62: af:1a:04:d4:9b:99:ab:81:85:3c:be:87:55:9b:31:ad:9f:7b: 44:80:75:67 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIUJebw4AJHhMoUnSS1ghpz0lE6VOIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDUyODA3NTgwM1oX DTI1MDUyNzA4MDMwM1owMzExMC8GA1UEAxMoOEJBRTU5MTlCRTJGQzY4REY5Mzk4 RDY0N0JBNUUzRDQ2QzgyNzMxNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOnLFvRdNq0ic3oZx06OzZtYugh/h0sv/GRVPuHv5ZXnzYe8UT1ouzJBPEL1 Rnl/IRtxb7hCWFUZxbNWpj6sYabI9yuE3ZSXm4O/5vHqbDav1Zg5jHh3IavNotvY hD5/fzm2rCgTQI9K7YcgXHYB1D7qNJeGL2lMNshmd/UfMzWE6MJoMclbzjiSysaC UsocrWPF3Zl09OJJRyhWE7W783sum/A26kw8BIVoFtYFMAhN2YfVjD3jFB4EpAar 5Gg5qDEY0xWPLi1YJvCfMmlMOym8voip79/rbv5xmcKQQ9xbF1QnFAQ9aB/E5VnM 2c4+926C8LqvoSEj4CmIt9ZeiMMCAwEAAaOCAgEwggH9MB0GA1UdDgQWBBSLrlkZ vi/Gjfk5jWR7pePUbIJzFTAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGEBggrBgEFBQcBCwR4MHYwdAYIKwYBBQUHMAuGaHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNjMwMmUz MjMwMmUzMjMxMzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM1MzIzNDMzMzIu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBACgFNQwDQYJKoZIhvcNAQELBQADggEBAH1oj7PIRF/GajI2ECou WliCBOOBC+EzU8qEbFLAkoq7JXvSQDGwTYu4UyZ3Pdnii/fA2yAg4hW4gPvpxRlW LNUHqkLRDRcd/ZFj6XbVIJ4UHoeFfsKMF4a8ZlZmU60mAtkmYdXnq36uiitd3W2y STrvKe9EYPHGoCA1DrO0gyEm2GJ6AsAzqDEiAPeA6XmApbCGM+SdanhV9WGum2eF SOmzLErdySOzbzHkwb86m2BkSm2o1oh1vEvd9N3l2siX6D8hzdRSvXobDSa77eAU 4V9sjozeiW3A7D+EMmWC9FTVdmSukVIMiOQmYq8aBNSbmauBhTy+h1WbMa2fe0SA dWc= -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org