$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32322e3234322e302f32332d3234203d3e20313532383237.roa File: 3136302e32322e3234322e302f32332d3234203d3e20313532383237.roa (raw, json) Hash identifier: sXbQdg6UELRhvxk+ZYF18Hqkw3fCiWCIJvyaJKBLAy0= Subject key identifier: 84:71:48:71:71:4A:34:2E:BA:28:CF:7C:D8:97:9D:27:6C:47:FB:79 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 7BAEECBE60EBC1808F3BBD5EA6C0DA2BF11F0617 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32322e3234322e302f32332d3234203d3e20313532383237.roa Signing time: Mon 23 Sep 2024 04:11:10 +0000 ROA not before: Mon 23 Sep 2024 04:06:10 +0000 ROA not after: Mon 22 Sep 2025 04:11:10 +0000 asID: 152827 IP address blocks: 160.22.242.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:ae:ec:be:60:eb:c1:80:8f:3b:bd:5e:a6:c0:da:2b:f1:1f:06:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Sep 23 04:06:10 2024 GMT Not After : Sep 22 04:11:10 2025 GMT Subject: CN=84714871714A342EBA28CF7CD8979D276C47FB79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c1:8b:5b:22:21:45:ea:f6:af:c2:0d:49:2e: d1:80:a2:36:38:a0:f6:54:8c:12:07:f6:27:e3:23: 8d:9f:de:fa:a9:63:89:25:72:fb:5a:2c:fc:48:c5: d2:89:39:4b:b1:14:05:30:16:f5:f7:41:5b:ab:1b: d7:1a:ed:ae:7a:ff:3f:08:f3:1e:ee:60:9b:ce:9b: 1b:8f:36:c3:4a:0a:58:1f:00:c8:83:ca:05:49:24: 54:0e:7c:d9:99:2c:03:03:fd:3f:0c:52:ec:0f:a5: 84:64:88:11:db:5d:eb:b7:34:d4:1d:e7:2d:73:5c: 93:b8:ba:13:ee:5a:0a:a6:59:e1:07:f7:b0:bc:6a: 81:f7:8f:9d:0c:d7:7a:6a:7a:13:83:5a:06:aa:e6: c6:2f:5d:b4:fd:80:67:ee:ff:fb:4c:32:f9:c1:ce: dc:7b:4c:5b:aa:20:6f:3c:84:fa:45:a6:5f:19:7a: 0b:e9:d5:77:59:29:f6:ca:1c:22:e0:42:32:07:94: bc:de:12:de:65:9c:6f:a1:a0:90:0f:88:2e:dd:42: 5d:14:62:2b:95:bd:45:ee:8b:1b:0f:98:2d:f8:c1: 69:ed:36:70:e1:d9:d6:00:0a:3f:da:cc:9e:26:df: 02:51:b6:b2:b7:a0:fd:81:f2:b2:00:1f:23:c6:7b: 2f:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:71:48:71:71:4A:34:2E:BA:28:CF:7C:D8:97:9D:27:6C:47:FB:79 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32322e3234322e302f32332d3234203d3e20313532383237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.242.0/23 Signature Algorithm: sha256WithRSAEncryption 20:57:d4:22:d8:d1:c3:84:04:8b:94:83:a3:b4:3f:91:01:3b: a8:94:0f:47:7b:0a:98:8b:2f:14:65:65:54:a1:7d:25:b9:2e: 82:7c:60:0b:77:37:0e:0d:68:8d:64:fc:f9:0a:e4:f9:8c:1f: a4:27:c3:58:12:0e:35:fe:7f:14:35:1f:02:b8:9e:58:2b:f2: b0:c3:2d:55:f2:8d:50:65:60:7b:78:7a:de:93:e4:93:9a:13: 2b:d4:e2:48:bd:40:ed:1c:9a:ea:fe:d7:35:0a:6a:1c:c0:28: ac:ba:db:0a:64:c9:11:38:ad:1a:08:59:0a:bd:a0:9c:2f:49: ff:c6:23:28:7b:0a:5e:9d:a5:35:ef:49:78:17:18:5b:c7:a3: 2f:b6:38:05:91:34:86:4a:5c:ce:e5:0b:cf:05:11:73:b5:93: 52:96:ce:14:a1:b6:0a:6d:0f:ba:3b:19:1e:5f:f1:c2:d4:ce: 7d:70:0f:91:be:b6:96:d7:36:e8:a6:fa:51:1a:3a:88:e7:1a: 40:5a:11:f0:12:87:67:ce:85:a9:14:f5:66:19:c1:d9:f5:ba: 88:77:56:d5:05:98:09:c4:83:ad:e0:45:cc:f8:d0:52:c8:1e: 4f:88:52:3c:8a:77:29:f8:78:50:e1:eb:8b:d7:25:5c:57:f8: eb:60:8c:9d -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIUe67svmDrwYCPO71epsDaK/EfBhcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDkyMzA0MDYxMFoX DTI1MDkyMjA0MTExMFowMzExMC8GA1UEAxMoODQ3MTQ4NzE3MTRBMzQyRUJBMjhD RjdDRDg5NzlEMjc2QzQ3RkI3OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALrBi1siIUXq9q/CDUku0YCiNjig9lSMEgf2J+MjjZ/e+qljiSVy+1os/EjF 0ok5S7EUBTAW9fdBW6sb1xrtrnr/PwjzHu5gm86bG482w0oKWB8AyIPKBUkkVA58 2ZksAwP9PwxS7A+lhGSIEdtd67c01B3nLXNck7i6E+5aCqZZ4Qf3sLxqgfePnQzX emp6E4NaBqrmxi9dtP2AZ+7/+0wy+cHO3HtMW6ogbzyE+kWmXxl6C+nVd1kp9soc IuBCMgeUvN4S3mWcb6GgkA+ILt1CXRRiK5W9Re6LGw+YLfjBae02cOHZ1gAKP9rM nibfAlG2sreg/YHysgAfI8Z7L3UCAwEAAaOCAgEwggH9MB0GA1UdDgQWBBSEcUhx cUo0Lrooz3zYl50nbEf7eTAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGEBggrBgEFBQcBCwR4MHYwdAYIKwYBBQUHMAuGaHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNjMwMmUz MjMyMmUzMjM0MzIyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzMTM1MzIzODMyMzcu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAGgFvIwDQYJKoZIhvcNAQELBQADggEBACBX1CLY0cOEBIuUg6O0 P5EBO6iUD0d7CpiLLxRlZVShfSW5LoJ8YAt3Nw4NaI1k/PkK5PmMH6Qnw1gSDjX+ fxQ1HwK4nlgr8rDDLVXyjVBlYHt4et6T5JOaEyvU4ki9QO0cmur+1zUKahzAKKy6 2wpkyRE4rRoIWQq9oJwvSf/GIyh7Cl6dpTXvSXgXGFvHoy+2OAWRNIZKXM7lC88F EXO1k1KWzhShtgptD7o7GR5f8cLUzn1wD5G+tpbXNuim+lEaOojnGkBaEfASh2fO hakU9WYZwdn1uoh3VtUFmAnEg63gRcz40FLIHk+IUjyKdyn4eFDh64vXJVxX+Otg jJ0= -----END CERTIFICATE-----Generated at Wed Nov 20 06:21:51 2024 by rpki-client on console-ams.rpki-client.org