$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32322e34352e302f32342d3234203d3e20313533303637.roa File: 3136302e32322e34352e302f32342d3234203d3e20313533303637.roa (raw, json) Hash identifier: +0q1FyeSSc8v75AD9mTl4wDGQ+zZLzfHT7GIrd2S39U= Subject key identifier: BA:7F:9D:FF:9C:DA:32:08:17:1A:DF:CC:0A:15:CF:DA:58:99:5F:BD Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 1BBEC70689F002F16779E822D697A880F6A8BFEE Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32322e34352e302f32342d3234203d3e20313533303637.roa Signing time: Wed 04 Sep 2024 06:33:55 +0000 ROA not before: Wed 04 Sep 2024 06:28:55 +0000 ROA not after: Wed 03 Sep 2025 06:33:55 +0000 asID: 153067 IP address blocks: 160.22.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:be:c7:06:89:f0:02:f1:67:79:e8:22:d6:97:a8:80:f6:a8:bf:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Sep 4 06:28:55 2024 GMT Not After : Sep 3 06:33:55 2025 GMT Subject: CN=BA7F9DFF9CDA3208171ADFCC0A15CFDA58995FBD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:6a:ca:71:bd:7a:b0:ef:c9:28:35:ff:bb:ae: c2:46:5f:fb:40:87:64:43:c1:37:b3:42:eb:4a:35: 0d:18:99:da:97:7c:80:be:2b:a1:28:50:36:f2:8c: 2f:7e:c5:43:d9:a5:0d:22:98:a4:c1:37:51:d4:cc: dd:9f:8b:43:84:60:84:cc:2a:7c:c6:80:b8:c8:8e: 93:61:97:4c:46:bc:00:e8:d7:1d:3f:43:ad:be:76: 79:5c:82:82:5a:70:74:0d:1e:0d:39:79:59:f5:f1: f0:bd:69:61:c0:64:95:83:28:c4:96:4d:24:fd:2c: 04:d9:f8:4c:dd:6c:80:50:c3:f1:af:f6:3a:5a:95: f6:ac:0b:bc:5c:5a:84:a1:96:2b:c1:e9:bc:78:fe: 60:a9:d5:c0:87:ca:bf:3a:d4:49:db:1e:cc:c1:56: c7:b9:75:ad:1a:3f:21:fe:08:12:6c:f1:49:7c:97: 37:d9:f4:4c:e4:5c:f3:81:b4:25:a4:89:48:be:dd: bc:68:10:b7:25:c7:6b:00:57:70:a3:09:bf:c5:de: 5a:d3:b8:2d:da:44:ba:55:2f:64:33:0b:36:a0:bb: d8:17:73:17:58:71:6f:2d:57:14:cc:37:fa:37:b7: ab:75:0b:61:2d:ca:82:a3:97:bc:de:5c:1f:04:9c: 3a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:7F:9D:FF:9C:DA:32:08:17:1A:DF:CC:0A:15:CF:DA:58:99:5F:BD X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32322e34352e302f32342d3234203d3e20313533303637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.45.0/24 Signature Algorithm: sha256WithRSAEncryption 86:07:f9:58:ea:dc:e3:67:cb:c5:10:87:41:64:e9:02:44:2f: d4:c7:73:c8:4e:89:48:b8:c2:69:e8:06:15:d0:28:41:79:df: 20:fb:fe:df:1f:0f:d8:a9:f9:10:8d:cd:33:c1:80:e4:96:6a: 25:b8:a2:44:cc:c0:d5:da:2d:ef:7a:80:a4:eb:8e:e3:e0:f2: 56:69:72:37:2b:1d:9c:64:7f:fd:a2:17:2f:57:00:7c:2f:ed: 8b:c8:b3:72:99:65:3e:02:b6:21:fa:a0:b6:20:80:bf:fe:f7: ad:2c:83:d0:91:7e:18:e4:15:bb:87:ab:19:8e:3e:54:19:bc: 0e:7a:f0:76:5f:8a:b7:31:45:5d:06:69:1a:20:8d:8c:48:6e: c7:c6:a9:d2:5e:c9:bd:e9:f8:eb:68:e9:fe:99:8f:09:91:94: 58:9a:81:94:50:b8:3a:a1:2e:7d:53:67:a2:4c:74:62:7e:86: ea:20:fd:33:00:2e:d4:af:7c:3b:8c:da:75:98:e3:4c:cb:0c: 73:e5:b0:d2:c3:ed:2c:c5:14:69:3b:69:6b:ed:7f:41:fe:8c: 79:e7:e2:88:fe:d4:98:02:26:a2:49:31:48:33:27:1a:ad:67: 25:f4:7e:21:ad:2d:0b:c6:c1:96:e0:a1:87:52:d2:bc:97:67: 1e:28:09:2a -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUG77HBonwAvFneegi1peogPaov+4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDkwNDA2Mjg1NVoX DTI1MDkwMzA2MzM1NVowMzExMC8GA1UEAxMoQkE3RjlERkY5Q0RBMzIwODE3MUFE RkNDMEExNUNGREE1ODk5NUZCRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMFqynG9erDvySg1/7uuwkZf+0CHZEPBN7NC60o1DRiZ2pd8gL4roShQNvKM L37FQ9mlDSKYpME3UdTM3Z+LQ4RghMwqfMaAuMiOk2GXTEa8AOjXHT9Drb52eVyC glpwdA0eDTl5WfXx8L1pYcBklYMoxJZNJP0sBNn4TN1sgFDD8a/2OlqV9qwLvFxa hKGWK8HpvHj+YKnVwIfKvzrUSdsezMFWx7l1rRo/If4IEmzxSXyXN9n0TORc84G0 JaSJSL7dvGgQtyXHawBXcKMJv8XeWtO4LdpEulUvZDMLNqC72BdzF1hxby1XFMw3 +je3q3ULYS3KgqOXvN5cHwScOucCAwEAAaOCAf8wggH7MB0GA1UdDgQWBBS6f53/ nNoyCBca38wKFc/aWJlfvTAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGCBggrBgEFBQcBCwR2MHQwcgYIKwYBBQUHMAuGZnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNjMwMmUz MjMyMmUzNDM1MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzNjM3LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoBYtMA0GCSqGSIb3DQEBCwUAA4IBAQCGB/lY6tzjZ8vFEIdBZOkC RC/Ux3PITolIuMJp6AYV0ChBed8g+/7fHw/YqfkQjc0zwYDklmoluKJEzMDV2i3v eoCk647j4PJWaXI3Kx2cZH/9ohcvVwB8L+2LyLNymWU+ArYh+qC2IIC//vetLIPQ kX4Y5BW7h6sZjj5UGbwOevB2X4q3MUVdBmkaII2MSG7HxqnSXsm96fjraOn+mY8J kZRYmoGUULg6oS59U2eiTHRifobqIP0zAC7Ur3w7jNp1mONMywxz5bDSw+0sxRRp O2lr7X9B/ox55+KI/tSYAiaiSTFIMycarWcl9H4hrS0LxsGW4KGHUtK8l2ceKAkq -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org