$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32322e36382e302f32332d3234203d3e20313339343038.roa File: 3136302e32322e36382e302f32332d3234203d3e20313339343038.roa (raw, json) Hash identifier: f0zJZlEavCaagybERyJ6VSd/u26C4khVGedNVZcmEVA= Subject key identifier: A0:CC:2D:12:83:50:D7:87:E4:FC:A6:4C:17:41:2F:7A:0E:C9:5B:02 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 5349121E6D35A514CE801F3B915EB2FA9A819A92 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32322e36382e302f32332d3234203d3e20313339343038.roa Signing time: Mon 23 Sep 2024 04:04:44 +0000 ROA not before: Mon 23 Sep 2024 03:59:44 +0000 ROA not after: Mon 22 Sep 2025 04:04:44 +0000 asID: 139408 IP address blocks: 160.22.68.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:49:12:1e:6d:35:a5:14:ce:80:1f:3b:91:5e:b2:fa:9a:81:9a:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Sep 23 03:59:44 2024 GMT Not After : Sep 22 04:04:44 2025 GMT Subject: CN=A0CC2D128350D787E4FCA64C17412F7A0EC95B02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:23:c6:5d:3d:2e:81:2c:80:52:b6:09:73:99: b3:74:44:79:b7:26:b1:90:8a:b9:5b:b9:27:ad:f1: f9:24:9f:a3:09:d7:98:00:58:78:c7:e3:60:c4:96: ce:7c:01:1a:ae:4f:35:6b:b6:01:b8:48:f6:34:21: 4d:1e:b8:08:9d:c1:54:62:e8:c7:c8:55:79:3b:3f: f5:9b:ad:a2:30:92:6e:46:ad:64:3b:bf:ef:94:f6: ce:c3:51:f2:f3:8b:52:02:a1:6e:b0:f5:cb:10:43: 73:61:a8:82:15:a2:5e:8b:2f:56:b3:b3:3b:32:1b: 41:cb:1a:2e:15:fd:4d:c5:96:cc:b4:80:16:66:2a: ba:6d:07:c8:f6:1f:bc:56:a2:12:51:b3:88:06:2e: 27:23:b5:77:4b:d9:71:99:f5:72:a3:1b:3c:76:1a: ee:9a:1b:ca:00:1d:d4:7a:4c:fa:b7:93:66:ff:a5: fa:e9:d1:0f:d1:f3:75:e4:a3:0d:b4:c6:63:40:5a: 93:21:fe:95:cb:9c:2a:01:1b:d4:aa:81:27:fb:3f: 8e:a2:2c:07:05:a6:7d:3a:c9:bb:e7:7d:b8:01:e1: 60:09:9c:44:65:9c:2a:57:fe:b2:1f:5e:75:29:7f: 49:82:fd:17:1a:2e:1b:d9:97:e5:7f:d5:fa:ae:83: 86:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:CC:2D:12:83:50:D7:87:E4:FC:A6:4C:17:41:2F:7A:0E:C9:5B:02 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32322e36382e302f32332d3234203d3e20313339343038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.68.0/23 Signature Algorithm: sha256WithRSAEncryption 44:73:82:12:66:fa:06:b3:bf:b6:fe:e7:83:91:34:f0:9e:d3: 48:9f:29:31:f6:b4:5b:f0:00:d1:2d:9a:ce:25:4c:9a:18:90: 0f:fb:cd:39:28:e1:f4:47:83:1d:fe:3a:ba:37:1e:c2:c0:27: 79:98:ae:d5:ae:f9:3d:54:66:da:f6:f8:39:33:f6:88:3e:38: 36:c8:dc:92:2c:8d:7c:41:34:39:9b:aa:82:30:40:f1:24:ef: 1a:74:ef:b9:52:98:50:e0:c6:bf:61:3a:0b:19:7f:6b:0b:c1: 43:91:91:53:a9:50:4d:5d:07:c2:3f:c1:de:88:5b:c7:7d:da: 8c:14:c7:b6:5c:25:19:f3:7f:8c:29:df:7c:df:ef:1e:b1:79: 27:73:49:7c:fd:b3:da:69:9f:27:0d:84:d1:ab:93:19:14:39: 8f:90:73:8f:c0:03:93:a7:5d:bf:43:75:55:84:48:d3:c6:11: 0f:c1:73:bc:d0:ba:d5:e2:a4:97:bd:6b:26:1a:00:52:b3:d2: 37:d0:d3:cb:71:d1:a9:01:0f:ae:e8:6f:3c:44:f8:d3:4e:a7: c7:78:46:3d:55:92:c2:96:f2:6a:a7:f0:7e:b4:05:4a:fd:6d: 6f:46:e5:be:82:74:bf:e0:85:fd:02:b3:b7:c8:e5:ab:ad:38: 79:b9:47:fd -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUU0kSHm01pRTOgB87kV6y+pqBmpIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDkyMzAzNTk0NFoX DTI1MDkyMjA0MDQ0NFowMzExMC8GA1UEAxMoQTBDQzJEMTI4MzUwRDc4N0U0RkNB NjRDMTc0MTJGN0EwRUM5NUIwMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALYjxl09LoEsgFK2CXOZs3REebcmsZCKuVu5J63x+SSfownXmABYeMfjYMSW znwBGq5PNWu2AbhI9jQhTR64CJ3BVGLox8hVeTs/9ZutojCSbkatZDu/75T2zsNR 8vOLUgKhbrD1yxBDc2GoghWiXosvVrOzOzIbQcsaLhX9TcWWzLSAFmYqum0HyPYf vFaiElGziAYuJyO1d0vZcZn1cqMbPHYa7pobygAd1HpM+reTZv+l+unRD9HzdeSj DbTGY0BakyH+lcucKgEb1KqBJ/s/jqIsBwWmfTrJu+d9uAHhYAmcRGWcKlf+sh9e dSl/SYL9FxouG9mX5X/V+q6Dhv0CAwEAAaOCAf8wggH7MB0GA1UdDgQWBBSgzC0S g1DXh+T8pkwXQS96DslbAjAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGCBggrBgEFBQcBCwR2MHQwcgYIKwYBBQUHMAuGZnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNjMwMmUz MjMyMmUzNjM4MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzMDM4LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoBZEMA0GCSqGSIb3DQEBCwUAA4IBAQBEc4ISZvoGs7+2/ueDkTTw ntNInykx9rRb8ADRLZrOJUyaGJAP+805KOH0R4Md/jq6Nx7CwCd5mK7Vrvk9VGba 9vg5M/aIPjg2yNySLI18QTQ5m6qCMEDxJO8adO+5UphQ4Ma/YToLGX9rC8FDkZFT qVBNXQfCP8HeiFvHfdqMFMe2XCUZ83+MKd983+8esXknc0l8/bPaaZ8nDYTRq5MZ FDmPkHOPwAOTp12/Q3VVhEjTxhEPwXO80LrV4qSXvWsmGgBSs9I30NPLcdGpAQ+u 6G88RPjTTqfHeEY9VZLClvJqp/B+tAVK/W1vRuW+gnS/4IX9ArO3yOWrrTh5uUf9 -----END CERTIFICATE-----Generated at Wed Nov 20 06:21:51 2024 by rpki-client on console-ams.rpki-client.org