$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32352e3230302e302f32342d3234203d3e20313533313136.roa File: 3136302e32352e3230302e302f32342d3234203d3e20313533313136.roa (raw, json) Hash identifier: rXkUip59Gd4zF9WtRcnqIH6RX8DvbMyMf0TvK1aShLE= Subject key identifier: E1:CB:45:02:3E:38:67:D5:CA:56:11:24:64:FF:03:01:25:21:E6:96 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 68C24ECCEC2E87C2A8035EC29949DECB68E828A9 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32352e3230302e302f32342d3234203d3e20313533313136.roa Signing time: Mon 30 Sep 2024 04:08:21 +0000 ROA not before: Mon 30 Sep 2024 04:03:21 +0000 ROA not after: Mon 29 Sep 2025 04:08:21 +0000 asID: 153116 IP address blocks: 160.25.200.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:c2:4e:cc:ec:2e:87:c2:a8:03:5e:c2:99:49:de:cb:68:e8:28:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Sep 30 04:03:21 2024 GMT Not After : Sep 29 04:08:21 2025 GMT Subject: CN=E1CB45023E3867D5CA56112464FF03012521E696 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d8:de:36:ca:3b:96:9a:0f:33:8b:6a:9f:d9: da:5c:71:50:3e:b3:70:c0:49:65:99:1c:52:09:ed: 53:9d:65:57:15:49:36:a2:fa:43:06:b8:20:a3:a0: 37:b2:bf:7d:4f:c0:1b:b5:07:40:fe:c8:5a:eb:8f: 77:bc:90:60:a7:89:80:51:7e:cd:08:7f:51:8c:6a: 83:c3:6a:80:98:cf:ff:65:a8:70:8f:90:c2:eb:52: 3c:8d:81:cf:bf:48:4a:62:55:2b:5d:57:03:a9:02: 19:a5:9e:72:34:12:8d:21:f4:ac:ee:64:37:43:30: d7:32:03:5c:7b:91:89:f0:5f:ca:a2:35:71:e7:b6: a8:a2:b5:4f:fb:d2:90:9d:35:9e:1f:06:ef:6a:26: 09:6e:92:bc:2a:65:7d:25:50:8d:3d:29:7a:66:29: d2:14:5d:fe:bb:65:96:82:4d:b3:b2:e9:cf:71:6a: f5:e0:38:db:b5:13:b2:5d:0b:f0:3e:d2:81:27:e7: 99:21:91:3f:f5:db:fc:30:bd:06:a1:30:80:d9:06: 9e:8d:03:1e:32:80:f0:52:85:77:5c:ca:24:18:fc: dd:ce:a6:88:d8:74:11:66:87:5f:af:36:cf:ed:10: 88:e5:11:f7:ea:d7:de:78:3e:38:83:f0:c5:26:90: 88:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:CB:45:02:3E:38:67:D5:CA:56:11:24:64:FF:03:01:25:21:E6:96 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32352e3230302e302f32342d3234203d3e20313533313136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.200.0/24 Signature Algorithm: sha256WithRSAEncryption 41:da:ba:e8:18:77:27:20:b5:e5:2d:4a:6f:4e:41:fc:a5:0f: 01:d8:8c:68:15:6e:01:ce:78:94:53:f2:6a:17:51:e3:46:70: fa:2d:48:10:db:58:af:5a:fc:f4:00:19:ae:60:10:99:fc:1e: 78:5a:9c:45:a5:6b:60:47:84:dd:4e:ea:cc:70:6b:18:55:f6: e8:6c:b0:f4:25:91:44:1a:a6:9c:54:43:33:00:00:ce:31:50: ff:91:52:29:ef:fd:c4:e3:6d:8a:1e:f4:e8:06:15:5f:44:ac: 0d:f9:d0:96:22:b4:93:a9:34:ee:09:36:63:6a:a7:1a:18:69: e4:0d:be:fe:43:30:07:f5:8a:75:06:e9:7d:70:b2:2b:9a:49: 2a:84:ed:2a:5f:7c:5b:61:3a:87:5e:db:5a:df:ff:c9:e9:55: c9:4e:82:88:6d:2f:b5:95:18:69:03:96:23:ac:73:b2:56:ca: e4:5d:04:5a:3d:5d:08:f9:3a:e6:21:e5:12:01:6b:de:e5:00: a3:bb:f6:ee:af:70:19:32:58:9f:39:60:10:d2:84:47:e3:df: 33:90:a1:40:82:26:a3:d0:ea:ed:02:b8:02:bc:b3:d3:04:e7: 6b:70:5d:d4:7a:ab:03:0d:38:2f:87:60:45:e6:e6:de:c9:c1: cb:92:62:24 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIUaMJOzOwuh8KoA17CmUney2joKKkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDkzMDA0MDMyMVoX DTI1MDkyOTA0MDgyMVowMzExMC8GA1UEAxMoRTFDQjQ1MDIzRTM4NjdENUNBNTYx MTI0NjRGRjAzMDEyNTIxRTY5NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALPY3jbKO5aaDzOLap/Z2lxxUD6zcMBJZZkcUgntU51lVxVJNqL6Qwa4IKOg N7K/fU/AG7UHQP7IWuuPd7yQYKeJgFF+zQh/UYxqg8NqgJjP/2WocI+QwutSPI2B z79ISmJVK11XA6kCGaWecjQSjSH0rO5kN0Mw1zIDXHuRifBfyqI1cee2qKK1T/vS kJ01nh8G72omCW6SvCplfSVQjT0pemYp0hRd/rtlloJNs7Lpz3Fq9eA427UTsl0L 8D7SgSfnmSGRP/Xb/DC9BqEwgNkGno0DHjKA8FKFd1zKJBj83c6miNh0EWaHX682 z+0QiOUR9+rX3ng+OIPwxSaQiF8CAwEAAaOCAgEwggH9MB0GA1UdDgQWBBThy0UC Pjhn1cpWESRk/wMBJSHmljAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGEBggrBgEFBQcBCwR4MHYwdAYIKwYBBQUHMAuGaHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNjMwMmUz MjM1MmUzMjMwMzAyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM1MzMzMTMxMzYu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBACgGcgwDQYJKoZIhvcNAQELBQADggEBAEHauugYdycgteUtSm9O QfylDwHYjGgVbgHOeJRT8moXUeNGcPotSBDbWK9a/PQAGa5gEJn8HnhanEWla2BH hN1O6sxwaxhV9uhssPQlkUQappxUQzMAAM4xUP+RUinv/cTjbYoe9OgGFV9ErA35 0JYitJOpNO4JNmNqpxoYaeQNvv5DMAf1inUG6X1wsiuaSSqE7SpffFthOode21rf /8npVclOgohtL7WVGGkDliOsc7JWyuRdBFo9XQj5OuYh5RIBa97lAKO79u6vcBky WJ85YBDShEfj3zOQoUCCJqPQ6u0CuAK8s9ME52twXdR6qwMNOC+HYEXm5t7JwcuS YiQ= -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org