$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32352e3232392e302f32342d3234203d3e20313533313036.roa File: 3136302e32352e3232392e302f32342d3234203d3e20313533313036.roa (raw, json) Hash identifier: LIAT8DNi/03eHkYO3hGC6MTgqC39Mz48guTgdxLgkeI= Subject key identifier: E8:43:E7:21:FF:05:70:5D:A5:00:6D:7D:2D:97:D3:06:D3:6A:99:C4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 0F6DA58844676E65AC644B892D411569F3883892 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32352e3232392e302f32342d3234203d3e20313533313036.roa Signing time: Thu 26 Sep 2024 07:06:14 +0000 ROA not before: Thu 26 Sep 2024 07:01:14 +0000 ROA not after: Thu 25 Sep 2025 07:06:14 +0000 asID: 153106 IP address blocks: 160.25.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:6d:a5:88:44:67:6e:65:ac:64:4b:89:2d:41:15:69:f3:88:38:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Sep 26 07:01:14 2024 GMT Not After : Sep 25 07:06:14 2025 GMT Subject: CN=E843E721FF05705DA5006D7D2D97D306D36A99C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ab:49:80:41:fc:e6:e8:54:f1:2e:58:60:65: 2e:c6:87:43:54:0c:90:ba:b2:52:3b:26:96:e2:9d: 18:95:3d:b6:1a:6f:bb:b8:36:7a:a7:9c:96:52:88: 3a:9f:4a:74:f7:60:9f:c1:ea:28:64:ae:ad:e2:fe: 13:b6:d5:2a:da:fe:65:89:af:3c:4e:76:33:b0:85: f1:7b:22:17:a9:c0:c6:4e:1a:53:a1:9b:9c:6f:88: 85:58:7c:de:55:c5:33:e9:33:8c:0e:8a:ca:c0:13: bf:fb:2e:b7:98:c2:ea:34:ea:12:20:68:a8:b5:58: b1:b7:f0:c7:dd:3c:ed:62:7f:4d:22:62:1e:d9:78: c5:ab:e2:66:01:56:aa:12:19:db:01:f6:1a:9c:c1: ab:58:76:b4:2d:35:89:fb:49:37:cf:99:14:4b:80: e8:43:70:81:c8:b4:b8:36:91:f0:68:96:c6:9a:8c: b4:14:fb:de:59:fc:80:10:18:c0:14:7b:49:de:91: 5d:4f:e1:f3:06:04:0f:9c:0a:4b:d9:d2:61:ec:62: 71:3b:1d:e1:6e:45:e2:38:4e:f0:c8:1d:6d:59:e0: ce:5f:30:a9:6d:c0:38:19:3e:11:50:32:5a:cb:14: 60:5c:77:b0:be:6b:43:e7:24:3e:39:fb:ab:89:8b: a6:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:43:E7:21:FF:05:70:5D:A5:00:6D:7D:2D:97:D3:06:D3:6A:99:C4 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32352e3232392e302f32342d3234203d3e20313533313036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.229.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:04:61:0d:d2:6b:7d:64:ff:64:0f:b1:3c:ce:c8:33:20:02: 29:2e:cc:d6:2a:af:17:f6:f8:69:85:92:f5:f5:97:3c:fc:52: d9:eb:ab:e9:ff:14:23:71:88:e4:88:4f:56:3b:85:16:fd:6d: 1d:bd:5e:47:ae:40:70:b9:49:56:06:a6:f7:bc:9b:ed:60:5b: 86:a8:bb:8e:91:af:80:7f:30:96:bb:dc:f8:a0:5a:41:d0:c8: 7f:72:21:3d:9c:4c:5e:55:46:d6:0d:16:e6:84:56:cf:21:0c: 19:e9:ad:c0:cd:99:ee:9f:7c:7b:52:19:91:79:cf:57:c9:b7: 2b:86:bd:fd:d0:6e:39:5b:db:a7:96:9a:64:77:87:cf:89:34: 34:86:9d:e1:6b:3d:29:a4:11:b7:6b:1f:b9:e6:53:f4:9a:6c: db:68:49:f0:86:80:74:8d:d4:69:88:58:33:45:00:8f:f3:cc: 1a:da:61:fd:37:dd:5f:96:3c:00:62:06:b4:6b:b4:fc:87:3a: f2:5d:74:f3:cc:4f:03:b3:59:67:4a:07:07:66:7a:83:9f:c4: bb:54:b5:a0:39:59:22:a9:b2:b1:01:e1:8c:0d:10:2d:26:6b: 2c:bc:4a:ad:ea:28:36:4f:98:68:b2:73:64:67:f4:29:b2:b0: ef:5a:69:b5 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIUD22liERnbmWsZEuJLUEVafOIOJIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDkyNjA3MDExNFoX DTI1MDkyNTA3MDYxNFowMzExMC8GA1UEAxMoRTg0M0U3MjFGRjA1NzA1REE1MDA2 RDdEMkQ5N0QzMDZEMzZBOTlDNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALirSYBB/OboVPEuWGBlLsaHQ1QMkLqyUjsmluKdGJU9thpvu7g2eqecllKI Op9KdPdgn8HqKGSureL+E7bVKtr+ZYmvPE52M7CF8XsiF6nAxk4aU6GbnG+IhVh8 3lXFM+kzjA6KysATv/sut5jC6jTqEiBoqLVYsbfwx9087WJ/TSJiHtl4xaviZgFW qhIZ2wH2GpzBq1h2tC01iftJN8+ZFEuA6ENwgci0uDaR8GiWxpqMtBT73ln8gBAY wBR7Sd6RXU/h8wYED5wKS9nSYexicTsd4W5F4jhO8MgdbVngzl8wqW3AOBk+EVAy WssUYFx3sL5rQ+ckPjn7q4mLpi8CAwEAAaOCAgEwggH9MB0GA1UdDgQWBBToQ+ch /wVwXaUAbX0tl9MG02qZxDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGEBggrBgEFBQcBCwR4MHYwdAYIKwYBBQUHMAuGaHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNjMwMmUz MjM1MmUzMjMyMzkyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM1MzMzMTMwMzYu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBACgGeUwDQYJKoZIhvcNAQELBQADggEBAH8EYQ3Sa31k/2QPsTzO yDMgAikuzNYqrxf2+GmFkvX1lzz8Utnrq+n/FCNxiOSIT1Y7hRb9bR29XkeuQHC5 SVYGpve8m+1gW4aou46Rr4B/MJa73PigWkHQyH9yIT2cTF5VRtYNFuaEVs8hDBnp rcDNme6ffHtSGZF5z1fJtyuGvf3Qbjlb26eWmmR3h8+JNDSGneFrPSmkEbdrH7nm U/SabNtoSfCGgHSN1GmIWDNFAI/zzBraYf033V+WPABiBrRrtPyHOvJddPPMTwOz WWdKBwdmeoOfxLtUtaA5WSKpsrEB4YwNEC0mayy8Sq3qKDZPmGiyc2Rn9CmysO9a abU= -----END CERTIFICATE-----Generated at Wed Nov 20 06:21:51 2024 by rpki-client on console-ams.rpki-client.org