$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32352e3234382e302f32342d3234203d3e20313533303931.roa File: 3136302e32352e3234382e302f32342d3234203d3e20313533303931.roa (raw, json) Hash identifier: URzYg2LypxBmczlks3WHab7a++Svz/tgN65+HHSDhJg= Subject key identifier: 4F:F0:E0:38:77:73:43:0A:11:1A:AA:0F:7F:93:4B:19:4C:FD:F1:D1 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 55C20B8FE9B699F931C86453BA50A06FD750DA75 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32352e3234382e302f32342d3234203d3e20313533303931.roa Signing time: Fri 02 Aug 2024 08:51:22 +0000 ROA not before: Fri 02 Aug 2024 08:46:22 +0000 ROA not after: Fri 01 Aug 2025 08:51:22 +0000 asID: 153091 IP address blocks: 160.25.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:c2:0b:8f:e9:b6:99:f9:31:c8:64:53:ba:50:a0:6f:d7:50:da:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Aug 2 08:46:22 2024 GMT Not After : Aug 1 08:51:22 2025 GMT Subject: CN=4FF0E0387773430A111AAA0F7F934B194CFDF1D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:6e:72:a7:ef:c4:de:3b:4e:ac:70:a6:62:be: de:de:01:bf:4f:50:3d:2a:4d:a4:cc:b2:4b:b7:f7: d8:18:27:be:92:04:8a:ec:5b:cf:db:a8:30:65:17: 05:ab:cf:ed:f7:91:b8:9d:58:fd:67:07:b4:a1:51: 72:95:52:44:28:8b:0d:1a:58:16:86:17:23:62:3b: 2c:40:fe:e3:c0:d2:a2:a7:ca:99:fd:c8:4d:26:00: 66:1d:36:f0:9a:30:b0:3b:16:a3:c1:30:97:eb:b1: 39:a9:54:b0:63:65:19:ca:98:58:4d:bc:6e:02:8c: f6:14:41:c5:3e:59:30:86:91:f2:8e:a1:cc:88:d4: 8c:2d:6a:9f:28:12:8e:b3:a5:3c:28:40:ed:d8:99: 8d:cf:52:e3:e5:ac:9d:b8:d5:92:e7:5a:98:32:a0: 00:34:d9:61:c3:8f:bf:78:c1:a0:50:8e:87:30:bd: 51:29:cf:94:03:1a:00:13:31:fc:73:de:5e:68:de: 39:60:3d:75:07:9e:95:c6:81:4a:fa:ba:b6:99:f2: 41:f9:fb:87:b9:59:c7:13:03:9c:dd:67:53:1d:55: eb:1a:65:b7:23:ec:0a:3c:2d:4c:58:e6:de:23:bc: f0:4c:94:e8:04:f1:82:9c:35:01:8d:22:de:82:7a: aa:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:F0:E0:38:77:73:43:0A:11:1A:AA:0F:7F:93:4B:19:4C:FD:F1:D1 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32352e3234382e302f32342d3234203d3e20313533303931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.248.0/24 Signature Algorithm: sha256WithRSAEncryption 45:79:57:92:6c:6c:c8:92:84:c2:cf:59:97:7d:a0:b4:0f:15: 3d:d1:88:81:dd:fd:f2:f7:2d:d5:4c:1b:dd:22:81:82:96:2a: ab:dc:6e:a7:3c:84:4b:74:a6:9f:ee:13:f8:bc:4c:e6:17:ec: e4:77:ef:61:a9:9b:b9:8e:eb:6f:5e:c7:b0:c6:61:38:38:12: d7:4d:8d:8e:ed:2c:3f:d9:de:07:12:35:43:83:05:75:89:18: 0f:f5:b6:98:e3:2e:12:1e:ce:aa:31:a5:b8:35:05:c6:2d:c5: df:19:b2:9b:01:a7:6b:11:75:2a:88:58:56:79:76:be:0f:ca: 66:fd:b5:6f:e5:0d:10:e9:2a:e5:5d:99:7f:41:7c:c9:03:d4: e5:9b:41:e4:84:cb:65:97:a8:1e:4c:06:f7:9d:53:16:cf:f5: 88:f5:a0:ff:48:94:2f:f6:d0:2d:79:b1:20:72:37:3b:87:98: 61:92:fc:f9:bc:1a:b6:fd:0a:26:73:33:68:84:0a:4c:ea:b0: 60:2d:f2:22:d2:a2:86:4c:1d:c8:10:ab:6c:40:fb:b6:7d:b5: 01:0b:9b:d1:39:64:17:20:77:bf:c8:a1:01:5f:00:b1:53:97: 30:b3:00:93:b6:99:e7:87:70:44:11:3d:08:cb:34:91:40:42: ab:bc:d7:fd -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIUVcILj+m2mfkxyGRTulCgb9dQ2nUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDgwMjA4NDYyMloX DTI1MDgwMTA4NTEyMlowMzExMC8GA1UEAxMoNEZGMEUwMzg3NzczNDMwQTExMUFB QTBGN0Y5MzRCMTk0Q0ZERjFEMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMhucqfvxN47TqxwpmK+3t4Bv09QPSpNpMyyS7f32BgnvpIEiuxbz9uoMGUX BavP7feRuJ1Y/WcHtKFRcpVSRCiLDRpYFoYXI2I7LED+48DSoqfKmf3ITSYAZh02 8JowsDsWo8Ewl+uxOalUsGNlGcqYWE28bgKM9hRBxT5ZMIaR8o6hzIjUjC1qnygS jrOlPChA7diZjc9S4+WsnbjVkudamDKgADTZYcOPv3jBoFCOhzC9USnPlAMaABMx /HPeXmjeOWA9dQeelcaBSvq6tpnyQfn7h7lZxxMDnN1nUx1V6xpltyPsCjwtTFjm 3iO88EyU6ATxgpw1AY0i3oJ6qv0CAwEAAaOCAgEwggH9MB0GA1UdDgQWBBRP8OA4 d3NDChEaqg9/k0sZTP3x0TAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGEBggrBgEFBQcBCwR4MHYwdAYIKwYBBQUHMAuGaHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNjMwMmUz MjM1MmUzMjM0MzgyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM1MzMzMDM5MzEu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBACgGfgwDQYJKoZIhvcNAQELBQADggEBAEV5V5JsbMiShMLPWZd9 oLQPFT3RiIHd/fL3LdVMG90igYKWKqvcbqc8hEt0pp/uE/i8TOYX7OR372Gpm7mO 629ex7DGYTg4EtdNjY7tLD/Z3gcSNUODBXWJGA/1tpjjLhIezqoxpbg1BcYtxd8Z spsBp2sRdSqIWFZ5dr4Pymb9tW/lDRDpKuVdmX9BfMkD1OWbQeSEy2WXqB5MBved UxbP9Yj1oP9IlC/20C15sSByNzuHmGGS/Pm8Grb9CiZzM2iECkzqsGAt8iLSooZM HcgQq2xA+7Z9tQELm9E5ZBcgd7/IoQFfALFTlzCzAJO2meeHcEQRPQjLNJFAQqu8 1/0= -----END CERTIFICATE-----Generated at Wed Nov 20 06:21:51 2024 by rpki-client on console-ams.rpki-client.org