$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32352e35362e302f32332d3234203d3e20313533303834.roa File: 3136302e32352e35362e302f32332d3234203d3e20313533303834.roa (raw, json) Hash identifier: JVhI71v59R/hdNxBL7c0eTiyALFYKviHtHY7ZYsnL3I= Subject key identifier: 09:F2:6B:E0:13:36:B6:C3:10:45:1B:DC:DA:B7:4C:98:3A:BE:AE:FC Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 637CDECB79A9F2315F988F2CC9AF89944F9CEE81 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32352e35362e302f32332d3234203d3e20313533303834.roa Signing time: Wed 18 Sep 2024 06:36:05 +0000 ROA not before: Wed 18 Sep 2024 06:31:05 +0000 ROA not after: Wed 17 Sep 2025 06:36:05 +0000 asID: 153084 IP address blocks: 160.25.56.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:7c:de:cb:79:a9:f2:31:5f:98:8f:2c:c9:af:89:94:4f:9c:ee:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Sep 18 06:31:05 2024 GMT Not After : Sep 17 06:36:05 2025 GMT Subject: CN=09F26BE01336B6C310451BDCDAB74C983ABEAEFC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:3d:31:0a:23:e0:c4:6e:82:ad:1d:35:fe:94: 4f:a7:b6:af:ae:50:c0:0d:e0:64:0d:cf:e5:24:a1: 2c:28:cb:84:7b:46:84:39:b8:2e:16:13:c3:a6:e3: ec:43:4c:b2:1c:1f:d6:33:31:49:07:62:a8:ca:c9: 8f:4a:02:40:6d:d0:76:3f:1b:79:48:94:e4:62:ae: 09:99:df:ec:25:30:a7:6d:e6:6c:72:34:a4:0b:eb: 39:4e:3e:7a:66:e7:51:51:fb:0e:4f:2a:fe:91:a9: dd:4d:59:ef:e5:d6:1a:cd:e3:fb:7c:84:6c:dc:15: e7:e1:75:5e:ff:4c:54:24:5a:28:f0:13:3a:87:8f: 99:7b:ca:c0:5e:7f:20:f2:ad:e7:76:cf:38:c3:dc: ae:bc:05:3e:a5:10:f0:98:d1:4b:0c:0d:36:11:ea: b7:7a:7b:2d:4f:d1:d0:91:f1:03:98:02:4e:4b:58: 69:e6:b0:0b:2c:b6:c2:5d:a2:b6:a1:c9:40:02:1f: 46:12:a7:49:02:d4:66:b6:3c:62:b2:ff:bb:1d:08: ba:55:2a:a1:5d:72:f7:d2:9c:a1:a6:d8:59:24:29: ed:f9:a3:99:1b:57:a0:2b:20:18:68:bf:91:1e:14: bd:6e:e3:d8:10:58:42:b4:b4:e2:23:02:54:df:8c: e3:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:F2:6B:E0:13:36:B6:C3:10:45:1B:DC:DA:B7:4C:98:3A:BE:AE:FC X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32352e35362e302f32332d3234203d3e20313533303834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.56.0/23 Signature Algorithm: sha256WithRSAEncryption 48:13:19:7a:f2:fa:e7:41:7c:f5:a6:f4:70:04:b4:4b:c1:a5: 53:24:46:dc:e7:f0:43:44:4f:01:e7:ef:ba:de:62:51:1a:3b: f5:4a:20:e2:18:54:ed:c8:74:ae:ac:42:7a:f4:75:14:3c:83: 75:75:e8:30:6e:d1:2e:7d:3f:76:16:d7:21:30:b7:b3:79:e5: 47:cb:ff:53:64:49:f8:5d:68:07:04:f2:83:a9:d8:da:94:92: 06:15:08:34:25:9e:18:6f:13:f4:d6:fc:e2:cc:85:f2:d0:e9: 8d:d9:18:bf:8a:c0:29:12:45:dd:f5:45:2c:1d:e1:24:e5:9f: 14:4e:34:1f:b2:d3:c9:db:26:c3:87:89:74:da:1c:ed:b5:fa: fb:dd:d8:a8:22:3d:30:59:49:27:ab:b7:6b:96:8b:fc:dd:41: 02:37:8d:99:83:4a:53:dd:79:bb:6c:62:0a:00:5c:95:35:cf: 9b:3f:26:6a:02:13:ae:83:69:0c:0d:22:52:c9:09:f6:0a:5d: 2f:ff:10:df:23:44:e0:d5:9f:ca:81:03:1b:ce:62:b7:3f:ec: e2:54:6c:9b:d7:22:68:12:af:32:c1:73:9c:5c:90:f6:a6:d2: 46:c5:4f:40:8e:27:51:b6:7f:26:90:8d:c6:fa:2c:22:70:55: 17:30:e4:b2 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUY3zey3mp8jFfmI8sya+JlE+c7oEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDkxODA2MzEwNVoX DTI1MDkxNzA2MzYwNVowMzExMC8GA1UEAxMoMDlGMjZCRTAxMzM2QjZDMzEwNDUx QkRDREFCNzRDOTgzQUJFQUVGQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKg9MQoj4MRugq0dNf6UT6e2r65QwA3gZA3P5SShLCjLhHtGhDm4LhYTw6bj 7ENMshwf1jMxSQdiqMrJj0oCQG3Qdj8beUiU5GKuCZnf7CUwp23mbHI0pAvrOU4+ embnUVH7Dk8q/pGp3U1Z7+XWGs3j+3yEbNwV5+F1Xv9MVCRaKPATOoePmXvKwF5/ IPKt53bPOMPcrrwFPqUQ8JjRSwwNNhHqt3p7LU/R0JHxA5gCTktYaeawCyy2wl2i tqHJQAIfRhKnSQLUZrY8YrL/ux0IulUqoV1y99KcoabYWSQp7fmjmRtXoCsgGGi/ kR4UvW7j2BBYQrS04iMCVN+M43ECAwEAAaOCAf8wggH7MB0GA1UdDgQWBBQJ8mvg Eza2wxBFG9zat0yYOr6u/DAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGCBggrBgEFBQcBCwR2MHQwcgYIKwYBBQUHMAuGZnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNjMwMmUz MjM1MmUzNTM2MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzODM0LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoBk4MA0GCSqGSIb3DQEBCwUAA4IBAQBIExl68vrnQXz1pvRwBLRL waVTJEbc5/BDRE8B5++63mJRGjv1SiDiGFTtyHSurEJ69HUUPIN1degwbtEufT92 FtchMLezeeVHy/9TZEn4XWgHBPKDqdjalJIGFQg0JZ4YbxP01vzizIXy0OmN2Ri/ isApEkXd9UUsHeEk5Z8UTjQfstPJ2ybDh4l02hzttfr73dioIj0wWUknq7drlov8 3UECN42Zg0pT3Xm7bGIKAFyVNc+bPyZqAhOug2kMDSJSyQn2Cl0v/xDfI0Tg1Z/K gQMbzmK3P+ziVGyb1yJoEq8ywXOcXJD2ptJGxU9AjidRtn8mkI3G+iwicFUXMOSy -----END CERTIFICATE-----Generated at Wed Nov 20 06:21:51 2024 by rpki-client on console-ams.rpki-client.org