$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/36362e39362e3234302e302f32302d3234203d3e20313333373938.roa File: 36362e39362e3234302e302f32302d3234203d3e20313333373938.roa (raw, json) Hash identifier: rsjt+YxeVt/Ps/BMtEhUa6eT+eN1VFJJ5fxxR4307dg= Subject key identifier: 12:26:20:3F:76:8B:64:40:25:2E:A7:68:CA:DE:C5:E2:BC:52:05:C1 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 2B96863A7071499FDC2ED9CF20E90C8FE17A1CF8 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/36362e39362e3234302e302f32302d3234203d3e20313333373938.roa Signing time: Wed 07 Feb 2024 02:56:10 +0000 ROA not before: Wed 07 Feb 2024 02:51:10 +0000 ROA not after: Wed 05 Feb 2025 02:56:10 +0000 asID: 133798 IP address blocks: 66.96.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:96:86:3a:70:71:49:9f:dc:2e:d9:cf:20:e9:0c:8f:e1:7a:1c:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Feb 7 02:51:10 2024 GMT Not After : Feb 5 02:56:10 2025 GMT Subject: CN=1226203F768B6440252EA768CADEC5E2BC5205C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:8c:b1:0e:30:61:32:5b:f4:c8:95:fa:f8:4a: 60:e0:09:83:e8:dc:ad:bc:24:a0:1d:c2:61:7e:95: a1:2a:09:38:c6:a7:e0:a0:e4:88:af:b3:cb:49:1a: a7:67:97:3c:23:a5:f4:f1:6e:51:e8:9a:4a:9d:b2: 11:62:ff:72:5f:da:31:fb:62:09:44:37:d8:75:91: e6:b2:e5:24:1b:14:99:e4:19:c7:51:1c:57:4d:1d: d5:78:7f:60:29:ea:7b:24:3e:a6:ca:64:d8:bf:65: 26:0d:c0:69:bb:48:48:09:d9:81:d1:0b:02:c0:4c: 39:cc:50:16:ce:f0:2a:8d:64:0c:50:59:97:51:d5: 52:6a:bf:aa:b0:fa:c8:36:42:1e:77:c3:0b:a6:7c: 43:00:66:fb:31:6e:81:cf:c6:e0:31:c0:fd:69:3b: b6:32:63:5e:5e:df:81:50:2e:61:1f:54:31:fc:35: cc:87:fa:81:34:74:78:57:5a:c4:83:e7:15:b3:bb: 84:17:d8:e8:21:af:03:41:76:48:d9:42:1f:33:33: c2:b2:df:96:d7:cc:2f:57:99:d3:dc:e0:79:ac:a6: c2:86:b1:eb:62:4e:48:fd:2e:4f:eb:43:29:68:47: de:ec:91:6d:b9:39:98:cd:2a:35:03:5e:c9:8f:f1: 00:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:26:20:3F:76:8B:64:40:25:2E:A7:68:CA:DE:C5:E2:BC:52:05:C1 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/36362e39362e3234302e302f32302d3234203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.240.0/20 Signature Algorithm: sha256WithRSAEncryption 0a:b6:b6:c5:49:f4:da:8b:e8:e9:d3:a1:28:47:01:c5:00:04: f9:28:87:82:69:8c:57:8f:a1:11:97:4d:6c:ca:3b:20:67:db: a3:de:27:62:96:a3:2c:22:a1:30:0b:42:f0:87:d1:0f:5b:c8: 82:15:4e:e1:dd:bf:e7:da:38:50:a9:d6:53:72:9a:77:0c:db: 45:b4:94:7a:60:68:b8:88:02:47:47:2d:21:14:27:7f:f4:81: 83:50:27:c2:bd:e8:90:8c:5b:00:b5:c0:95:81:c4:b9:a8:ba: 55:21:36:a5:01:39:4b:be:8b:63:ff:6b:15:03:80:46:88:e4: 37:ba:5a:c9:94:c5:db:21:65:a7:57:d5:9f:ed:a8:d9:6b:f6: ba:76:5b:8e:38:88:42:42:5d:21:88:f1:79:3b:23:fb:9f:bc: 6d:b7:1a:ae:23:88:8f:dc:95:ef:35:1c:b7:3b:e9:a2:02:08: 22:29:75:5a:55:85:85:a2:86:ad:97:c4:83:9c:87:e9:b0:4b: 5c:8e:34:6d:90:e7:9c:ea:cc:25:da:8b:85:31:c4:86:15:43: 6a:bf:d3:5a:2f:9f:2c:01:c1:80:af:89:c0:6f:5f:42:32:c1: bd:8b:cc:66:8c:44:f9:4f:a3:0d:db:a1:e0:ba:ca:88:c3:d2: 88:9b:c4:f3 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUK5aGOnBxSZ/cLtnPIOkMj+F6HPgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDIwNzAyNTExMFoX DTI1MDIwNTAyNTYxMFowMzExMC8GA1UEAxMoMTIyNjIwM0Y3NjhCNjQ0MDI1MkVB NzY4Q0FERUM1RTJCQzUyMDVDMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMKMsQ4wYTJb9MiV+vhKYOAJg+jcrbwkoB3CYX6VoSoJOMan4KDkiK+zy0ka p2eXPCOl9PFuUeiaSp2yEWL/cl/aMftiCUQ32HWR5rLlJBsUmeQZx1EcV00d1Xh/ YCnqeyQ+pspk2L9lJg3AabtISAnZgdELAsBMOcxQFs7wKo1kDFBZl1HVUmq/qrD6 yDZCHnfDC6Z8QwBm+zFugc/G4DHA/Wk7tjJjXl7fgVAuYR9UMfw1zIf6gTR0eFda xIPnFbO7hBfY6CGvA0F2SNlCHzMzwrLfltfML1eZ09zgeaymwoax62JOSP0uT+tD KWhH3uyRbbk5mM0qNQNeyY/xAKcCAwEAAaOCAf8wggH7MB0GA1UdDgQWBBQSJiA/ dotkQCUup2jK3sXivFIFwTAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMIGCBggrBgEFBQcBCwR2MHQwcgYIKwYBBQUHMAuGZnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzYzNjJlMzkz NjJlMzIzNDMwMmUzMDJmMzIzMDJkMzIzNDIwM2QzZTIwMzEzMzMzMzczOTM4LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQEQmDwMA0GCSqGSIb3DQEBCwUAA4IBAQAKtrbFSfTai+jp06EoRwHF AAT5KIeCaYxXj6ERl01syjsgZ9uj3idilqMsIqEwC0Lwh9EPW8iCFU7h3b/n2jhQ qdZTcpp3DNtFtJR6YGi4iAJHRy0hFCd/9IGDUCfCveiQjFsAtcCVgcS5qLpVITal ATlLvotj/2sVA4BGiOQ3ulrJlMXbIWWnV9Wf7ajZa/a6dluOOIhCQl0hiPF5OyP7 n7xttxquI4iP3JXvNRy3O+miAggiKXVaVYWFooatl8SDnIfpsEtcjjRtkOec6swl 2ouFMcSGFUNqv9NaL58sAcGAr4nAb19CMsG9i8xmjET5T6MN26HgusqIw9KIm8Tz -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org