$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e3135322e3132382e302f31392d3234203d3e203233393531.roa File: 3230322e3135322e3132382e302f31392d3234203d3e203233393531.roa (raw, json) Hash identifier: +owMFEhwu1/NJjim/1jaJSzW4mxuQ4sO6lczJgu02PQ= Subject key identifier: AD:77:48:C5:25:DD:57:CE:B0:89:34:23:B3:DF:DF:7C:63:E9:CF:E8 Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 4890856086DE54BB1DC1066225BFCA41027FF5F9 Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e3135322e3132382e302f31392d3234203d3e203233393531.roa Signing time: Tue 19 Sep 2023 05:00:00 +0000 ROA not before: Tue 19 Sep 2023 04:55:00 +0000 ROA not after: Tue 17 Sep 2024 05:00:00 +0000 asID: 23951 IP address blocks: 202.152.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:90:85:60:86:de:54:bb:1d:c1:06:62:25:bf:ca:41:02:7f:f5:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Sep 19 04:55:00 2023 GMT Not After : Sep 17 05:00:00 2024 GMT Subject: CN=AD7748C525DD57CEB0893423B3DFDF7C63E9CFE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:28:78:bf:3e:9a:ae:69:a1:03:28:ba:d1:c9: 59:8e:54:63:cc:84:3c:0d:9d:2d:9c:86:64:9c:44: ca:52:1b:07:72:e9:6a:3e:f1:1e:15:b9:96:9f:c5: 8d:01:2a:65:ac:01:32:5d:9f:f5:55:26:7f:fb:10: c7:a6:f2:63:a0:33:00:59:82:92:5f:80:f9:e7:87: 69:9d:e8:e6:9b:01:0c:c8:1b:55:43:29:0f:43:8e: 95:34:b5:b4:cb:0a:5e:91:77:84:53:67:c3:68:3d: b2:14:dc:1c:26:48:d5:7d:c8:dc:4b:f8:9a:37:b8: cb:d9:f5:30:7e:7a:6e:f5:24:c9:aa:e4:ff:05:46: b4:80:d7:e5:32:8a:5e:2f:ac:b5:c7:8e:3e:01:f8: c4:6b:9b:00:07:7d:60:15:82:d4:1e:e0:ca:69:e7: 1a:96:c9:fd:7a:e0:29:38:7b:64:b2:cd:7c:2d:ad: b6:a5:6c:2f:99:88:6a:cf:63:10:71:a4:80:5d:c6: 7a:55:91:5c:9a:c3:b6:4c:5c:97:4b:99:26:97:63: 89:23:54:c4:72:0a:9e:33:b1:8e:8e:03:db:59:d9: 34:46:f3:c9:31:33:3c:b5:9b:1c:8c:4e:a8:91:7a: 26:ea:14:48:0c:ed:0d:d9:3a:8e:58:f1:11:31:11: 5d:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:77:48:C5:25:DD:57:CE:B0:89:34:23:B3:DF:DF:7C:63:E9:CF:E8 X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e3135322e3132382e302f31392d3234203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.152.128.0/19 Signature Algorithm: sha256WithRSAEncryption 4d:f7:70:81:9a:ce:2f:20:f1:b2:3f:fd:74:8e:0b:cb:c5:54: 15:7e:ab:0d:69:ce:ee:4c:6d:36:37:09:f3:f6:33:bc:86:eb: 71:90:81:4b:03:14:d5:fd:21:fb:bb:0d:64:42:25:41:f0:96: e3:a6:8b:ef:09:26:90:e9:93:97:3a:2b:b4:48:29:31:19:65: f3:d9:ea:6f:46:6f:7e:0f:48:b7:a6:8a:b5:43:6f:3c:ae:e7: ac:f7:9b:32:1a:dd:7a:eb:c5:53:31:22:13:ea:51:e7:01:f2: ad:09:cf:b3:62:55:43:38:cc:5d:0a:6c:6e:54:80:cf:72:b5: 08:a8:2b:db:51:8e:75:06:c9:35:3c:cc:0e:b4:46:be:96:73: 03:62:7c:c0:26:d6:38:93:6f:35:91:42:64:f4:76:e7:5c:5c: ec:06:a7:4f:51:ee:c0:12:be:39:ea:01:48:1b:ef:75:83:33: ef:b2:57:29:78:d4:d0:90:79:40:92:28:f1:8f:95:b8:bc:72: 4b:46:33:8e:6b:c9:dd:be:86:cc:2e:da:b7:04:aa:a1:a8:cf: 34:89:61:8b:b8:0a:a7:fe:1c:fe:7b:ff:c6:64:e6:23:dd:0a: c7:63:63:72:05:f4:92:2b:f8:c0:a7:54:6c:b8:47:2c:38:3b: 63:75:53:87 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSJCFYIbeVLsdwQZiJb/KQQJ/9fkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yMzA5MTkwNDU1MDBaFw0yNDA5MTcwNTAwMDBaMDMxMTAvBgNV BAMTKEFENzc0OEM1MjVERDU3Q0VCMDg5MzQyM0IzREZERjdDNjNFOUNGRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBKHi/PpquaaEDKLrRyVmOVGPM hDwNnS2chmScRMpSGwdy6Wo+8R4VuZafxY0BKmWsATJdn/VVJn/7EMem8mOgMwBZ gpJfgPnnh2md6OabAQzIG1VDKQ9DjpU0tbTLCl6Rd4RTZ8NoPbIU3BwmSNV9yNxL +Jo3uMvZ9TB+em71JMmq5P8FRrSA1+Uyil4vrLXHjj4B+MRrmwAHfWAVgtQe4Mpp 5xqWyf164Ck4e2SyzXwtrbalbC+ZiGrPYxBxpIBdxnpVkVyaw7ZMXJdLmSaXY4kj VMRyCp4zsY6OA9tZ2TRG88kxMzy1mxyMTqiReibqFEgM7Q3ZOo5Y8RExEV3TAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrXdIxSXdV86wiTQjs9/ffGPpz+gwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMyMzAzMjJlMzEzNTMyMmUzMTMyMzgyZTMwMmYz MTM5MmQzMjM0MjAzZDNlMjAzMjMzMzkzNTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFypiAMA0GCSqG SIb3DQEBCwUAA4IBAQBN93CBms4vIPGyP/10jgvLxVQVfqsNac7uTG02Nwnz9jO8 hutxkIFLAxTV/SH7uw1kQiVB8JbjpovvCSaQ6ZOXOiu0SCkxGWXz2epvRm9+D0i3 poq1Q288rues95syGt1668VTMSIT6lHnAfKtCc+zYlVDOMxdCmxuVIDPcrUIqCvb UY51Bsk1PMwOtEa+lnMDYnzAJtY4k281kUJk9HbnXFzsBqdPUe7AEr456gFIG+91 gzPvslcpeNTQkHlAkijxj5W4vHJLRjOOa8ndvobMLtq3BKqhqM80iWGLuAqn/hz+ e//GZOYj3QrHY2NyBfSSK/jAp1RsuEcsODtjdVOH -----END CERTIFICATE-----Generated at Thu Apr 25 22:30:50 2024 by rpki-client on console-fra.rpki-client.org