$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3131322e302f32302d3231203d3e203233393531.roa File: 3230322e36352e3131322e302f32302d3231203d3e203233393531.roa (raw, json) Hash identifier: gP9Akjfo0yDe7IfAFtDZzvmYZbWXQjASsfmxaoRywN0= Subject key identifier: AF:60:9F:F5:F5:8E:7A:7D:83:C4:58:36:F0:3E:E4:2B:6C:EB:4C:F6 Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 1D61FFA0365A11C06BEFE4027B9D10056F1FF0A2 Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3131322e302f32302d3231203d3e203233393531.roa Signing time: Tue 19 Sep 2023 04:00:00 +0000 ROA not before: Tue 19 Sep 2023 03:55:00 +0000 ROA not after: Tue 17 Sep 2024 04:00:00 +0000 asID: 23951 IP address blocks: 202.65.112.0/20 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:61:ff:a0:36:5a:11:c0:6b:ef:e4:02:7b:9d:10:05:6f:1f:f0:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Sep 19 03:55:00 2023 GMT Not After : Sep 17 04:00:00 2024 GMT Subject: CN=AF609FF5F58E7A7D83C45836F03EE42B6CEB4CF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a7:dd:c4:70:b0:64:e1:30:10:69:79:0b:e8: 61:42:40:de:46:d5:c3:bd:4b:af:f4:d8:5a:11:23: 5c:dd:47:f3:19:63:64:81:88:df:fa:5e:89:83:c6: 27:e7:b9:12:9c:51:68:5e:b2:78:5b:29:ba:ec:1b: da:bf:03:5d:31:b7:c1:27:c7:9c:88:43:8a:1b:9a: 65:2b:fb:30:cf:33:ac:40:03:79:ac:5f:c5:43:3a: 7b:1b:34:32:6c:e1:72:82:80:b6:48:7a:3d:13:57: 2c:d0:d5:a0:21:72:ad:ab:f8:7c:c5:d6:11:a6:22: 12:b0:67:08:14:87:43:28:b5:0d:50:55:0e:a0:87: f1:1b:f6:3d:ff:a4:9d:c9:c5:a4:ed:8e:cd:29:6d: 3a:f0:b5:62:4a:c4:d0:9a:6f:c6:75:6e:ba:f6:f9: b0:58:81:ba:0d:f3:bb:c5:76:2f:ab:22:3e:b2:9c: 2e:de:e5:ab:d1:b6:c5:bb:11:bd:f6:5a:61:06:9a: ba:ad:d4:75:2c:c6:52:ea:6f:30:57:2e:99:03:d1: 9d:c6:a8:43:bf:f6:4b:6b:d5:ec:f1:0d:85:3f:d9: 5d:53:c2:5c:7b:c5:02:7c:ed:95:b9:4b:a7:c9:9e: cd:02:3c:aa:9d:61:1b:bd:e7:8a:db:cc:80:18:0f: 80:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:60:9F:F5:F5:8E:7A:7D:83:C4:58:36:F0:3E:E4:2B:6C:EB:4C:F6 X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3131322e302f32302d3231203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.65.112.0/20 Signature Algorithm: sha256WithRSAEncryption 83:0d:7d:f0:e5:e5:70:ba:14:aa:5f:48:dd:be:47:9a:de:cb: e1:ca:60:7e:f7:a3:28:bd:21:53:d1:77:54:a8:41:8b:bf:85: 84:51:fa:34:ec:a5:aa:ce:8f:7d:ae:d8:23:ea:af:ad:10:22: cc:05:28:8f:4d:36:4b:51:de:54:aa:71:8b:d3:57:98:b5:9d: 6f:41:35:7a:51:90:68:78:ee:be:ad:3e:d3:86:93:6c:e0:20: 0c:59:8f:9f:ee:52:bf:e1:66:a1:42:5f:ad:f8:ec:c4:02:8e: ed:ff:17:d2:25:04:56:14:7d:b2:a6:6f:02:01:e6:79:e9:61: 72:fc:8f:c6:d4:c6:db:b9:1c:0e:6c:33:72:dc:36:b8:73:5c: 3d:99:cb:6d:3f:3e:8b:2f:31:5f:54:0c:21:4a:75:58:8d:28: 53:a6:f9:15:fe:53:ed:40:1d:28:60:fa:9b:96:02:09:72:37: 80:a5:8d:7d:35:49:bc:ad:26:a6:ad:53:15:19:83:78:56:99: ac:db:95:89:c6:26:fd:22:65:a8:af:a2:ba:1d:16:66:4f:5a: fe:a3:97:28:73:56:74:50:f6:6d:c6:6c:c4:71:bf:cc:1f:91: fa:5c:96:83:09:d9:44:2c:12:f9:c8:d2:71:3b:d7:db:1c:d9: dc:11:be:58 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHWH/oDZaEcBr7+QCe50QBW8f8KIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yMzA5MTkwMzU1MDBaFw0yNDA5MTcwNDAwMDBaMDMxMTAvBgNV BAMTKEFGNjA5RkY1RjU4RTdBN0Q4M0M0NTgzNkYwM0VFNDJCNkNFQjRDRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGp93EcLBk4TAQaXkL6GFCQN5G 1cO9S6/02FoRI1zdR/MZY2SBiN/6XomDxifnuRKcUWhesnhbKbrsG9q/A10xt8En x5yIQ4obmmUr+zDPM6xAA3msX8VDOnsbNDJs4XKCgLZIej0TVyzQ1aAhcq2r+HzF 1hGmIhKwZwgUh0MotQ1QVQ6gh/Eb9j3/pJ3JxaTtjs0pbTrwtWJKxNCab8Z1brr2 +bBYgboN87vFdi+rIj6ynC7e5avRtsW7Eb32WmEGmrqt1HUsxlLqbzBXLpkD0Z3G qEO/9ktr1ezxDYU/2V1Twlx7xQJ87ZW5S6fJns0CPKqdYRu954rbzIAYD4AjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUr2Cf9fWOen2DxFg28D7kK2zrTPYwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMyMzAzMjJlMzYzNTJlMzEzMTMyMmUzMDJmMzIz MDJkMzIzMTIwM2QzZTIwMzIzMzM5MzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMpBcDANBgkqhkiG 9w0BAQsFAAOCAQEAgw198OXlcLoUql9I3b5Hmt7L4cpgfvejKL0hU9F3VKhBi7+F hFH6NOylqs6Pfa7YI+qvrRAizAUoj002S1HeVKpxi9NXmLWdb0E1elGQaHjuvq0+ 04aTbOAgDFmPn+5Sv+FmoUJfrfjsxAKO7f8X0iUEVhR9sqZvAgHmeelhcvyPxtTG 27kcDmwzctw2uHNcPZnLbT8+iy8xX1QMIUp1WI0oU6b5Ff5T7UAdKGD6m5YCCXI3 gKWNfTVJvK0mpq1TFRmDeFaZrNuVicYm/SJlqK+iuh0WZk9a/qOXKHNWdFD2bcZs xHG/zB+R+lyWgwnZRCwS+cjScTvX2xzZ3BG+WA== -----END CERTIFICATE-----Generated at Thu Apr 25 22:30:50 2024 by rpki-client on console-fra.rpki-client.org