$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3131322e302f32312d3234203d3e203233393531.roa File: 3230322e36352e3131322e302f32312d3234203d3e203233393531.roa (raw, json) Hash identifier: K1LMlsswFBkQZ9fbXrIdHEYAv224GZhoo5/C50dcs/w= Subject key identifier: 71:F6:E5:2D:0F:34:D4:33:99:4D:51:53:DE:74:4F:3F:A7:6D:30:BC Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 780D50F58C5D50A6268E1A99C44AACAE182B1C0D Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3131322e302f32312d3234203d3e203233393531.roa Signing time: Tue 19 Sep 2023 04:00:00 +0000 ROA not before: Tue 19 Sep 2023 03:55:00 +0000 ROA not after: Tue 17 Sep 2024 04:00:00 +0000 asID: 23951 IP address blocks: 202.65.112.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:0d:50:f5:8c:5d:50:a6:26:8e:1a:99:c4:4a:ac:ae:18:2b:1c:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Sep 19 03:55:00 2023 GMT Not After : Sep 17 04:00:00 2024 GMT Subject: CN=71F6E52D0F34D433994D5153DE744F3FA76D30BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:5e:36:39:8c:23:99:1c:9c:ed:fa:ca:d3:80: 0d:84:9f:15:63:49:90:1b:cc:6c:8f:08:4c:f5:99: 02:b3:b7:48:ec:74:05:38:ab:07:59:bb:3d:cd:6e: 0b:51:42:03:7d:74:21:80:a4:07:8c:38:30:2e:81: b6:7b:a8:f3:27:fe:0c:4a:1d:ff:cd:33:1e:42:f8: 72:d3:d5:07:ca:99:51:ad:6f:40:10:b9:3c:bc:ba: 71:e0:cd:66:2f:30:3d:ff:2e:d6:b3:a4:d8:f3:a8: b6:9e:40:8b:92:6a:99:1b:e5:21:a5:fb:bb:00:0a: 64:71:c8:f2:14:da:54:be:59:f4:aa:44:19:84:05: 12:0f:15:27:75:f7:88:db:e6:e2:c6:f4:66:e5:e7: 1f:a6:57:34:7e:6f:b4:c0:33:63:d7:2d:cf:52:0c: e7:24:c3:59:01:7d:50:1b:04:3d:f5:f9:d7:65:ce: 53:00:04:d2:95:f7:8e:94:31:d8:2b:79:b4:b3:d0: 1c:f7:34:3a:9c:19:10:8a:8a:c3:3a:81:69:3c:e2: 35:0e:a5:f7:71:88:a5:cf:5b:2d:92:91:15:61:ba: 8d:5b:51:ff:c7:f7:d7:d2:d0:bd:1b:06:37:3c:0d: 15:17:62:cc:37:85:3d:eb:76:41:a6:f0:bf:3c:5b: e6:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:F6:E5:2D:0F:34:D4:33:99:4D:51:53:DE:74:4F:3F:A7:6D:30:BC X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3131322e302f32312d3234203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.65.112.0/21 Signature Algorithm: sha256WithRSAEncryption 09:0d:9d:0a:b7:89:27:4e:c8:c4:92:ca:2f:d7:34:18:72:d1: ea:0e:2e:a9:db:eb:81:ac:cc:23:04:d0:45:f8:5d:2c:2c:11: 05:df:65:5e:04:5e:d7:92:f3:06:f3:fc:73:0e:03:98:53:fc: 28:e6:ff:62:e3:57:e8:73:77:ba:a6:f0:0e:28:09:76:c8:ad: c6:03:1c:68:c2:e7:f6:73:eb:89:75:d5:7b:0d:af:9d:6a:18: ad:44:33:d5:02:ab:20:7e:2a:d8:3b:73:83:d2:1d:92:7e:5d: a7:ee:37:0b:a3:da:26:6a:26:34:e6:1a:45:68:de:54:1d:12: 92:32:29:65:c2:a9:29:de:16:a0:14:31:3b:70:fa:77:f8:ae: 4c:1e:bf:49:b0:b6:ba:d5:55:1b:e8:98:27:22:fc:2e:d9:f4: 68:04:96:fb:44:5c:71:5f:ee:2c:4e:8d:a6:0f:ff:1b:62:f3: d3:f4:cd:5c:41:73:dd:02:65:27:a6:3d:22:55:58:44:3b:fa: 4f:18:65:79:0c:58:ba:f2:30:f4:7e:5a:a2:72:98:71:0e:23: 84:87:8a:4c:b5:a0:aa:5d:46:a1:48:bf:6d:85:00:51:51:a3: 93:60:c7:6f:25:86:1f:5a:a3:75:ce:a7:e1:c3:6a:e7:1d:a4: c2:3f:30:da -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeA1Q9YxdUKYmjhqZxEqsrhgrHA0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yMzA5MTkwMzU1MDBaFw0yNDA5MTcwNDAwMDBaMDMxMTAvBgNV BAMTKDcxRjZFNTJEMEYzNEQ0MzM5OTRENTE1M0RFNzQ0RjNGQTc2RDMwQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdXjY5jCOZHJzt+srTgA2EnxVj SZAbzGyPCEz1mQKzt0jsdAU4qwdZuz3NbgtRQgN9dCGApAeMODAugbZ7qPMn/gxK Hf/NMx5C+HLT1QfKmVGtb0AQuTy8unHgzWYvMD3/LtazpNjzqLaeQIuSapkb5SGl +7sACmRxyPIU2lS+WfSqRBmEBRIPFSd194jb5uLG9Gbl5x+mVzR+b7TAM2PXLc9S DOckw1kBfVAbBD31+ddlzlMABNKV946UMdgrebSz0Bz3NDqcGRCKisM6gWk84jUO pfdxiKXPWy2SkRVhuo1bUf/H99fS0L0bBjc8DRUXYsw3hT3rdkGm8L88W+bJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUcfblLQ801DOZTVFT3nRPP6dtMLwwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMyMzAzMjJlMzYzNTJlMzEzMTMyMmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzIzMzM5MzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8pBcDANBgkqhkiG 9w0BAQsFAAOCAQEACQ2dCreJJ07IxJLKL9c0GHLR6g4uqdvrgazMIwTQRfhdLCwR Bd9lXgRe15LzBvP8cw4DmFP8KOb/YuNX6HN3uqbwDigJdsitxgMcaMLn9nPriXXV ew2vnWoYrUQz1QKrIH4q2Dtzg9Idkn5dp+43C6PaJmomNOYaRWjeVB0SkjIpZcKp Kd4WoBQxO3D6d/iuTB6/SbC2utVVG+iYJyL8Ltn0aASW+0RccV/uLE6Npg//G2Lz 0/TNXEFz3QJlJ6Y9IlVYRDv6TxhleQxYuvIw9H5aonKYcQ4jhIeKTLWgql1GoUi/ bYUAUVGjk2DHbyWGH1qjdc6n4cNq5x2kwj8w2g== -----END CERTIFICATE-----Generated at Thu Apr 25 23:29:15 2024 by rpki-client on console-ams.rpki-client.org