$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132302e302f32332d3234203d3e203233393531.roa File: 3230322e36352e3132302e302f32332d3234203d3e203233393531.roa (raw, json) Hash identifier: T1XIrxDEY7Zgi8QHKL/x4wM/doK9H4DhhBmg0wrSJhA= Subject key identifier: 22:5A:44:47:49:66:5E:99:01:1A:D6:FA:A8:17:8F:FE:7C:B0:CC:B6 Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 294AA9EF87E4FB0435F353BD878F4D4F7248FF46 Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132302e302f32332d3234203d3e203233393531.roa Signing time: Tue 19 Sep 2023 04:00:00 +0000 ROA not before: Tue 19 Sep 2023 03:55:00 +0000 ROA not after: Tue 17 Sep 2024 04:00:00 +0000 asID: 23951 IP address blocks: 202.65.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Apr 2024 13:40:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:4a:a9:ef:87:e4:fb:04:35:f3:53:bd:87:8f:4d:4f:72:48:ff:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Sep 19 03:55:00 2023 GMT Not After : Sep 17 04:00:00 2024 GMT Subject: CN=225A444749665E99011AD6FAA8178FFE7CB0CCB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:96:22:9a:dc:69:3f:51:19:5f:6a:d8:d4:aa: 62:c5:24:5e:2c:9a:9f:5b:dd:8e:36:23:7a:fa:14: 2d:6c:50:f4:bf:de:41:6f:ca:4b:c6:d7:b4:28:74: 2d:89:1e:c7:3a:0e:37:56:6c:d8:73:97:2e:94:e1: c6:3c:4c:a4:d3:5f:38:96:00:1d:d3:fc:6c:67:4f: 1a:d9:6d:07:4e:4a:a1:1c:8c:09:79:1d:0b:be:04: da:90:c5:02:5b:57:64:40:f0:34:d2:b2:81:3a:5d: 9b:44:72:2f:5f:8a:db:cd:52:16:4a:96:8b:f2:43: a7:6f:a6:0c:bc:1f:16:ed:c1:69:d2:6e:04:f4:65: 82:d6:bd:00:68:ae:6c:c5:90:bc:cc:57:77:ae:5e: e8:e6:f7:a3:8c:1a:10:7b:47:9b:7d:e6:d0:37:c0: db:10:9b:eb:ab:fb:63:5f:96:d2:c4:99:f0:a7:f5: 41:59:0f:97:7e:29:5b:26:56:44:5c:25:dc:1d:80: bf:df:4e:8c:54:37:dd:cd:32:85:d9:dc:9d:2c:15: fa:5c:0c:da:cd:63:09:bc:a2:5b:64:e0:11:85:73: 50:d8:1b:ac:f2:61:47:e4:d0:ab:44:dc:04:ab:82: 48:00:46:3b:b1:82:8d:58:c4:39:a1:62:65:d4:7d: 8a:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:5A:44:47:49:66:5E:99:01:1A:D6:FA:A8:17:8F:FE:7C:B0:CC:B6 X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132302e302f32332d3234203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.65.120.0/23 Signature Algorithm: sha256WithRSAEncryption ac:c8:99:71:04:8f:e2:5f:89:6f:32:03:a8:ac:68:6b:af:c0: 09:f1:a5:55:37:2d:32:a3:fd:13:da:b6:9c:85:6f:c0:32:2a: a6:a9:e1:f0:18:fe:c7:eb:8d:a4:bb:ae:9a:57:c8:07:ca:aa: a8:82:f1:18:71:49:20:af:c6:3d:30:8c:8e:3a:6e:91:f5:dd: 72:97:76:27:c0:d9:b5:36:89:ad:81:0b:fe:8d:f5:b7:c7:86: 17:00:3a:99:7d:27:9e:6d:fa:87:d1:7c:93:35:20:d0:6f:97: 08:d7:21:8c:b7:cf:05:4a:6f:e2:38:70:e7:13:28:43:d6:b9: c0:f9:97:d3:a6:65:68:28:da:f5:0f:70:40:7a:91:b6:1d:af: be:cf:3d:e6:bf:13:05:de:7b:28:fb:b6:89:94:ec:18:83:fb: d2:7e:cc:6d:a9:c6:8a:cf:b3:1f:fa:2c:51:d5:e3:72:fe:d1: 66:7b:b8:7b:39:12:a4:06:f0:88:4b:bd:76:9b:2a:61:eb:e2: aa:67:71:81:b5:55:1e:4d:05:fb:6a:4e:87:0a:86:07:93:2a: 1b:81:bf:83:64:f1:8b:ff:c6:65:18:47:fb:8d:cb:f1:ff:32: da:95:2d:5c:0b:2b:9f:78:05:32:4f:92:df:5f:3a:10:a0:13: be:1f:82:ed -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKUqp74fk+wQ181O9h49NT3JI/0YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yMzA5MTkwMzU1MDBaFw0yNDA5MTcwNDAwMDBaMDMxMTAvBgNV BAMTKDIyNUE0NDQ3NDk2NjVFOTkwMTFBRDZGQUE4MTc4RkZFN0NCMENDQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRliKa3Gk/URlfatjUqmLFJF4s mp9b3Y42I3r6FC1sUPS/3kFvykvG17QodC2JHsc6DjdWbNhzly6U4cY8TKTTXziW AB3T/GxnTxrZbQdOSqEcjAl5HQu+BNqQxQJbV2RA8DTSsoE6XZtEci9fitvNUhZK lovyQ6dvpgy8HxbtwWnSbgT0ZYLWvQBormzFkLzMV3euXujm96OMGhB7R5t95tA3 wNsQm+ur+2NfltLEmfCn9UFZD5d+KVsmVkRcJdwdgL/fToxUN93NMoXZ3J0sFfpc DNrNYwm8oltk4BGFc1DYG6zyYUfk0KtE3ASrgkgARjuxgo1YxDmhYmXUfYq3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUIlpER0lmXpkBGtb6qBeP/nywzLYwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMyMzAzMjJlMzYzNTJlMzEzMjMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzIzMzM5MzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcpBeDANBgkqhkiG 9w0BAQsFAAOCAQEArMiZcQSP4l+JbzIDqKxoa6/ACfGlVTctMqP9E9q2nIVvwDIq pqnh8Bj+x+uNpLuumlfIB8qqqILxGHFJIK/GPTCMjjpukfXdcpd2J8DZtTaJrYEL /o31t8eGFwA6mX0nnm36h9F8kzUg0G+XCNchjLfPBUpv4jhw5xMoQ9a5wPmX06Zl aCja9Q9wQHqRth2vvs895r8TBd57KPu2iZTsGIP70n7MbanGis+zH/osUdXjcv7R Znu4ezkSpAbwiEu9dpsqYeviqmdxgbVVHk0F+2pOhwqGB5MqG4G/g2Txi//GZRhH +43L8f8y2pUtXAsrn3gFMk+S3186EKATvh+C7Q== -----END CERTIFICATE-----Generated at Thu Apr 18 06:53:59 2024 by rpki-client on console-fra.rpki-client.org