$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132322e302f32342d3234203d3e203233393531.roa File: 3230322e36352e3132322e302f32342d3234203d3e203233393531.roa (raw, json) Hash identifier: hsNebQmdM49PMa1mUO+Ph+JIjiwcm21b1LGq2Faa7yI= Subject key identifier: BD:56:DA:95:CC:EA:05:13:AA:65:46:FE:FE:4D:C0:66:0B:44:1A:AC Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 54F163EF0C2CAFA78E16AC3A3B6B8E9D19B3F310 Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132322e302f32342d3234203d3e203233393531.roa Signing time: Fri 22 Sep 2023 03:00:00 +0000 ROA not before: Fri 22 Sep 2023 02:55:00 +0000 ROA not after: Fri 20 Sep 2024 03:00:00 +0000 asID: 23951 IP address blocks: 202.65.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Apr 2024 13:40:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:f1:63:ef:0c:2c:af:a7:8e:16:ac:3a:3b:6b:8e:9d:19:b3:f3:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Sep 22 02:55:00 2023 GMT Not After : Sep 20 03:00:00 2024 GMT Subject: CN=BD56DA95CCEA0513AA6546FEFE4DC0660B441AAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:77:ad:4e:b8:da:ee:42:5c:8b:41:ec:1d:4b: 3b:39:23:02:f3:00:57:99:0c:9a:01:48:1d:ac:1d: 63:a2:f6:44:9f:20:1c:2f:77:f7:2e:60:ea:2f:3a: ba:c9:5e:e3:67:6e:d1:f8:08:04:24:ae:3c:9a:a5: 86:c9:55:e7:5a:2f:51:53:eb:a5:50:1b:1e:2b:ee: f8:b6:d1:52:58:ad:1a:c2:2e:4b:1c:63:9a:4c:79: 69:a1:b4:b5:cb:a2:eb:fe:d3:21:c8:02:b9:b9:2d: b3:fe:19:73:f3:e3:a1:1a:2b:42:fa:dc:8d:ac:21: e1:57:c5:d6:21:0a:92:b9:34:bd:fe:55:a8:74:e4: a1:0b:bb:54:e9:5e:98:d8:2a:39:03:71:fd:8f:33: 92:3a:74:56:6b:2a:4c:b5:fc:d6:73:89:3b:d0:05: 9a:9b:ae:62:3e:8b:41:a9:39:3c:ff:6a:4f:ff:97: 40:4d:d6:d6:b8:2c:ab:98:f0:94:1b:e9:a1:36:43: 2a:76:da:4e:f5:1f:20:15:fa:dc:89:6a:ac:e1:ce: a4:8d:eb:a8:bb:d9:43:53:5f:a8:fc:74:de:5d:03: 80:c1:92:ac:f5:56:44:24:de:29:29:c2:07:05:47: 4c:6d:80:f6:88:b2:1f:c8:a4:69:23:c5:1d:23:43: 2f:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:56:DA:95:CC:EA:05:13:AA:65:46:FE:FE:4D:C0:66:0B:44:1A:AC X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132322e302f32342d3234203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.65.122.0/24 Signature Algorithm: sha256WithRSAEncryption 13:40:1c:fc:ea:78:6f:2a:cb:24:55:a4:a8:15:c8:17:40:c2: bc:47:1c:44:34:2a:c7:2a:96:b0:1b:13:18:03:da:3a:79:19: 35:b5:65:ef:c1:9f:f7:b7:45:6d:0e:5c:3e:4f:8f:06:67:89: aa:9a:7d:bc:0b:70:4c:61:b6:60:f1:89:4f:a1:5e:dc:8c:af: 85:df:d6:84:5a:18:6b:e1:a7:45:4b:3c:35:1e:4e:1c:c2:c2: 58:c4:e6:7d:a6:45:28:34:85:a9:5d:01:98:b5:5f:4a:53:e1: b8:1e:e5:da:d8:14:1b:bb:0f:12:b7:e0:7a:c3:fe:bb:17:82: 3d:df:28:cc:71:8b:8c:41:ca:c8:90:ed:9c:bd:c1:b5:cb:cd: 27:e5:40:57:f3:f9:c8:2e:e2:6d:91:6d:b0:b4:29:08:81:09: fe:7e:86:c3:a0:87:e3:0b:39:58:29:2c:d6:e0:8c:1b:69:a3: ab:cc:4f:b3:cb:0e:46:13:c4:95:9c:31:69:19:4f:02:fd:8e: ce:b7:bd:d4:71:f3:2f:58:48:b9:37:a6:ac:80:8d:28:b5:74: 19:fd:30:8f:d8:b3:da:1f:9d:27:76:05:76:e1:c8:df:37:7e: 79:d7:1b:c3:aa:09:71:30:a3:d9:bb:ff:37:30:0f:99:e2:c2: d0:75:1a:e6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVPFj7wwsr6eOFqw6O2uOnRmz8xAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yMzA5MjIwMjU1MDBaFw0yNDA5MjAwMzAwMDBaMDMxMTAvBgNV BAMTKEJENTZEQTk1Q0NFQTA1MTNBQTY1NDZGRUZFNERDMDY2MEI0NDFBQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4d61OuNruQlyLQewdSzs5IwLz AFeZDJoBSB2sHWOi9kSfIBwvd/cuYOovOrrJXuNnbtH4CAQkrjyapYbJVedaL1FT 66VQGx4r7vi20VJYrRrCLkscY5pMeWmhtLXLouv+0yHIArm5LbP+GXPz46EaK0L6 3I2sIeFXxdYhCpK5NL3+Vah05KELu1TpXpjYKjkDcf2PM5I6dFZrKky1/NZziTvQ BZqbrmI+i0GpOTz/ak//l0BN1ta4LKuY8JQb6aE2Qyp22k71HyAV+tyJaqzhzqSN 66i72UNTX6j8dN5dA4DBkqz1VkQk3ikpwgcFR0xtgPaIsh/IpGkjxR0jQy8rAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUvVbalczqBROqZUb+/k3AZgtEGqwwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMyMzAzMjJlMzYzNTJlMzEzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM5MzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpBejANBgkqhkiG 9w0BAQsFAAOCAQEAE0Ac/Op4byrLJFWkqBXIF0DCvEccRDQqxyqWsBsTGAPaOnkZ NbVl78Gf97dFbQ5cPk+PBmeJqpp9vAtwTGG2YPGJT6Fe3Iyvhd/WhFoYa+GnRUs8 NR5OHMLCWMTmfaZFKDSFqV0BmLVfSlPhuB7l2tgUG7sPErfgesP+uxeCPd8ozHGL jEHKyJDtnL3BtcvNJ+VAV/P5yC7ibZFtsLQpCIEJ/n6Gw6CH4ws5WCks1uCMG2mj q8xPs8sORhPElZwxaRlPAv2Ozre91HHzL1hIuTemrICNKLV0Gf0wj9iz2h+dJ3YF duHI3zd+edcbw6oJcTCj2bv/NzAPmeLC0HUa5g== -----END CERTIFICATE-----Generated at Thu Apr 18 07:20:11 2024 by rpki-client on console-ams.rpki-client.org