$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132332e302f32342d3234203d3e203233393531.roa File: 3230322e36352e3132332e302f32342d3234203d3e203233393531.roa (raw, json) Hash identifier: pigvLBwiiRO5/x//l1pbv7xNeTh4Vycmu1O/ZRIDAzE= Subject key identifier: 72:BD:FB:3B:63:E1:B6:1D:B4:E0:22:70:A3:C2:99:ED:52:07:23:2A Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 6A57E8DF9EB22349C00F98DEE64871E0747ADF Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132332e302f32342d3234203d3e203233393531.roa Signing time: Fri 22 Sep 2023 03:00:00 +0000 ROA not before: Fri 22 Sep 2023 02:55:00 +0000 ROA not after: Fri 20 Sep 2024 03:00:00 +0000 asID: 23951 IP address blocks: 202.65.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Apr 2024 13:40:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:57:e8:df:9e:b2:23:49:c0:0f:98:de:e6:48:71:e0:74:7a:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Sep 22 02:55:00 2023 GMT Not After : Sep 20 03:00:00 2024 GMT Subject: CN=72BDFB3B63E1B61DB4E02270A3C299ED5207232A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:36:97:5f:b5:2f:88:8d:93:64:18:aa:8d:75: 8b:79:99:f4:df:2f:51:e9:ef:63:ae:de:d6:26:15: 08:1d:6b:f7:a4:69:b4:d8:ab:fd:c0:02:9e:11:16: 65:b9:6b:f2:fe:c5:65:92:5a:51:f6:1a:ac:ac:71: 23:a8:83:19:50:49:1f:67:86:4b:38:e5:27:c9:b7: 01:f9:6d:9b:e7:16:32:9f:a5:52:4d:31:a4:e5:d1: b1:ac:d9:94:60:8e:72:b4:be:00:00:a6:84:81:23: 36:8d:d1:83:98:30:4b:44:b9:0b:7e:56:72:b4:2f: 45:3a:72:21:8b:a5:48:c5:b5:34:e0:13:17:55:73: 3b:eb:e5:41:60:e1:05:45:24:8e:aa:2e:b4:1c:bd: 1b:0b:86:64:47:06:b9:d1:04:89:eb:4d:3c:ad:7e: b1:ec:01:32:a2:58:ec:7f:be:9d:d6:66:d3:48:2b: 30:ca:f1:f7:ba:f5:41:66:6f:ab:33:9c:53:3b:f3: ed:15:ed:6c:74:7d:4b:7b:bb:3b:80:95:bc:41:2e: d7:0e:47:1b:1c:b4:c6:22:9a:47:8f:e3:16:e0:8b: 8f:8b:59:f0:6f:92:ef:df:e2:5a:af:49:af:90:dd: c5:60:2f:f1:20:5b:0c:53:e4:aa:b2:39:88:e5:f7: e6:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:BD:FB:3B:63:E1:B6:1D:B4:E0:22:70:A3:C2:99:ED:52:07:23:2A X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132332e302f32342d3234203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.65.123.0/24 Signature Algorithm: sha256WithRSAEncryption 48:96:1c:df:8b:50:c9:98:03:40:f0:a7:ca:a3:fe:98:d2:73: 65:b4:e3:5c:ba:6d:44:b2:d8:9c:af:2f:cd:af:5e:33:70:0d: b8:5a:1f:eb:2e:4a:c1:b9:38:de:09:e5:62:b4:d5:b9:ce:f6: 5e:97:c0:a9:51:1a:64:2c:28:28:fe:76:ee:60:bc:d0:37:c9: a0:12:75:f9:1a:dc:f5:3b:cc:b6:00:4e:f4:ce:83:aa:50:0c: 4a:b5:8b:b2:5a:8d:1c:dc:00:c9:65:35:14:fa:fc:36:b8:5d: 0d:ea:5f:5a:6d:38:59:28:97:46:ab:98:84:c0:9a:dc:05:12: 70:b7:7a:ec:0b:ed:92:bb:27:6d:4b:89:18:50:72:a7:48:60: 8b:ee:a1:b5:6a:dc:54:74:7d:da:93:a1:46:fb:c0:16:25:b8: 75:f3:13:b3:07:f8:b8:aa:68:bb:46:1e:ae:fc:9b:8c:48:c4: 09:af:9d:bb:75:4a:db:3f:cc:49:42:1d:7c:60:2d:d6:76:41: c4:da:40:7f:c3:2a:05:ae:93:a1:3c:61:d8:cc:82:f7:ca:25: 18:54:4a:a3:aa:e2:f2:70:3a:a7:74:68:d0:99:9b:3e:a1:4b: 0b:5e:cf:e4:e1:32:a4:14:fd:d3:83:9e:dd:9e:99:88:c3:1a: 6d:fc:ab:af -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgITalfo356yI0nAD5je5khx4HR63zANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyhDQTM1QkFDN0E0MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0 M0M4RThGMB4XDTIzMDkyMjAyNTUwMFoXDTI0MDkyMDAzMDAwMFowMzExMC8GA1UE AxMoNzJCREZCM0I2M0UxQjYxREI0RTAyMjcwQTNDMjk5RUQ1MjA3MjMyQTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAM02l1+1L4iNk2QYqo11i3mZ9N8v UenvY67e1iYVCB1r96RptNir/cACnhEWZblr8v7FZZJaUfYarKxxI6iDGVBJH2eG SzjlJ8m3Afltm+cWMp+lUk0xpOXRsazZlGCOcrS+AACmhIEjNo3Rg5gwS0S5C35W crQvRTpyIYulSMW1NOATF1VzO+vlQWDhBUUkjqoutBy9GwuGZEcGudEEietNPK1+ sewBMqJY7H++ndZm00grMMrx97r1QWZvqzOcUzvz7RXtbHR9S3u7O4CVvEEu1w5H Gxy0xiKaR4/jFuCLj4tZ8G+S79/iWq9Jr5DdxWAv8SBbDFPkqrI5iOX35tECAwEA AaOCAjIwggIuMB0GA1UdDgQWBBRyvfs7Y+G2HbTgInCjwpntUgcjKjAfBgNVHSME GDAWgBTKNbrHpAXfHtntYvCdL08uFDyOjzAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFl NmE3ZTQ2LWI2YWQtNGE3ZC1iOTMwLTFhYjBiZjAyZGQ1ZC8wL0NBMzVCQUM3QTQw NURGMUVEOUVENjJGMDlEMkY0RjJFMTQzQzhFOEYuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMi9DQTM1QkFDN0E0MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4 RThGLmNlcjCBogYIKwYBBQUHAQsEgZUwgZIwgY8GCCsGAQUFBzALhoGCcnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMWU2YTdlNDYtYjZhZC00YTdkLWI5 MzAtMWFiMGJmMDJkZDVkLzAvMzIzMDMyMmUzNjM1MmUzMTMyMzMyZTMwMmYzMjM0 MmQzMjM0MjAzZDNlMjAzMjMzMzkzNTMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAykF7MA0GCSqGSIb3 DQEBCwUAA4IBAQBIlhzfi1DJmANA8KfKo/6Y0nNltONcum1Esticry/Nr14zcA24 Wh/rLkrBuTjeCeVitNW5zvZel8CpURpkLCgo/nbuYLzQN8mgEnX5Gtz1O8y2AE70 zoOqUAxKtYuyWo0c3ADJZTUU+vw2uF0N6l9abThZKJdGq5iEwJrcBRJwt3rsC+2S uydtS4kYUHKnSGCL7qG1atxUdH3ak6FG+8AWJbh18xOzB/i4qmi7Rh6u/JuMSMQJ r527dUrbP8xJQh18YC3WdkHE2kB/wyoFrpOhPGHYzIL3yiUYVEqjquLycDqndGjQ mZs+oUsLXs/k4TKkFP3Tg57dnpmIwxpt/Kuv -----END CERTIFICATE-----Generated at Thu Apr 18 07:20:11 2024 by rpki-client on console-ams.rpki-client.org