$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e3135322e3132382e302f31392d3234203d3e203233393531.roa File: 3230322e3135322e3132382e302f31392d3234203d3e203233393531.roa (raw, json) Hash identifier: ozMMj1PLYt9P59zXxht5YENq9xxiksZRJWyynQGPWwo= Subject key identifier: 0A:2A:33:EA:0D:9B:5E:2B:7F:11:2D:3E:89:9E:46:51:CE:DD:76:07 Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 23091F814B1EBECE6D01D349F18D6F626ED37EDA Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e3135322e3132382e302f31392d3234203d3e203233393531.roa Signing time: Tue 20 Aug 2024 06:00:00 +0000 ROA not before: Tue 20 Aug 2024 05:55:00 +0000 ROA not after: Tue 19 Aug 2025 06:00:00 +0000 asID: 23951 IP address blocks: 202.152.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:09:1f:81:4b:1e:be:ce:6d:01:d3:49:f1:8d:6f:62:6e:d3:7e:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Aug 20 05:55:00 2024 GMT Not After : Aug 19 06:00:00 2025 GMT Subject: CN=0A2A33EA0D9B5E2B7F112D3E899E4651CEDD7607 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:58:f5:ed:aa:40:66:b6:54:94:93:55:5b:b4: 9f:09:5a:c2:09:a5:8c:6a:2c:c7:69:28:1c:2d:77: 48:e6:21:ca:6d:6b:9b:2b:e0:e7:37:2e:2d:d0:d1: 83:b4:eb:64:4b:3d:ca:12:1b:a6:e3:fb:61:97:21: 3e:21:2b:c5:68:48:e1:2a:6e:22:10:11:58:e6:e1: 8f:3d:27:6a:07:16:20:83:00:42:5d:26:a8:fc:e5: 2e:65:63:44:65:2b:48:ca:0d:8f:a1:04:a8:7e:93: 65:b4:69:a4:25:5c:b2:b0:ea:25:ea:db:d8:83:ab: 8d:84:52:15:e2:d0:2e:e2:11:17:47:f5:62:9d:75: 4d:17:55:7b:ef:a8:22:e6:50:1e:bf:51:3b:f6:2e: 43:be:fc:af:e2:cf:a9:4f:9f:1a:5d:cf:01:f5:74: fd:e2:69:77:03:67:af:79:52:a0:90:06:f7:29:de: a9:e9:76:82:94:97:80:5e:51:0f:2a:0c:89:14:53: 59:5e:8c:e9:da:87:4b:fe:f4:fa:d2:24:9a:d9:12: 02:68:38:18:9b:fd:67:4e:6c:32:c0:4a:20:b7:e1: 10:3e:4c:7f:ce:56:78:ac:c1:17:f4:0b:b0:37:f7: 34:03:bd:df:76:99:07:a6:05:0a:8f:65:9c:0d:b3: 50:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:2A:33:EA:0D:9B:5E:2B:7F:11:2D:3E:89:9E:46:51:CE:DD:76:07 X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e3135322e3132382e302f31392d3234203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.152.128.0/19 Signature Algorithm: sha256WithRSAEncryption 40:b6:29:8f:6f:44:77:f8:72:88:8a:fb:f2:e7:6b:71:e2:68: 3a:d7:a7:a5:2d:c1:bb:73:00:49:cb:26:b2:b1:ef:ed:a1:9a: b5:0a:b0:6b:e0:2f:e4:ab:98:36:82:22:41:23:63:60:b6:d0: 98:20:6e:5e:de:54:b5:0e:bc:3b:51:43:0c:4c:e6:b6:42:76: b9:35:84:8a:a4:27:85:f3:71:67:d4:12:ba:2d:fd:4f:0f:27: 8f:ae:71:0e:68:bf:92:6b:73:36:0a:3d:c8:8b:dd:3e:87:72: d7:8c:c8:39:df:47:bc:cc:74:9f:97:0e:2b:7b:f9:0d:12:fc: 66:04:32:b6:59:c7:fb:96:81:1a:0d:c9:7a:1e:a0:30:63:70: d8:ed:23:a1:e5:08:26:df:26:25:b2:06:4b:c9:65:a2:7f:34: 6e:88:30:49:c5:4e:c5:4d:08:8f:8b:93:b3:da:85:57:82:ca: 13:79:c4:7d:0c:39:8a:a6:dc:71:e2:9d:80:aa:f0:72:2f:57: 35:86:0c:a9:29:90:ca:42:1d:4d:05:5b:eb:6a:83:62:12:ee: ad:7b:b5:d1:7a:a6:55:c2:f1:5d:81:cc:f0:65:25:5f:7b:c4: 35:a9:7e:ce:76:d6:87:11:d6:a8:77:9e:85:c2:d3:0e:6d:9e: 24:e4:a6:ea -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIwkfgUsevs5tAdNJ8Y1vYm7TftowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNDA4MjAwNTU1MDBaFw0yNTA4MTkwNjAwMDBaMDMxMTAvBgNV BAMTKDBBMkEzM0VBMEQ5QjVFMkI3RjExMkQzRTg5OUU0NjUxQ0VERDc2MDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9WPXtqkBmtlSUk1VbtJ8JWsIJ pYxqLMdpKBwtd0jmIcpta5sr4Oc3Li3Q0YO062RLPcoSG6bj+2GXIT4hK8VoSOEq biIQEVjm4Y89J2oHFiCDAEJdJqj85S5lY0RlK0jKDY+hBKh+k2W0aaQlXLKw6iXq 29iDq42EUhXi0C7iERdH9WKddU0XVXvvqCLmUB6/UTv2LkO+/K/iz6lPnxpdzwH1 dP3iaXcDZ695UqCQBvcp3qnpdoKUl4BeUQ8qDIkUU1lejOnah0v+9PrSJJrZEgJo OBib/WdObDLASiC34RA+TH/OVniswRf0C7A39zQDvd92mQemBQqPZZwNs1CbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCioz6g2bXit/ES0+iZ5GUc7ddgcwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMyMzAzMjJlMzEzNTMyMmUzMTMyMzgyZTMwMmYz MTM5MmQzMjM0MjAzZDNlMjAzMjMzMzkzNTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFypiAMA0GCSqG SIb3DQEBCwUAA4IBAQBAtimPb0R3+HKIivvy52tx4mg616elLcG7cwBJyyayse/t oZq1CrBr4C/kq5g2giJBI2NgttCYIG5e3lS1Drw7UUMMTOa2Qna5NYSKpCeF83Fn 1BK6Lf1PDyePrnEOaL+Sa3M2Cj3Ii90+h3LXjMg530e8zHSflw4re/kNEvxmBDK2 Wcf7loEaDcl6HqAwY3DY7SOh5Qgm3yYlsgZLyWWifzRuiDBJxU7FTQiPi5Oz2oVX gsoTecR9DDmKptxx4p2AqvByL1c1hgypKZDKQh1NBVvraoNiEu6te7XReqZVwvFd gczwZSVfe8Q1qX7OdtaHEdaod56FwtMObZ4k5Kbq -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:58 2024 by rpki-client on console-ams.rpki-client.org