$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3131322e302f32302d3231203d3e203233393531.roa File: 3230322e36352e3131322e302f32302d3231203d3e203233393531.roa (raw, json) Hash identifier: jHen1vZLG/DOZwqIeHYY98aBHq6SMyx6T3vs559h5rI= Subject key identifier: A7:D2:45:78:3F:BA:6B:58:16:73:A7:B7:BF:12:84:36:98:39:FE:10 Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 6BC69B8E4828391DA94FBF81E786D7B04382BD6B Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3131322e302f32302d3231203d3e203233393531.roa Signing time: Tue 20 Aug 2024 05:00:01 +0000 ROA not before: Tue 20 Aug 2024 04:55:01 +0000 ROA not after: Tue 19 Aug 2025 05:00:01 +0000 asID: 23951 IP address blocks: 202.65.112.0/20 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:c6:9b:8e:48:28:39:1d:a9:4f:bf:81:e7:86:d7:b0:43:82:bd:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Aug 20 04:55:01 2024 GMT Not After : Aug 19 05:00:01 2025 GMT Subject: CN=A7D245783FBA6B581673A7B7BF1284369839FE10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0a:14:ba:82:64:48:f9:c4:56:d0:bd:f8:f4: e1:32:8b:5f:41:09:f2:52:7b:46:b6:5b:bb:1d:0c: 27:4d:4c:ca:f5:f2:57:15:54:d0:d3:82:d1:87:00: 49:bb:e1:f1:ae:f0:39:25:12:2f:97:9c:9b:bf:c2: 60:a7:81:05:14:5d:40:14:f9:8e:9c:9f:c2:77:61: 9b:28:2a:82:ba:03:8e:3c:0e:3a:dd:f0:05:4b:5f: c9:1c:46:a2:f8:23:48:2d:11:8f:c6:e8:a7:02:01: 47:cb:4f:c0:82:5f:fb:e3:ac:4a:55:a7:50:7f:cb: 90:7c:7e:dc:d3:6a:0a:24:36:b4:96:a7:60:e3:09: b7:5e:06:e8:a4:09:51:c1:4c:33:95:93:ba:53:15: 60:b7:01:da:d8:c2:d4:68:6a:44:e0:ec:68:3d:ff: 09:51:87:c7:18:3c:cf:f5:b8:59:ca:91:62:6c:3d: d8:fd:2b:01:2f:dc:3d:8d:0b:15:bd:0a:be:8e:ae: c7:58:2a:a1:68:3f:3a:8e:44:f4:9e:74:df:7a:3e: b7:c3:49:c2:7e:23:a3:08:4d:94:5f:b0:7c:77:d4: 95:e8:4e:c6:97:cd:f2:81:3a:fc:e5:87:aa:58:3f: 25:f4:d8:31:a4:74:55:d5:e7:68:47:fd:f9:e8:1d: 75:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:D2:45:78:3F:BA:6B:58:16:73:A7:B7:BF:12:84:36:98:39:FE:10 X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3131322e302f32302d3231203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.65.112.0/20 Signature Algorithm: sha256WithRSAEncryption 6f:d3:90:9e:eb:36:72:42:03:69:62:91:c2:a7:09:be:71:4f: b7:b8:70:38:28:6e:d0:b0:10:3d:57:51:95:42:5d:03:b5:96: 5e:ef:8c:3b:12:18:1f:ab:93:ef:56:9b:80:52:38:f6:9b:75: c1:7f:5b:f0:25:d5:46:32:00:c9:ff:bf:72:2e:85:eb:e1:f4: e1:99:cc:d3:74:ab:ae:92:09:f6:67:a5:ee:b7:39:9f:61:ef: 77:a1:4f:b7:32:9e:4d:ad:03:9b:5e:92:8b:4d:53:3b:1e:b6: 14:6f:7e:2e:5b:4a:f3:f7:4f:b9:aa:bf:91:0e:33:4d:44:fd: ae:64:de:b4:0c:1e:ec:5b:52:cc:d8:ed:01:4e:a0:11:ad:d7: 0a:f9:7a:b9:ee:2d:ee:42:50:62:61:ec:24:a4:49:4a:31:be: 00:fe:21:24:96:74:4c:d2:89:1a:c4:a7:9c:10:bc:76:e9:ab: 08:ee:ea:82:ef:22:34:c9:17:93:bd:ca:76:9d:b6:2d:a4:30: 6e:c1:48:51:d7:84:12:c2:0b:16:d9:79:cc:d8:1c:02:cf:4e: 05:60:da:04:8b:b5:b1:12:17:4e:8e:8a:c8:d1:af:d8:0f:17: cc:76:5c:32:5c:52:4e:57:55:67:b8:85:c9:31:a0:06:a8:27: c5:a2:b8:b2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUa8abjkgoOR2pT7+B54bXsEOCvWswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNDA4MjAwNDU1MDFaFw0yNTA4MTkwNTAwMDFaMDMxMTAvBgNV BAMTKEE3RDI0NTc4M0ZCQTZCNTgxNjczQTdCN0JGMTI4NDM2OTgzOUZFMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3ChS6gmRI+cRW0L349OEyi19B CfJSe0a2W7sdDCdNTMr18lcVVNDTgtGHAEm74fGu8DklEi+XnJu/wmCngQUUXUAU +Y6cn8J3YZsoKoK6A448Djrd8AVLX8kcRqL4I0gtEY/G6KcCAUfLT8CCX/vjrEpV p1B/y5B8ftzTagokNrSWp2DjCbdeBuikCVHBTDOVk7pTFWC3AdrYwtRoakTg7Gg9 /wlRh8cYPM/1uFnKkWJsPdj9KwEv3D2NCxW9Cr6OrsdYKqFoPzqORPSedN96PrfD ScJ+I6MITZRfsHx31JXoTsaXzfKBOvzlh6pYPyX02DGkdFXV52hH/fnoHXUBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUp9JFeD+6a1gWc6e3vxKENpg5/hAwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMyMzAzMjJlMzYzNTJlMzEzMTMyMmUzMDJmMzIz MDJkMzIzMTIwM2QzZTIwMzIzMzM5MzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMpBcDANBgkqhkiG 9w0BAQsFAAOCAQEAb9OQnus2ckIDaWKRwqcJvnFPt7hwOChu0LAQPVdRlUJdA7WW Xu+MOxIYH6uT71abgFI49pt1wX9b8CXVRjIAyf+/ci6F6+H04ZnM03SrrpIJ9mel 7rc5n2Hvd6FPtzKeTa0Dm16Si01TOx62FG9+LltK8/dPuaq/kQ4zTUT9rmTetAwe 7FtSzNjtAU6gEa3XCvl6ue4t7kJQYmHsJKRJSjG+AP4hJJZ0TNKJGsSnnBC8dumr CO7qgu8iNMkXk73Kdp22LaQwbsFIUdeEEsILFtl5zNgcAs9OBWDaBIu1sRIXTo6K yNGv2A8XzHZcMlxSTldVZ7iFyTGgBqgnxaK4sg== -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:58 2024 by rpki-client on console-ams.rpki-client.org