$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3131322e302f32312d3231203d3e203233393531.roa File: 3230322e36352e3131322e302f32312d3231203d3e203233393531.roa (raw, json) Hash identifier: H911T2Oyw7E/be4YSoMDYuSyG1D6EtJloE4CFkI8rag= Subject key identifier: 6F:21:D1:54:BA:30:79:17:29:40:9E:D1:09:10:2B:98:4B:4E:BE:61 Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 5A9350A2D9E5E750348E674ADFB7BD9ECB335074 Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3131322e302f32312d3231203d3e203233393531.roa Signing time: Tue 23 Apr 2024 18:00:00 +0000 ROA not before: Tue 23 Apr 2024 17:55:00 +0000 ROA not after: Tue 22 Apr 2025 18:00:00 +0000 asID: 23951 IP address blocks: 202.65.112.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:93:50:a2:d9:e5:e7:50:34:8e:67:4a:df:b7:bd:9e:cb:33:50:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Apr 23 17:55:00 2024 GMT Not After : Apr 22 18:00:00 2025 GMT Subject: CN=6F21D154BA30791729409ED109102B984B4EBE61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:8d:9a:bb:f3:38:66:83:4a:08:50:51:fa:c6: a6:02:c5:b3:5b:24:7a:35:2b:e0:a9:b2:26:40:75: 9b:5b:7a:88:37:0c:fc:a9:a3:bb:09:7c:73:9b:2d: 89:3c:1a:75:9d:50:1b:d6:0e:f2:9c:c5:57:f2:a9: b2:46:b9:52:bb:ae:c4:39:85:60:df:93:08:07:99: 83:f0:8e:ef:06:09:1d:15:c3:bd:65:ca:da:bb:26: 6b:75:1e:6c:70:60:49:ba:1a:31:8a:13:78:9e:e3: 13:bf:c1:7d:cd:c7:fc:74:9d:c5:dc:9c:f8:d4:5a: e2:7a:ea:6e:58:62:b7:12:a9:52:14:70:1a:af:08: 30:15:3a:d6:a6:31:ee:ef:22:83:4f:2e:29:d8:8d: 9c:67:ce:30:3d:76:87:f4:8c:2f:a9:00:3d:2f:07: a4:0f:67:21:1d:8d:0b:a6:81:36:9d:4a:5b:c9:fe: 9c:35:31:e4:53:9d:3e:b1:52:41:b4:37:db:5f:b8: 25:db:19:a4:2b:61:0e:c9:e1:ab:ad:71:81:f5:cf: 98:aa:b0:f9:d0:db:75:aa:17:a9:5a:30:1c:61:92: 56:d9:00:86:c4:b1:9d:0d:5a:87:a8:22:88:d5:42: a0:33:38:6d:4d:98:9a:5d:0d:36:67:68:94:7b:f0: d5:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:21:D1:54:BA:30:79:17:29:40:9E:D1:09:10:2B:98:4B:4E:BE:61 X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3131322e302f32312d3231203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.65.112.0/21 Signature Algorithm: sha256WithRSAEncryption 2f:02:1a:74:ce:28:61:a1:56:02:56:c0:ee:b3:6e:05:75:0c: ea:6c:02:e9:35:41:fc:05:98:1d:5b:d4:ca:36:11:34:ef:16: f5:e2:09:78:6a:e9:da:89:96:bd:ed:43:35:d1:2a:d9:97:87: 94:06:6d:e1:c3:9c:2a:73:f3:48:03:b6:5c:0f:31:0b:3d:43: 1b:82:80:3e:8b:01:27:e2:e8:77:4c:5b:1f:ff:af:20:b8:b7: ed:07:b6:83:84:6a:1a:54:72:63:10:c0:72:d6:66:ca:12:2e: a5:6a:60:57:ba:37:93:38:1a:61:bc:02:a0:d8:0b:27:b9:35: 59:cb:45:7c:f8:4a:2d:ae:eb:eb:7b:a1:a5:59:80:b0:fe:74: 3b:4f:53:a2:a7:6a:ad:ff:e6:a6:98:b9:0b:23:91:4f:25:ea: 9e:73:df:f6:90:7e:63:b4:86:59:71:3f:ed:71:a1:c3:3c:ca: 36:cb:08:33:9f:a0:3f:3b:d2:51:c0:f8:63:ad:4b:66:24:02: b0:87:f0:bb:ad:56:02:9a:4a:d2:fe:e8:22:50:32:c3:38:b8: 30:02:66:ce:56:85:99:b2:c6:c0:2f:d4:29:2a:38:80:17:6c: 73:87:fc:ef:fb:83:53:cb:e7:6e:4d:59:d4:3c:2d:43:48:2e: 05:f0:34:e0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWpNQotnl51A0jmdK37e9nsszUHQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNDA0MjMxNzU1MDBaFw0yNTA0MjIxODAwMDBaMDMxMTAvBgNV BAMTKDZGMjFEMTU0QkEzMDc5MTcyOTQwOUVEMTA5MTAyQjk4NEI0RUJFNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2jZq78zhmg0oIUFH6xqYCxbNb JHo1K+CpsiZAdZtbeog3DPypo7sJfHObLYk8GnWdUBvWDvKcxVfyqbJGuVK7rsQ5 hWDfkwgHmYPwju8GCR0Vw71lytq7Jmt1HmxwYEm6GjGKE3ie4xO/wX3Nx/x0ncXc nPjUWuJ66m5YYrcSqVIUcBqvCDAVOtamMe7vIoNPLinYjZxnzjA9dof0jC+pAD0v B6QPZyEdjQumgTadSlvJ/pw1MeRTnT6xUkG0N9tfuCXbGaQrYQ7J4autcYH1z5iq sPnQ23WqF6laMBxhklbZAIbEsZ0NWoeoIojVQqAzOG1NmJpdDTZnaJR78NVRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUbyHRVLoweRcpQJ7RCRArmEtOvmEwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMyMzAzMjJlMzYzNTJlMzEzMTMyMmUzMDJmMzIz MTJkMzIzMTIwM2QzZTIwMzIzMzM5MzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8pBcDANBgkqhkiG 9w0BAQsFAAOCAQEALwIadM4oYaFWAlbA7rNuBXUM6mwC6TVB/AWYHVvUyjYRNO8W 9eIJeGrp2omWve1DNdEq2ZeHlAZt4cOcKnPzSAO2XA8xCz1DG4KAPosBJ+Lod0xb H/+vILi37Qe2g4RqGlRyYxDActZmyhIupWpgV7o3kzgaYbwCoNgLJ7k1WctFfPhK La7r63uhpVmAsP50O09Toqdqrf/mppi5CyORTyXqnnPf9pB+Y7SGWXE/7XGhwzzK NssIM5+gPzvSUcD4Y61LZiQCsIfwu61WAppK0v7oIlAywzi4MAJmzlaFmbLGwC/U KSo4gBdsc4f87/uDU8vnbk1Z1DwtQ0guBfA04A== -----END CERTIFICATE-----Generated at Thu Nov 21 21:01:20 2024 by rpki-client on console-fra.rpki-client.org