$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3131322e302f32312d3234203d3e203233393531.roa File: 3230322e36352e3131322e302f32312d3234203d3e203233393531.roa (raw, json) Hash identifier: nun7wr5qUW6SSsLL/8m4wIYLtJbVijMvNYm3I5L5gwY= Subject key identifier: 35:44:03:2A:FD:DB:19:EA:8E:B9:95:C5:39:82:20:B5:64:79:FB:DD Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 1B3F1FAC9232F860BF23A18D97CA016482DD3AFE Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3131322e302f32312d3234203d3e203233393531.roa Signing time: Tue 20 Aug 2024 05:00:01 +0000 ROA not before: Tue 20 Aug 2024 04:55:01 +0000 ROA not after: Tue 19 Aug 2025 05:00:01 +0000 asID: 23951 IP address blocks: 202.65.112.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:3f:1f:ac:92:32:f8:60:bf:23:a1:8d:97:ca:01:64:82:dd:3a:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Aug 20 04:55:01 2024 GMT Not After : Aug 19 05:00:01 2025 GMT Subject: CN=3544032AFDDB19EA8EB995C5398220B56479FBDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d0:bc:0c:8a:72:f9:3e:ba:36:90:a8:e5:4c: 1a:5d:13:be:61:92:43:57:1c:08:01:c1:e7:e5:37: eb:dd:23:23:30:6a:f1:83:bd:5c:97:3b:0c:47:f5: 1e:d2:ef:8a:eb:bf:df:14:26:96:b8:8f:2c:5b:ef: 9a:a5:6c:e6:3e:62:d3:86:5b:09:b9:21:91:90:79: 0a:a8:26:ee:db:f3:62:6a:4e:36:a4:61:3c:5b:d9: fc:82:c5:7a:65:08:ea:b8:ce:31:4c:f6:2d:96:f8: e6:49:b1:81:88:39:ca:f7:25:e3:58:cd:09:5c:db: 8e:5a:bd:1f:cc:46:33:8f:a9:e2:bf:95:92:d7:a4: ff:9d:c3:eb:be:cf:3a:0f:dc:82:f5:1b:4a:7c:1a: 11:d9:da:f4:5c:91:03:99:53:7c:89:dc:e7:0b:41: a3:25:9e:f8:3f:ed:26:cc:f7:50:dd:93:ad:01:8b: 9a:ee:20:5e:ca:1a:7e:48:bb:3b:48:83:d1:dd:24: 80:4d:f8:67:cb:e2:78:ec:8e:c0:21:47:6a:d7:72: be:82:84:c0:eb:07:f5:f9:fc:64:35:84:59:fd:fc: e7:b4:3e:3f:93:c2:24:46:e5:67:d4:45:7b:c1:6a: 99:b3:3c:11:67:ba:69:6d:3f:fc:4b:17:1a:6b:af: 10:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:44:03:2A:FD:DB:19:EA:8E:B9:95:C5:39:82:20:B5:64:79:FB:DD X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3131322e302f32312d3234203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.65.112.0/21 Signature Algorithm: sha256WithRSAEncryption 51:f0:30:31:ef:7a:cf:67:10:15:8b:a4:4c:cb:60:d5:2c:a9: 74:1c:67:c3:05:c5:e7:03:5d:43:e1:b5:26:be:39:ef:08:51: 7a:d7:68:56:5b:74:27:f2:7c:48:05:a5:b1:1c:92:00:ab:35: 70:2d:07:23:ef:4a:66:42:a5:8b:ff:26:22:e9:c5:a3:27:07: eb:18:c5:4e:9c:c5:78:fa:20:57:95:dc:06:3e:49:5a:c0:85: 4c:ff:3b:ce:55:2d:e4:d9:df:71:29:1d:d2:66:cc:a0:6b:a8: 9f:86:09:c0:69:28:40:1a:f6:46:03:a9:1a:e0:56:44:ca:29: 11:8e:bd:10:5a:6f:0d:35:87:c5:c9:02:4e:04:09:93:69:0c: 36:55:32:54:11:8b:c8:34:be:fd:7b:2f:5b:74:7b:f7:26:f3: 18:06:88:91:27:11:b4:b1:d9:3c:b7:e4:bd:b3:e2:27:f3:e9: b7:ef:5c:81:8a:15:50:b7:cd:3f:f9:f3:3a:7b:db:44:79:05: 43:9a:fe:90:a6:1f:c8:3e:c7:ee:85:72:67:4c:f5:ce:58:56: 12:7b:83:0c:75:32:11:a3:33:a8:b7:50:be:e3:f4:ee:1a:3e: ec:77:59:79:e3:10:b6:a1:27:10:88:e2:be:a3:b3:dd:89:5b: 57:ee:36:85 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGz8frJIy+GC/I6GNl8oBZILdOv4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNDA4MjAwNDU1MDFaFw0yNTA4MTkwNTAwMDFaMDMxMTAvBgNV BAMTKDM1NDQwMzJBRkREQjE5RUE4RUI5OTVDNTM5ODIyMEI1NjQ3OUZCREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG0LwMinL5Pro2kKjlTBpdE75h kkNXHAgBweflN+vdIyMwavGDvVyXOwxH9R7S74rrv98UJpa4jyxb75qlbOY+YtOG Wwm5IZGQeQqoJu7b82JqTjakYTxb2fyCxXplCOq4zjFM9i2W+OZJsYGIOcr3JeNY zQlc245avR/MRjOPqeK/lZLXpP+dw+u+zzoP3IL1G0p8GhHZ2vRckQOZU3yJ3OcL QaMlnvg/7SbM91Ddk60Bi5ruIF7KGn5IuztIg9HdJIBN+GfL4njsjsAhR2rXcr6C hMDrB/X5/GQ1hFn9/Oe0Pj+TwiRG5WfURXvBapmzPBFnumltP/xLFxprrxDvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUNUQDKv3bGeqOuZXFOYIgtWR5+90wHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMyMzAzMjJlMzYzNTJlMzEzMTMyMmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzIzMzM5MzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8pBcDANBgkqhkiG 9w0BAQsFAAOCAQEAUfAwMe96z2cQFYukTMtg1SypdBxnwwXF5wNdQ+G1Jr457whR etdoVlt0J/J8SAWlsRySAKs1cC0HI+9KZkKli/8mIunFoycH6xjFTpzFePogV5Xc Bj5JWsCFTP87zlUt5NnfcSkd0mbMoGuon4YJwGkoQBr2RgOpGuBWRMopEY69EFpv DTWHxckCTgQJk2kMNlUyVBGLyDS+/XsvW3R79ybzGAaIkScRtLHZPLfkvbPiJ/Pp t+9cgYoVULfNP/nzOnvbRHkFQ5r+kKYfyD7H7oVyZ0z1zlhWEnuDDHUyEaMzqLdQ vuP07ho+7HdZeeMQtqEnEIjivqOz3YlbV+42hQ== -----END CERTIFICATE-----Generated at Thu Nov 21 21:01:20 2024 by rpki-client on console-fra.rpki-client.org