$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3131322e302f32342d3234203d3e203233393531.roa File: 3230322e36352e3131322e302f32342d3234203d3e203233393531.roa (raw, json) Hash identifier: tGWvh9Bs3t8INRdrxWygALb5XhF17l2/AZgg1s1qyuY= Subject key identifier: 48:AA:7B:B8:D8:18:9E:61:0E:77:BD:BC:D5:D0:02:E2:CA:A4:A8:74 Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 514720ABFFF78E0FAFE62D8362712FEE6256AEA1 Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3131322e302f32342d3234203d3e203233393531.roa Signing time: Tue 23 Apr 2024 18:00:00 +0000 ROA not before: Tue 23 Apr 2024 17:55:00 +0000 ROA not after: Tue 22 Apr 2025 18:00:00 +0000 asID: 23951 IP address blocks: 202.65.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:47:20:ab:ff:f7:8e:0f:af:e6:2d:83:62:71:2f:ee:62:56:ae:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Apr 23 17:55:00 2024 GMT Not After : Apr 22 18:00:00 2025 GMT Subject: CN=48AA7BB8D8189E610E77BDBCD5D002E2CAA4A874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:e4:a9:16:81:e2:ce:cd:c5:23:62:8c:55:64: 1b:b4:bc:00:51:09:7f:3f:aa:76:88:e2:21:bb:e1: 5a:07:26:33:8b:17:97:b1:65:c2:e0:2f:f4:ee:51: 5d:d8:1c:80:6b:0f:15:41:f6:57:8f:71:60:aa:19: 93:71:27:60:ab:80:42:2e:68:cc:65:fd:fc:b4:ac: 6a:ba:7c:33:82:63:5f:57:6c:c3:d7:f1:59:0b:a6: 37:6b:38:d6:ca:97:d2:0d:db:04:24:9d:62:92:ad: a6:10:67:a9:e6:92:ac:ef:1c:42:5f:fb:9b:96:02: 3c:b5:93:92:33:40:1d:e5:b6:87:03:ef:fd:ee:62: b3:48:76:26:5d:29:d6:06:97:41:28:19:1d:27:b4: 4d:c6:75:0f:7c:da:c2:3b:ad:d2:38:70:89:a2:ee: 88:60:30:8b:49:0e:85:a6:39:ad:8a:7d:b7:aa:31: 9e:f1:20:a1:49:8d:90:1f:b0:d7:63:a8:f5:24:08: 31:d0:9f:71:58:ee:97:f8:2d:05:ab:63:82:e8:f3: 5e:78:51:d6:32:42:48:0d:e0:c9:07:78:57:c3:55: 78:94:32:fc:c5:95:40:1d:9f:5d:07:83:dc:66:e9: af:7d:70:f2:72:d1:89:95:5d:70:c4:9d:1a:9d:34: 8c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:AA:7B:B8:D8:18:9E:61:0E:77:BD:BC:D5:D0:02:E2:CA:A4:A8:74 X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3131322e302f32342d3234203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.65.112.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:b2:93:28:06:e4:54:5b:0f:b6:0d:9c:5a:c5:30:3f:7b:e0: 4d:17:a3:8a:55:5c:e8:26:3e:3e:ff:ce:ff:6f:b3:b5:74:4c: c6:32:0a:cd:59:53:a6:5a:7a:9e:2d:6f:c3:6b:95:0d:52:08: 73:ba:21:6d:5b:1c:ec:dd:86:e6:45:77:3f:cc:b9:a0:db:04: 3f:c6:40:65:d9:57:2c:0f:da:83:74:0d:aa:42:f0:c8:92:83: 15:2c:c3:d7:a4:2b:9a:2f:70:b6:bc:f0:20:16:cb:ca:23:ff: dd:cf:4c:a5:f8:3e:d0:bd:ce:2a:e4:f0:59:18:51:ba:6e:8a: 58:c0:7c:80:19:5f:9a:0e:b1:48:40:2b:45:b1:35:fa:eb:7b: 94:86:f2:39:cc:2f:ae:24:74:e2:4c:aa:e7:84:70:0c:af:57: 97:80:64:26:4b:50:bf:e5:a9:3a:b6:90:9c:58:84:3e:c8:38: d8:0a:e2:76:fa:d4:5d:7c:bd:1d:30:9a:5d:c9:45:6c:ac:0c: 40:08:02:13:bf:20:8a:af:d8:6c:eb:70:b7:c2:ff:c9:9e:ce: bb:d4:0e:f5:11:71:10:60:d4:5a:99:c1:af:fb:4c:28:87:d7: 98:e9:95:7d:75:47:4d:9c:68:c7:cc:72:d1:22:0c:65:7a:53: 80:59:64:22 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUUcgq//3jg+v5i2DYnEv7mJWrqEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNDA0MjMxNzU1MDBaFw0yNTA0MjIxODAwMDBaMDMxMTAvBgNV BAMTKDQ4QUE3QkI4RDgxODlFNjEwRTc3QkRCQ0Q1RDAwMkUyQ0FBNEE4NzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCe5KkWgeLOzcUjYoxVZBu0vABR CX8/qnaI4iG74VoHJjOLF5exZcLgL/TuUV3YHIBrDxVB9lePcWCqGZNxJ2CrgEIu aMxl/fy0rGq6fDOCY19XbMPX8VkLpjdrONbKl9IN2wQknWKSraYQZ6nmkqzvHEJf +5uWAjy1k5IzQB3ltocD7/3uYrNIdiZdKdYGl0EoGR0ntE3GdQ982sI7rdI4cImi 7ohgMItJDoWmOa2KfbeqMZ7xIKFJjZAfsNdjqPUkCDHQn3FY7pf4LQWrY4Lo8154 UdYyQkgN4MkHeFfDVXiUMvzFlUAdn10Hg9xm6a99cPJy0YmVXXDEnRqdNIxpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUSKp7uNgYnmEOd7281dAC4sqkqHQwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMyMzAzMjJlMzYzNTJlMzEzMTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM5MzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpBcDANBgkqhkiG 9w0BAQsFAAOCAQEADrKTKAbkVFsPtg2cWsUwP3vgTRejilVc6CY+Pv/O/2+ztXRM xjIKzVlTplp6ni1vw2uVDVIIc7ohbVsc7N2G5kV3P8y5oNsEP8ZAZdlXLA/ag3QN qkLwyJKDFSzD16Qrmi9wtrzwIBbLyiP/3c9Mpfg+0L3OKuTwWRhRum6KWMB8gBlf mg6xSEArRbE1+ut7lIbyOcwvriR04kyq54RwDK9Xl4BkJktQv+WpOraQnFiEPsg4 2AridvrUXXy9HTCaXclFbKwMQAgCE78giq/YbOtwt8L/yZ7Ou9QO9RFxEGDUWpnB r/tMKIfXmOmVfXVHTZxox8xy0SIMZXpTgFlkIg== -----END CERTIFICATE-----Generated at Thu Nov 21 21:01:20 2024 by rpki-client on console-fra.rpki-client.org