$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132302e302f32322d3233203d3e203233393531.roa File: 3230322e36352e3132302e302f32322d3233203d3e203233393531.roa (raw, json) Hash identifier: mwYMKgumoG9KUXW9CmbB5xkKPC0iVTbXFYBRWL88eZY= Subject key identifier: C5:C4:8D:EE:68:71:A2:B7:5F:B7:A0:DE:F3:1B:EA:54:7B:1D:77:70 Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 7749566A909D04BA224EEB2E811F9F19557892D8 Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132302e302f32322d3233203d3e203233393531.roa Signing time: Fri 02 Aug 2024 02:14:04 +0000 ROA not before: Fri 02 Aug 2024 02:09:04 +0000 ROA not after: Fri 01 Aug 2025 02:14:04 +0000 asID: 23951 IP address blocks: 202.65.120.0/22 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:49:56:6a:90:9d:04:ba:22:4e:eb:2e:81:1f:9f:19:55:78:92:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Aug 2 02:09:04 2024 GMT Not After : Aug 1 02:14:04 2025 GMT Subject: CN=C5C48DEE6871A2B75FB7A0DEF31BEA547B1D7770 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:43:ed:0f:00:d2:11:69:4e:34:df:a5:04:0b: 7b:24:69:14:26:be:bd:1b:16:63:f3:82:c8:73:2d: 44:7e:88:27:ee:95:9f:3a:88:7b:cd:2d:f1:0f:4e: a5:98:ec:05:2d:5e:e4:50:9d:ad:8a:79:d1:99:cf: 3b:c7:0e:2b:f3:b1:dc:d7:4c:8d:cb:d2:bc:9c:69: 17:39:23:7d:82:ea:70:cf:47:f2:3a:d4:69:7f:27: 9a:aa:a6:53:02:48:6a:a9:55:4a:33:17:bf:17:05: d6:cd:39:53:cd:71:59:db:83:ad:61:3e:87:57:ee: 18:d4:a7:68:5d:b2:91:bb:a8:e3:75:91:96:2b:cf: 9c:fd:a8:5e:d1:da:76:44:71:dc:db:33:7b:dd:2c: c2:55:ac:c1:f2:42:6f:30:1b:1e:fa:28:ca:3a:a7: 29:1e:43:04:8b:e3:fc:4b:de:b2:94:55:27:1a:44: c1:24:89:06:d0:ae:c1:a1:98:d4:fe:6a:25:90:c3: 89:d2:56:1b:91:c8:35:f6:17:91:e1:d2:7a:4e:f3: 39:05:c7:0c:64:c4:78:91:13:24:1a:60:3c:8d:04: 0a:d3:71:96:3c:20:33:90:27:18:79:64:b9:c7:fa: b1:b8:2f:04:b5:65:9b:a1:99:fc:d8:c7:62:d2:ad: e7:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:C4:8D:EE:68:71:A2:B7:5F:B7:A0:DE:F3:1B:EA:54:7B:1D:77:70 X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132302e302f32322d3233203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.65.120.0/22 Signature Algorithm: sha256WithRSAEncryption 4f:ad:c1:51:d7:c8:eb:ab:56:59:87:8b:38:eb:5c:06:fa:86: 8b:20:38:f2:6f:ba:0b:ed:61:54:9f:47:ae:5a:b6:52:d9:d1: e9:5c:53:66:0e:dc:6f:79:4e:6c:3a:32:5f:31:4a:e2:57:63: f4:fd:e3:9e:06:cb:44:3c:74:b5:aa:3c:a0:c0:cd:9e:ee:93: 7d:dd:96:ae:98:10:48:6f:48:50:05:b5:6d:33:af:be:ea:85: 0e:8e:a6:0f:5b:86:43:99:79:51:28:df:e3:f8:8a:06:0a:67: 96:9e:83:ac:f6:17:88:88:89:d1:a5:8c:01:09:73:38:39:ef: 15:f2:23:f0:22:0f:84:fd:5d:4f:02:5b:35:57:7d:76:2c:f8: 81:8a:ee:df:12:7d:08:58:ee:1b:3f:9d:90:02:d9:d2:64:7f: 22:0a:81:29:84:6f:f6:02:39:60:da:0b:94:3e:48:6e:bd:9c: 46:e5:19:52:44:64:6f:e0:c6:c0:dd:b5:66:3b:90:c4:6e:03: 01:09:bc:2d:48:e7:a6:20:57:ad:ce:79:89:47:4d:32:e0:f1: 94:9f:2f:6b:0d:11:42:c2:33:07:33:0e:8a:57:d4:66:05:1d: f9:a5:d4:0d:fc:cb:fa:69:80:af:d7:78:10:8d:c3:df:5b:a6: 68:1d:f7:a7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUd0lWapCdBLoiTusugR+fGVV4ktgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNDA4MDIwMjA5MDRaFw0yNTA4MDEwMjE0MDRaMDMxMTAvBgNV BAMTKEM1QzQ4REVFNjg3MUEyQjc1RkI3QTBERUYzMUJFQTU0N0IxRDc3NzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtQ+0PANIRaU4036UEC3skaRQm vr0bFmPzgshzLUR+iCfulZ86iHvNLfEPTqWY7AUtXuRQna2KedGZzzvHDivzsdzX TI3L0rycaRc5I32C6nDPR/I61Gl/J5qqplMCSGqpVUozF78XBdbNOVPNcVnbg61h PodX7hjUp2hdspG7qON1kZYrz5z9qF7R2nZEcdzbM3vdLMJVrMHyQm8wGx76KMo6 pykeQwSL4/xL3rKUVScaRMEkiQbQrsGhmNT+aiWQw4nSVhuRyDX2F5Hh0npO8zkF xwxkxHiREyQaYDyNBArTcZY8IDOQJxh5ZLnH+rG4LwS1ZZuhmfzYx2LSred3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUxcSN7mhxordft6De8xvqVHsdd3AwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMyMzAzMjJlMzYzNTJlMzEzMjMwMmUzMDJmMzIz MjJkMzIzMzIwM2QzZTIwMzIzMzM5MzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAspBeDANBgkqhkiG 9w0BAQsFAAOCAQEAT63BUdfI66tWWYeLOOtcBvqGiyA48m+6C+1hVJ9Hrlq2UtnR 6VxTZg7cb3lObDoyXzFK4ldj9P3jngbLRDx0tao8oMDNnu6Tfd2WrpgQSG9IUAW1 bTOvvuqFDo6mD1uGQ5l5USjf4/iKBgpnlp6DrPYXiIiJ0aWMAQlzODnvFfIj8CIP hP1dTwJbNVd9diz4gYru3xJ9CFjuGz+dkALZ0mR/IgqBKYRv9gI5YNoLlD5Ibr2c RuUZUkRkb+DGwN21ZjuQxG4DAQm8LUjnpiBXrc55iUdNMuDxlJ8vaw0RQsIzBzMO ilfUZgUd+aXUDfzL+mmAr9d4EI3D31umaB33pw== -----END CERTIFICATE-----Generated at Thu Nov 21 21:01:20 2024 by rpki-client on console-fra.rpki-client.org