$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132312e302f32342d3234203d3e203233393531.roa File: 3230322e36352e3132312e302f32342d3234203d3e203233393531.roa (raw, json) Hash identifier: unueG7P54wUmQZvOUKrhpSAH4gB/UymG78WRnuwkjpw= Subject key identifier: FA:11:7E:68:DE:F3:40:D0:29:D5:3C:75:6F:60:A4:27:FF:53:11:BA Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 2CC084E1410B4AC62254AFE27A4515139CF01A70 Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132312e302f32342d3234203d3e203233393531.roa Signing time: Fri 02 Aug 2024 02:15:20 +0000 ROA not before: Fri 02 Aug 2024 02:10:20 +0000 ROA not after: Fri 01 Aug 2025 02:15:20 +0000 asID: 23951 IP address blocks: 202.65.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:c0:84:e1:41:0b:4a:c6:22:54:af:e2:7a:45:15:13:9c:f0:1a:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Aug 2 02:10:20 2024 GMT Not After : Aug 1 02:15:20 2025 GMT Subject: CN=FA117E68DEF340D029D53C756F60A427FF5311BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:5d:06:b7:4c:2a:83:89:5f:c2:a4:5c:d2:4b: e0:e3:cd:8d:94:dc:e4:68:65:3c:7d:56:86:68:ae: c5:46:6a:7e:00:f7:21:d3:4a:fa:58:d0:71:70:7a: 79:01:5b:cf:da:97:c9:06:5e:2c:22:2b:db:cf:68: 5c:20:8c:70:ab:bd:5b:39:62:30:04:19:87:ef:6e: 32:51:bb:95:c5:64:85:8b:74:82:0a:4d:27:35:3d: c0:1c:f2:85:c1:7e:c9:f6:e2:81:2e:07:1d:64:b9: 9e:ae:2b:5e:6f:0d:41:7f:31:18:5f:a7:a7:d9:b4: 6f:74:ab:c2:46:52:13:1c:3e:da:5d:c5:cc:83:18: 45:27:1d:4e:89:26:fa:ea:ad:7a:48:c8:4c:4d:e3: f3:c3:47:41:2a:fc:a5:dd:1f:be:fc:70:59:df:41: d4:6a:a2:bf:d4:6a:ca:20:be:4a:42:6e:72:d6:d1: f9:7e:9a:20:16:90:9c:79:41:c0:88:be:78:79:c7: ff:ab:db:e8:5f:4d:b8:a4:ab:22:69:6e:d1:9a:54: 08:0d:86:74:20:da:eb:8e:78:1f:9e:28:a0:06:ec: a1:d4:52:b1:d3:a4:3f:cc:a9:da:37:8e:1c:67:ee: fb:7d:65:3b:f0:a5:6a:5a:15:6e:9a:b6:3c:15:95: ab:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:11:7E:68:DE:F3:40:D0:29:D5:3C:75:6F:60:A4:27:FF:53:11:BA X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132312e302f32342d3234203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.65.121.0/24 Signature Algorithm: sha256WithRSAEncryption 65:5b:a8:dc:81:58:28:c7:3c:31:03:67:4c:ba:8d:10:38:77: ff:70:8c:e1:c0:49:08:24:81:da:c6:b1:99:30:7f:de:ee:ea: 3e:8e:23:5e:54:1f:69:6a:c5:06:c7:0c:db:00:af:9a:aa:10: 42:b8:d1:69:bd:45:e0:9d:59:86:cb:c0:e7:5e:cc:ca:5e:81: 42:99:c9:68:94:dd:60:cd:68:68:15:0d:b4:86:dc:e8:50:2f: 6f:eb:a4:ea:e2:2f:a4:3c:24:fc:5e:c7:13:00:02:72:85:57: 0a:bc:65:9b:0d:e6:7d:d9:25:a5:ee:50:46:65:9a:65:a6:88: d2:5e:d3:d3:89:e9:f1:be:88:d2:b0:35:f8:bd:ed:ad:32:b4: ea:5d:e7:61:11:2a:13:43:f2:8c:33:72:30:cb:fd:ec:80:42: 6e:27:9e:f5:73:84:2d:5f:52:2e:d2:ed:78:88:0e:15:c1:08: 02:fe:58:50:7b:68:d1:f3:df:b7:cf:c5:75:be:eb:9d:95:c9: c5:b3:62:5e:3a:c5:57:8b:08:9a:e5:70:54:6c:0a:7f:ba:41: 0b:1e:fe:25:2e:1a:43:6b:91:cf:6d:ee:be:1b:9d:39:a6:89: 0b:9a:89:bd:51:fb:b5:d8:b9:92:67:7d:c0:58:d7:09:dd:ac: 2e:e8:b9:2c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULMCE4UELSsYiVK/iekUVE5zwGnAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNDA4MDIwMjEwMjBaFw0yNTA4MDEwMjE1MjBaMDMxMTAvBgNV BAMTKEZBMTE3RTY4REVGMzQwRDAyOUQ1M0M3NTZGNjBBNDI3RkY1MzExQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxXQa3TCqDiV/CpFzSS+DjzY2U 3ORoZTx9VoZorsVGan4A9yHTSvpY0HFwenkBW8/al8kGXiwiK9vPaFwgjHCrvVs5 YjAEGYfvbjJRu5XFZIWLdIIKTSc1PcAc8oXBfsn24oEuBx1kuZ6uK15vDUF/MRhf p6fZtG90q8JGUhMcPtpdxcyDGEUnHU6JJvrqrXpIyExN4/PDR0Eq/KXdH778cFnf QdRqor/UasogvkpCbnLW0fl+miAWkJx5QcCIvnh5x/+r2+hfTbikqyJpbtGaVAgN hnQg2uuOeB+eKKAG7KHUUrHTpD/Mqdo3jhxn7vt9ZTvwpWpaFW6atjwVlas1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+hF+aN7zQNAp1Tx1b2CkJ/9TEbowHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMyMzAzMjJlMzYzNTJlMzEzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM5MzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpBeTANBgkqhkiG 9w0BAQsFAAOCAQEAZVuo3IFYKMc8MQNnTLqNEDh3/3CM4cBJCCSB2saxmTB/3u7q Po4jXlQfaWrFBscM2wCvmqoQQrjRab1F4J1ZhsvA517Myl6BQpnJaJTdYM1oaBUN tIbc6FAvb+uk6uIvpDwk/F7HEwACcoVXCrxlmw3mfdklpe5QRmWaZaaI0l7T04np 8b6I0rA1+L3trTK06l3nYREqE0PyjDNyMMv97IBCbiee9XOELV9SLtLteIgOFcEI Av5YUHto0fPft8/Fdb7rnZXJxbNiXjrFV4sImuVwVGwKf7pBCx7+JS4aQ2uRz23u vhudOaaJC5qJvVH7tdi5kmd9wFjXCd2sLui5LA== -----END CERTIFICATE-----Generated at Thu Nov 21 21:01:20 2024 by rpki-client on console-fra.rpki-client.org