$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132332e302f32342d3234203d3e203233393531.roa File: 3230322e36352e3132332e302f32342d3234203d3e203233393531.roa (raw, json) Hash identifier: 9FaMWUxx6cNM5vz7M9YrzpMwj5RS9BmzIfAf19UCzPI= Subject key identifier: 44:D7:93:E0:71:C0:2D:61:0C:E8:EF:BD:32:1B:5F:87:84:FB:E7:DE Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 6CAB13965E35B090B22A0BB275B3A3268A70B81E Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132332e302f32342d3234203d3e203233393531.roa Signing time: Fri 23 Aug 2024 03:00:00 +0000 ROA not before: Fri 23 Aug 2024 02:55:00 +0000 ROA not after: Fri 22 Aug 2025 03:00:00 +0000 asID: 23951 IP address blocks: 202.65.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:ab:13:96:5e:35:b0:90:b2:2a:0b:b2:75:b3:a3:26:8a:70:b8:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Aug 23 02:55:00 2024 GMT Not After : Aug 22 03:00:00 2025 GMT Subject: CN=44D793E071C02D610CE8EFBD321B5F8784FBE7DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:b1:5b:0c:97:b5:82:2f:77:97:fa:9a:f5:0e: 7b:f9:7d:6b:23:71:3c:47:54:e0:a9:68:6c:6b:ea: e2:98:6f:80:00:20:cb:f3:98:44:9a:58:40:4a:4e: e3:d1:99:86:d0:17:6d:aa:64:c3:33:43:b7:7e:95: 48:5a:75:5a:5e:2a:f8:87:83:82:c1:fe:8d:17:f7: 4a:78:15:cf:79:15:66:a9:4f:00:f8:b4:6d:fa:90: 12:7c:8a:e9:5a:ab:4d:81:11:62:b7:89:02:89:bb: 9a:41:00:7b:7e:5e:3f:90:7c:5a:15:9c:75:bd:5a: 4c:64:45:95:ab:5d:e4:7a:25:34:25:a5:b3:a6:f8: b2:b0:e3:53:0c:0e:17:23:95:b9:f5:6e:fe:60:b9: 32:61:51:b2:43:32:9d:9e:44:c8:f5:4c:3f:7a:7a: 6a:48:c4:7a:b2:ae:ec:8f:75:d8:3c:06:e1:78:d1: a5:b0:6e:8b:d3:7f:f9:a3:f9:61:bd:07:04:2f:7c: c0:80:b1:04:6a:1c:27:dc:1a:3b:31:03:93:42:1b: 49:9a:f5:ff:a8:30:90:14:77:bb:f9:48:df:6b:85: 72:42:f9:7e:5b:33:d9:be:47:8f:22:29:b4:20:4a: a6:af:62:9e:b0:78:c0:26:f9:d2:74:24:46:48:60: a4:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:D7:93:E0:71:C0:2D:61:0C:E8:EF:BD:32:1B:5F:87:84:FB:E7:DE X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132332e302f32342d3234203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.65.123.0/24 Signature Algorithm: sha256WithRSAEncryption 13:70:88:5b:9b:11:d7:0f:e4:96:10:bc:57:5f:34:25:2c:a0: 0f:05:1a:be:3a:7a:9b:12:ca:d0:2c:d2:8f:9c:55:3a:0c:25: 18:f4:4b:32:be:79:0b:4d:71:87:81:97:7f:cb:76:d8:5b:49: 6a:f7:38:9d:68:7e:9b:3a:09:f6:c9:55:b8:4a:55:ea:ac:eb: 5b:ee:59:5b:63:3e:04:72:06:74:ce:72:e1:9b:1b:a2:c8:fa: 75:05:92:98:67:ec:31:e8:25:ef:0f:cd:4a:57:7b:90:3d:a1: c3:07:3d:8b:a9:e8:1c:3a:b8:7e:31:63:9a:44:9b:fa:9c:36: b5:7d:8c:bc:29:e9:3a:f6:c6:02:f2:b0:6a:ce:14:f5:af:d6: f9:fe:05:1f:55:4d:db:3b:b0:20:15:3b:af:c9:82:62:22:15: 02:43:f4:57:6d:0d:81:80:4d:29:c7:b0:2e:32:59:2b:b1:93: 41:46:03:82:23:b2:3d:79:d5:8a:fc:2b:4a:af:a3:48:af:38: 2b:a3:6c:65:5d:35:b7:5a:7d:cc:2a:48:53:fd:0c:86:c0:50: 39:3d:d5:58:d5:ce:83:45:10:17:88:e7:30:0b:92:f8:30:7e: 54:60:e4:9e:40:93:65:57:7f:97:94:b6:2c:2f:bd:e6:5e:8b: f9:ff:ce:48 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbKsTll41sJCyKguydbOjJopwuB4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNDA4MjMwMjU1MDBaFw0yNTA4MjIwMzAwMDBaMDMxMTAvBgNV BAMTKDQ0RDc5M0UwNzFDMDJENjEwQ0U4RUZCRDMyMUI1Rjg3ODRGQkU3REUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdsVsMl7WCL3eX+pr1Dnv5fWsj cTxHVOCpaGxr6uKYb4AAIMvzmESaWEBKTuPRmYbQF22qZMMzQ7d+lUhadVpeKviH g4LB/o0X90p4Fc95FWapTwD4tG36kBJ8iulaq02BEWK3iQKJu5pBAHt+Xj+QfFoV nHW9WkxkRZWrXeR6JTQlpbOm+LKw41MMDhcjlbn1bv5guTJhUbJDMp2eRMj1TD96 empIxHqyruyPddg8BuF40aWwbovTf/mj+WG9BwQvfMCAsQRqHCfcGjsxA5NCG0ma 9f+oMJAUd7v5SN9rhXJC+X5bM9m+R48iKbQgSqavYp6weMAm+dJ0JEZIYKSDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURNeT4HHALWEM6O+9Mhtfh4T7594wHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMyMzAzMjJlMzYzNTJlMzEzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM5MzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpBezANBgkqhkiG 9w0BAQsFAAOCAQEAE3CIW5sR1w/klhC8V180JSygDwUavjp6mxLK0CzSj5xVOgwl GPRLMr55C01xh4GXf8t22FtJavc4nWh+mzoJ9slVuEpV6qzrW+5ZW2M+BHIGdM5y 4Zsbosj6dQWSmGfsMegl7w/NSld7kD2hwwc9i6noHDq4fjFjmkSb+pw2tX2MvCnp OvbGAvKwas4U9a/W+f4FH1VN2zuwIBU7r8mCYiIVAkP0V20NgYBNKcewLjJZK7GT QUYDgiOyPXnVivwrSq+jSK84K6NsZV01t1p9zCpIU/0MhsBQOT3VWNXOg0UQF4jn MAuS+DB+VGDknkCTZVd/l5S2LC+95l6L+f/OSA== -----END CERTIFICATE-----Generated at Thu Nov 21 21:01:20 2024 by rpki-client on console-fra.rpki-client.org