$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132342e302f32322d3234203d3e203436303531.roa File: 3230322e36352e3132342e302f32322d3234203d3e203436303531.roa (raw, json) Hash identifier: fYkaRaqMdzeCnlFj0QC4k70wJ41vV5h8EX1emupb1Ew= Subject key identifier: F5:EB:F2:CD:31:60:90:85:0D:3E:60:5D:1D:1B:6D:A4:6A:65:EC:B8 Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 795F7FE2FD7EE311464AD0A3976CB421B2B07297 Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132342e302f32322d3234203d3e203436303531.roa Signing time: Tue 20 Aug 2024 05:00:00 +0000 ROA not before: Tue 20 Aug 2024 04:55:00 +0000 ROA not after: Tue 19 Aug 2025 05:00:00 +0000 asID: 46051 IP address blocks: 202.65.124.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:5f:7f:e2:fd:7e:e3:11:46:4a:d0:a3:97:6c:b4:21:b2:b0:72:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Aug 20 04:55:00 2024 GMT Not After : Aug 19 05:00:00 2025 GMT Subject: CN=F5EBF2CD316090850D3E605D1D1B6DA46A65ECB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a2:31:6b:9b:0a:69:12:72:3a:c4:c3:72:c0: 51:63:1f:68:22:c5:2f:66:d1:ce:af:9f:f5:41:4b: 7c:f5:30:6e:f1:93:7a:a5:37:6d:fd:87:da:85:6c: 77:f9:34:0f:13:b1:13:04:46:f7:e2:25:f6:ec:d5: 62:64:08:b8:f7:96:7c:0c:30:cc:3b:cd:e1:3d:f8: 1a:fb:4c:b1:e9:a3:88:9f:06:2c:bc:1c:0c:e1:04: 22:85:78:58:0c:6c:3b:99:e5:7d:db:72:47:25:b0: 91:15:7d:e8:b8:d4:3c:d3:69:34:e9:92:14:88:45: e3:ad:6d:e2:b5:1c:4d:17:91:0b:35:1b:49:de:56: 21:cc:95:df:74:87:fa:11:b2:6a:e1:d6:fa:72:f4: ef:6e:d1:a1:79:e6:d4:73:53:78:4e:6d:d6:a4:4e: 55:04:83:4b:4b:dc:b3:ed:10:55:5b:5c:4d:b7:d5: 49:3c:b8:d1:98:1e:48:b0:e6:bc:c1:6b:ed:b3:05: b8:05:1b:54:b2:1c:39:6d:5d:a3:c3:12:50:e5:91: 08:c5:8e:c0:4f:b5:b3:4f:16:a3:95:d2:b9:fe:0f: 63:04:15:36:b2:ba:dc:7b:29:87:4b:0d:a6:d5:c9: 9d:a1:a2:7e:79:f1:b3:f8:7b:3c:ac:98:52:85:75: a9:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:EB:F2:CD:31:60:90:85:0D:3E:60:5D:1D:1B:6D:A4:6A:65:EC:B8 X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132342e302f32322d3234203d3e203436303531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.65.124.0/22 Signature Algorithm: sha256WithRSAEncryption 85:44:50:7b:56:1e:e7:3d:a8:16:a1:8e:05:55:4b:91:c4:8d: 79:32:69:92:59:0f:6f:9f:46:d6:b2:46:c8:c8:c0:07:e1:2a: c6:d5:e7:b2:e7:ec:ec:c2:0d:c0:61:bb:57:4c:91:63:93:8d: ac:2a:f3:6d:e4:cc:10:54:40:0c:2f:e1:1a:56:74:67:57:6a: e2:62:27:09:c2:f7:ba:d7:9a:d4:9e:60:73:3a:2a:c8:a7:fe: 1c:7f:3c:5a:79:66:c8:5c:26:67:e9:95:07:94:48:54:76:9c: 67:b8:4b:c2:05:51:c8:e9:fd:0f:db:37:b9:1a:0b:9c:b1:5c: 76:80:05:8a:e5:13:d2:a2:ae:bb:f1:a1:91:e8:95:fe:0b:c6: f2:a2:f8:ec:b6:78:74:20:79:59:59:61:e9:cc:fb:e6:8f:34: 0b:7f:90:5f:1f:93:09:5c:02:31:d4:b0:4c:4a:a7:9f:82:79: e6:43:0f:da:b0:c5:0d:bd:9e:12:27:8a:9c:99:47:34:70:9a: 97:65:00:7a:cf:50:fe:93:5f:dc:f7:71:0b:f3:fa:fd:72:6e: 23:1b:89:28:e3:9d:66:d3:d0:64:f7:d7:1f:1c:19:90:8b:e1: 50:1d:94:5b:e7:6b:98:9f:fa:8b:51:3b:13:fc:22:7b:b2:ce: a6:af:a6:62 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeV9/4v1+4xFGStCjl2y0IbKwcpcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNDA4MjAwNDU1MDBaFw0yNTA4MTkwNTAwMDBaMDMxMTAvBgNV BAMTKEY1RUJGMkNEMzE2MDkwODUwRDNFNjA1RDFEMUI2REE0NkE2NUVDQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQojFrmwppEnI6xMNywFFjH2gi xS9m0c6vn/VBS3z1MG7xk3qlN239h9qFbHf5NA8TsRMERvfiJfbs1WJkCLj3lnwM MMw7zeE9+Br7TLHpo4ifBiy8HAzhBCKFeFgMbDuZ5X3bckclsJEVfei41DzTaTTp khSIReOtbeK1HE0XkQs1G0neViHMld90h/oRsmrh1vpy9O9u0aF55tRzU3hObdak TlUEg0tL3LPtEFVbXE231Uk8uNGYHkiw5rzBa+2zBbgFG1SyHDltXaPDElDlkQjF jsBPtbNPFqOV0rn+D2MEFTayutx7KYdLDabVyZ2hon558bP4ezysmFKFdamHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU9evyzTFgkIUNPmBdHRttpGpl7LgwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMyMzAzMjJlMzYzNTJlMzEzMjM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzQzNjMwMzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAspBfDANBgkqhkiG 9w0BAQsFAAOCAQEAhURQe1Ye5z2oFqGOBVVLkcSNeTJpklkPb59G1rJGyMjAB+Eq xtXnsufs7MINwGG7V0yRY5ONrCrzbeTMEFRADC/hGlZ0Z1dq4mInCcL3utea1J5g czoqyKf+HH88WnlmyFwmZ+mVB5RIVHacZ7hLwgVRyOn9D9s3uRoLnLFcdoAFiuUT 0qKuu/GhkeiV/gvG8qL47LZ4dCB5WVlh6cz75o80C3+QXx+TCVwCMdSwTEqnn4J5 5kMP2rDFDb2eEieKnJlHNHCal2UAes9Q/pNf3PdxC/P6/XJuIxuJKOOdZtPQZPfX HxwZkIvhUB2UW+drmJ/6i1E7E/wie7LOpq+mYg== -----END CERTIFICATE-----Generated at Thu Nov 21 21:01:20 2024 by rpki-client on console-fra.rpki-client.org