$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e3130302e302f32322d3234203d3e20313335343738.roa File: 3130312e3132382e3130302e302f32322d3234203d3e20313335343738.roa (raw, json) Hash identifier: S0ZbM8f/mRUWzWgzVAp4dwc6dnLzx4WBV9qzxoBQ5eg= Subject key identifier: 90:37:4B:D1:81:92:0C:FA:42:FD:BB:36:B3:37:7E:B8:31:0A:EA:6F Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Certificate serial: 52631722433D3E068B5A5129476C10A752D8DDBE Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e3130302e302f32322d3234203d3e20313335343738.roa Signing time: Mon 31 Jul 2023 00:02:26 +0000 ROA not before: Sun 30 Jul 2023 23:57:26 +0000 ROA not after: Mon 29 Jul 2024 00:02:26 +0000 asID: 135478 IP address blocks: 101.128.100.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 01:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:63:17:22:43:3d:3e:06:8b:5a:51:29:47:6c:10:a7:52:d8:dd:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Validity Not Before: Jul 30 23:57:26 2023 GMT Not After : Jul 29 00:02:26 2024 GMT Subject: CN=90374BD181920CFA42FDBB36B3377EB8310AEA6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:02:f8:50:2b:38:b6:f0:9c:ac:cf:03:54:dd: d0:2f:ca:46:81:99:cd:75:5b:36:a6:dd:1b:30:90: fb:9f:e8:2a:aa:7b:2f:7c:b7:ec:75:37:44:9f:47: 87:29:48:7b:fe:8a:33:67:52:64:b8:3b:3f:9a:1e: f4:c8:f1:cc:14:ce:a0:15:aa:05:6c:bd:b1:1f:7a: c2:2b:5b:9f:ab:cc:73:e1:94:55:6d:8a:56:04:3a: 8c:06:8a:10:7f:43:cc:10:cd:2e:45:86:eb:33:92: c7:d0:e8:57:36:bb:da:f1:bf:1d:1c:df:57:92:22: 30:d2:44:ca:a6:63:de:49:46:cb:cd:ec:60:c1:90: e1:60:da:25:89:df:4c:85:33:86:56:99:db:90:ec: b6:eb:3b:f8:43:f2:fc:13:a8:70:9a:58:9b:1a:0f: 3f:29:2f:a2:db:65:3f:c3:c7:5e:28:7e:3c:a0:3a: c7:23:61:c8:6a:d4:6c:12:72:aa:65:2e:3c:cb:ac: e6:d7:7c:53:5e:e3:58:27:62:21:ca:70:1e:0b:03: 8c:f1:e3:29:bb:13:94:4e:46:66:9d:c4:5f:45:d3: 02:58:1d:03:0c:fa:f1:06:96:cf:b6:44:6a:4c:43: 01:25:d8:70:61:a1:ab:bc:fe:cb:52:f3:ab:ff:af: 1f:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:37:4B:D1:81:92:0C:FA:42:FD:BB:36:B3:37:7E:B8:31:0A:EA:6F X509v3 Authority Key Identifier: keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e3130302e302f32322d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.128.100.0/22 Signature Algorithm: sha256WithRSAEncryption 09:c1:a3:e0:25:73:8f:fc:a2:12:69:a1:8c:04:15:a2:0d:11: b6:6d:82:2a:e5:18:d7:4a:c6:97:85:c1:84:58:69:b2:b8:b3: 21:cf:fc:2f:cd:6e:b5:4d:c7:01:a7:ed:42:ea:da:7e:66:3e: 7a:c7:37:a7:51:32:a6:64:46:f9:4e:c2:c3:88:b8:08:a2:08: 8d:a1:89:d6:b8:f2:1a:68:20:f2:4f:42:db:34:f3:63:b9:47: ea:ec:e6:a3:4b:b7:9b:b1:f1:a6:65:34:1c:be:b3:b0:50:90: 4f:5a:e0:fd:4d:76:03:3d:5f:bd:53:15:04:d5:f5:59:e4:b0: ff:e9:3a:3e:7e:96:82:9c:51:62:b5:28:2a:e8:ae:7b:10:55: e9:cd:67:6f:74:46:53:13:a4:bd:25:c2:ae:1c:e2:56:d5:57: 6b:fd:1f:2e:d5:fa:69:cc:ab:ac:13:85:59:ad:18:06:60:39: 68:63:0d:14:01:0b:d5:14:c6:14:1b:89:17:fe:2d:26:47:62: 36:41:d9:67:fd:cd:25:5e:45:b8:4d:e8:b6:95:7d:f0:9f:da: 2b:32:9e:95:e8:40:a9:4f:b5:5c:0e:74:ee:1d:3f:36:e6:2d: 5f:14:4a:4c:4a:cd:33:02:89:97:73:9f:0a:0a:91:a2:2b:52: e4:e7:dd:86 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUmMXIkM9PgaLWlEpR2wQp1LY3b4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEz N0Q2OTk4QTAeFw0yMzA3MzAyMzU3MjZaFw0yNDA3MjkwMDAyMjZaMDMxMTAvBgNV BAMTKDkwMzc0QkQxODE5MjBDRkE0MkZEQkIzNkIzMzc3RUI4MzEwQUVBNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAAvhQKzi28JyszwNU3dAvykaB mc11Wzam3RswkPuf6Cqqey98t+x1N0SfR4cpSHv+ijNnUmS4Oz+aHvTI8cwUzqAV qgVsvbEfesIrW5+rzHPhlFVtilYEOowGihB/Q8wQzS5FhuszksfQ6Fc2u9rxvx0c 31eSIjDSRMqmY95JRsvN7GDBkOFg2iWJ30yFM4ZWmduQ7LbrO/hD8vwTqHCaWJsa Dz8pL6LbZT/Dx14ofjygOscjYchq1GwScqplLjzLrObXfFNe41gnYiHKcB4LA4zx 4ym7E5RORmadxF9F0wJYHQMM+vEGls+2RGpMQwEl2HBhoau8/stS86v/rx8/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUkDdL0YGSDPpC/bs2szd+uDEK6m8wHwYDVR0j BBgwFoAUfizzRtXehA3A7pRMkY7cUTfWmYowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTcwMjcyNi1iMmM2LTQ2ZmMtODI5Ny0yZGJkZWM2ZDZkNWQvMC83RTJDRjM0NkQ1 REU4NDBEQzBFRTk0NEM5MThFREM1MTM3RDY5OThBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEzN0Q2 OTk4QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhNzAyNzI2LWIyYzYtNDZmYy04 Mjk3LTJkYmRlYzZkNmQ1ZC8wLzMxMzAzMTJlMzEzMjM4MmUzMTMwMzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJlgGQwDQYJ KoZIhvcNAQELBQADggEBAAnBo+Alc4/8ohJpoYwEFaINEbZtgirlGNdKxpeFwYRY abK4syHP/C/NbrVNxwGn7ULq2n5mPnrHN6dRMqZkRvlOwsOIuAiiCI2hida48hpo IPJPQts082O5R+rs5qNLt5ux8aZlNBy+s7BQkE9a4P1NdgM9X71TFQTV9VnksP/p Oj5+loKcUWK1KCrornsQVenNZ290RlMTpL0lwq4c4lbVV2v9Hy7V+mnMq6wThVmt GAZgOWhjDRQBC9UUxhQbiRf+LSZHYjZB2Wf9zSVeRbhN6LaVffCf2isynpXoQKlP tVwOdO4dPzbmLV8USkxKzTMCiZdznwoKkaIrUuTn3YY= -----END CERTIFICATE-----Generated at Tue Apr 30 21:36:30 2024 by rpki-client on console-fra.rpki-client.org