$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e3130382e302f32322d3234203d3e20313335343738.roa File: 3130312e3132382e3130382e302f32322d3234203d3e20313335343738.roa (raw, json) Hash identifier: +i+TGsXmA6+b2+x7mf8CSN8DzBQqiSYRHFVoAkqfWgc= Subject key identifier: EC:3C:3C:9C:00:D5:57:49:49:F3:3E:9F:A9:95:0B:0B:04:AE:E4:B4 Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Certificate serial: 0629F5F9AFEDB750BD363F2D7019BD7CA534913A Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e3130382e302f32322d3234203d3e20313335343738.roa Signing time: Mon 31 Jul 2023 00:02:28 +0000 ROA not before: Sun 30 Jul 2023 23:57:28 +0000 ROA not after: Mon 29 Jul 2024 00:02:28 +0000 asID: 135478 IP address blocks: 101.128.108.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 01:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:29:f5:f9:af:ed:b7:50:bd:36:3f:2d:70:19:bd:7c:a5:34:91:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Validity Not Before: Jul 30 23:57:28 2023 GMT Not After : Jul 29 00:02:28 2024 GMT Subject: CN=EC3C3C9C00D5574949F33E9FA9950B0B04AEE4B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b2:b6:00:3b:37:d8:fe:39:17:4f:9f:9c:f5: db:74:90:05:fd:66:c7:66:4a:8a:02:a4:08:07:a2: 77:58:88:89:dc:39:b3:7b:f8:fa:7c:85:4e:36:c1: 23:cb:f1:ba:5c:1d:6f:bf:8f:fa:ca:17:fa:79:90: de:19:d6:cd:5e:89:5f:a3:0b:ab:51:de:0a:79:fa: 23:8f:de:37:78:cc:74:01:f4:b5:a1:6a:6e:e8:46: 36:f8:56:d7:85:1b:be:88:93:db:cc:21:be:33:de: 3c:da:a9:15:b8:cb:46:59:71:90:06:f0:c6:ce:28: a5:1d:aa:d3:20:bc:6f:45:54:93:4c:9e:5f:3d:f7: 68:20:ad:b5:fc:13:0f:b8:a5:ff:0c:55:af:21:0d: 1c:5a:0d:79:7e:33:90:78:42:df:47:da:16:22:c2: 89:f4:d0:15:08:e0:73:e8:87:94:58:d0:75:ba:d5: 62:d1:b1:53:40:a2:41:40:14:cd:fd:4a:3e:06:67: d3:66:c4:4d:ed:04:c8:2d:e1:dc:2b:d3:e4:de:a2: ee:47:cc:6b:db:f8:22:45:fe:58:2d:7f:c7:4f:12: cc:b4:dd:98:99:28:54:be:f0:68:ee:7a:ca:fe:d3: 97:f1:d6:66:28:04:f0:92:8d:6f:40:c5:ce:46:dc: 28:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:3C:3C:9C:00:D5:57:49:49:F3:3E:9F:A9:95:0B:0B:04:AE:E4:B4 X509v3 Authority Key Identifier: keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e3130382e302f32322d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.128.108.0/22 Signature Algorithm: sha256WithRSAEncryption 09:cd:29:1a:52:1d:33:d0:d0:46:b1:16:90:eb:4e:d5:42:8a: f0:2a:86:8f:79:63:b8:17:5e:d5:9b:8d:95:71:ea:a7:9a:70: 50:e6:aa:12:27:ee:13:78:ad:b6:4b:57:00:c6:f5:14:8a:02: 7a:7b:3a:2d:0a:04:7c:ad:a8:ca:b3:8e:f5:82:e0:93:0c:9a: 68:9d:19:06:f8:01:b4:8e:76:81:07:42:fd:57:cf:f2:34:f5: 39:80:c8:5e:9a:a5:9f:01:cc:2e:bd:56:64:b4:95:d1:d7:62: 04:dc:e6:92:70:c6:5a:cf:59:c4:f6:7f:f4:b6:a8:ef:a9:17: 9e:dd:6d:92:fe:41:e5:09:e0:db:82:b2:25:90:6c:7b:71:f6: ce:da:ab:0b:cc:ba:79:37:a2:62:ed:44:f3:33:8c:24:7e:af: 41:5c:d4:a5:dd:38:af:75:ec:74:92:33:b5:43:d2:42:64:d8: 7e:cc:2e:50:b7:52:54:d7:6b:8d:2b:7f:09:44:0d:c1:03:ce: e6:7a:a5:13:aa:89:1b:99:39:3a:4f:f9:1a:42:85:34:5b:7f: b2:21:d2:bd:ae:bb:f1:1c:d5:42:67:e0:8d:d9:1f:05:e2:30: 31:db:6c:aa:b9:10:1b:6c:d8:17:03:e6:36:9e:14:e2:a1:16: 6f:a5:1e:32 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBin1+a/tt1C9Nj8tcBm9fKU0kTowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEz N0Q2OTk4QTAeFw0yMzA3MzAyMzU3MjhaFw0yNDA3MjkwMDAyMjhaMDMxMTAvBgNV BAMTKEVDM0MzQzlDMDBENTU3NDk0OUYzM0U5RkE5OTUwQjBCMDRBRUU0QjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCysrYAOzfY/jkXT5+c9dt0kAX9 ZsdmSooCpAgHondYiIncObN7+Pp8hU42wSPL8bpcHW+/j/rKF/p5kN4Z1s1eiV+j C6tR3gp5+iOP3jd4zHQB9LWham7oRjb4VteFG76Ik9vMIb4z3jzaqRW4y0ZZcZAG 8MbOKKUdqtMgvG9FVJNMnl8992ggrbX8Ew+4pf8MVa8hDRxaDXl+M5B4Qt9H2hYi won00BUI4HPoh5RY0HW61WLRsVNAokFAFM39Sj4GZ9NmxE3tBMgt4dwr0+Teou5H zGvb+CJF/lgtf8dPEsy03ZiZKFS+8Gjuesr+05fx1mYoBPCSjW9Axc5G3Cg/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU7Dw8nADVV0lJ8z6fqZULCwSu5LQwHwYDVR0j BBgwFoAUfizzRtXehA3A7pRMkY7cUTfWmYowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTcwMjcyNi1iMmM2LTQ2ZmMtODI5Ny0yZGJkZWM2ZDZkNWQvMC83RTJDRjM0NkQ1 REU4NDBEQzBFRTk0NEM5MThFREM1MTM3RDY5OThBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEzN0Q2 OTk4QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhNzAyNzI2LWIyYzYtNDZmYy04 Mjk3LTJkYmRlYzZkNmQ1ZC8wLzMxMzAzMTJlMzEzMjM4MmUzMTMwMzgyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJlgGwwDQYJ KoZIhvcNAQELBQADggEBAAnNKRpSHTPQ0EaxFpDrTtVCivAqho95Y7gXXtWbjZVx 6qeacFDmqhIn7hN4rbZLVwDG9RSKAnp7Oi0KBHytqMqzjvWC4JMMmmidGQb4AbSO doEHQv1Xz/I09TmAyF6apZ8BzC69VmS0ldHXYgTc5pJwxlrPWcT2f/S2qO+pF57d bZL+QeUJ4NuCsiWQbHtx9s7aqwvMunk3omLtRPMzjCR+r0Fc1KXdOK917HSSM7VD 0kJk2H7MLlC3UlTXa40rfwlEDcEDzuZ6pROqiRuZOTpP+RpChTRbf7Ih0r2uu/Ec 1UJn4I3ZHwXiMDHbbKq5EBts2BcD5jaeFOKhFm+lHjI= -----END CERTIFICATE-----Generated at Tue Apr 30 21:57:49 2024 by rpki-client on console-ams.rpki-client.org