$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e37322e302f32322d3234203d3e20313335343738.roa File: 3130312e3132382e37322e302f32322d3234203d3e20313335343738.roa (raw, json) Hash identifier: oLerQvG9lK0HQ6jpGxp64/mGIJCHi0v17PSAsOuIYr8= Subject key identifier: FC:E8:41:EC:6A:EC:C5:11:39:D3:55:73:81:39:72:3A:13:0F:6D:F0 Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Certificate serial: 5B308109AAA65151656DE6B667F180785CB43B11 Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e37322e302f32322d3234203d3e20313335343738.roa Signing time: Mon 31 Jul 2023 00:02:21 +0000 ROA not before: Sun 30 Jul 2023 23:57:21 +0000 ROA not after: Mon 29 Jul 2024 00:02:21 +0000 asID: 135478 IP address blocks: 101.128.72.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 01:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:30:81:09:aa:a6:51:51:65:6d:e6:b6:67:f1:80:78:5c:b4:3b:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Validity Not Before: Jul 30 23:57:21 2023 GMT Not After : Jul 29 00:02:21 2024 GMT Subject: CN=FCE841EC6AECC51139D355738139723A130F6DF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:81:61:dc:cf:a7:86:01:22:1f:90:59:bc:b2: 53:28:e2:c0:fa:d8:73:de:d6:87:50:40:49:e6:14: 14:de:27:37:71:7e:a9:3f:38:3b:48:dd:4b:14:f0: 48:52:5d:ab:b4:4a:26:e5:2a:77:93:7f:82:42:ae: cd:b9:a5:82:5d:4d:4a:32:6d:25:20:78:2d:66:8b: 42:4b:69:ed:de:cd:77:b3:55:53:bc:d8:c8:62:8f: 65:56:6b:c2:ec:af:87:e6:be:f5:e0:f3:73:89:16: 82:25:19:d4:d7:92:c6:82:2f:bd:3d:ad:70:13:24: 5d:a0:08:eb:1c:39:89:1d:6f:96:62:28:81:9e:ea: ee:1c:1f:97:fc:ca:f8:87:b6:b7:c6:5b:bf:ca:94: 63:29:cc:ba:f4:3c:9e:42:d4:7f:4b:b4:09:39:50: 64:e3:71:8d:2c:21:f2:39:2c:8f:bf:22:d2:6a:d2: 4a:2a:35:6d:5b:db:6f:a7:b6:f9:4d:55:07:f7:f7: 6f:8e:47:af:ca:a3:65:00:4c:35:b1:1e:c8:7e:58: a6:2a:b5:04:3d:10:10:3d:c0:22:b2:16:dd:4a:07: 91:91:e5:8d:12:ac:ab:3f:21:8c:61:a7:93:d3:10: 57:df:fc:62:dd:1d:10:63:8f:dd:b0:bf:de:60:51: 6c:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:E8:41:EC:6A:EC:C5:11:39:D3:55:73:81:39:72:3A:13:0F:6D:F0 X509v3 Authority Key Identifier: keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e37322e302f32322d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.128.72.0/22 Signature Algorithm: sha256WithRSAEncryption 4c:d4:24:88:07:22:af:5c:2e:13:3d:9c:be:ce:ac:60:f1:be: 9d:d1:77:2b:7f:5d:27:cc:4c:41:97:b8:b8:b6:e2:dc:14:5d: 08:7e:0b:4d:8a:5c:2f:21:c0:d3:36:eb:12:68:63:d8:26:6c: 80:e7:87:ee:b7:80:66:63:71:53:0f:7a:16:43:c5:91:1b:9f: 06:7b:89:b9:09:c7:c8:d6:2e:ef:53:50:e8:95:85:91:20:68: fb:b4:6c:cd:c7:c7:56:12:bd:01:cb:4f:8b:bc:6c:1b:19:df: c0:31:04:f0:a9:80:5e:af:d0:fd:b5:72:f1:8b:10:58:3d:c2: 6e:57:8b:18:17:1a:be:72:8b:95:64:18:38:b3:31:bc:e8:3a: ab:86:8a:de:ac:c0:02:21:6c:6d:73:6b:79:c7:22:88:e4:67: 59:86:de:3b:38:98:66:76:92:f5:26:4f:b8:53:d4:07:03:7f: 3b:01:c2:d8:ee:08:8c:55:02:6f:f9:61:35:61:50:33:21:52: fb:b1:2a:69:26:3b:80:3b:c1:e2:20:1d:06:4f:0a:41:cc:c0: 15:f6:e4:e7:3f:b4:1b:d2:0d:6a:ae:11:29:d6:5c:94:5a:e7: 26:ab:3d:11:46:09:b7:5b:94:97:2e:88:ff:d7:04:cd:c9:9f: 27:04:cd:10 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWzCBCaqmUVFlbea2Z/GAeFy0OxEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEz N0Q2OTk4QTAeFw0yMzA3MzAyMzU3MjFaFw0yNDA3MjkwMDAyMjFaMDMxMTAvBgNV BAMTKEZDRTg0MUVDNkFFQ0M1MTEzOUQzNTU3MzgxMzk3MjNBMTMwRjZERjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWgWHcz6eGASIfkFm8slMo4sD6 2HPe1odQQEnmFBTeJzdxfqk/ODtI3UsU8EhSXau0SiblKneTf4JCrs25pYJdTUoy bSUgeC1mi0JLae3ezXezVVO82Mhij2VWa8Lsr4fmvvXg83OJFoIlGdTXksaCL709 rXATJF2gCOscOYkdb5ZiKIGe6u4cH5f8yviHtrfGW7/KlGMpzLr0PJ5C1H9LtAk5 UGTjcY0sIfI5LI+/ItJq0koqNW1b22+ntvlNVQf392+OR6/Ko2UATDWxHsh+WKYq tQQ9EBA9wCKyFt1KB5GR5Y0SrKs/IYxhp5PTEFff/GLdHRBjj92wv95gUWx3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/OhB7GrsxRE501VzgTlyOhMPbfAwHwYDVR0j BBgwFoAUfizzRtXehA3A7pRMkY7cUTfWmYowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTcwMjcyNi1iMmM2LTQ2ZmMtODI5Ny0yZGJkZWM2ZDZkNWQvMC83RTJDRjM0NkQ1 REU4NDBEQzBFRTk0NEM5MThFREM1MTM3RDY5OThBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEzN0Q2 OTk4QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhNzAyNzI2LWIyYzYtNDZmYy04 Mjk3LTJkYmRlYzZkNmQ1ZC8wLzMxMzAzMTJlMzEzMjM4MmUzNzMyMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZYBIMA0GCSqG SIb3DQEBCwUAA4IBAQBM1CSIByKvXC4TPZy+zqxg8b6d0Xcrf10nzExBl7i4tuLc FF0IfgtNilwvIcDTNusSaGPYJmyA54fut4BmY3FTD3oWQ8WRG58Ge4m5CcfI1i7v U1DolYWRIGj7tGzNx8dWEr0By0+LvGwbGd/AMQTwqYBer9D9tXLxixBYPcJuV4sY Fxq+couVZBg4szG86DqrhorerMACIWxtc2t5xyKI5GdZht47OJhmdpL1Jk+4U9QH A387AcLY7giMVQJv+WE1YVAzIVL7sSppJjuAO8HiIB0GTwpBzMAV9uTnP7Qb0g1q rhEp1lyUWucmqz0RRgm3W5SXLoj/1wTNyZ8nBM0Q -----END CERTIFICATE-----Generated at Tue Apr 30 21:57:49 2024 by rpki-client on console-ams.rpki-client.org