$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e39322e302f32322d3234203d3e20313335343738.roa File: 3130312e3132382e39322e302f32322d3234203d3e20313335343738.roa (raw, json) Hash identifier: Ztn6q1GESRWsic7eO0ITftdWkJTppkrA4VnfsxKN1uc= Subject key identifier: 55:4C:21:3F:2B:46:25:D5:4B:E2:82:45:C2:99:A2:8C:4C:94:9B:5D Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Certificate serial: 31A397693FB68DEDCD57B3F0AFF1C19D4B45E981 Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e39322e302f32322d3234203d3e20313335343738.roa Signing time: Mon 31 Jul 2023 00:02:22 +0000 ROA not before: Sun 30 Jul 2023 23:57:22 +0000 ROA not after: Mon 29 Jul 2024 00:02:22 +0000 asID: 135478 IP address blocks: 101.128.92.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 01:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:a3:97:69:3f:b6:8d:ed:cd:57:b3:f0:af:f1:c1:9d:4b:45:e9:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Validity Not Before: Jul 30 23:57:22 2023 GMT Not After : Jul 29 00:02:22 2024 GMT Subject: CN=554C213F2B4625D54BE28245C299A28C4C949B5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d6:e3:f2:4d:a7:ff:bb:4b:b4:36:ae:4c:74: c1:9f:85:66:e8:82:89:a1:d7:ea:ec:ab:cb:60:ac: a1:03:b0:41:c1:81:a1:c4:44:d7:12:28:10:9e:6e: 3b:d1:ad:f5:83:d1:b0:e1:af:68:fe:14:5c:50:e7: cc:d1:f6:94:34:63:51:16:2c:85:81:2c:c7:9b:f3: bb:e6:64:65:1b:11:94:51:0c:85:61:c0:6c:78:a8: 74:77:7e:4f:21:6b:6c:05:2f:21:5d:0c:fd:99:d8: 52:af:fc:2f:e2:b8:df:97:33:1a:95:9a:7b:14:27: 83:40:21:4d:0e:c0:87:32:14:f2:1a:ad:71:40:40: d7:27:48:d4:30:63:a3:9f:cc:f9:4a:08:ed:8b:43: fa:f7:b7:78:90:a0:94:02:9d:31:b1:e5:e5:92:00: 25:55:68:da:a0:ad:56:a7:d8:1c:44:e8:d9:3e:6a: 23:ef:bb:47:f0:55:36:a2:bb:99:00:f7:dd:84:7a: e5:6d:1b:ca:18:f9:6c:9b:4c:9b:aa:e0:9f:b3:79: 2a:c1:76:b0:ff:d7:85:5b:04:dd:ae:6b:d9:65:f7: ee:6b:bb:75:fa:1c:33:19:21:a0:c1:7c:e3:70:38: 3d:59:17:a9:ca:71:e6:42:11:e8:a8:97:28:f5:55: 1b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:4C:21:3F:2B:46:25:D5:4B:E2:82:45:C2:99:A2:8C:4C:94:9B:5D X509v3 Authority Key Identifier: keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e39322e302f32322d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.128.92.0/22 Signature Algorithm: sha256WithRSAEncryption 74:9a:0c:50:fb:28:c8:47:d2:db:08:1d:3f:0d:7e:87:a4:ff: 8b:f5:56:ee:ad:71:60:c5:6a:23:89:89:89:60:7b:40:ab:6c: ac:c5:d8:ea:b7:3e:3d:18:c0:aa:e8:f8:b6:a6:46:0d:0c:3b: ab:f4:44:8c:7d:fe:4c:96:d9:37:14:63:8b:4e:a4:ff:7e:8d: 0b:f1:4f:cd:56:0b:0a:e2:14:a6:4a:70:8c:4d:d0:30:9e:53: 07:de:a7:f3:93:ec:4b:1d:b0:a4:1e:05:3e:c7:7a:64:9e:88: bf:1e:5b:74:d3:e1:29:d0:8a:e0:5a:a2:3a:14:cc:a9:fa:cf: 65:f7:ef:8e:76:af:a9:4e:c6:94:c0:a1:65:4f:3a:e6:e4:1e: 1a:81:b2:3c:7e:6b:58:dd:72:87:02:5d:08:94:7f:c4:6a:0b: 03:c0:fe:41:0e:45:89:0f:dc:7f:79:ab:f8:d0:22:74:e3:ed: c0:bb:1e:55:43:7e:e5:17:a4:e9:13:6c:58:8d:41:4d:fa:5a: 07:d9:1d:72:3f:fa:cb:d5:28:2b:76:31:e3:af:e6:3f:9b:91: c1:3b:cd:95:cc:29:0d:6b:65:6f:cd:f8:56:45:45:86:30:8d: 93:c4:6e:04:88:0d:6c:3f:8c:d0:ba:4e:93:8e:e2:8b:3e:fa: 61:99:e9:03 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMaOXaT+2je3NV7Pwr/HBnUtF6YEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEz N0Q2OTk4QTAeFw0yMzA3MzAyMzU3MjJaFw0yNDA3MjkwMDAyMjJaMDMxMTAvBgNV BAMTKDU1NEMyMTNGMkI0NjI1RDU0QkUyODI0NUMyOTlBMjhDNEM5NDlCNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ1uPyTaf/u0u0Nq5MdMGfhWbo gomh1+rsq8tgrKEDsEHBgaHERNcSKBCebjvRrfWD0bDhr2j+FFxQ58zR9pQ0Y1EW LIWBLMeb87vmZGUbEZRRDIVhwGx4qHR3fk8ha2wFLyFdDP2Z2FKv/C/iuN+XMxqV mnsUJ4NAIU0OwIcyFPIarXFAQNcnSNQwY6OfzPlKCO2LQ/r3t3iQoJQCnTGx5eWS ACVVaNqgrVan2BxE6Nk+aiPvu0fwVTaiu5kA992EeuVtG8oY+WybTJuq4J+zeSrB drD/14VbBN2ua9ll9+5ru3X6HDMZIaDBfONwOD1ZF6nKceZCEeiolyj1VRs7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVUwhPytGJdVL4oJFwpmijEyUm10wHwYDVR0j BBgwFoAUfizzRtXehA3A7pRMkY7cUTfWmYowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTcwMjcyNi1iMmM2LTQ2ZmMtODI5Ny0yZGJkZWM2ZDZkNWQvMC83RTJDRjM0NkQ1 REU4NDBEQzBFRTk0NEM5MThFREM1MTM3RDY5OThBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEzN0Q2 OTk4QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhNzAyNzI2LWIyYzYtNDZmYy04 Mjk3LTJkYmRlYzZkNmQ1ZC8wLzMxMzAzMTJlMzEzMjM4MmUzOTMyMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZYBcMA0GCSqG SIb3DQEBCwUAA4IBAQB0mgxQ+yjIR9LbCB0/DX6HpP+L9VburXFgxWojiYmJYHtA q2ysxdjqtz49GMCq6Pi2pkYNDDur9ESMff5Mltk3FGOLTqT/fo0L8U/NVgsK4hSm SnCMTdAwnlMH3qfzk+xLHbCkHgU+x3pknoi/Hlt00+Ep0IrgWqI6FMyp+s9l9++O dq+pTsaUwKFlTzrm5B4agbI8fmtY3XKHAl0IlH/EagsDwP5BDkWJD9x/eav40CJ0 4+3Aux5VQ37lF6TpE2xYjUFN+loH2R1yP/rL1SgrdjHjr+Y/m5HBO82VzCkNa2Vv zfhWRUWGMI2TxG4EiA1sP4zQuk6TjuKLPvphmekD -----END CERTIFICATE-----Generated at Tue Apr 30 21:36:30 2024 by rpki-client on console-fra.rpki-client.org