$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e39362e302f32322d3234203d3e20313335343738.roa File: 3130312e3132382e39362e302f32322d3234203d3e20313335343738.roa (raw, json) Hash identifier: cWZQhtoQPZ672InT4wr9Cj9f2/Zzc7pA+EFF0TiTfhI= Subject key identifier: A9:6D:74:3D:AB:D9:B5:34:B1:89:C8:D4:7D:6A:0F:1E:7D:19:50:73 Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Certificate serial: 66AFED968B9C475609346A344D41E4D20A5EFFDB Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e39362e302f32322d3234203d3e20313335343738.roa Signing time: Mon 31 Jul 2023 00:02:24 +0000 ROA not before: Sun 30 Jul 2023 23:57:24 +0000 ROA not after: Mon 29 Jul 2024 00:02:24 +0000 asID: 135478 IP address blocks: 101.128.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 01:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:af:ed:96:8b:9c:47:56:09:34:6a:34:4d:41:e4:d2:0a:5e:ff:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Validity Not Before: Jul 30 23:57:24 2023 GMT Not After : Jul 29 00:02:24 2024 GMT Subject: CN=A96D743DABD9B534B189C8D47D6A0F1E7D195073 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:d3:f0:44:76:92:1b:2e:e4:62:38:52:38:56: 47:89:42:7a:51:f5:76:a9:f0:b7:f4:d1:50:ee:12: ce:e8:a1:00:f9:14:1f:d6:50:a7:ae:e4:fc:49:e0: 6c:e4:88:5e:e1:d6:f4:11:d7:ab:74:24:87:d0:94: 56:a1:79:a4:48:70:06:79:25:aa:dc:54:69:a9:15: 60:22:bb:07:60:51:6a:f4:a5:84:3f:14:f7:a5:ca: 48:f8:1e:35:34:98:6c:92:70:3d:e6:6e:1f:c8:51: 4f:10:5e:12:e7:f3:a9:ff:57:61:14:da:e3:c2:aa: b1:02:be:dd:bd:bd:61:2a:f6:93:cc:8f:db:d5:b1: 16:94:fc:6d:85:76:0a:11:76:30:78:3c:87:3e:66: c7:3c:6f:ae:c2:ca:39:a2:19:74:a1:bd:d0:c8:1a: 31:d6:72:f3:cf:fe:ff:63:44:64:f2:4d:f4:8e:e0: 89:f3:e9:37:a4:70:b9:cb:9e:69:dd:78:b6:f6:72: 2b:a6:5b:35:2b:e0:a1:28:11:db:47:13:15:10:c8: 08:58:63:1e:04:46:3f:31:75:33:ee:ca:26:fa:16: f0:0b:a0:11:03:63:81:ff:bd:85:c8:ec:26:c8:14: 01:ae:20:0b:e9:38:fc:7e:46:7b:99:e1:54:2e:8d: 7d:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:6D:74:3D:AB:D9:B5:34:B1:89:C8:D4:7D:6A:0F:1E:7D:19:50:73 X509v3 Authority Key Identifier: keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e39362e302f32322d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.128.96.0/22 Signature Algorithm: sha256WithRSAEncryption 83:60:57:09:b6:00:ae:22:be:c1:92:bb:46:f3:ee:6a:c7:a2: a1:eb:81:1b:48:b4:5d:87:d3:c1:2d:87:a1:38:40:28:52:7f: 49:35:ff:f1:0a:2b:08:a9:b4:66:1b:53:f1:b9:ea:74:ae:92: f0:5a:66:83:b5:19:61:f7:da:d7:5a:90:2a:65:75:c2:2c:54: ec:5a:e9:c2:ce:52:79:6f:bc:bc:6c:bd:a5:26:da:06:bb:c6: 4c:06:1e:f9:25:35:7e:f2:cf:74:55:f8:2b:8b:11:11:61:57: cb:a3:1a:f3:df:e6:04:52:ed:a3:9e:08:20:d1:48:1f:c4:37: c0:36:5c:65:b8:2a:fb:20:c5:47:c7:8f:40:95:b1:9a:75:20: 76:22:2e:16:d9:0e:f1:ec:a3:ab:4d:bf:d0:b2:f6:7a:ab:ce: c4:2a:7c:fb:0d:7d:8a:b7:1b:d3:d9:58:e2:6f:7b:1b:c9:7a: ee:d7:90:35:5e:94:fa:81:cb:70:5e:d8:91:16:54:8a:2d:d2: 7b:1b:01:05:26:e2:c1:bc:c5:c2:77:4f:47:5a:b4:f9:8c:b4: 63:e0:66:2f:44:95:6a:4c:36:ee:e1:a2:ce:73:7e:09:bd:f7: 55:8d:83:a5:e5:07:85:72:f4:b8:a7:d4:fc:10:91:60:b9:9b: 5b:5c:9b:cb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZq/tloucR1YJNGo0TUHk0gpe/9swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEz N0Q2OTk4QTAeFw0yMzA3MzAyMzU3MjRaFw0yNDA3MjkwMDAyMjRaMDMxMTAvBgNV BAMTKEE5NkQ3NDNEQUJEOUI1MzRCMTg5QzhENDdENkEwRjFFN0QxOTUwNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDp0/BEdpIbLuRiOFI4VkeJQnpR 9Xap8Lf00VDuEs7ooQD5FB/WUKeu5PxJ4GzkiF7h1vQR16t0JIfQlFaheaRIcAZ5 JarcVGmpFWAiuwdgUWr0pYQ/FPelykj4HjU0mGyScD3mbh/IUU8QXhLn86n/V2EU 2uPCqrECvt29vWEq9pPMj9vVsRaU/G2FdgoRdjB4PIc+Zsc8b67CyjmiGXShvdDI GjHWcvPP/v9jRGTyTfSO4Inz6TekcLnLnmndeLb2ciumWzUr4KEoEdtHExUQyAhY Yx4ERj8xdTPuyib6FvALoBEDY4H/vYXI7CbIFAGuIAvpOPx+RnuZ4VQujX35AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUqW10PavZtTSxicjUfWoPHn0ZUHMwHwYDVR0j BBgwFoAUfizzRtXehA3A7pRMkY7cUTfWmYowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTcwMjcyNi1iMmM2LTQ2ZmMtODI5Ny0yZGJkZWM2ZDZkNWQvMC83RTJDRjM0NkQ1 REU4NDBEQzBFRTk0NEM5MThFREM1MTM3RDY5OThBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEzN0Q2 OTk4QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhNzAyNzI2LWIyYzYtNDZmYy04 Mjk3LTJkYmRlYzZkNmQ1ZC8wLzMxMzAzMTJlMzEzMjM4MmUzOTM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZYBgMA0GCSqG SIb3DQEBCwUAA4IBAQCDYFcJtgCuIr7BkrtG8+5qx6Kh64EbSLRdh9PBLYehOEAo Un9JNf/xCisIqbRmG1Pxuep0rpLwWmaDtRlh99rXWpAqZXXCLFTsWunCzlJ5b7y8 bL2lJtoGu8ZMBh75JTV+8s90VfgrixERYVfLoxrz3+YEUu2jnggg0UgfxDfANlxl uCr7IMVHx49AlbGadSB2Ii4W2Q7x7KOrTb/QsvZ6q87EKnz7DX2KtxvT2Vjib3sb yXru15A1XpT6gctwXtiRFlSKLdJ7GwEFJuLBvMXCd09HWrT5jLRj4GYvRJVqTDbu 4aLOc34JvfdVjYOl5QeFcvS4p9T8EJFguZtbXJvL -----END CERTIFICATE-----Generated at Tue Apr 30 21:57:49 2024 by rpki-client on console-ams.rpki-client.org