$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3231302e3231302e3132382e302f31382d3234203d3e2034373837.roa File: 3231302e3231302e3132382e302f31382d3234203d3e2034373837.roa (raw, json) Hash identifier: XpUJl2RXzLJcl9ONxHpyC2GbfqfyG8IAwbi/3rpMSt4= Subject key identifier: 3C:53:AB:99:E6:11:C2:EC:D1:B7:DC:8D:3F:2D:82:55:10:E9:64:A7 Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Certificate serial: 5D73C34FF15C2447E8F0D8DF9E3F3168E7600750 Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3231302e3231302e3132382e302f31382d3234203d3e2034373837.roa Signing time: Mon 31 Jul 2023 00:02:21 +0000 ROA not before: Sun 30 Jul 2023 23:57:21 +0000 ROA not after: Mon 29 Jul 2024 00:02:21 +0000 asID: 4787 IP address blocks: 210.210.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:73:c3:4f:f1:5c:24:47:e8:f0:d8:df:9e:3f:31:68:e7:60:07:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Validity Not Before: Jul 30 23:57:21 2023 GMT Not After : Jul 29 00:02:21 2024 GMT Subject: CN=3C53AB99E611C2ECD1B7DC8D3F2D825510E964A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9a:51:2d:3c:0c:80:08:70:31:91:c5:26:ac: a9:0b:73:3d:40:2a:eb:a1:8b:6e:c9:5a:4f:49:02: 49:3d:21:4e:1e:17:ea:ca:19:45:56:51:04:d1:b7: 04:a3:16:b2:1a:be:18:c4:13:27:4c:7d:c7:c3:f0: 03:5f:fd:02:05:fd:33:63:e9:48:a7:21:1e:75:62: c9:64:4a:54:c1:c6:29:f2:89:41:9e:90:e1:0a:5c: ef:46:df:69:74:c2:81:dd:f6:d9:a0:c5:5a:91:45: f6:8d:85:63:64:cd:bf:c7:a4:89:08:cc:31:8e:78: 28:82:6f:3b:bb:92:87:e6:3a:3b:56:08:d9:08:b6: eb:b9:a5:59:cc:52:dc:64:9d:e7:47:d4:72:ed:91: aa:5c:9e:78:26:f4:3e:07:c4:59:fd:b0:86:b1:86: bf:73:0f:fb:52:94:75:06:40:f4:75:5b:c3:50:72: 27:85:16:85:4f:45:c2:a8:fb:fd:44:3a:59:84:ec: 80:db:47:0b:c7:64:84:2c:9e:51:50:5c:22:c7:eb: 5e:9d:fe:99:a3:16:d2:28:c5:c1:2b:60:59:61:58: e2:5b:45:95:13:e5:e5:08:f7:17:cf:0f:70:d6:9c: ae:11:97:52:0d:3f:8c:80:e7:82:58:fe:a2:05:58: 7f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:53:AB:99:E6:11:C2:EC:D1:B7:DC:8D:3F:2D:82:55:10:E9:64:A7 X509v3 Authority Key Identifier: keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3231302e3231302e3132382e302f31382d3234203d3e2034373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.210.128.0/18 Signature Algorithm: sha256WithRSAEncryption 1f:0d:22:60:f3:33:49:07:7a:35:ca:cf:80:b9:b9:b8:06:e6: c1:4d:ea:cf:2c:11:9a:39:3c:dc:0b:1e:c8:3d:15:25:dd:f0: a5:be:78:42:42:2c:98:28:48:4b:83:4c:d8:78:54:e5:b6:e5: f2:36:88:a3:7f:de:eb:76:28:20:c5:d6:87:ae:c1:d3:b6:03: 43:08:23:9c:e1:dc:d2:b9:60:0a:9c:d1:e5:fd:91:9e:ee:23: b2:80:ae:44:39:8c:8f:7b:81:22:fb:af:12:90:42:5c:4f:17: ec:ac:2b:7e:42:5d:d5:e9:58:b2:41:4f:c9:6c:c1:0b:7f:c7: 64:c8:16:f1:85:29:98:53:c5:10:2a:80:fc:02:87:66:63:6b: 1d:1f:28:78:f9:3e:a9:69:4a:b1:54:be:b3:da:cf:94:fd:5b: 1d:df:d9:09:67:97:fc:c0:5e:89:48:c0:4c:1c:a6:d7:8c:cf: ca:14:b7:99:68:b2:86:1b:0c:b7:19:8d:c7:79:00:c0:d8:61: c7:0f:1b:4b:31:bd:31:cc:f4:bd:cc:47:e8:d0:a9:40:cc:a4: 3b:f7:a8:60:c0:2f:0b:a9:93:d1:93:97:fa:1f:69:c3:c3:d1: da:d1:7c:c2:7d:bb:3a:a8:20:99:2e:b6:16:77:88:03:51:09: 26:a0:5d:79 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXXPDT/FcJEfo8Njfnj8xaOdgB1AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEz N0Q2OTk4QTAeFw0yMzA3MzAyMzU3MjFaFw0yNDA3MjkwMDAyMjFaMDMxMTAvBgNV BAMTKDNDNTNBQjk5RTYxMUMyRUNEMUI3REM4RDNGMkQ4MjU1MTBFOTY0QTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDmlEtPAyACHAxkcUmrKkLcz1A Kuuhi27JWk9JAkk9IU4eF+rKGUVWUQTRtwSjFrIavhjEEydMfcfD8ANf/QIF/TNj 6UinIR51YslkSlTBxinyiUGekOEKXO9G32l0woHd9tmgxVqRRfaNhWNkzb/HpIkI zDGOeCiCbzu7kofmOjtWCNkItuu5pVnMUtxknedH1HLtkapcnngm9D4HxFn9sIax hr9zD/tSlHUGQPR1W8NQcieFFoVPRcKo+/1EOlmE7IDbRwvHZIQsnlFQXCLH616d /pmjFtIoxcErYFlhWOJbRZUT5eUI9xfPD3DWnK4Rl1INP4yA54JY/qIFWH93AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUPFOrmeYRwuzRt9yNPy2CVRDpZKcwHwYDVR0j BBgwFoAUfizzRtXehA3A7pRMkY7cUTfWmYowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTcwMjcyNi1iMmM2LTQ2ZmMtODI5Ny0yZGJkZWM2ZDZkNWQvMC83RTJDRjM0NkQ1 REU4NDBEQzBFRTk0NEM5MThFREM1MTM3RDY5OThBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEzN0Q2 OTk4QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhNzAyNzI2LWIyYzYtNDZmYy04 Mjk3LTJkYmRlYzZkNmQ1ZC8wLzMyMzEzMDJlMzIzMTMwMmUzMTMyMzgyZTMwMmYz MTM4MmQzMjM0MjAzZDNlMjAzNDM3MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBtLSgDANBgkqhkiG 9w0BAQsFAAOCAQEAHw0iYPMzSQd6NcrPgLm5uAbmwU3qzywRmjk83AseyD0VJd3w pb54QkIsmChIS4NM2HhU5bbl8jaIo3/e63YoIMXWh67B07YDQwgjnOHc0rlgCpzR 5f2Rnu4jsoCuRDmMj3uBIvuvEpBCXE8X7KwrfkJd1elYskFPyWzBC3/HZMgW8YUp mFPFECqA/AKHZmNrHR8oePk+qWlKsVS+s9rPlP1bHd/ZCWeX/MBeiUjATBym14zP yhS3mWiyhhsMtxmNx3kAwNhhxw8bSzG9Mcz0vcxH6NCpQMykO/eoYMAvC6mT0ZOX +h9pw8PR2tF8wn27OqggmS62FneIA1EJJqBdeQ== -----END CERTIFICATE-----Generated at Fri May 3 03:08:35 2024 by rpki-client on console-ams.rpki-client.org