$ rpki-client -vvf repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/3130312e302e342e302f32322d3234203d3e203535363730.roa File: 3130312e302e342e302f32322d3234203d3e203535363730.roa (raw, json) Hash identifier: qmP+7iTwSq5yMJyaVS+S1MXqaf8L36fD59OGMbn8B/w= Subject key identifier: 82:A5:74:D8:19:53:2E:87:F2:06:07:E7:40:5C:0E:05:31:CA:F2:B5 Certificate issuer: /CN=6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E Certificate serial: 49493D89662F9D6F36E6AB01F4747F41EEFEB85F Authority key identifier: 69:67:01:2E:FC:A4:36:98:E8:E1:B7:24:B9:1D:FC:5E:FE:3E:7C:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/3130312e302e342e302f32322d3234203d3e203535363730.roa Signing time: Tue 18 Jun 2024 02:00:02 +0000 ROA not before: Tue 18 Jun 2024 01:55:02 +0000 ROA not after: Tue 17 Jun 2025 02:00:02 +0000 asID: 55670 IP address blocks: 101.0.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.crl rsync://repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 15:44:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:49:3d:89:66:2f:9d:6f:36:e6:ab:01:f4:74:7f:41:ee:fe:b8:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E Validity Not Before: Jun 18 01:55:02 2024 GMT Not After : Jun 17 02:00:02 2025 GMT Subject: CN=82A574D819532E87F20607E7405C0E0531CAF2B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a6:3c:3e:26:7f:76:d3:20:14:be:92:22:64: 75:8d:3b:bf:7c:cb:c3:b6:9e:7e:e1:42:0f:d7:b9: 5d:13:df:db:a1:8c:9d:d8:29:58:2c:90:ee:12:20: 44:01:96:28:7e:bb:23:8e:56:b3:10:28:06:3f:31: 44:ec:94:f1:15:58:ba:8e:fd:e3:b9:51:7b:a6:5d: 73:1d:a7:a3:5f:1e:7c:27:58:f2:37:9d:3b:2a:78: c5:9a:9c:65:91:11:ad:95:d6:68:02:66:b4:4a:10: ac:28:68:e2:be:a4:ac:75:e1:f1:80:5b:6e:49:e4: c8:e7:1a:c5:ed:a1:6e:01:43:54:71:b5:f1:e5:21: f6:af:f7:c4:f4:65:7d:07:f4:2d:a6:b1:e1:3c:90: e5:31:43:6c:fb:dd:2d:8e:0b:6d:32:4b:b6:61:83: 6c:64:c9:c1:d1:23:a2:50:03:50:04:0f:48:2f:ec: 2a:cf:29:41:3a:e4:fb:2c:5c:36:91:90:ea:32:ce: 80:7d:ef:d1:ad:ab:fa:64:c5:f8:c5:56:4f:de:2e: ff:c8:37:6b:8a:02:db:c3:73:cb:fc:1e:57:3d:09: b6:5f:a1:16:2d:57:f7:2e:fd:3c:fa:37:b1:55:49: b9:0a:74:01:22:48:0c:cd:8b:a1:8f:06:7c:f5:0c: 14:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:A5:74:D8:19:53:2E:87:F2:06:07:E7:40:5C:0E:05:31:CA:F2:B5 X509v3 Authority Key Identifier: keyid:69:67:01:2E:FC:A4:36:98:E8:E1:B7:24:B9:1D:FC:5E:FE:3E:7C:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/3130312e302e342e302f32322d3234203d3e203535363730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.0.4.0/22 Signature Algorithm: sha256WithRSAEncryption a4:46:bd:6b:59:8b:59:b0:08:d9:38:8b:09:e0:4b:76:26:17: b5:e7:f1:c7:15:bb:6d:12:63:67:54:e4:20:6b:21:f5:3a:29: 60:6e:e8:60:c4:a4:a8:dd:80:b0:40:0a:2c:9d:1e:9d:8f:90: 5a:fb:12:a8:6a:19:de:5c:43:a5:d7:a6:62:7a:3c:b2:3a:65: 41:89:42:ac:e8:07:c9:a5:cd:7e:0a:3b:08:c1:60:d0:38:09: fd:b0:8e:72:80:ab:57:da:4f:fd:f3:e9:70:2f:55:39:6c:79: 24:3d:0d:05:20:6d:d0:83:09:7e:88:b6:ad:dd:6e:7d:43:f8: b5:c0:9a:d6:b6:6b:33:19:00:bb:40:1f:59:84:f3:5b:d6:31: 79:64:6b:42:4f:3f:a6:d3:a7:37:a0:7f:de:42:db:35:d6:af: 95:17:49:c7:ea:0a:99:f2:ef:f3:6c:9d:58:c7:b1:ae:7f:31: be:26:15:ea:52:39:51:02:f6:f6:bd:f4:06:0c:a2:0e:e8:b4: 28:9e:52:f4:12:a3:c5:c4:de:0b:ba:40:0d:f0:17:25:13:47: ad:95:5d:1f:ef:34:84:ce:bb:ec:78:5d:39:83:e1:dd:7a:c3: 2a:06:5f:e2:20:1c:6a:00:01:75:b9:e0:e9:63:cd:27:2e:5c: 21:e3:14:de -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUSUk9iWYvnW825qsB9HR/Qe7+uF8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk2NzAxMkVGQ0E0MzY5OEU4RTFCNzI0QjkxREZDNUVG RTNFN0MzRTAeFw0yNDA2MTgwMTU1MDJaFw0yNTA2MTcwMjAwMDJaMDMxMTAvBgNV BAMTKDgyQTU3NEQ4MTk1MzJFODdGMjA2MDdFNzQwNUMwRTA1MzFDQUYyQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtpjw+Jn920yAUvpIiZHWNO798 y8O2nn7hQg/XuV0T39uhjJ3YKVgskO4SIEQBlih+uyOOVrMQKAY/MUTslPEVWLqO /eO5UXumXXMdp6NfHnwnWPI3nTsqeMWanGWREa2V1mgCZrRKEKwoaOK+pKx14fGA W25J5MjnGsXtoW4BQ1RxtfHlIfav98T0ZX0H9C2mseE8kOUxQ2z73S2OC20yS7Zh g2xkycHRI6JQA1AED0gv7CrPKUE65PssXDaRkOoyzoB979Gtq/pkxfjFVk/eLv/I N2uKAtvDc8v8Hlc9CbZfoRYtV/cu/Tz6N7FVSbkKdAEiSAzNi6GPBnz1DBSzAgMB AAGjggIrMIICJzAdBgNVHQ4EFgQUgqV02BlTLofyBgfnQFwOBTHK8rUwHwYDVR0j BBgwFoAUaWcBLvykNpjo4bckuR38Xv4+fD4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDZlYTdmYS05NGQyLTRkZGMtYThlNi01ZGM2MjZjMjkxZDQvMC82OTY3MDEyRUZD QTQzNjk4RThFMUI3MjRCOTFERkM1RUZFM0U3QzNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjk2NzAxMkVGQ0E0MzY5OEU4RTFCNzI0QjkxREZDNUVGRTNF N0MzRS5jZXIwgZsGCCsGAQUFBwELBIGOMIGLMIGIBggrBgEFBQcwC4Z8cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2Q2ZWE3ZmEtOTRkMi00ZGRjLWE4 ZTYtNWRjNjI2YzI5MWQ0LzAvMzEzMDMxMmUzMDJlMzQyZTMwMmYzMjMyMmQzMjM0 MjAzZDNlMjAzNTM1MzYzNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZQAEMA0GCSqGSIb3DQEBCwUA A4IBAQCkRr1rWYtZsAjZOIsJ4Et2Jhe15/HHFbttEmNnVOQgayH1OilgbuhgxKSo 3YCwQAosnR6dj5Ba+xKoahneXEOl16ZiejyyOmVBiUKs6AfJpc1+CjsIwWDQOAn9 sI5ygKtX2k/98+lwL1U5bHkkPQ0FIG3Qgwl+iLat3W59Q/i1wJrWtmszGQC7QB9Z hPNb1jF5ZGtCTz+m06c3oH/eQts11q+VF0nH6gqZ8u/zbJ1Yx7GufzG+JhXqUjlR Avb2vfQGDKIO6LQonlL0EqPFxN4LukAN8BclE0etlV0f7zSEzrvseF05g+HdesMq Bl/iIBxqAAF1ueDpY80nLlwh4xTe -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:43 2024 by rpki-client on console-fra.rpki-client.org