$ rpki-client -vvf repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/3130312e35302e302e302f32322d3234203d3e203535363838.roa File: 3130312e35302e302e302f32322d3234203d3e203535363838.roa (raw, json) Hash identifier: q1EQYZ6iNPW3t4LlXf4k/X8bo2aRGJHVd5zj18IK3dM= Subject key identifier: 07:01:0C:E5:E9:B8:10:01:22:2D:46:5D:11:E7:5C:09:FA:07:DF:B0 Certificate issuer: /CN=ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353 Certificate serial: 338108E50A32262DDB1ECF9FD21120BB39A67E52 Authority key identifier: AC:C3:D7:9A:B1:BE:F6:2B:C0:09:5B:6F:6A:C3:F3:44:6A:A9:03:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/3130312e35302e302e302f32322d3234203d3e203535363838.roa Signing time: Mon 01 Jul 2024 01:02:41 +0000 ROA not before: Mon 01 Jul 2024 00:57:41 +0000 ROA not after: Mon 30 Jun 2025 01:02:41 +0000 asID: 55688 IP address blocks: 101.50.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.crl rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:81:08:e5:0a:32:26:2d:db:1e:cf:9f:d2:11:20:bb:39:a6:7e:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353 Validity Not Before: Jul 1 00:57:41 2024 GMT Not After : Jun 30 01:02:41 2025 GMT Subject: CN=07010CE5E9B81001222D465D11E75C09FA07DFB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0b:6e:7b:8a:b3:6b:d7:47:19:28:df:73:ce: 23:c3:f2:a1:cd:00:8b:d6:b7:9b:87:50:00:5a:de: ba:49:27:d0:a4:ca:59:87:86:b2:93:1a:00:e6:1c: 03:30:fb:89:95:ec:5a:e6:f5:e8:0a:67:2b:f0:81: 8a:92:57:9d:2c:d9:98:9f:20:a8:03:88:39:3a:89: 4e:3b:be:5f:4f:34:b5:e2:2d:c5:b1:29:6b:32:02: bd:0c:2f:7c:8c:90:12:2e:12:2a:c5:6c:9e:39:d3: d8:58:46:e0:d2:c8:8f:ca:47:64:05:a3:e3:79:c3: 46:d1:40:00:34:09:2c:df:ed:e6:0a:dc:49:12:75: 8b:5d:13:4e:c6:63:04:4c:ae:9c:b8:16:0b:3e:3e: 26:c8:85:59:5d:5d:7e:0d:d7:49:86:d5:72:80:f9: 62:33:55:8e:6e:83:09:a3:65:52:59:5e:a9:35:82: b7:92:fe:14:4d:a3:ed:06:f2:1d:9f:bf:84:76:20: 69:ea:ad:f1:ad:31:9f:76:9e:48:26:5e:71:7e:cc: 26:e3:b9:23:c8:e1:89:93:39:95:0e:4d:91:f5:7b: bc:76:f0:21:a4:b2:27:4d:1b:60:82:e9:db:8d:eb: 3a:1b:27:eb:6f:2e:e7:15:7a:9e:e4:39:de:60:64: a6:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:01:0C:E5:E9:B8:10:01:22:2D:46:5D:11:E7:5C:09:FA:07:DF:B0 X509v3 Authority Key Identifier: keyid:AC:C3:D7:9A:B1:BE:F6:2B:C0:09:5B:6F:6A:C3:F3:44:6A:A9:03:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/3130312e35302e302e302f32322d3234203d3e203535363838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.50.0.0/22 Signature Algorithm: sha256WithRSAEncryption a0:67:40:6e:b0:e2:49:59:66:67:17:52:a8:70:99:e8:a5:9f: 9e:6c:1e:16:45:9c:f9:9b:38:60:8d:f9:0f:13:ef:f9:28:bf: 6b:90:cd:9c:0f:d7:49:f9:d0:09:87:1a:20:bb:99:06:d2:7b: c2:b8:f7:ae:47:f9:fa:29:42:b6:a6:b5:d4:15:59:40:64:7e: 46:08:a8:9a:41:33:db:10:55:a3:e4:68:85:8f:69:d3:59:a4: 8d:5c:95:23:a2:d4:30:09:ca:e7:ec:59:4a:85:05:04:10:91: 3c:ce:3a:89:1f:62:a8:67:17:b6:5e:d2:80:3e:d6:04:a0:0d: ce:34:c8:44:27:c8:49:5d:80:e5:a5:d8:1b:b9:7d:d3:70:f0: 36:49:a6:8b:28:24:19:4e:fd:5c:c6:c9:21:11:30:8e:4b:77: 30:35:7c:0f:07:40:ee:a8:2f:05:fb:fa:29:9b:0d:0b:2e:2b: 33:e5:de:f4:7f:8b:4c:42:be:74:02:8a:a7:f9:eb:34:9f:10: f3:21:60:4a:1f:b2:6a:49:72:67:0e:52:7f:17:de:03:a8:fa: bf:b6:81:a1:bf:7b:97:17:c2:d9:01:49:2e:b3:02:3e:63:f5: 16:7e:2e:76:c0:62:ce:ad:03:c9:6b:53:86:11:ad:a5:44:54: 89:21:4a:a0 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUM4EI5QoyJi3bHs+f0hEguzmmflIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUNDM0Q3OUFCMUJFRjYyQkMwMDk1QjZGNkFDM0YzNDQ2 QUE5MDM1MzAeFw0yNDA3MDEwMDU3NDFaFw0yNTA2MzAwMTAyNDFaMDMxMTAvBgNV BAMTKDA3MDEwQ0U1RTlCODEwMDEyMjJENDY1RDExRTc1QzA5RkEwN0RGQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1C257irNr10cZKN9zziPD8qHN AIvWt5uHUABa3rpJJ9CkylmHhrKTGgDmHAMw+4mV7Frm9egKZyvwgYqSV50s2Zif IKgDiDk6iU47vl9PNLXiLcWxKWsyAr0ML3yMkBIuEirFbJ4509hYRuDSyI/KR2QF o+N5w0bRQAA0CSzf7eYK3EkSdYtdE07GYwRMrpy4Fgs+PibIhVldXX4N10mG1XKA +WIzVY5ugwmjZVJZXqk1greS/hRNo+0G8h2fv4R2IGnqrfGtMZ92nkgmXnF+zCbj uSPI4YmTOZUOTZH1e7x28CGksidNG2CC6duN6zobJ+tvLucVep7kOd5gZKZ5AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUBwEM5em4EAEiLUZdEedcCfoH37AwHwYDVR0j BBgwFoAUrMPXmrG+9ivACVtvasPzRGqpA1MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzU4YzgwZS1hMzI4LTRmOGMtYTAzZi05MWMzYzI2MjE0YTIvMC9BQ0MzRDc5QUIx QkVGNjJCQzAwOTVCNkY2QUMzRjM0NDZBQTkwMzUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUNDM0Q3OUFCMUJFRjYyQkMwMDk1QjZGNkFDM0YzNDQ2QUE5 MDM1My5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTc1OGM4MGUtYTMyOC00ZjhjLWEw M2YtOTFjM2MyNjIxNGEyLzAvMzEzMDMxMmUzNTMwMmUzMDJlMzAyZjMyMzIyZDMy MzQyMDNkM2UyMDM1MzUzNjM4Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJlMgAwDQYJKoZIhvcNAQEL BQADggEBAKBnQG6w4klZZmcXUqhwmeiln55sHhZFnPmbOGCN+Q8T7/kov2uQzZwP 10n50AmHGiC7mQbSe8K4965H+fopQramtdQVWUBkfkYIqJpBM9sQVaPkaIWPadNZ pI1clSOi1DAJyufsWUqFBQQQkTzOOokfYqhnF7Ze0oA+1gSgDc40yEQnyEldgOWl 2Bu5fdNw8DZJposoJBlO/VzGySERMI5LdzA1fA8HQO6oLwX7+imbDQsuKzPl3vR/ i0xCvnQCiqf56zSfEPMhYEofsmpJcmcOUn8X3gOo+r+2gaG/e5cXwtkBSS6zAj5j 9RZ+LnbAYs6tA8lrU4YRraVEVIkhSqA= -----END CERTIFICATE-----Generated at Fri Nov 22 15:22:20 2024 by rpki-client on console-fra.rpki-client.org