$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e35302e31362e302f32302d3234203d3e2034373837.roa File: 3130312e35302e31362e302f32302d3234203d3e2034373837.roa (raw, json) Hash identifier: oK6bWG/k1xn/dNNfpI91O08/ULTaS7OfH55Mvmr7vx0= Subject key identifier: A5:E2:74:F0:7C:C4:36:64:E4:9C:A5:64:DF:EA:5E:E2:63:BB:96:77 Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Certificate serial: 59B69945FF6B06514BAEC9A206AC00DA48187AEE Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e35302e31362e302f32302d3234203d3e2034373837.roa Signing time: Mon 22 Jul 2024 16:39:00 +0000 ROA not before: Mon 22 Jul 2024 16:34:00 +0000 ROA not after: Mon 21 Jul 2025 16:39:00 +0000 asID: 4787 IP address blocks: 101.50.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:b6:99:45:ff:6b:06:51:4b:ae:c9:a2:06:ac:00:da:48:18:7a:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Validity Not Before: Jul 22 16:34:00 2024 GMT Not After : Jul 21 16:39:00 2025 GMT Subject: CN=A5E274F07CC43664E49CA564DFEA5EE263BB9677 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ff:5d:96:e1:14:81:28:5b:be:29:64:3a:36: bd:20:03:bd:3d:18:da:f8:9d:65:b8:f8:75:ee:87: 76:0c:aa:04:e3:87:f2:43:d1:93:69:e2:cb:ca:13: 7e:02:9d:35:42:33:e5:55:75:5a:8d:09:88:a4:fa: 6d:fb:b8:e5:54:ed:6a:3d:db:e4:52:bd:d6:22:4c: 1f:0a:98:be:a2:c7:9b:73:d5:8e:19:f4:20:b2:bd: fe:9d:2b:d3:19:4b:e1:9b:99:b3:19:8b:1e:65:36: c9:7a:4c:9d:a2:80:5e:d1:b4:55:82:b4:70:a5:b6: 3a:74:f1:d2:a0:8a:7b:01:df:64:2b:57:72:c3:ad: 51:b6:40:5c:95:2e:56:2a:d1:10:08:c2:32:02:8b: 8f:27:89:ff:3d:1e:05:8e:b4:41:71:a9:f0:be:67: 80:80:31:5a:18:59:7a:80:42:55:87:1c:64:4e:05: b5:73:41:10:41:a2:d5:a6:f2:d8:62:13:02:0a:8e: 76:7f:a3:cd:02:fd:3a:a1:8e:c0:48:bc:8e:05:23: b2:db:f4:3e:93:30:42:a6:17:1b:20:8a:b0:79:d3: ee:ec:6a:6c:46:87:11:49:b4:bd:30:28:fe:01:f5: ad:72:9b:f7:1d:1b:f0:87:71:59:c9:df:4c:c0:77: 17:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:E2:74:F0:7C:C4:36:64:E4:9C:A5:64:DF:EA:5E:E2:63:BB:96:77 X509v3 Authority Key Identifier: keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e35302e31362e302f32302d3234203d3e2034373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.50.16.0/20 Signature Algorithm: sha256WithRSAEncryption 53:40:e9:f1:76:b0:1c:84:28:c8:b9:80:37:0b:4d:aa:20:27: 07:2e:53:11:a7:69:f1:29:61:fb:2e:6c:c4:33:2a:81:ef:f8: 2d:bf:69:da:a5:58:49:8b:ef:e8:fe:1b:fa:6c:51:ca:9c:63: 7e:43:53:09:3d:48:b5:b4:1a:6a:e3:08:43:0f:d7:07:c4:7b: 86:82:00:21:cc:fd:0e:36:a9:69:ea:7c:d3:4b:30:4d:09:65: bd:91:52:82:3c:51:d4:c9:bf:c1:c1:91:fb:9f:c1:5c:1a:94: 9d:42:8f:9a:f6:84:14:c7:98:89:a5:6e:f7:0e:72:88:d0:2b: 98:1e:71:7b:74:0d:d4:63:06:ab:63:a9:48:98:64:09:53:76: fa:98:41:27:15:85:3b:ad:fd:ee:70:07:69:db:98:23:80:81: 06:f5:93:67:dd:8f:83:ad:fc:a7:3b:07:06:56:13:e7:f4:5b: 0f:11:4a:06:b4:a8:e1:ca:0a:eb:be:0a:71:f2:f2:24:d6:c6: e8:f3:54:bc:e7:36:27:78:8a:e5:e5:91:56:68:24:22:fc:ed: 08:d9:d4:e4:ba:85:1a:09:99:c1:bc:eb:b4:f6:ef:80:e1:13: 20:a3:ae:df:d9:57:5b:19:ce:2f:ad:6d:1b:45:ac:8b:88:46: 2b:a6:2a:0b -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUWbaZRf9rBlFLrsmiBqwA2kgYeu4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEz N0Q2OTk4QTAeFw0yNDA3MjIxNjM0MDBaFw0yNTA3MjExNjM5MDBaMDMxMTAvBgNV BAMTKEE1RTI3NEYwN0NDNDM2NjRFNDlDQTU2NERGRUE1RUUyNjNCQjk2NzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM/12W4RSBKFu+KWQ6Nr0gA709 GNr4nWW4+HXuh3YMqgTjh/JD0ZNp4svKE34CnTVCM+VVdVqNCYik+m37uOVU7Wo9 2+RSvdYiTB8KmL6ix5tz1Y4Z9CCyvf6dK9MZS+GbmbMZix5lNsl6TJ2igF7RtFWC tHCltjp08dKginsB32QrV3LDrVG2QFyVLlYq0RAIwjICi48nif89HgWOtEFxqfC+ Z4CAMVoYWXqAQlWHHGROBbVzQRBBotWm8thiEwIKjnZ/o80C/TqhjsBIvI4FI7Lb 9D6TMEKmFxsgirB50+7samxGhxFJtL0wKP4B9a1ym/cdG/CHcVnJ30zAdxfbAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUpeJ08HzENmTknKVk3+pe4mO7lncwHwYDVR0j BBgwFoAUfizzRtXehA3A7pRMkY7cUTfWmYowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTcwMjcyNi1iMmM2LTQ2ZmMtODI5Ny0yZGJkZWM2ZDZkNWQvMC83RTJDRjM0NkQ1 REU4NDBEQzBFRTk0NEM5MThFREM1MTM3RDY5OThBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEzN0Q2 OTk4QS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWE3MDI3MjYtYjJjNi00NmZjLTgy OTctMmRiZGVjNmQ2ZDVkLzAvMzEzMDMxMmUzNTMwMmUzMTM2MmUzMDJmMzIzMDJk MzIzNDIwM2QzZTIwMzQzNzM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBARlMhAwDQYJKoZIhvcNAQEL BQADggEBAFNA6fF2sByEKMi5gDcLTaogJwcuUxGnafEpYfsubMQzKoHv+C2/adql WEmL7+j+G/psUcqcY35DUwk9SLW0GmrjCEMP1wfEe4aCACHM/Q42qWnqfNNLME0J Zb2RUoI8UdTJv8HBkfufwVwalJ1Cj5r2hBTHmImlbvcOcojQK5gecXt0DdRjBqtj qUiYZAlTdvqYQScVhTut/e5wB2nbmCOAgQb1k2fdj4Ot/Kc7BwZWE+f0Ww8RSga0 qOHKCuu+CnHy8iTWxujzVLznNid4iuXlkVZoJCL87QjZ1OS6hRoJmcG867T274Dh EyCjrt/ZV1sZzi+tbRtFrIuIRiumKgs= -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:03 2024 by rpki-client on console-ams.rpki-client.org