$ rpki-client -vvf repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/323030313a6466373a336230303a3a2f34382d3438203d3e20313338313037.roa File: 323030313a6466373a336230303a3a2f34382d3438203d3e20313338313037.roa (raw, json) Hash identifier: a2GyVxDrxH0z8+nu5urm7SPB9aNJAftSdvNkVQxDl0E= Subject key identifier: 1D:0C:CB:97:3B:65:92:D1:F6:AF:45:9A:2A:BB:68:27:82:82:29:7E Certificate issuer: /CN=986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F Certificate serial: 389B401DC1D3A3CF5541864800EA22E79D173EBC Authority key identifier: 98:6E:FE:1C:2B:B8:B0:E4:E1:47:2E:9D:AA:5B:77:5A:A4:F6:68:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/323030313a6466373a336230303a3a2f34382d3438203d3e20313338313037.roa Signing time: Mon 31 Jul 2023 00:06:16 +0000 ROA not before: Mon 31 Jul 2023 00:01:16 +0000 ROA not after: Mon 29 Jul 2024 00:06:16 +0000 asID: 138107 IP address blocks: 2001:df7:3b00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.crl rsync://repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Apr 2024 00:41:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:9b:40:1d:c1:d3:a3:cf:55:41:86:48:00:ea:22:e7:9d:17:3e:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F Validity Not Before: Jul 31 00:01:16 2023 GMT Not After : Jul 29 00:06:16 2024 GMT Subject: CN=1D0CCB973B6592D1F6AF459A2ABB68278282297E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0e:7e:74:31:4d:d9:b7:95:0a:01:83:8b:a0: a6:de:2a:36:2b:59:fe:05:49:b4:ef:e1:a5:8c:d7: c2:a8:f2:57:57:88:70:fc:70:d8:64:dc:d4:10:db: 44:de:8e:2b:ef:6e:99:98:95:b9:d9:26:02:dc:33: 91:6c:b5:8e:68:da:3e:97:ee:e9:df:5b:af:d0:30: a3:2f:67:de:7b:bf:d5:e2:17:f0:33:af:61:33:41: 69:35:de:78:fa:18:06:12:e1:9c:0f:f8:77:e5:da: 81:44:15:a4:41:c1:b6:5b:e4:12:37:01:71:80:92: dd:8b:78:a2:11:f4:dd:75:99:be:c6:8f:d4:1c:ce: 32:a0:ce:b9:76:57:65:f4:46:f5:f6:70:7b:1c:dd: 34:1c:f6:68:56:61:f1:8e:4d:dc:e5:f2:27:aa:ca: 22:04:db:a0:75:0f:7c:26:19:02:13:83:de:42:f0: 5e:5a:bc:48:85:c4:a6:12:8a:cb:c2:e6:fb:45:4a: ea:21:4b:e3:ff:47:6e:e3:09:55:35:ee:dd:52:07: b8:b7:9b:fa:c2:b2:16:d9:f3:7a:b4:13:ab:a9:08: a9:91:cc:e5:57:3d:73:70:e7:a0:4d:79:4b:98:2d: 0a:99:74:ee:b4:f4:4c:7a:75:67:1b:2d:70:26:18: 2d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:0C:CB:97:3B:65:92:D1:F6:AF:45:9A:2A:BB:68:27:82:82:29:7E X509v3 Authority Key Identifier: keyid:98:6E:FE:1C:2B:B8:B0:E4:E1:47:2E:9D:AA:5B:77:5A:A4:F6:68:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/323030313a6466373a336230303a3a2f34382d3438203d3e20313338313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:3b00::/48 Signature Algorithm: sha256WithRSAEncryption 5b:b7:69:8d:ab:d1:1b:a4:92:79:94:c1:fc:06:0b:1c:e8:0f: 4a:44:86:18:28:ea:12:0c:0d:73:72:85:62:a6:ba:0d:10:59: 83:e1:35:c2:61:51:9c:fa:fb:68:05:ce:0f:61:b2:e1:f5:f8: 59:d5:fa:71:c3:63:92:c2:b6:f5:c2:71:d6:72:c4:60:30:25: 96:a3:ea:ce:c3:b7:5e:a6:5b:ae:45:82:80:2c:b1:c0:a5:21: 66:c5:2a:fc:03:b4:ac:4a:54:44:44:5a:12:9a:ef:76:c8:99: 16:66:15:b8:98:f8:1c:db:c4:87:3f:d0:41:09:79:92:c6:45: 55:9d:f1:cf:ac:9f:cf:d5:7a:c5:59:8d:84:7f:3a:0a:fe:85: 0b:51:2f:ba:15:d6:20:3f:51:e9:07:e8:81:70:d9:8c:15:1f: e3:e8:7d:80:a0:9a:05:34:65:5b:d6:9d:3b:f4:7a:df:08:88: dd:06:e8:52:a1:55:ba:4e:93:f2:df:3a:74:3c:6f:a0:a3:ec: 71:40:a3:7b:9f:37:6a:9d:51:7c:f0:04:58:01:a8:52:2e:6d: 96:04:9f:ac:22:1b:17:25:88:d7:20:8d:99:b1:4d:66:5c:ad: 9e:e8:c6:2a:8a:51:b3:d8:da:e6:2e:a1:62:1b:84:e3:1e:74: 62:92:28:cf -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUOJtAHcHTo89VQYZIAOoi550XPrwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTg2RUZFMUMyQkI4QjBFNEUxNDcyRTlEQUE1Qjc3NUFB NEY2Njg5RjAeFw0yMzA3MzEwMDAxMTZaFw0yNDA3MjkwMDA2MTZaMDMxMTAvBgNV BAMTKDFEMENDQjk3M0I2NTkyRDFGNkFGNDU5QTJBQkI2ODI3ODI4MjI5N0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEDn50MU3Zt5UKAYOLoKbeKjYr Wf4FSbTv4aWM18Ko8ldXiHD8cNhk3NQQ20TejivvbpmYlbnZJgLcM5FstY5o2j6X 7unfW6/QMKMvZ957v9XiF/Azr2EzQWk13nj6GAYS4ZwP+Hfl2oFEFaRBwbZb5BI3 AXGAkt2LeKIR9N11mb7Gj9QczjKgzrl2V2X0RvX2cHsc3TQc9mhWYfGOTdzl8ieq yiIE26B1D3wmGQITg95C8F5avEiFxKYSisvC5vtFSuohS+P/R27jCVU17t1SB7i3 m/rCshbZ83q0E6upCKmRzOVXPXNw56BNeUuYLQqZdO609Ex6dWcbLXAmGC0XAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUHQzLlztlktH2r0WaKrtoJ4KCKX4wHwYDVR0j BBgwFoAUmG7+HCu4sOThRy6dqlt3WqT2aJ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MTYyZDE1Yi0xMDJiLTQzMWYtYTUzOS0wYTkzMmIzMTM2NmMvMC85ODZFRkUxQzJC QjhCMEU0RTE0NzJFOURBQTVCNzc1QUE0RjY2ODlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTg2RUZFMUMyQkI4QjBFNEUxNDcyRTlEQUE1Qjc3NUFBNEY2 Njg5Ri5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMxNjJkMTViLTEwMmItNDMxZi1h NTM5LTBhOTMyYjMxMzY2Yy8wLzMyMzAzMDMxM2E2NDY2MzczYTMzNjIzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzEzMDM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9zsAMA0GCSqGSIb3DQEBCwUAA4IBAQBbt2mNq9EbpJJ5lMH8Bgsc6A9KRIYYKOoS DA1zcoViproNEFmD4TXCYVGc+vtoBc4PYbLh9fhZ1fpxw2OSwrb1wnHWcsRgMCWW o+rOw7depluuRYKALLHApSFmxSr8A7SsSlRERFoSmu92yJkWZhW4mPgc28SHP9BB CXmSxkVVnfHPrJ/P1XrFWY2EfzoK/oULUS+6FdYgP1HpB+iBcNmMFR/j6H2AoJoF NGVb1p079HrfCIjdBuhSoVW6TpPy3zp0PG+go+xxQKN7nzdqnVF88ARYAahSLm2W BJ+sIhsXJYjXII2ZsU1mXK2e6MYqilGz2NrmLqFiG4TjHnRikijP -----END CERTIFICATE-----Generated at Sun Apr 14 16:46:45 2024 by rpki-client on console-fra.rpki-client.org