$ rpki-client -vvf repo-rpki.idnic.net/repo/3df068bd-8e3a-4695-89ed-3b3250f875c9/0/323030313a6466343a346230303a3a2f34382d3438203d3e20313337333135.roa File: 323030313a6466343a346230303a3a2f34382d3438203d3e20313337333135.roa (raw, json) Hash identifier: i1X1D+/IGU8kCY/pv4D0H6hb9F63gn8L3b8J9i+PgBw= Subject key identifier: E6:7D:F7:0B:89:0B:80:BA:A4:AA:20:BD:0E:8E:46:56:45:AC:1E:F1 Certificate issuer: /CN=10FC4D9D2403FC433C19BB76131325B776505E51 Certificate serial: 26A03613EE31418C11CB6455F7160F9422CEC565 Authority key identifier: 10:FC:4D:9D:24:03:FC:43:3C:19:BB:76:13:13:25:B7:76:50:5E:51 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FC4D9D2403FC433C19BB76131325B776505E51.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3df068bd-8e3a-4695-89ed-3b3250f875c9/0/323030313a6466343a346230303a3a2f34382d3438203d3e20313337333135.roa Signing time: Wed 25 Oct 2023 17:00:01 +0000 ROA not before: Wed 25 Oct 2023 16:55:01 +0000 ROA not after: Wed 23 Oct 2024 17:00:01 +0000 asID: 137315 IP address blocks: 2001:df4:4b00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3df068bd-8e3a-4695-89ed-3b3250f875c9/0/10FC4D9D2403FC433C19BB76131325B776505E51.crl rsync://repo-rpki.idnic.net/repo/3df068bd-8e3a-4695-89ed-3b3250f875c9/0/10FC4D9D2403FC433C19BB76131325B776505E51.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FC4D9D2403FC433C19BB76131325B776505E51.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:a0:36:13:ee:31:41:8c:11:cb:64:55:f7:16:0f:94:22:ce:c5:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FC4D9D2403FC433C19BB76131325B776505E51 Validity Not Before: Oct 25 16:55:01 2023 GMT Not After : Oct 23 17:00:01 2024 GMT Subject: CN=E67DF70B890B80BAA4AA20BD0E8E465645AC1EF1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e5:ce:d8:1f:1e:03:4f:4b:0c:c3:43:d0:40: 5f:77:20:23:d6:30:01:fa:6d:d9:4b:32:13:6d:0a: 4e:ba:6d:51:80:1f:23:3f:e9:07:75:23:25:f3:e9: e4:94:2d:0e:75:93:41:79:37:fc:f0:9c:a1:3d:cf: c5:fe:85:2c:4c:d8:5e:20:f6:ff:f3:3d:2d:81:c6: da:35:c7:cc:30:b5:17:c9:86:aa:cf:e5:0c:24:5a: cf:d2:62:09:ad:7a:c1:c5:3c:80:87:95:b6:7c:d6: 40:42:2c:ca:69:c5:89:b9:b6:49:f5:a6:cc:e9:8a: 9e:92:52:eb:13:d6:16:bc:1b:fc:27:e1:8c:22:13: d1:ab:00:9e:d6:cb:dc:6a:e3:81:1b:31:56:ee:9b: fc:0f:08:0c:55:0d:d1:f0:e0:cf:50:8c:aa:a2:0f: 4d:d8:30:da:49:ae:34:e9:80:79:e7:f5:61:cb:8b: 5a:6e:70:96:0b:19:4c:cb:a5:63:5a:de:8e:83:ae: 2b:d7:89:9c:4a:dd:a3:9b:4e:77:01:ad:8e:27:3d: d8:90:39:3a:16:70:21:44:6f:e2:b3:5f:84:0f:30: 64:11:0e:49:b0:5e:f1:c5:15:f3:8f:c7:14:7b:79: 01:e9:85:6f:d9:7b:95:a6:e1:47:b8:6a:15:9d:85: 3a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:7D:F7:0B:89:0B:80:BA:A4:AA:20:BD:0E:8E:46:56:45:AC:1E:F1 X509v3 Authority Key Identifier: keyid:10:FC:4D:9D:24:03:FC:43:3C:19:BB:76:13:13:25:B7:76:50:5E:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3df068bd-8e3a-4695-89ed-3b3250f875c9/0/10FC4D9D2403FC433C19BB76131325B776505E51.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FC4D9D2403FC433C19BB76131325B776505E51.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3df068bd-8e3a-4695-89ed-3b3250f875c9/0/323030313a6466343a346230303a3a2f34382d3438203d3e20313337333135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:4b00::/48 Signature Algorithm: sha256WithRSAEncryption 40:96:21:79:91:cf:ad:46:90:67:97:d8:97:75:ee:ac:3b:5d: f4:bf:16:30:8d:03:c6:80:9b:55:cd:e6:26:25:c5:b8:ed:43: 6e:c3:d9:ce:2d:d8:59:39:78:1b:c6:b1:87:c8:05:12:fa:bd: 0d:ea:2e:82:9b:da:2e:a4:4a:16:7e:2a:53:d7:6d:c6:fa:9b: 09:0d:5a:73:dd:bc:a8:57:c9:54:b8:8f:de:76:d1:4c:e1:5c: 45:e9:0e:ec:09:d1:e8:48:d0:b3:82:e8:cd:fd:87:1f:4c:2f: 34:76:60:d7:51:2a:d5:95:d0:e4:ea:3d:89:27:d0:0f:57:e2: 4e:10:c5:0b:1e:2f:f7:88:2a:f6:e2:88:ec:b1:5b:73:08:e8: 7e:02:c7:90:f3:40:42:8f:99:fe:bc:ff:b0:54:a9:bf:67:c8: 0a:a5:7f:e0:c6:0b:d3:6d:b1:69:d2:f3:54:aa:8d:a4:7e:1a: d1:30:a2:b0:58:ed:39:7e:eb:84:9d:94:29:d8:6e:a4:7f:85: 7a:78:ac:7e:5a:7d:f0:70:0d:cb:98:cc:e1:37:56:32:f7:61: 33:91:8b:3f:fd:68:21:e5:90:60:98:2f:32:a9:83:86:8b:a4: 4e:a0:5f:25:53:44:1b:ac:b2:03:f7:cf:14:64:f7:94:9b:80: bb:9f:79:17 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUJqA2E+4xQYwRy2RV9xYPlCLOxWUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGQzREOUQyNDAzRkM0MzNDMTlCQjc2MTMxMzI1Qjc3 NjUwNUU1MTAeFw0yMzEwMjUxNjU1MDFaFw0yNDEwMjMxNzAwMDFaMDMxMTAvBgNV BAMTKEU2N0RGNzBCODkwQjgwQkFBNEFBMjBCRDBFOEU0NjU2NDVBQzFFRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDV5c7YHx4DT0sMw0PQQF93ICPW MAH6bdlLMhNtCk66bVGAHyM/6Qd1IyXz6eSULQ51k0F5N/zwnKE9z8X+hSxM2F4g 9v/zPS2Bxto1x8wwtRfJhqrP5QwkWs/SYgmtesHFPICHlbZ81kBCLMppxYm5tkn1 pszpip6SUusT1ha8G/wn4YwiE9GrAJ7Wy9xq44EbMVbum/wPCAxVDdHw4M9QjKqi D03YMNpJrjTpgHnn9WHLi1pucJYLGUzLpWNa3o6DrivXiZxK3aObTncBrY4nPdiQ OToWcCFEb+KzX4QPMGQRDkmwXvHFFfOPxxR7eQHphW/Ze5Wm4Ue4ahWdhTrnAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU5n33C4kLgLqkqiC9Do5GVkWsHvEwHwYDVR0j BBgwFoAUEPxNnSQD/EM8Gbt2ExMlt3ZQXlEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGYwNjhiZC04ZTNhLTQ2OTUtODllZC0zYjMyNTBmODc1YzkvMC8xMEZDNEQ5RDI0 MDNGQzQzM0MxOUJCNzYxMzEzMjVCNzc2NTA1RTUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGQzREOUQyNDAzRkM0MzNDMTlCQjc2MTMxMzI1Qjc3NjUw NUU1MS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZjA2OGJkLThlM2EtNDY5NS04 OWVkLTNiMzI1MGY4NzVjOS8wLzMyMzAzMDMxM2E2NDY2MzQzYTM0NjIzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM3MzMzMTM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9EsAMA0GCSqGSIb3DQEBCwUAA4IBAQBAliF5kc+tRpBnl9iXde6sO130vxYwjQPG gJtVzeYmJcW47UNuw9nOLdhZOXgbxrGHyAUS+r0N6i6Cm9oupEoWfipT123G+psJ DVpz3byoV8lUuI/edtFM4VxF6Q7sCdHoSNCzgujN/YcfTC80dmDXUSrVldDk6j2J J9APV+JOEMULHi/3iCr24ojssVtzCOh+AseQ80BCj5n+vP+wVKm/Z8gKpX/gxgvT bbFp0vNUqo2kfhrRMKKwWO05fuuEnZQp2G6kf4V6eKx+Wn3wcA3LmMzhN1Yy92Ez kYs//Wgh5ZBgmC8yqYOGi6ROoF8lU0QbrLID988UZPeUm4C7n3kX -----END CERTIFICATE-----Generated at Sun Apr 28 15:43:48 2024 by rpki-client on console-fra.rpki-client.org