$ rpki-client -vvf repo-rpki.idnic.net/repo/43e4177d-8093-447c-87b5-c79c8cb4c733/0/323030313a6466343a343430303a3a2f34382d3438203d3e20313333383332.roa File: 323030313a6466343a343430303a3a2f34382d3438203d3e20313333383332.roa (raw, json) Hash identifier: xqs+NfxujPzEcQ6NVLuzyIzyAAHSC2ZUwMQB12wFVi0= Subject key identifier: 0D:78:33:A0:AA:50:60:67:69:52:CA:A6:C4:D1:A1:EA:01:0C:C4:1A Certificate issuer: /CN=C710954C7B301C60B82BA6372CACEB81DA08F190 Certificate serial: 5A138F1AF0217AE559E3DD1934ABDE535D48A583 Authority key identifier: C7:10:95:4C:7B:30:1C:60:B8:2B:A6:37:2C:AC:EB:81:DA:08:F1:90 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C710954C7B301C60B82BA6372CACEB81DA08F190.cer Subject info access: rsync://repo-rpki.idnic.net/repo/43e4177d-8093-447c-87b5-c79c8cb4c733/0/323030313a6466343a343430303a3a2f34382d3438203d3e20313333383332.roa Signing time: Fri 22 Dec 2023 00:32:11 +0000 ROA not before: Fri 22 Dec 2023 00:27:11 +0000 ROA not after: Fri 20 Dec 2024 00:32:11 +0000 asID: 133832 IP address blocks: 2001:df4:4400::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/43e4177d-8093-447c-87b5-c79c8cb4c733/0/C710954C7B301C60B82BA6372CACEB81DA08F190.crl rsync://repo-rpki.idnic.net/repo/43e4177d-8093-447c-87b5-c79c8cb4c733/0/C710954C7B301C60B82BA6372CACEB81DA08F190.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C710954C7B301C60B82BA6372CACEB81DA08F190.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:13:8f:1a:f0:21:7a:e5:59:e3:dd:19:34:ab:de:53:5d:48:a5:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C710954C7B301C60B82BA6372CACEB81DA08F190 Validity Not Before: Dec 22 00:27:11 2023 GMT Not After : Dec 20 00:32:11 2024 GMT Subject: CN=0D7833A0AA5060676952CAA6C4D1A1EA010CC41A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ba:56:48:7f:91:3a:75:24:6a:5e:64:3c:83: d6:6c:7c:52:b9:e1:2f:9c:75:78:37:a1:92:8a:87: 3f:07:0d:66:a5:6c:57:04:06:f9:97:b2:24:41:b1: ad:bd:ba:0b:7d:f6:82:1e:05:13:9c:4e:06:05:e7: 7b:0d:70:a0:dc:9d:92:76:af:f9:04:ed:16:94:62: 0f:1a:c8:48:8e:2b:53:84:e2:43:52:7e:d0:a0:68: d0:97:eb:98:06:c7:57:b8:a0:9b:2a:38:e6:43:1f: cb:b4:e6:2e:b7:d3:aa:50:d1:33:38:00:86:f6:15: 7e:bc:c3:69:cb:d3:17:dc:ee:2a:05:72:4b:f8:2b: 8e:3a:4b:21:4b:43:a1:b6:d3:05:82:01:b8:cd:54: cd:66:f2:a7:a7:80:e2:63:dd:bb:98:ca:36:07:d7: 14:22:36:36:6b:6b:18:21:67:a3:52:63:db:cb:94: 89:3f:17:76:8c:ef:7b:e8:cc:a9:cb:11:5d:34:43: aa:5f:24:ae:c2:cc:93:6e:36:ec:38:99:af:f9:ec: 94:e0:7b:d8:df:cb:db:b8:89:83:c1:fb:08:5d:c7: f8:2e:6c:ee:49:7a:c7:ba:0b:59:69:02:d6:cc:86: fd:04:f0:89:d4:ba:63:b4:18:47:ab:9e:d4:06:ce: 6b:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:78:33:A0:AA:50:60:67:69:52:CA:A6:C4:D1:A1:EA:01:0C:C4:1A X509v3 Authority Key Identifier: keyid:C7:10:95:4C:7B:30:1C:60:B8:2B:A6:37:2C:AC:EB:81:DA:08:F1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/43e4177d-8093-447c-87b5-c79c8cb4c733/0/C710954C7B301C60B82BA6372CACEB81DA08F190.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C710954C7B301C60B82BA6372CACEB81DA08F190.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/43e4177d-8093-447c-87b5-c79c8cb4c733/0/323030313a6466343a343430303a3a2f34382d3438203d3e20313333383332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:4400::/48 Signature Algorithm: sha256WithRSAEncryption 17:a8:c8:26:01:d3:ff:47:48:45:ab:ed:88:ff:f9:9f:33:6d: d4:6d:a7:21:d8:17:a2:7e:d3:96:0b:c8:70:d7:9d:24:54:d7: 85:ae:75:a8:5a:c6:7f:8d:5e:89:73:9b:a0:8d:25:91:02:86: e5:80:ca:7d:32:c4:49:17:2c:30:fa:c9:d4:08:ea:67:d5:16: c4:ce:65:27:61:84:3c:8f:8c:aa:56:4b:be:59:7b:6d:38:29: ba:36:21:61:33:a7:d0:ac:4a:cf:c8:1f:e1:25:24:ef:fd:e8: 7c:4c:b1:12:43:43:c9:92:b3:7d:dc:e7:f2:c5:1e:c5:a7:66: 54:5a:de:a2:8c:51:be:aa:f0:0c:05:9c:3a:38:f8:ed:0f:21: 52:7c:e1:dd:73:c2:bb:09:a0:d2:ac:c3:12:e3:fc:d2:32:4a: 90:34:4a:d0:ab:dd:23:12:c2:54:97:23:89:c5:1b:b3:d9:3e: 47:30:64:37:61:a6:15:a8:4b:c8:04:d1:41:dc:b2:60:27:1d: f2:6a:71:fe:02:67:77:90:ba:22:13:c5:eb:0c:a7:43:be:49: 7f:02:c4:82:de:a6:81:72:1f:70:84:c1:65:ad:09:d4:f8:86: 10:cd:a1:95:11:4d:bb:1c:05:3c:b5:34:5d:06:62:06:a7:c8: 84:c1:99:ee -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUWhOPGvAheuVZ490ZNKveU11IpYMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzcxMDk1NEM3QjMwMUM2MEI4MkJBNjM3MkNBQ0VCODFE QTA4RjE5MDAeFw0yMzEyMjIwMDI3MTFaFw0yNDEyMjAwMDMyMTFaMDMxMTAvBgNV BAMTKDBENzgzM0EwQUE1MDYwNjc2OTUyQ0FBNkM0RDFBMUVBMDEwQ0M0MUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpulZIf5E6dSRqXmQ8g9ZsfFK5 4S+cdXg3oZKKhz8HDWalbFcEBvmXsiRBsa29ugt99oIeBROcTgYF53sNcKDcnZJ2 r/kE7RaUYg8ayEiOK1OE4kNSftCgaNCX65gGx1e4oJsqOOZDH8u05i6306pQ0TM4 AIb2FX68w2nL0xfc7ioFckv4K446SyFLQ6G20wWCAbjNVM1m8qengOJj3buYyjYH 1xQiNjZraxghZ6NSY9vLlIk/F3aM73vozKnLEV00Q6pfJK7CzJNuNuw4ma/57JTg e9jfy9u4iYPB+whdx/gubO5Jese6C1lpAtbMhv0E8InUumO0GEerntQGzmuhAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUDXgzoKpQYGdpUsqmxNGh6gEMxBowHwYDVR0j BBgwFoAUxxCVTHswHGC4K6Y3LKzrgdoI8ZAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 M2U0MTc3ZC04MDkzLTQ0N2MtODdiNS1jNzljOGNiNGM3MzMvMC9DNzEwOTU0QzdC MzAxQzYwQjgyQkE2MzcyQ0FDRUI4MURBMDhGMTkwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzcxMDk1NEM3QjMwMUM2MEI4MkJBNjM3MkNBQ0VCODFEQTA4 RjE5MC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQzZTQxNzdkLTgwOTMtNDQ3Yy04 N2I1LWM3OWM4Y2I0YzczMy8wLzMyMzAzMDMxM2E2NDY2MzQzYTM0MzQzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMzMzgzMzMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9EQAMA0GCSqGSIb3DQEBCwUAA4IBAQAXqMgmAdP/R0hFq+2I//mfM23Ubach2Bei ftOWC8hw150kVNeFrnWoWsZ/jV6Jc5ugjSWRAoblgMp9MsRJFyww+snUCOpn1RbE zmUnYYQ8j4yqVku+WXttOCm6NiFhM6fQrErPyB/hJSTv/eh8TLESQ0PJkrN93Ofy xR7Fp2ZUWt6ijFG+qvAMBZw6OPjtDyFSfOHdc8K7CaDSrMMS4/zSMkqQNErQq90j EsJUlyOJxRuz2T5HMGQ3YaYVqEvIBNFB3LJgJx3yanH+Amd3kLoiE8XrDKdDvkl/ AsSC3qaBch9whMFlrQnU+IYQzaGVEU27HAU8tTRdBmIGp8iEwZnu -----END CERTIFICATE-----Generated at Sat May 4 06:56:15 2024 by rpki-client on console-fra.rpki-client.org