$ rpki-client -vvf repo-rpki.idnic.net/repo/d8b98722-1cb4-40d4-ac8b-c3bca2bca217/0/323030313a6466303a663830303a3a2f34382d3438203d3e203538333937.roa File: 323030313a6466303a663830303a3a2f34382d3438203d3e203538333937.roa (raw, json) Hash identifier: 8qFDAcssXXUuL7jdU+5MBpRRNuUnSR4XPXnprUszlok= Subject key identifier: 94:90:86:02:D4:7E:CF:F5:DD:9F:0E:B0:E0:7D:2A:51:25:BF:5F:DC Certificate issuer: /CN=8A95FAF723EC129E336E75ACE1CD4F3094FB6481 Certificate serial: 0D955CADB4C1645CB2A84E470770A48356C3BCDC Authority key identifier: 8A:95:FA:F7:23:EC:12:9E:33:6E:75:AC:E1:CD:4F:30:94:FB:64:81 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A95FAF723EC129E336E75ACE1CD4F3094FB6481.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8b98722-1cb4-40d4-ac8b-c3bca2bca217/0/323030313a6466303a663830303a3a2f34382d3438203d3e203538333937.roa Signing time: Thu 12 Dec 2024 08:02:34 +0000 ROA not before: Thu 12 Dec 2024 07:57:34 +0000 ROA not after: Thu 11 Dec 2025 08:02:34 +0000 asID: 58397 IP address blocks: 2001:df0:f800::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8b98722-1cb4-40d4-ac8b-c3bca2bca217/0/8A95FAF723EC129E336E75ACE1CD4F3094FB6481.crl rsync://repo-rpki.idnic.net/repo/d8b98722-1cb4-40d4-ac8b-c3bca2bca217/0/8A95FAF723EC129E336E75ACE1CD4F3094FB6481.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A95FAF723EC129E336E75ACE1CD4F3094FB6481.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 12:50:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:95:5c:ad:b4:c1:64:5c:b2:a8:4e:47:07:70:a4:83:56:c3:bc:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A95FAF723EC129E336E75ACE1CD4F3094FB6481 Validity Not Before: Dec 12 07:57:34 2024 GMT Not After : Dec 11 08:02:34 2025 GMT Subject: CN=94908602D47ECFF5DD9F0EB0E07D2A5125BF5FDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:17:6a:4a:88:8f:3d:a7:4d:07:43:af:89:e8: 08:7c:fc:63:44:33:eb:90:24:06:6a:44:0d:39:fe: 4e:ed:0c:67:d7:ae:92:96:34:7f:e5:90:20:12:2f: 99:6d:a7:5e:22:ab:a7:97:40:08:f6:e0:08:ad:07: 11:33:2c:b3:31:17:d2:06:fa:0f:1b:eb:6a:1a:ae: 19:6f:b8:28:68:3f:ff:15:ed:f9:ef:ed:76:51:b8: 29:a2:c9:62:7b:26:3e:72:34:96:53:4e:8c:55:fd: c9:4a:7e:96:e2:1b:1e:96:0b:a6:7d:20:dc:2f:66: 0a:b8:9d:80:18:3c:5e:42:ce:aa:a5:13:0c:5c:cf: b9:cb:b2:fe:24:73:50:04:20:ba:8a:da:ca:08:f0: 43:7d:cc:c4:81:7a:3b:ba:60:21:a4:b6:c4:f4:b9: 6b:25:fc:1c:1e:02:6c:7c:1f:00:72:bb:8c:e3:71: a1:2d:c4:b8:4a:1f:45:b7:cb:5c:95:50:65:5a:52: b2:2d:71:1f:91:8c:4f:b1:f8:e3:cf:ce:38:05:9f: 13:ff:e7:32:50:37:b3:39:67:49:a3:79:de:1b:98: 6d:50:72:db:23:58:6c:ba:5d:d0:de:08:ff:85:fe: 77:04:06:1e:11:0e:2a:c9:98:d1:c2:2d:03:8d:84: 1e:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:90:86:02:D4:7E:CF:F5:DD:9F:0E:B0:E0:7D:2A:51:25:BF:5F:DC X509v3 Authority Key Identifier: keyid:8A:95:FA:F7:23:EC:12:9E:33:6E:75:AC:E1:CD:4F:30:94:FB:64:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8b98722-1cb4-40d4-ac8b-c3bca2bca217/0/8A95FAF723EC129E336E75ACE1CD4F3094FB6481.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A95FAF723EC129E336E75ACE1CD4F3094FB6481.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8b98722-1cb4-40d4-ac8b-c3bca2bca217/0/323030313a6466303a663830303a3a2f34382d3438203d3e203538333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:f800::/48 Signature Algorithm: sha256WithRSAEncryption 3e:b7:1c:b9:70:c6:7f:fb:ce:b2:f2:09:a6:12:29:4d:43:96: 52:c5:34:81:54:d1:29:d4:49:98:eb:40:24:c9:32:46:20:a5: e6:e9:4f:23:f0:fa:d6:32:ae:8a:81:1e:c1:5e:0e:24:78:87: e6:55:d0:5e:11:3d:09:72:05:98:44:a9:02:5f:22:5c:10:d4: c5:b2:1d:53:33:55:5d:cf:d2:61:81:39:3e:e1:c9:93:dd:67: 5f:63:f0:6c:d2:9e:06:bb:a5:0c:d9:6d:f2:23:cd:11:9c:8e: b9:aa:eb:a1:98:c6:5c:c2:17:56:84:1a:b0:10:7c:2a:51:51: 44:e1:3a:be:b5:c2:20:97:1d:23:d2:71:44:43:6f:13:4d:70: ea:2c:d1:04:7a:8e:08:a1:73:e9:54:67:57:6e:84:9f:3c:04: 76:c3:3f:74:14:e7:1c:bf:08:8b:dc:2c:28:bc:90:27:b6:a8: 24:7c:02:4e:72:57:f6:d5:1b:b3:40:c4:62:f2:28:d1:d7:06: 09:a0:52:b2:eb:65:33:e0:e5:b9:cc:ed:89:cf:2a:b8:eb:51: fb:aa:80:02:38:b0:ed:29:fc:32:3f:66:3e:25:81:38:fa:f0: 93:da:d2:a6:bd:9b:11:97:b1:f8:b8:ef:cb:14:47:f4:c7:32: 26:43:71:2a -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUDZVcrbTBZFyyqE5HB3Ckg1bDvNwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEE5NUZBRjcyM0VDMTI5RTMzNkU3NUFDRTFDRDRGMzA5 NEZCNjQ4MTAeFw0yNDEyMTIwNzU3MzRaFw0yNTEyMTEwODAyMzRaMDMxMTAvBgNV BAMTKDk0OTA4NjAyRDQ3RUNGRjVERDlGMEVCMEUwN0QyQTUxMjVCRjVGREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnF2pKiI89p00HQ6+J6Ah8/GNE M+uQJAZqRA05/k7tDGfXrpKWNH/lkCASL5ltp14iq6eXQAj24AitBxEzLLMxF9IG +g8b62oarhlvuChoP/8V7fnv7XZRuCmiyWJ7Jj5yNJZTToxV/clKfpbiGx6WC6Z9 INwvZgq4nYAYPF5CzqqlEwxcz7nLsv4kc1AEILqK2soI8EN9zMSBeju6YCGktsT0 uWsl/BweAmx8HwByu4zjcaEtxLhKH0W3y1yVUGVaUrItcR+RjE+x+OPPzjgFnxP/ 5zJQN7M5Z0mjed4bmG1QctsjWGy6XdDeCP+F/ncEBh4RDirJmNHCLQONhB5ZAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUlJCGAtR+z/Xdnw6w4H0qUSW/X9wwHwYDVR0j BBgwFoAUipX69yPsEp4zbnWs4c1PMJT7ZIEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGI5ODcyMi0xY2I0LTQwZDQtYWM4Yi1jM2JjYTJiY2EyMTcvMC84QTk1RkFGNzIz RUMxMjlFMzM2RTc1QUNFMUNENEYzMDk0RkI2NDgxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEE5NUZBRjcyM0VDMTI5RTMzNkU3NUFDRTFDRDRGMzA5NEZC NjQ4MS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4Yjk4NzIyLTFjYjQtNDBkNC1h YzhiLWMzYmNhMmJjYTIxNy8wLzMyMzAzMDMxM2E2NDY2MzAzYTY2MzgzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzODMzMzkzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfD4 ADANBgkqhkiG9w0BAQsFAAOCAQEAPrccuXDGf/vOsvIJphIpTUOWUsU0gVTRKdRJ mOtAJMkyRiCl5ulPI/D61jKuioEewV4OJHiH5lXQXhE9CXIFmESpAl8iXBDUxbId UzNVXc/SYYE5PuHJk91nX2PwbNKeBrulDNlt8iPNEZyOuarroZjGXMIXVoQasBB8 KlFRROE6vrXCIJcdI9JxRENvE01w6izRBHqOCKFz6VRnV26EnzwEdsM/dBTnHL8I i9wsKLyQJ7aoJHwCTnJX9tUbs0DEYvIo0dcGCaBSsutlM+Dlucztic8quOtR+6qA Ajiw7Sn8Mj9mPiWBOPrwk9rSpr2bEZex+LjvyxRH9McyJkNxKg== -----END CERTIFICATE-----Generated at Sun Apr 6 20:34:30 2025 by rpki-client