$ rpki-client -vvf repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/323030313a6466323a666534303a3a2f34382d3438203d3e20313531353836.roa File: 323030313a6466323a666534303a3a2f34382d3438203d3e20313531353836.roa (raw, json) Hash identifier: goBdU2IBnHy9wcOLLQQ/OCQZydl32zY5z0yZl8PUzN4= Subject key identifier: F9:62:55:F9:BF:D8:26:3D:58:96:08:69:39:6C:30:E3:6A:E3:EA:35 Certificate issuer: /CN=7825A9C30D5AEA4144740E9B12A3C0BC60E73499 Certificate serial: 64DCB97B998FD3D29A775DDA9E9922883B2F8246 Authority key identifier: 78:25:A9:C3:0D:5A:EA:41:44:74:0E:9B:12:A3:C0:BC:60:E7:34:99 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/323030313a6466323a666534303a3a2f34382d3438203d3e20313531353836.roa Signing time: Thu 03 Oct 2024 14:00:02 +0000 ROA not before: Thu 03 Oct 2024 13:55:02 +0000 ROA not after: Thu 02 Oct 2025 14:00:02 +0000 asID: 151586 IP address blocks: 2001:df2:fe40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.crl rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:dc:b9:7b:99:8f:d3:d2:9a:77:5d:da:9e:99:22:88:3b:2f:82:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7825A9C30D5AEA4144740E9B12A3C0BC60E73499 Validity Not Before: Oct 3 13:55:02 2024 GMT Not After : Oct 2 14:00:02 2025 GMT Subject: CN=F96255F9BFD8263D58960869396C30E36AE3EA35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c6:09:b4:99:dd:61:c2:56:36:3a:74:6e:a0: 65:8e:8c:4d:24:59:da:a9:70:ec:2a:fc:e4:e2:6d: 42:bf:86:d9:a5:b9:cc:d6:bd:3c:0a:ef:11:6e:d9: f9:ca:d6:32:0a:8c:28:da:3f:35:a9:df:0d:c9:a0: a3:87:95:cb:bd:98:f9:7d:f9:52:aa:46:7d:44:33: 40:8b:7c:c0:ed:82:11:1f:6c:ec:d3:72:7a:b9:4a: 15:60:16:fb:22:51:fb:96:3a:20:5b:c8:b1:5e:2c: 09:15:f7:08:b7:14:f2:8e:9b:3c:29:73:4c:af:59: a2:75:3c:ef:75:96:56:4f:7d:66:3f:71:fe:60:77: 09:6c:ee:63:92:0f:4a:a0:9b:85:ba:6f:6e:c1:0e: df:67:27:41:15:5f:27:f4:5d:33:ce:4a:0c:d0:77: b6:f0:61:8a:a8:3a:4a:b8:11:69:6e:04:19:cb:7f: 29:89:8d:e6:4c:4c:54:88:86:c9:a5:95:25:77:fb: 74:ff:75:7c:90:69:f5:0a:31:d6:79:43:46:32:91: 67:c3:bf:df:e2:87:d6:19:a5:bd:d8:42:a1:52:11: d7:ef:03:7f:96:29:ec:5c:39:cf:0c:e4:96:47:24: 0e:25:56:20:dd:7d:fd:88:c5:b1:16:63:f0:cd:c2: 3f:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:62:55:F9:BF:D8:26:3D:58:96:08:69:39:6C:30:E3:6A:E3:EA:35 X509v3 Authority Key Identifier: keyid:78:25:A9:C3:0D:5A:EA:41:44:74:0E:9B:12:A3:C0:BC:60:E7:34:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/323030313a6466323a666534303a3a2f34382d3438203d3e20313531353836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:fe40::/48 Signature Algorithm: sha256WithRSAEncryption 69:4d:d5:dc:d7:f9:c3:6a:1a:97:ca:f3:aa:f7:75:53:f7:b5: 2b:65:5d:74:94:5e:ca:e4:44:52:c1:23:23:74:cd:7c:c1:38: 6f:48:bc:54:62:58:b9:e7:c6:03:d5:5a:73:5a:e0:ad:30:2a: d4:0e:df:a5:83:ee:d4:8a:d8:79:36:72:93:5b:4f:e1:92:bb: ab:3e:53:f3:e4:c9:ac:69:b5:3b:85:10:42:02:11:fe:f2:b6: d3:39:9e:24:e1:4f:00:d7:54:83:ce:03:36:be:90:24:40:ce: 04:73:8b:1e:9b:a1:ab:44:8a:83:8f:3e:2d:20:e9:a8:d6:26: 37:76:76:f2:19:be:50:13:2c:47:e7:32:c6:e0:49:a9:a8:69: ab:a1:43:c4:4f:23:2f:03:53:9a:09:c0:dd:48:f6:29:d6:d0: 1c:ce:73:06:20:a0:d7:1a:14:e7:31:fc:c6:10:c7:13:43:ad: e1:2f:da:42:b1:c6:54:0b:59:5a:1b:c4:20:0e:1f:1a:1f:d2: 0f:21:d6:a2:38:33:25:f9:c5:74:de:12:4f:76:24:73:22:a6: 50:bb:f6:c1:25:80:dc:2f:aa:fa:5e:fd:9c:0c:00:58:20:20: 51:b9:89:4d:0d:39:49:ad:22:9f:0b:fb:6d:31:11:62:47:59: 42:11:39:48 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUZNy5e5mP09Kad13anpkiiDsvgkYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzgyNUE5QzMwRDVBRUE0MTQ0NzQwRTlCMTJBM0MwQkM2 MEU3MzQ5OTAeFw0yNDEwMDMxMzU1MDJaFw0yNTEwMDIxNDAwMDJaMDMxMTAvBgNV BAMTKEY5NjI1NUY5QkZEODI2M0Q1ODk2MDg2OTM5NkMzMEUzNkFFM0VBMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBxgm0md1hwlY2OnRuoGWOjE0k WdqpcOwq/OTibUK/htmluczWvTwK7xFu2fnK1jIKjCjaPzWp3w3JoKOHlcu9mPl9 +VKqRn1EM0CLfMDtghEfbOzTcnq5ShVgFvsiUfuWOiBbyLFeLAkV9wi3FPKOmzwp c0yvWaJ1PO91llZPfWY/cf5gdwls7mOSD0qgm4W6b27BDt9nJ0EVXyf0XTPOSgzQ d7bwYYqoOkq4EWluBBnLfymJjeZMTFSIhsmllSV3+3T/dXyQafUKMdZ5Q0YykWfD v9/ih9YZpb3YQqFSEdfvA3+WKexcOc8M5JZHJA4lViDdff2IxbEWY/DNwj9PAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU+WJV+b/YJj1YlghpOWww42rj6jUwHwYDVR0j BBgwFoAUeCWpww1a6kFEdA6bEqPAvGDnNJkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MDAwYjBjMi03ZWZkLTQyNzgtOThlNC1kNGY3YzI3M2VlYzIvMC83ODI1QTlDMzBE NUFFQTQxNDQ3NDBFOUIxMkEzQzBCQzYwRTczNDk5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzgyNUE5QzMwRDVBRUE0MTQ0NzQwRTlCMTJBM0MwQkM2MEU3 MzQ5OS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwMDBiMGMyLTdlZmQtNDI3OC05 OGU0LWQ0ZjdjMjczZWVjMi8wLzMyMzAzMDMxM2E2NDY2MzIzYTY2NjUzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMxMzUzODM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8v5AMA0GCSqGSIb3DQEBCwUAA4IBAQBpTdXc1/nDahqXyvOq93VT97UrZV10lF7K 5ERSwSMjdM18wThvSLxUYli558YD1VpzWuCtMCrUDt+lg+7Uith5NnKTW0/hkrur PlPz5MmsabU7hRBCAhH+8rbTOZ4k4U8A11SDzgM2vpAkQM4Ec4sem6GrRIqDjz4t IOmo1iY3dnbyGb5QEyxH5zLG4EmpqGmroUPETyMvA1OaCcDdSPYp1tAcznMGIKDX GhTnMfzGEMcTQ63hL9pCscZUC1laG8QgDh8aH9IPIdaiODMl+cV03hJPdiRzIqZQ u/bBJYDcL6r6Xv2cDABYICBRuYlNDTlJrSKfC/ttMRFiR1lCETlI -----END CERTIFICATE-----Generated at Sun Nov 24 18:33:15 2024 by rpki-client on console-fra.rpki-client.org