$ rpki-client -vvf repo-rpki.idnic.net/repo/018e2e74-f6c7-49f4-ad58-f00cde3eda60/0/323030313a6466373a626230303a3a2f34382d3438203d3e20313338303531.roa File: 323030313a6466373a626230303a3a2f34382d3438203d3e20313338303531.roa (raw, json) Hash identifier: cDd3qM9AIE96Hi1vXz3mLzLpG0nitPuPiXAGn3/1SEw= Subject key identifier: 28:46:BB:CD:61:30:C7:62:95:04:AA:43:7C:D5:4D:93:D6:81:7B:77 Certificate issuer: /CN=9B123580240DE1580D07828D18D711FDE8163C25 Certificate serial: 5D1E28B61BCC87FF9F9C87E370F809E25A9E856B Authority key identifier: 9B:12:35:80:24:0D:E1:58:0D:07:82:8D:18:D7:11:FD:E8:16:3C:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B123580240DE1580D07828D18D711FDE8163C25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/018e2e74-f6c7-49f4-ad58-f00cde3eda60/0/323030313a6466373a626230303a3a2f34382d3438203d3e20313338303531.roa Signing time: Fri 01 Mar 2024 01:44:03 +0000 ROA not before: Fri 01 Mar 2024 01:39:03 +0000 ROA not after: Fri 28 Feb 2025 01:44:03 +0000 asID: 138051 IP address blocks: 2001:df7:bb00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/018e2e74-f6c7-49f4-ad58-f00cde3eda60/0/9B123580240DE1580D07828D18D711FDE8163C25.crl rsync://repo-rpki.idnic.net/repo/018e2e74-f6c7-49f4-ad58-f00cde3eda60/0/9B123580240DE1580D07828D18D711FDE8163C25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B123580240DE1580D07828D18D711FDE8163C25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:19:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:1e:28:b6:1b:cc:87:ff:9f:9c:87:e3:70:f8:09:e2:5a:9e:85:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B123580240DE1580D07828D18D711FDE8163C25 Validity Not Before: Mar 1 01:39:03 2024 GMT Not After : Feb 28 01:44:03 2025 GMT Subject: CN=2846BBCD6130C7629504AA437CD54D93D6817B77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:48:63:9a:19:06:89:a0:bd:1f:3d:83:fb:37: 6f:60:6a:44:e9:8b:3e:1f:af:6e:f9:af:38:89:8d: 38:d2:b2:fe:42:1a:27:cc:ab:b9:85:b0:71:7f:e8: 4f:68:c0:1f:08:d9:0e:82:22:f7:fd:29:56:35:c3: 5c:42:9e:a8:98:86:33:03:3a:d0:10:72:c8:71:dc: bd:f8:5c:e1:54:d0:ac:1f:cc:f1:d4:26:6a:76:51: eb:2c:31:05:39:58:9a:77:ef:91:ac:b5:ec:be:02: b2:87:ab:95:95:17:30:e6:17:38:e6:6c:20:ea:1c: 77:2d:d3:0d:7a:01:5c:65:a0:ed:26:b1:17:ed:cc: d3:8f:9d:f4:8d:84:38:07:b4:46:d2:93:d4:a4:bd: 90:cd:53:04:59:cd:8f:75:07:3e:5d:cd:65:a1:96: db:32:28:39:59:54:cd:7c:ce:f8:46:5d:2f:af:13: 6a:41:0d:7e:ef:02:a5:b7:9d:8f:bc:32:71:ca:7a: d2:49:df:b4:ce:1b:bf:7a:f7:0d:c6:b7:c5:13:6c: 28:19:5b:28:47:cb:68:f7:d9:79:f4:1c:51:d4:02: cd:ab:db:10:35:e1:74:80:1d:d4:53:6e:89:e2:b3: fc:f7:f6:93:96:52:3a:eb:4b:6b:3b:80:d5:60:ff: ba:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:46:BB:CD:61:30:C7:62:95:04:AA:43:7C:D5:4D:93:D6:81:7B:77 X509v3 Authority Key Identifier: keyid:9B:12:35:80:24:0D:E1:58:0D:07:82:8D:18:D7:11:FD:E8:16:3C:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/018e2e74-f6c7-49f4-ad58-f00cde3eda60/0/9B123580240DE1580D07828D18D711FDE8163C25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B123580240DE1580D07828D18D711FDE8163C25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/018e2e74-f6c7-49f4-ad58-f00cde3eda60/0/323030313a6466373a626230303a3a2f34382d3438203d3e20313338303531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:bb00::/48 Signature Algorithm: sha256WithRSAEncryption 5a:64:44:92:3d:b1:b8:a6:ba:3d:2a:80:14:76:72:de:9c:f8: 4b:7d:8f:e4:58:44:2e:fa:39:d3:42:30:95:b1:2b:3f:51:f9: 37:f8:a2:9b:b9:94:e6:66:6c:13:6a:4c:88:70:93:10:78:c5: c5:4f:ec:b6:7a:2d:b8:fe:ca:f2:79:62:f9:5b:07:cc:b5:47: ea:65:92:d5:c6:10:34:17:7b:51:12:3f:d6:39:07:e1:24:95: 3b:6e:b5:36:47:ae:90:40:83:b1:2f:0f:e0:71:e5:32:27:b2: 7f:5a:a0:58:e4:82:fd:67:27:96:94:c4:15:5b:ab:08:f3:54: e4:81:fb:36:4d:af:c6:f2:5e:ce:f7:09:f3:5a:bc:ea:af:37: 4b:9e:d7:cc:c8:92:93:0d:88:08:5c:b2:87:31:45:60:3c:12: 57:c8:49:7b:02:73:9d:8d:27:fb:da:cf:a8:42:fd:93:46:e6: a0:8d:53:29:29:95:f2:b6:99:99:5f:f4:2a:bd:9a:11:c6:ae: 0c:aa:0b:09:0e:4a:8f:e8:2a:be:4c:45:20:b8:1d:da:bc:dd: 5b:d3:40:2c:7c:8a:4d:fd:f0:df:e2:41:a2:17:d7:a6:92:d7: de:d9:75:18:63:35:9e:fc:3e:c2:83:56:1e:7f:f4:ae:da:d3: 2e:a0:6b:39 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUXR4othvMh/+fnIfjcPgJ4lqehWswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUIxMjM1ODAyNDBERTE1ODBEMDc4MjhEMThENzExRkRF ODE2M0MyNTAeFw0yNDAzMDEwMTM5MDNaFw0yNTAyMjgwMTQ0MDNaMDMxMTAvBgNV BAMTKDI4NDZCQkNENjEzMEM3NjI5NTA0QUE0MzdDRDU0RDkzRDY4MTdCNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVSGOaGQaJoL0fPYP7N29gakTp iz4fr275rziJjTjSsv5CGifMq7mFsHF/6E9owB8I2Q6CIvf9KVY1w1xCnqiYhjMD OtAQcshx3L34XOFU0KwfzPHUJmp2UessMQU5WJp375Gstey+ArKHq5WVFzDmFzjm bCDqHHct0w16AVxloO0msRftzNOPnfSNhDgHtEbSk9SkvZDNUwRZzY91Bz5dzWWh ltsyKDlZVM18zvhGXS+vE2pBDX7vAqW3nY+8MnHKetJJ37TOG7969w3Gt8UTbCgZ WyhHy2j32Xn0HFHUAs2r2xA14XSAHdRTbonis/z39pOWUjrrS2s7gNVg/7rPAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUKEa7zWEwx2KVBKpDfNVNk9aBe3cwHwYDVR0j BBgwFoAUmxI1gCQN4VgNB4KNGNcR/egWPCUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MThlMmU3NC1mNmM3LTQ5ZjQtYWQ1OC1mMDBjZGUzZWRhNjAvMC85QjEyMzU4MDI0 MERFMTU4MEQwNzgyOEQxOEQ3MTFGREU4MTYzQzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUIxMjM1ODAyNDBERTE1ODBEMDc4MjhEMThENzExRkRFODE2 M0MyNS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAxOGUyZTc0LWY2YzctNDlmNC1h ZDU4LWYwMGNkZTNlZGE2MC8wLzMyMzAzMDMxM2E2NDY2MzczYTYyNjIzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzAzNTMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 97sAMA0GCSqGSIb3DQEBCwUAA4IBAQBaZESSPbG4pro9KoAUdnLenPhLfY/kWEQu +jnTQjCVsSs/Ufk3+KKbuZTmZmwTakyIcJMQeMXFT+y2ei24/sryeWL5WwfMtUfq ZZLVxhA0F3tREj/WOQfhJJU7brU2R66QQIOxLw/gceUyJ7J/WqBY5IL9ZyeWlMQV W6sI81Tkgfs2Ta/G8l7O9wnzWrzqrzdLntfMyJKTDYgIXLKHMUVgPBJXyEl7AnOd jSf72s+oQv2TRuagjVMpKZXytpmZX/QqvZoRxq4MqgsJDkqP6Cq+TEUguB3avN1b 00AsfIpN/fDf4kGiF9emktfe2XUYYzWe/D7Cg1Yef/Su2tMuoGs5 -----END CERTIFICATE-----Generated at Fri May 31 22:12:28 2024 by rpki-client on console-fra.rpki-client.org