$ rpki-client -vvf repo-rpki.idnic.net/repo/0221ad67-d35c-4559-9a73-7c74f50dcffa/0/323030313a6466313a653430303a3a2f34382d3438203d3e20313333383034.roa File: 323030313a6466313a653430303a3a2f34382d3438203d3e20313333383034.roa (raw, json) Hash identifier: 2A9V8cE9M0KLYY72RtdVKo6+zZp7k8h8tLFLHk7cKIQ= Subject key identifier: B2:06:29:55:60:EA:AB:0C:F1:31:DB:75:B6:71:19:2A:15:31:8D:5D Certificate issuer: /CN=56369FDBBCDE685B4440429A22B7967BBC3C5E36 Certificate serial: 4AEB2E4CA290C8C160CAC021984D9793AF43434E Authority key identifier: 56:36:9F:DB:BC:DE:68:5B:44:40:42:9A:22:B7:96:7B:BC:3C:5E:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/56369FDBBCDE685B4440429A22B7967BBC3C5E36.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0221ad67-d35c-4559-9a73-7c74f50dcffa/0/323030313a6466313a653430303a3a2f34382d3438203d3e20313333383034.roa Signing time: Sat 04 May 2024 05:00:00 +0000 ROA not before: Sat 04 May 2024 04:55:00 +0000 ROA not after: Sat 03 May 2025 05:00:00 +0000 asID: 133804 IP address blocks: 2001:df1:e400::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0221ad67-d35c-4559-9a73-7c74f50dcffa/0/56369FDBBCDE685B4440429A22B7967BBC3C5E36.crl rsync://repo-rpki.idnic.net/repo/0221ad67-d35c-4559-9a73-7c74f50dcffa/0/56369FDBBCDE685B4440429A22B7967BBC3C5E36.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/56369FDBBCDE685B4440429A22B7967BBC3C5E36.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:eb:2e:4c:a2:90:c8:c1:60:ca:c0:21:98:4d:97:93:af:43:43:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=56369FDBBCDE685B4440429A22B7967BBC3C5E36 Validity Not Before: May 4 04:55:00 2024 GMT Not After : May 3 05:00:00 2025 GMT Subject: CN=B206295560EAAB0CF131DB75B671192A15318D5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b1:94:a3:9f:3f:a8:63:eb:22:7a:8c:e5:7c: a8:93:9a:85:db:80:c1:2c:43:2f:fb:02:b7:a0:14: 67:34:ad:46:54:75:08:00:82:79:76:15:ce:80:98: 48:24:be:a5:29:6d:50:f7:2e:e7:e9:86:43:db:e3: 19:c5:83:5c:13:4c:c1:63:ac:14:1e:5c:f5:70:c6: 99:dc:91:39:67:2f:34:e7:51:ae:ae:45:07:16:ba: 76:5f:71:32:3a:f9:a1:6d:74:69:5f:d9:85:d9:70: de:71:14:12:75:ea:8e:75:7d:f5:d8:8c:89:de:34: 23:33:e0:48:07:b8:82:5b:89:f8:ab:ef:4b:f5:b1: 94:b8:2e:f9:1e:ce:04:4f:a0:53:6b:9b:40:eb:10: 91:13:08:e9:47:c4:0e:8d:a2:31:97:a5:70:a9:61: 4a:64:c7:ed:39:bb:4c:b2:5b:2c:23:bd:50:7a:b2: 4b:2b:cd:2d:f4:9e:91:06:40:36:63:32:ec:db:bb: 42:58:9a:10:9c:57:aa:08:c6:ab:07:79:d2:23:28: 09:ed:7b:c3:4d:b8:98:58:83:8a:e2:72:65:d0:14: a5:43:cf:93:98:ea:12:2a:6c:15:8f:91:9a:1c:51: e7:09:c4:1e:2f:c1:3a:73:3c:dc:04:f7:dd:ee:ea: 33:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:06:29:55:60:EA:AB:0C:F1:31:DB:75:B6:71:19:2A:15:31:8D:5D X509v3 Authority Key Identifier: keyid:56:36:9F:DB:BC:DE:68:5B:44:40:42:9A:22:B7:96:7B:BC:3C:5E:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0221ad67-d35c-4559-9a73-7c74f50dcffa/0/56369FDBBCDE685B4440429A22B7967BBC3C5E36.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/56369FDBBCDE685B4440429A22B7967BBC3C5E36.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0221ad67-d35c-4559-9a73-7c74f50dcffa/0/323030313a6466313a653430303a3a2f34382d3438203d3e20313333383034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:e400::/48 Signature Algorithm: sha256WithRSAEncryption 5e:34:79:ca:9e:03:8d:ca:13:31:a7:a4:6f:05:89:2b:89:31: c2:3a:60:04:ff:87:a0:e4:8a:23:a7:94:39:65:75:72:3b:d2: cd:f0:b9:d2:91:2d:37:ec:69:9d:76:16:18:44:8c:d0:2b:c8: 5c:54:ff:28:6e:86:b3:93:a5:14:52:91:97:62:48:4c:18:fa: 8c:43:f2:3a:ae:71:0c:82:ee:c1:0f:be:ae:b9:91:94:c2:aa: d8:27:e2:12:82:cb:dd:00:1b:2d:58:9d:8a:79:15:b3:84:a0: ea:16:b9:09:d2:19:98:3c:49:2f:1f:fd:53:5f:bd:1e:28:33: dd:cd:3c:85:46:3c:61:b0:a9:32:20:c8:16:60:7b:9f:ba:7d: 59:70:52:63:46:3d:dc:d5:10:07:98:77:8d:a9:88:be:49:22: 0d:4f:24:79:51:f1:6e:fc:01:f7:ee:c6:41:8b:3c:c3:c8:6d: c6:00:b0:ce:3e:1b:42:41:8a:d5:1e:34:e4:89:5f:ba:e3:c1: 06:ae:90:6c:25:49:0d:e7:f2:c0:f2:ee:e6:78:50:c9:02:f0: e7:a5:77:8f:41:67:dd:07:e6:98:08:1e:12:f7:99:aa:ff:be: 33:8e:f5:19:10:a2:62:1c:97:d8:8f:ef:8f:28:51:a8:c4:cf: 31:87:7b:43 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUSusuTKKQyMFgysAhmE2Xk69DQ04wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYzNjlGREJCQ0RFNjg1QjQ0NDA0MjlBMjJCNzk2N0JC QzNDNUUzNjAeFw0yNDA1MDQwNDU1MDBaFw0yNTA1MDMwNTAwMDBaMDMxMTAvBgNV BAMTKEIyMDYyOTU1NjBFQUFCMENGMTMxREI3NUI2NzExOTJBMTUzMThENUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDsZSjnz+oY+sieozlfKiTmoXb gMEsQy/7AregFGc0rUZUdQgAgnl2Fc6AmEgkvqUpbVD3LufphkPb4xnFg1wTTMFj rBQeXPVwxpnckTlnLzTnUa6uRQcWunZfcTI6+aFtdGlf2YXZcN5xFBJ16o51ffXY jIneNCMz4EgHuIJbifir70v1sZS4LvkezgRPoFNrm0DrEJETCOlHxA6NojGXpXCp YUpkx+05u0yyWywjvVB6sksrzS30npEGQDZjMuzbu0JYmhCcV6oIxqsHedIjKAnt e8NNuJhYg4ricmXQFKVDz5OY6hIqbBWPkZocUecJxB4vwTpzPNwE993u6jMPAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUsgYpVWDqqwzxMdt1tnEZKhUxjV0wHwYDVR0j BBgwFoAUVjaf27zeaFtEQEKaIreWe7w8XjYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MjIxYWQ2Ny1kMzVjLTQ1NTktOWE3My03Yzc0ZjUwZGNmZmEvMC81NjM2OUZEQkJD REU2ODVCNDQ0MDQyOUEyMkI3OTY3QkJDM0M1RTM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYzNjlGREJCQ0RFNjg1QjQ0NDA0MjlBMjJCNzk2N0JCQzND NUUzNi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAyMjFhZDY3LWQzNWMtNDU1OS05 YTczLTdjNzRmNTBkY2ZmYS8wLzMyMzAzMDMxM2E2NDY2MzEzYTY1MzQzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMzMzgzMDM0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8eQAMA0GCSqGSIb3DQEBCwUAA4IBAQBeNHnKngONyhMxp6RvBYkriTHCOmAE/4eg 5Iojp5Q5ZXVyO9LN8LnSkS037GmddhYYRIzQK8hcVP8oboazk6UUUpGXYkhMGPqM Q/I6rnEMgu7BD76uuZGUwqrYJ+ISgsvdABstWJ2KeRWzhKDqFrkJ0hmYPEkvH/1T X70eKDPdzTyFRjxhsKkyIMgWYHufun1ZcFJjRj3c1RAHmHeNqYi+SSINTyR5UfFu /AH37sZBizzDyG3GALDOPhtCQYrVHjTkiV+648EGrpBsJUkN5/LA8u7meFDJAvDn pXePQWfdB+aYCB4S95mq/74zjvUZEKJiHJfYj++PKFGoxM8xh3tD -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:56 2024 by rpki-client on console-fra.rpki-client.org