$ rpki-client -vvf repo-rpki.idnic.net/repo/0456519e-ab61-4943-b3e8-10bdd6080fda/1/323030313a6466343a336134303a3a2f34382d3438203d3e20313533313132.roa File: 323030313a6466343a336134303a3a2f34382d3438203d3e20313533313132.roa (raw, json) Hash identifier: dDmCVVYb9HZ/Ddemxknj4E267gWucRzWDlYywaLyJ1w= Subject key identifier: 1F:BF:64:0C:7C:11:45:5E:56:95:E5:50:31:42:69:64:56:CE:25:02 Certificate issuer: /CN=CFA49B8E5D9A08B7A017E5B0F887E88F99A6306C Certificate serial: 77DBBB2EE1229E7AB729612564CBDD3E40B59C68 Authority key identifier: CF:A4:9B:8E:5D:9A:08:B7:A0:17:E5:B0:F8:87:E8:8F:99:A6:30:6C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CFA49B8E5D9A08B7A017E5B0F887E88F99A6306C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0456519e-ab61-4943-b3e8-10bdd6080fda/1/323030313a6466343a336134303a3a2f34382d3438203d3e20313533313132.roa Signing time: Fri 13 Sep 2024 08:14:47 +0000 ROA not before: Fri 13 Sep 2024 08:09:47 +0000 ROA not after: Fri 12 Sep 2025 08:14:47 +0000 asID: 153112 IP address blocks: 2001:df4:3a40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0456519e-ab61-4943-b3e8-10bdd6080fda/1/CFA49B8E5D9A08B7A017E5B0F887E88F99A6306C.crl rsync://repo-rpki.idnic.net/repo/0456519e-ab61-4943-b3e8-10bdd6080fda/1/CFA49B8E5D9A08B7A017E5B0F887E88F99A6306C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CFA49B8E5D9A08B7A017E5B0F887E88F99A6306C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 14:30:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:db:bb:2e:e1:22:9e:7a:b7:29:61:25:64:cb:dd:3e:40:b5:9c:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CFA49B8E5D9A08B7A017E5B0F887E88F99A6306C Validity Not Before: Sep 13 08:09:47 2024 GMT Not After : Sep 12 08:14:47 2025 GMT Subject: CN=1FBF640C7C11455E5695E5503142696456CE2502 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:4d:e5:59:81:1a:e8:e3:78:07:0f:94:75:1e: cb:5b:65:eb:9e:f7:f5:73:99:84:45:f2:c8:2e:4c: 36:34:12:7b:e7:6f:3a:19:e0:3a:57:e8:da:f5:04: ff:37:92:5d:26:00:79:5e:b0:b2:87:63:80:45:95: ff:0c:bd:05:f5:e8:c1:09:29:3b:69:c1:67:ff:32: c3:87:67:e9:69:40:1c:df:f4:07:a1:b1:89:88:13: 93:40:41:1c:99:6b:a4:34:78:fb:a5:b9:1f:28:9f: b8:1d:e3:56:c4:8a:81:2d:1e:30:ff:94:bb:38:61: 6c:c7:56:3c:ca:7d:a6:56:61:b4:ea:a8:f9:c9:7e: ca:6c:07:4c:a5:34:d3:ef:cd:0e:94:3f:2e:fd:44: 38:b0:33:0d:7f:fd:1e:9d:6f:e3:f5:f3:a0:d4:ad: 8c:45:79:68:a6:ae:99:62:68:e0:cb:63:30:ba:74: a9:e1:2a:b5:91:b4:48:b8:2f:35:bc:29:b9:ff:84: bf:95:d7:30:62:87:ae:f9:8f:b6:ad:f3:7d:47:aa: 75:8f:ae:4b:b2:d9:10:d5:b1:e6:98:c3:e9:13:be: 22:db:ae:78:12:32:13:44:b8:87:63:4f:a1:c0:cd: c8:d5:01:5e:6d:bb:f4:4d:f8:67:f9:1c:6b:93:c1: 8f:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:BF:64:0C:7C:11:45:5E:56:95:E5:50:31:42:69:64:56:CE:25:02 X509v3 Authority Key Identifier: keyid:CF:A4:9B:8E:5D:9A:08:B7:A0:17:E5:B0:F8:87:E8:8F:99:A6:30:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0456519e-ab61-4943-b3e8-10bdd6080fda/1/CFA49B8E5D9A08B7A017E5B0F887E88F99A6306C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CFA49B8E5D9A08B7A017E5B0F887E88F99A6306C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0456519e-ab61-4943-b3e8-10bdd6080fda/1/323030313a6466343a336134303a3a2f34382d3438203d3e20313533313132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:3a40::/48 Signature Algorithm: sha256WithRSAEncryption 54:63:4d:c4:25:55:5e:47:ab:f0:99:5e:02:70:49:18:07:ce: 8d:62:87:4b:52:dc:f1:d0:ce:c8:20:99:f6:b9:a6:c5:d0:07: 9b:2c:6f:74:ac:67:92:15:c6:cc:c2:e3:20:d3:2a:d4:76:e8: dd:07:00:ed:be:cc:68:f7:48:84:21:d0:65:8c:65:14:81:59: 63:81:16:66:43:22:81:c9:fa:30:b5:57:4e:19:71:92:74:29: 93:ae:a4:20:ff:a1:ef:69:65:ff:ec:45:56:a8:f4:90:7a:52: 32:6e:bd:9f:68:ef:c5:69:60:20:d0:2d:b5:f5:3c:c3:64:52: 10:2c:f5:af:46:40:9f:73:60:39:61:36:73:3e:77:a3:79:00: 0a:a7:77:d8:a8:37:8b:0d:5d:8c:1d:b3:aa:fd:03:5b:bc:57: bb:ad:b2:aa:a7:0e:af:fa:23:3f:23:2c:6a:6d:80:b3:3f:0b: 26:23:4c:64:a3:31:ff:4c:22:ec:cd:3f:df:ea:ff:30:1e:45: 4d:f1:ab:b7:70:93:26:a7:c4:39:c0:5d:f2:b9:de:52:0e:b1: a2:ca:ee:c8:39:c2:f0:1c:5f:ea:a9:12:9d:ad:c0:71:8e:23: 46:d9:b8:f5:b0:cc:7f:8c:96:13:31:da:d2:68:69:d8:e3:4c: b0:dd:f8:70 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUd9u7LuEinnq3KWElZMvdPkC1nGgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0ZBNDlCOEU1RDlBMDhCN0EwMTdFNUIwRjg4N0U4OEY5 OUE2MzA2QzAeFw0yNDA5MTMwODA5NDdaFw0yNTA5MTIwODE0NDdaMDMxMTAvBgNV BAMTKDFGQkY2NDBDN0MxMTQ1NUU1Njk1RTU1MDMxNDI2OTY0NTZDRTI1MDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1TeVZgRro43gHD5R1HstbZeue 9/VzmYRF8sguTDY0EnvnbzoZ4DpX6Nr1BP83kl0mAHlesLKHY4BFlf8MvQX16MEJ KTtpwWf/MsOHZ+lpQBzf9AehsYmIE5NAQRyZa6Q0ePuluR8on7gd41bEioEtHjD/ lLs4YWzHVjzKfaZWYbTqqPnJfspsB0ylNNPvzQ6UPy79RDiwMw1//R6db+P186DU rYxFeWimrpliaODLYzC6dKnhKrWRtEi4LzW8Kbn/hL+V1zBih675j7at831HqnWP rkuy2RDVseaYw+kTviLbrngSMhNEuIdjT6HAzcjVAV5tu/RN+Gf5HGuTwY/pAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUH79kDHwRRV5WleVQMUJpZFbOJQIwHwYDVR0j BBgwFoAUz6Sbjl2aCLegF+Ww+Ifoj5mmMGwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDU2NTE5ZS1hYjYxLTQ5NDMtYjNlOC0xMGJkZDYwODBmZGEvMS9DRkE0OUI4RTVE OUEwOEI3QTAxN0U1QjBGODg3RTg4Rjk5QTYzMDZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0ZBNDlCOEU1RDlBMDhCN0EwMTdFNUIwRjg4N0U4OEY5OUE2 MzA2Qy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0NTY1MTllLWFiNjEtNDk0My1i M2U4LTEwYmRkNjA4MGZkYS8xLzMyMzAzMDMxM2E2NDY2MzQzYTMzNjEzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzEzMTMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9DpAMA0GCSqGSIb3DQEBCwUAA4IBAQBUY03EJVVeR6vwmV4CcEkYB86NYodLUtzx 0M7IIJn2uabF0AebLG90rGeSFcbMwuMg0yrUdujdBwDtvsxo90iEIdBljGUUgVlj gRZmQyKByfowtVdOGXGSdCmTrqQg/6HvaWX/7EVWqPSQelIybr2faO/FaWAg0C21 9TzDZFIQLPWvRkCfc2A5YTZzPnejeQAKp3fYqDeLDV2MHbOq/QNbvFe7rbKqpw6v +iM/IyxqbYCzPwsmI0xkozH/TCLszT/f6v8wHkVN8au3cJMmp8Q5wF3yud5SDrGi yu7IOcLwHF/qqRKdrcBxjiNG2bj1sMx/jJYTMdrSaGnY40yw3fhw -----END CERTIFICATE-----Generated at Fri Nov 22 15:22:18 2024 by rpki-client on console-fra.rpki-client.org