$ rpki-client -vvf repo-rpki.idnic.net/repo/057d4d81-3be8-4230-8959-2dc2af9d085e/0/323030313a6466323a313238303a3a2f34382d3438203d3e20313339343437.roa File: 323030313a6466323a313238303a3a2f34382d3438203d3e20313339343437.roa (raw, json) Hash identifier: ycTXvHhoEIalo4wd6bsasVvnGjhCCdREAk7hZe6G7IQ= Subject key identifier: A2:53:E2:2C:57:D7:79:08:02:76:7E:6E:77:72:B3:78:5B:34:D2:4B Certificate issuer: /CN=282881E6B43D206FAFBD1879ED5678ECBA70A822 Certificate serial: 4C54992729D067D90DE74C24CECF63A278648DAC Authority key identifier: 28:28:81:E6:B4:3D:20:6F:AF:BD:18:79:ED:56:78:EC:BA:70:A8:22 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/282881E6B43D206FAFBD1879ED5678ECBA70A822.cer Subject info access: rsync://repo-rpki.idnic.net/repo/057d4d81-3be8-4230-8959-2dc2af9d085e/0/323030313a6466323a313238303a3a2f34382d3438203d3e20313339343437.roa Signing time: Thu 09 May 2024 04:00:40 +0000 ROA not before: Thu 09 May 2024 03:55:40 +0000 ROA not after: Thu 08 May 2025 04:00:40 +0000 asID: 139447 IP address blocks: 2001:df2:1280::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/057d4d81-3be8-4230-8959-2dc2af9d085e/0/282881E6B43D206FAFBD1879ED5678ECBA70A822.crl rsync://repo-rpki.idnic.net/repo/057d4d81-3be8-4230-8959-2dc2af9d085e/0/282881E6B43D206FAFBD1879ED5678ECBA70A822.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/282881E6B43D206FAFBD1879ED5678ECBA70A822.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Feb 2025 12:32:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:54:99:27:29:d0:67:d9:0d:e7:4c:24:ce:cf:63:a2:78:64:8d:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=282881E6B43D206FAFBD1879ED5678ECBA70A822 Validity Not Before: May 9 03:55:40 2024 GMT Not After : May 8 04:00:40 2025 GMT Subject: CN=A253E22C57D7790802767E6E7772B3785B34D24B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ed:7d:f4:c8:7e:9d:24:18:dd:3d:dd:62:55: b9:55:be:6b:81:18:45:95:a6:7d:be:1e:d5:aa:10: 3d:3f:9a:04:1a:74:ff:aa:b8:13:bb:de:2d:f7:3e: 19:30:cc:8f:0e:e6:0d:1f:d1:96:25:4b:25:38:b0: aa:9b:3f:1f:72:c6:8d:de:cd:50:95:32:52:ac:3a: e7:68:60:ed:7b:91:34:bb:ed:f2:62:b8:58:18:9b: c1:ff:b2:80:f9:02:91:6e:8e:c9:d6:5c:7b:aa:69: 38:9d:43:41:e7:2f:ff:e7:29:60:52:34:23:91:94: ac:31:ce:c0:58:ec:20:b4:a0:a4:ea:9b:96:77:8a: 8d:12:98:9d:eb:13:7e:3d:f3:b4:18:2d:b8:e8:4b: 91:19:9a:05:fa:f0:2c:7f:2c:03:a5:cb:cf:99:cf: ff:6e:de:57:4c:17:c2:71:67:9f:9e:be:a9:e6:be: 4a:fe:fd:88:91:ee:04:63:56:dd:cd:e4:dc:88:03: aa:5e:bd:bf:bf:fe:ba:93:d8:23:1e:99:ef:c8:c2: ae:fa:ac:37:e8:c3:9e:ed:c5:4b:bf:00:94:47:d8: ce:27:47:30:1e:ca:a5:64:d8:ad:b1:7a:32:64:e8: 86:44:f9:5e:ae:e6:c3:eb:b2:bd:09:dd:e1:af:c9: 2f:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:53:E2:2C:57:D7:79:08:02:76:7E:6E:77:72:B3:78:5B:34:D2:4B X509v3 Authority Key Identifier: keyid:28:28:81:E6:B4:3D:20:6F:AF:BD:18:79:ED:56:78:EC:BA:70:A8:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/057d4d81-3be8-4230-8959-2dc2af9d085e/0/282881E6B43D206FAFBD1879ED5678ECBA70A822.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/282881E6B43D206FAFBD1879ED5678ECBA70A822.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/057d4d81-3be8-4230-8959-2dc2af9d085e/0/323030313a6466323a313238303a3a2f34382d3438203d3e20313339343437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:1280::/48 Signature Algorithm: sha256WithRSAEncryption 01:4b:36:b3:3f:80:d5:1c:ed:b0:9e:da:9f:89:78:8b:d2:a0: c6:55:ab:8c:43:b2:bc:67:44:08:0d:62:c0:00:d9:d4:bd:13: 8b:90:83:2d:ef:83:4f:98:94:f7:82:d8:c8:e5:34:7f:bd:be: 95:b7:10:e1:11:35:1d:36:24:c5:f0:c7:29:1c:ff:3b:be:bf: 80:ff:5c:2a:82:6e:37:69:a8:7c:7e:23:44:49:68:39:ae:d2: 9b:6b:d3:8d:26:ec:34:14:42:32:01:15:0f:e2:75:53:72:3a: 96:2c:7f:44:2e:0a:b9:71:da:6e:7f:17:2f:5c:fd:9b:04:5b: b6:d1:e9:a9:fb:66:50:da:79:de:0e:da:98:9a:82:50:2a:7e: 1a:15:1f:6d:18:5d:24:4c:53:3b:bb:cf:d4:22:ab:66:3f:6e: 6c:f7:83:b7:1d:d0:0f:62:9b:3f:64:a0:79:0e:8d:62:4b:eb: 74:19:02:c3:85:c6:46:64:bf:d3:58:c7:25:ea:2c:59:8e:3d: 94:76:45:c4:15:44:d5:f2:82:00:da:0c:70:6d:fb:7d:a1:b5: a6:f4:2d:31:9f:ba:1a:d3:fc:a2:b4:05:12:59:1d:ee:de:a4: b8:00:af:ff:60:fa:ee:f3:aa:54:2c:7b:da:fc:26:c0:10:23: fb:e7:6e:93 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUTFSZJynQZ9kN50wkzs9jonhkjawwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgyODgxRTZCNDNEMjA2RkFGQkQxODc5RUQ1Njc4RUNC QTcwQTgyMjAeFw0yNDA1MDkwMzU1NDBaFw0yNTA1MDgwNDAwNDBaMDMxMTAvBgNV BAMTKEEyNTNFMjJDNTdENzc5MDgwMjc2N0U2RTc3NzJCMzc4NUIzNEQyNEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK7X30yH6dJBjdPd1iVblVvmuB GEWVpn2+HtWqED0/mgQadP+quBO73i33PhkwzI8O5g0f0ZYlSyU4sKqbPx9yxo3e zVCVMlKsOudoYO17kTS77fJiuFgYm8H/soD5ApFujsnWXHuqaTidQ0HnL//nKWBS NCORlKwxzsBY7CC0oKTqm5Z3io0SmJ3rE34987QYLbjoS5EZmgX68Cx/LAOly8+Z z/9u3ldMF8JxZ5+evqnmvkr+/YiR7gRjVt3N5NyIA6pevb+//rqT2CMeme/Iwq76 rDfow57txUu/AJRH2M4nRzAeyqVk2K2xejJk6IZE+V6u5sPrsr0J3eGvyS+jAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUolPiLFfXeQgCdn5ud3KzeFs00kswHwYDVR0j BBgwFoAUKCiB5rQ9IG+vvRh57VZ47LpwqCIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTdkNGQ4MS0zYmU4LTQyMzAtODk1OS0yZGMyYWY5ZDA4NWUvMC8yODI4ODFFNkI0 M0QyMDZGQUZCRDE4NzlFRDU2NzhFQ0JBNzBBODIyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjgyODgxRTZCNDNEMjA2RkFGQkQxODc5RUQ1Njc4RUNCQTcw QTgyMi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1N2Q0ZDgxLTNiZTgtNDIzMC04 OTU5LTJkYzJhZjlkMDg1ZS8wLzMyMzAzMDMxM2E2NDY2MzIzYTMxMzIzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzQzNDM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8hKAMA0GCSqGSIb3DQEBCwUAA4IBAQABSzazP4DVHO2wntqfiXiL0qDGVauMQ7K8 Z0QIDWLAANnUvROLkIMt74NPmJT3gtjI5TR/vb6VtxDhETUdNiTF8McpHP87vr+A /1wqgm43aah8fiNESWg5rtKba9ONJuw0FEIyARUP4nVTcjqWLH9ELgq5cdpufxcv XP2bBFu20emp+2ZQ2nneDtqYmoJQKn4aFR9tGF0kTFM7u8/UIqtmP25s94O3HdAP Yps/ZKB5Do1iS+t0GQLDhcZGZL/TWMcl6ixZjj2UdkXEFUTV8oIA2gxwbft9obWm 9C0xn7oa0/yitAUSWR3u3qS4AK//YPru86pULHva/CbAECP7526T -----END CERTIFICATE-----Generated at Fri Feb 21 11:04:21 2025 by rpki-client