$ rpki-client -vvf repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/1/323030313a6466333a633334303a3a2f34382d3438203d3e20313532333932.roa File: 323030313a6466333a633334303a3a2f34382d3438203d3e20313532333932.roa (raw, json) Hash identifier: Fiz4Tyf+qP1UuxeJL1gcY0cDpOcEJpXsc04i8PalSAo= Subject key identifier: 8B:E6:13:63:74:58:F3:58:D7:47:D0:C6:3B:E2:67:C7:D8:06:3D:76 Certificate issuer: /CN=97776FFF02B90FFC17B658A0B1A598DBEA888F04 Certificate serial: 4ED4DABE43A4598CF17E82DBA3655B11C9F75A35 Authority key identifier: 97:77:6F:FF:02:B9:0F:FC:17:B6:58:A0:B1:A5:98:DB:EA:88:8F:04 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/97776FFF02B90FFC17B658A0B1A598DBEA888F04.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/1/323030313a6466333a633334303a3a2f34382d3438203d3e20313532333932.roa Signing time: Mon 15 Jul 2024 03:22:22 +0000 ROA not before: Mon 15 Jul 2024 03:17:22 +0000 ROA not after: Mon 14 Jul 2025 03:22:22 +0000 asID: 152392 IP address blocks: 2001:df3:c340::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/1/97776FFF02B90FFC17B658A0B1A598DBEA888F04.crl rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/1/97776FFF02B90FFC17B658A0B1A598DBEA888F04.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/97776FFF02B90FFC17B658A0B1A598DBEA888F04.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:d4:da:be:43:a4:59:8c:f1:7e:82:db:a3:65:5b:11:c9:f7:5a:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97776FFF02B90FFC17B658A0B1A598DBEA888F04 Validity Not Before: Jul 15 03:17:22 2024 GMT Not After : Jul 14 03:22:22 2025 GMT Subject: CN=8BE613637458F358D747D0C63BE267C7D8063D76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ee:f9:0b:ec:ff:f3:8b:0a:1d:a7:31:bf:3f: 92:da:5e:db:98:9e:d4:f1:93:cf:48:12:01:d1:e7: 21:09:ec:09:cd:e9:9b:4c:0c:39:b5:8c:5f:fb:08: 6a:24:db:8d:47:64:e0:5c:7f:26:7d:bc:b3:53:f0: 5f:62:69:ac:d8:58:37:93:76:de:3b:f8:df:d5:a7: 6c:7d:ba:e7:f6:37:2b:c6:46:fd:30:29:07:63:0a: fc:9b:e7:2d:19:24:b0:04:a3:03:a0:e6:9d:e1:92: 7f:f2:79:c3:e3:b6:94:2b:ba:c7:09:30:15:dd:87: 77:fd:f6:b0:f9:19:ee:cf:1a:cb:de:22:ab:f2:96: 18:c5:d9:be:c2:0a:f3:48:f1:38:e7:ca:b6:81:32: 35:07:ef:29:a7:78:88:eb:ec:df:00:72:f6:39:ab: 40:e1:52:39:ac:f0:7e:92:b5:f8:d3:22:6a:ff:ba: db:41:dd:18:f0:c4:2f:0e:93:39:36:bb:83:16:b4: dd:48:5d:e6:45:91:a2:b4:b9:c6:67:99:47:23:58: 41:11:21:03:90:bc:46:e4:88:2a:33:0b:ab:81:65: f8:c6:21:90:0e:a0:8b:63:61:38:31:d5:44:6a:5c: 3e:48:1b:5a:58:ac:fa:c4:b0:a5:37:d7:f3:a1:27: f9:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:E6:13:63:74:58:F3:58:D7:47:D0:C6:3B:E2:67:C7:D8:06:3D:76 X509v3 Authority Key Identifier: keyid:97:77:6F:FF:02:B9:0F:FC:17:B6:58:A0:B1:A5:98:DB:EA:88:8F:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/1/97776FFF02B90FFC17B658A0B1A598DBEA888F04.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/97776FFF02B90FFC17B658A0B1A598DBEA888F04.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/1/323030313a6466333a633334303a3a2f34382d3438203d3e20313532333932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:c340::/48 Signature Algorithm: sha256WithRSAEncryption 49:69:2d:70:13:12:c8:7e:5d:61:ea:7c:b7:70:de:8a:07:90: 62:e9:3f:6b:44:49:01:35:3f:40:47:21:08:2b:22:43:fb:16: eb:74:2e:5d:aa:f0:01:ce:a2:ae:f0:c4:e6:17:40:53:9c:58: 79:d1:ed:e8:3f:f7:fd:d6:ed:11:69:e0:e1:1c:af:db:a8:7d: 99:cc:43:93:43:d8:8c:24:c8:68:32:06:71:83:0e:5f:77:60: a9:71:bf:1e:6d:ea:7f:1f:67:9d:22:0f:02:5d:b7:30:b4:0b: d7:c3:42:3d:78:33:49:42:d6:89:68:35:4f:ec:81:1a:a7:27: cc:91:44:b0:44:dc:c7:ea:73:5e:59:2b:48:7e:27:c8:7d:d5: 90:13:19:fc:2a:5b:eb:19:61:75:0b:b3:63:c6:30:b1:bf:b6: 51:c3:fd:a6:8b:a9:ec:cc:6a:c9:c5:1f:31:6c:d0:5f:71:bc: 4f:5e:fb:98:4a:eb:7e:b2:ea:b6:55:df:bd:73:92:8a:7e:ca: a4:11:46:70:9d:12:a1:15:a4:b5:ce:d4:f4:32:ae:fa:bc:a4: 73:e9:d1:3c:15:3c:9a:77:80:39:ab:63:13:09:f9:68:af:af: c4:bc:12:f8:52:ce:2f:04:ff:c2:b5:7c:89:3b:f1:fa:e1:c2: ca:b7:c6:e1 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUTtTavkOkWYzxfoLbo2VbEcn3WjUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTc3NzZGRkYwMkI5MEZGQzE3QjY1OEEwQjFBNTk4REJF QTg4OEYwNDAeFw0yNDA3MTUwMzE3MjJaFw0yNTA3MTQwMzIyMjJaMDMxMTAvBgNV BAMTKDhCRTYxMzYzNzQ1OEYzNThENzQ3RDBDNjNCRTI2N0M3RDgwNjNENzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCe7vkL7P/ziwodpzG/P5LaXtuY ntTxk89IEgHR5yEJ7AnN6ZtMDDm1jF/7CGok241HZOBcfyZ9vLNT8F9iaazYWDeT dt47+N/Vp2x9uuf2NyvGRv0wKQdjCvyb5y0ZJLAEowOg5p3hkn/yecPjtpQruscJ MBXdh3f99rD5Ge7PGsveIqvylhjF2b7CCvNI8TjnyraBMjUH7ymneIjr7N8AcvY5 q0DhUjms8H6StfjTImr/uttB3RjwxC8Okzk2u4MWtN1IXeZFkaK0ucZnmUcjWEER IQOQvEbkiCozC6uBZfjGIZAOoItjYTgx1URqXD5IG1pYrPrEsKU31/OhJ/kPAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUi+YTY3RY81jXR9DGO+Jnx9gGPXYwHwYDVR0j BBgwFoAUl3dv/wK5D/wXtligsaWY2+qIjwQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTg4ZGZmNy02YTkyLTQyOTMtODgwMC1iNTNlMmE5MThhY2EvMS85Nzc3NkZGRjAy QjkwRkZDMTdCNjU4QTBCMUE1OThEQkVBODg4RjA0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTc3NzZGRkYwMkI5MEZGQzE3QjY1OEEwQjFBNTk4REJFQTg4 OEYwNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1ODhkZmY3LTZhOTItNDI5My04 ODAwLWI1M2UyYTkxOGFjYS8xLzMyMzAzMDMxM2E2NDY2MzMzYTYzMzMzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzMzOTMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 88NAMA0GCSqGSIb3DQEBCwUAA4IBAQBJaS1wExLIfl1h6ny3cN6KB5Bi6T9rREkB NT9ARyEIKyJD+xbrdC5dqvABzqKu8MTmF0BTnFh50e3oP/f91u0RaeDhHK/bqH2Z zEOTQ9iMJMhoMgZxgw5fd2Cpcb8ebep/H2edIg8CXbcwtAvXw0I9eDNJQtaJaDVP 7IEapyfMkUSwRNzH6nNeWStIfifIfdWQExn8KlvrGWF1C7NjxjCxv7ZRw/2mi6ns zGrJxR8xbNBfcbxPXvuYSut+suq2Vd+9c5KKfsqkEUZwnRKhFaS1ztT0Mq76vKRz 6dE8FTyad4A5q2MTCflor6/EvBL4Us4vBP/CtXyJO/H64cLKt8bh -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:01 2024 by rpki-client on console-fra.rpki-client.org