$ rpki-client -vvf repo-rpki.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/323030313a6466313a316338303a3a2f34382d3438203d3e20313339333637.roa File: 323030313a6466313a316338303a3a2f34382d3438203d3e20313339333637.roa (raw, json) Hash identifier: FFu9qqO0bSps/kj6fyv5I//5Hd+4wId09goi1uFGoE8= Subject key identifier: 6C:E8:F8:DB:4D:F0:06:C7:58:30:14:AA:51:D6:A1:E7:D2:BA:14:97 Certificate issuer: /CN=E7D91E7B841DB274E77E823084312F8B78A5C951 Certificate serial: 38AA6E29F459A939B5783F50C5AEE99A20D59787 Authority key identifier: E7:D9:1E:7B:84:1D:B2:74:E7:7E:82:30:84:31:2F:8B:78:A5:C9:51 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7D91E7B841DB274E77E823084312F8B78A5C951.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/323030313a6466313a316338303a3a2f34382d3438203d3e20313339333637.roa Signing time: Wed 25 Dec 2024 07:02:29 +0000 ROA not before: Wed 25 Dec 2024 06:57:29 +0000 ROA not after: Wed 24 Dec 2025 07:02:29 +0000 asID: 139367 IP address blocks: 2001:df1:1c80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/E7D91E7B841DB274E77E823084312F8B78A5C951.crl rsync://repo-rpki.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/E7D91E7B841DB274E77E823084312F8B78A5C951.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7D91E7B841DB274E77E823084312F8B78A5C951.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 13:55:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:aa:6e:29:f4:59:a9:39:b5:78:3f:50:c5:ae:e9:9a:20:d5:97:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E7D91E7B841DB274E77E823084312F8B78A5C951 Validity Not Before: Dec 25 06:57:29 2024 GMT Not After : Dec 24 07:02:29 2025 GMT Subject: CN=6CE8F8DB4DF006C7583014AA51D6A1E7D2BA1497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:97:ce:05:08:59:5f:1e:f1:71:2b:8d:55:59: 4a:f3:84:f9:14:40:e6:c6:58:53:45:6e:e3:01:c0: 7d:5e:68:5a:5a:30:25:9e:3b:51:25:41:9a:82:12: 65:2e:8f:85:b8:40:1b:b8:8d:03:3f:bc:69:ed:99: d0:ae:39:98:8c:aa:7a:38:08:be:7b:85:28:1f:14: b0:24:88:c2:43:0f:11:81:48:dd:27:a0:d4:22:ef: ee:d7:c0:e1:76:37:0c:f6:8a:5e:8e:48:eb:2e:c5: ac:3b:0c:c5:b0:26:15:11:94:3a:02:a5:0b:8f:aa: 69:be:db:d1:97:50:e9:70:57:94:15:64:68:57:4a: a7:95:9f:82:96:46:ce:7a:ba:02:11:9e:69:ae:34: 96:3e:6f:eb:46:fc:88:48:f4:f1:d0:fe:0b:f8:83: 1f:3f:6d:5c:53:33:a6:25:fb:ee:fd:57:e5:89:51: b7:b4:34:9c:54:8c:67:81:74:d8:4b:89:22:e0:5a: f6:bd:06:16:45:3f:52:bc:81:af:cb:f5:45:ea:cd: 41:47:17:cf:76:13:d2:75:01:ea:82:9e:c6:38:10: b4:3e:63:18:f6:ba:8b:55:ef:53:2d:c6:43:f8:4f: 30:cc:ff:7a:14:f5:88:df:3a:dc:99:a3:85:20:38: 49:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:E8:F8:DB:4D:F0:06:C7:58:30:14:AA:51:D6:A1:E7:D2:BA:14:97 X509v3 Authority Key Identifier: keyid:E7:D9:1E:7B:84:1D:B2:74:E7:7E:82:30:84:31:2F:8B:78:A5:C9:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/E7D91E7B841DB274E77E823084312F8B78A5C951.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7D91E7B841DB274E77E823084312F8B78A5C951.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/323030313a6466313a316338303a3a2f34382d3438203d3e20313339333637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:1c80::/48 Signature Algorithm: sha256WithRSAEncryption b7:45:cc:5d:01:5c:3d:e4:9a:64:78:17:2d:4e:1f:6e:57:87: fd:8d:e2:b0:fa:dc:c1:79:b3:b9:34:7e:1d:8b:94:67:ec:a0: 0d:87:df:b7:4b:59:12:9b:d9:66:d2:0b:37:ee:d1:3c:57:88: a7:c9:0c:d0:51:f9:1b:04:d8:e6:d6:47:1d:09:97:de:c2:b6: a2:2b:75:d0:21:68:e3:29:9b:75:20:bb:0a:ee:a0:9b:69:3e: 57:cf:12:fc:31:db:43:5e:45:d0:a9:d7:00:2c:1a:23:41:b8: e8:e1:47:50:71:35:e6:83:00:6c:b6:2f:4e:f1:d7:89:5b:c9: 85:78:e5:fe:36:6f:7c:a2:a4:c5:b8:25:7b:e6:d2:87:d4:5d: f1:be:eb:05:c4:92:6b:a6:3a:bf:51:d8:0d:18:fc:3f:b9:b3: 71:fc:ce:b9:88:ad:83:25:b0:5f:31:3d:79:59:94:2a:eb:18: 5b:73:20:3d:c9:a6:3e:49:98:2e:ca:a4:3a:2c:e8:0c:6d:16: bc:2c:ae:df:cf:b0:3e:13:a8:82:3b:9d:bd:2b:41:05:12:21: 4d:88:7f:39:b2:72:de:bf:74:7b:11:fd:df:ef:a2:61:91:12: 52:59:37:2a:5e:b3:e0:ab:e4:c0:77:1c:5f:94:06:b1:8a:82: a2:99:63:bf -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUOKpuKfRZqTm1eD9Qxa7pmiDVl4cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTdEOTFFN0I4NDFEQjI3NEU3N0U4MjMwODQzMTJGOEI3 OEE1Qzk1MTAeFw0yNDEyMjUwNjU3MjlaFw0yNTEyMjQwNzAyMjlaMDMxMTAvBgNV BAMTKDZDRThGOERCNERGMDA2Qzc1ODMwMTRBQTUxRDZBMUU3RDJCQTE0OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyl84FCFlfHvFxK41VWUrzhPkU QObGWFNFbuMBwH1eaFpaMCWeO1ElQZqCEmUuj4W4QBu4jQM/vGntmdCuOZiMqno4 CL57hSgfFLAkiMJDDxGBSN0noNQi7+7XwOF2Nwz2il6OSOsuxaw7DMWwJhURlDoC pQuPqmm+29GXUOlwV5QVZGhXSqeVn4KWRs56ugIRnmmuNJY+b+tG/IhI9PHQ/gv4 gx8/bVxTM6Yl++79V+WJUbe0NJxUjGeBdNhLiSLgWva9BhZFP1K8ga/L9UXqzUFH F892E9J1AeqCnsY4ELQ+Yxj2uotV71MtxkP4TzDM/3oU9YjfOtyZo4UgOElDAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUbOj4203wBsdYMBSqUdah59K6FJcwHwYDVR0j BBgwFoAU59kee4QdsnTnfoIwhDEvi3ilyVEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YTcwODNhYi0yNzBhLTRiMGEtOGU1NS1hNDVlMWNmMWFmZDUvMC9FN0Q5MUU3Qjg0 MURCMjc0RTc3RTgyMzA4NDMxMkY4Qjc4QTVDOTUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTdEOTFFN0I4NDFEQjI3NEU3N0U4MjMwODQzMTJGOEI3OEE1 Qzk1MS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBhNzA4M2FiLTI3MGEtNGIwYS04 ZTU1LWE0NWUxY2YxYWZkNS8wLzMyMzAzMDMxM2E2NDY2MzEzYTMxNjMzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzMzNjM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8RyAMA0GCSqGSIb3DQEBCwUAA4IBAQC3RcxdAVw95JpkeBctTh9uV4f9jeKw+tzB ebO5NH4di5Rn7KANh9+3S1kSm9lm0gs37tE8V4inyQzQUfkbBNjm1kcdCZfewrai K3XQIWjjKZt1ILsK7qCbaT5XzxL8MdtDXkXQqdcALBojQbjo4UdQcTXmgwBsti9O 8deJW8mFeOX+Nm98oqTFuCV75tKH1F3xvusFxJJrpjq/UdgNGPw/ubNx/M65iK2D JbBfMT15WZQq6xhbcyA9yaY+SZguyqQ6LOgMbRa8LK7fz7A+E6iCO529K0EFEiFN iH85snLev3R7Ef3f76JhkRJSWTcqXrPgq+TAdxxflAaxioKimWO/ -----END CERTIFICATE-----Generated at Mon Apr 7 07:08:29 2025 by rpki-client