$ rpki-client -vvf repo-rpki.idnic.net/repo/0d4dcde3-757f-43d4-ade2-ff0887cc2487/0/323030313a6466303a376234303a3a2f34382d3438203d3e20313439333938.roa File: 323030313a6466303a376234303a3a2f34382d3438203d3e20313439333938.roa (raw, json) Hash identifier: vQcGVK6JhkO4JP+rgl0UnF9Tyyv/ls7fzCiRnSShb9U= Subject key identifier: 24:BC:C1:B9:8B:6D:FE:5A:1E:C7:94:7B:AA:96:1C:E7:60:34:71:5D Certificate issuer: /CN=14CB3B6CE8B43BB7439AAEA86D73DF3AF1594D9E Certificate serial: 108AE9C2C72C87CC1A1B102D5901F8716E8D1258 Authority key identifier: 14:CB:3B:6C:E8:B4:3B:B7:43:9A:AE:A8:6D:73:DF:3A:F1:59:4D:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14CB3B6CE8B43BB7439AAEA86D73DF3AF1594D9E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0d4dcde3-757f-43d4-ade2-ff0887cc2487/0/323030313a6466303a376234303a3a2f34382d3438203d3e20313439333938.roa Signing time: Mon 17 Jun 2024 06:01:31 +0000 ROA not before: Mon 17 Jun 2024 05:56:31 +0000 ROA not after: Mon 16 Jun 2025 06:01:31 +0000 asID: 149398 IP address blocks: 2001:df0:7b40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0d4dcde3-757f-43d4-ade2-ff0887cc2487/0/14CB3B6CE8B43BB7439AAEA86D73DF3AF1594D9E.crl rsync://repo-rpki.idnic.net/repo/0d4dcde3-757f-43d4-ade2-ff0887cc2487/0/14CB3B6CE8B43BB7439AAEA86D73DF3AF1594D9E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14CB3B6CE8B43BB7439AAEA86D73DF3AF1594D9E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:8a:e9:c2:c7:2c:87:cc:1a:1b:10:2d:59:01:f8:71:6e:8d:12:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14CB3B6CE8B43BB7439AAEA86D73DF3AF1594D9E Validity Not Before: Jun 17 05:56:31 2024 GMT Not After : Jun 16 06:01:31 2025 GMT Subject: CN=24BCC1B98B6DFE5A1EC7947BAA961CE76034715D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b0:bd:e0:67:a8:37:f9:70:97:d9:9a:63:3f: 74:b6:a2:29:1b:9a:54:d4:fa:77:69:ef:86:f5:55: a4:99:7b:94:51:7f:7e:82:c5:dc:6a:97:35:4e:9e: 03:5d:58:28:29:8e:c7:54:97:cc:a0:85:71:5b:06: 50:a4:1c:f9:40:35:9c:51:0a:48:20:aa:f0:d9:ed: 14:11:53:cb:10:7d:bf:01:a6:9a:ac:de:85:fd:30: 0c:68:4f:84:17:84:5b:e9:72:a3:ce:e6:6f:a6:f7: 9e:ea:81:da:4d:5e:36:3b:95:5e:ce:23:ee:e9:c7: 06:dd:19:b4:c9:ed:07:9f:11:c0:72:4c:38:01:d9: da:27:0d:2b:68:f2:a0:cf:4f:76:01:7d:8f:76:c2: df:86:27:04:d3:70:3d:6a:f5:bd:a7:e7:69:c9:c1: 42:d6:aa:ed:b0:61:67:18:4f:ee:25:7e:a8:8c:19: 72:cd:e8:7f:d9:10:b9:0a:d6:71:86:45:03:c9:4c: 36:c8:7d:40:c2:bd:86:6f:49:68:0a:bb:1a:1e:12: 9c:f8:f8:12:e8:13:b9:75:91:bd:35:4a:c7:05:4f: 5f:dd:01:31:6e:73:d2:1c:4a:a6:3f:d0:0e:a6:cb: 7d:45:95:65:00:1c:6a:fc:f3:58:12:9a:ef:77:57: 51:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:BC:C1:B9:8B:6D:FE:5A:1E:C7:94:7B:AA:96:1C:E7:60:34:71:5D X509v3 Authority Key Identifier: keyid:14:CB:3B:6C:E8:B4:3B:B7:43:9A:AE:A8:6D:73:DF:3A:F1:59:4D:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0d4dcde3-757f-43d4-ade2-ff0887cc2487/0/14CB3B6CE8B43BB7439AAEA86D73DF3AF1594D9E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14CB3B6CE8B43BB7439AAEA86D73DF3AF1594D9E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0d4dcde3-757f-43d4-ade2-ff0887cc2487/0/323030313a6466303a376234303a3a2f34382d3438203d3e20313439333938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:7b40::/48 Signature Algorithm: sha256WithRSAEncryption 60:2b:62:f8:ce:67:9c:ea:f8:b0:41:04:a7:c7:ae:76:40:ac: d9:d4:1f:10:94:51:80:a8:eb:14:97:2c:37:49:d3:94:4b:5e: 9e:b6:12:de:6f:1d:35:ac:d5:03:e8:72:3e:28:3e:38:c7:7f: cf:76:68:b7:ee:c6:d5:fa:df:dc:c8:7f:ca:a4:01:74:da:1d: 3a:72:78:85:6f:7d:a9:28:e7:02:b7:7a:80:55:63:00:ad:b3: 28:11:fa:88:32:3a:c3:68:49:11:e5:cb:81:2a:13:ce:44:22: 7c:79:e5:a3:7d:f0:02:16:f0:3d:9e:f3:19:2a:53:ee:74:04: 4d:bc:be:6f:24:ed:a8:8a:c5:3b:a1:81:91:1c:26:98:b2:e2: 99:fd:b0:01:dd:47:04:a9:5a:0f:9f:bb:b8:e6:c6:44:a9:82: 53:25:e5:c8:f2:03:de:d6:54:c9:af:96:72:c2:22:e0:c5:58: 0e:1d:36:72:86:f1:05:54:e9:89:f3:d7:c4:f3:e5:09:be:1a: f2:68:9b:f8:17:bb:c3:01:f1:63:0b:17:11:5c:d0:f3:b5:2f: 73:38:2a:8f:e5:33:0d:c2:92:5d:3f:e0:cb:2b:e4:41:c8:50: f7:43:bb:e4:f1:c1:5a:c0:c4:6d:bc:9b:86:05:0b:86:83:ac: db:38:ca:b2 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUEIrpwscsh8waGxAtWQH4cW6NElgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTRDQjNCNkNFOEI0M0JCNzQzOUFBRUE4NkQ3M0RGM0FG MTU5NEQ5RTAeFw0yNDA2MTcwNTU2MzFaFw0yNTA2MTYwNjAxMzFaMDMxMTAvBgNV BAMTKDI0QkNDMUI5OEI2REZFNUExRUM3OTQ3QkFBOTYxQ0U3NjAzNDcxNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQsL3gZ6g3+XCX2ZpjP3S2oikb mlTU+ndp74b1VaSZe5RRf36CxdxqlzVOngNdWCgpjsdUl8yghXFbBlCkHPlANZxR CkggqvDZ7RQRU8sQfb8Bppqs3oX9MAxoT4QXhFvpcqPO5m+m957qgdpNXjY7lV7O I+7pxwbdGbTJ7QefEcByTDgB2donDSto8qDPT3YBfY92wt+GJwTTcD1q9b2n52nJ wULWqu2wYWcYT+4lfqiMGXLN6H/ZELkK1nGGRQPJTDbIfUDCvYZvSWgKuxoeEpz4 +BLoE7l1kb01SscFT1/dATFuc9IcSqY/0A6my31FlWUAHGr881gSmu93V1EFAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUJLzBuYtt/loex5R7qpYc52A0cV0wHwYDVR0j BBgwFoAUFMs7bOi0O7dDmq6obXPfOvFZTZ4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZDRkY2RlMy03NTdmLTQzZDQtYWRlMi1mZjA4ODdjYzI0ODcvMC8xNENCM0I2Q0U4 QjQzQkI3NDM5QUFFQTg2RDczREYzQUYxNTk0RDlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTRDQjNCNkNFOEI0M0JCNzQzOUFBRUE4NkQ3M0RGM0FGMTU5 NEQ5RS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBkNGRjZGUzLTc1N2YtNDNkNC1h ZGUyLWZmMDg4N2NjMjQ4Ny8wLzMyMzAzMDMxM2E2NDY2MzAzYTM3NjIzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDM5MzMzOTM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8HtAMA0GCSqGSIb3DQEBCwUAA4IBAQBgK2L4zmec6viwQQSnx652QKzZ1B8QlFGA qOsUlyw3SdOUS16ethLebx01rNUD6HI+KD44x3/Pdmi37sbV+t/cyH/KpAF02h06 cniFb32pKOcCt3qAVWMArbMoEfqIMjrDaEkR5cuBKhPORCJ8eeWjffACFvA9nvMZ KlPudARNvL5vJO2oisU7oYGRHCaYsuKZ/bAB3UcEqVoPn7u45sZEqYJTJeXI8gPe 1lTJr5ZywiLgxVgOHTZyhvEFVOmJ89fE8+UJvhryaJv4F7vDAfFjCxcRXNDztS9z OCqP5TMNwpJdP+DLK+RByFD3Q7vk8cFawMRtvJuGBQuGg6zbOMqy -----END CERTIFICATE-----Generated at Fri Nov 22 21:02:27 2024 by rpki-client on console-fra.rpki-client.org