$ rpki-client -vvf repo-rpki.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/1/323030313a6466333a646134303a3a2f34382d3438203d3e20313532373730.roa File: 323030313a6466333a646134303a3a2f34382d3438203d3e20313532373730.roa (raw, json) Hash identifier: pUX9oUckLxQ7+nA9jTCbaJ+1yovM3swODy5P/0jicyI= Subject key identifier: 90:0F:E2:1E:EA:45:56:7F:BB:93:22:F3:8F:21:C1:FB:C9:EF:80:D1 Certificate issuer: /CN=CE4160CB7000F2DDE9C87291F90D71C10A79E637 Certificate serial: 716D5CCCE733D4A428B0A23E5709E6E39A1AC395 Authority key identifier: CE:41:60:CB:70:00:F2:DD:E9:C8:72:91:F9:0D:71:C1:0A:79:E6:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE4160CB7000F2DDE9C87291F90D71C10A79E637.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/1/323030313a6466333a646134303a3a2f34382d3438203d3e20313532373730.roa Signing time: Mon 10 Jun 2024 11:22:25 +0000 ROA not before: Mon 10 Jun 2024 11:17:25 +0000 ROA not after: Mon 09 Jun 2025 11:22:25 +0000 asID: 152770 IP address blocks: 2001:df3:da40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/1/CE4160CB7000F2DDE9C87291F90D71C10A79E637.crl rsync://repo-rpki.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/1/CE4160CB7000F2DDE9C87291F90D71C10A79E637.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE4160CB7000F2DDE9C87291F90D71C10A79E637.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:6d:5c:cc:e7:33:d4:a4:28:b0:a2:3e:57:09:e6:e3:9a:1a:c3:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE4160CB7000F2DDE9C87291F90D71C10A79E637 Validity Not Before: Jun 10 11:17:25 2024 GMT Not After : Jun 9 11:22:25 2025 GMT Subject: CN=900FE21EEA45567FBB9322F38F21C1FBC9EF80D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:3a:33:e0:01:80:7a:8a:e0:d2:e5:0f:49:40: d5:f4:3b:79:5d:7b:e0:0b:cc:f4:38:9d:63:a9:3f: 47:f8:2c:bf:25:50:04:45:c1:c6:0e:52:c7:03:a2: 3a:e6:71:f8:af:95:40:db:67:ed:d8:9e:84:cc:0f: aa:f2:c4:b7:ad:05:4a:43:ed:ac:9d:c2:cf:97:aa: b6:6d:33:77:30:f1:d0:f3:d7:7a:17:1a:07:0d:63: fd:03:45:1c:33:43:c3:c7:ea:fc:f7:ec:dc:89:12: f4:04:6a:41:7b:73:eb:b9:65:8c:e9:6b:2a:45:9a: 9f:b1:45:51:d5:40:bd:d0:23:e6:cf:62:0e:c6:2a: 70:de:68:43:5e:53:e0:3c:58:0a:93:dc:4e:5b:a5: 2b:a2:66:bc:21:8e:7d:46:d6:54:c1:f9:3c:35:8e: 63:4a:25:ff:f1:18:c6:9c:c1:17:82:e1:e1:f4:fb: 12:a3:fc:b2:78:95:1a:31:3f:86:b5:c2:b4:2d:e3: af:66:37:e2:26:99:35:29:f0:00:34:65:6d:9e:01: 16:74:dd:80:20:42:0b:70:f4:17:0a:7d:f3:68:60: 8d:0d:54:f2:9e:b2:11:78:26:c4:c7:8e:09:73:77: ed:98:68:9d:37:3b:ce:92:c5:06:bb:98:9f:b6:1a: 75:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:0F:E2:1E:EA:45:56:7F:BB:93:22:F3:8F:21:C1:FB:C9:EF:80:D1 X509v3 Authority Key Identifier: keyid:CE:41:60:CB:70:00:F2:DD:E9:C8:72:91:F9:0D:71:C1:0A:79:E6:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/1/CE4160CB7000F2DDE9C87291F90D71C10A79E637.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE4160CB7000F2DDE9C87291F90D71C10A79E637.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/1/323030313a6466333a646134303a3a2f34382d3438203d3e20313532373730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:da40::/48 Signature Algorithm: sha256WithRSAEncryption 6a:d3:64:dc:61:a9:44:d2:21:31:da:17:27:4d:47:17:ce:96: 32:1f:38:df:75:ab:35:52:a6:cd:35:62:48:d9:e4:3e:c1:8c: 13:8e:55:1b:f8:23:95:26:77:8f:aa:27:21:3d:13:83:79:71: 0a:0a:20:64:e8:97:a4:ef:e9:8e:e6:02:30:18:74:0b:5b:59: ef:7c:af:4b:77:0a:21:7e:fd:81:52:4f:25:1d:42:38:2d:8d: 09:5c:47:53:f3:6b:09:17:9e:70:f0:6e:bd:54:0d:50:09:40: ad:90:13:df:41:c2:ce:9d:63:ab:f1:0c:43:02:01:27:59:09: c2:95:3e:dd:a9:ff:a3:c9:e4:e0:27:87:dd:ad:33:92:c2:61: 64:b5:dd:eb:72:a2:88:82:13:85:49:94:f2:2a:48:7e:b3:cd: 10:d7:f5:70:56:53:ca:38:04:78:2d:00:79:89:88:77:50:fb: a5:14:2b:98:cd:0a:a9:2b:55:e1:5b:34:28:53:1d:38:0a:c9: 91:24:1d:c0:22:29:fc:5e:62:42:5a:2e:be:0a:60:68:d6:f0: ea:11:cd:53:8f:c9:a2:20:3a:ba:09:09:6f:3f:51:52:a9:e4: 56:1e:8a:09:68:9c:19:cd:cd:eb:49:5c:05:db:ea:fa:b3:41: 72:da:c4:f3 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUcW1czOcz1KQosKI+Vwnm45oaw5UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0U0MTYwQ0I3MDAwRjJEREU5Qzg3MjkxRjkwRDcxQzEw QTc5RTYzNzAeFw0yNDA2MTAxMTE3MjVaFw0yNTA2MDkxMTIyMjVaMDMxMTAvBgNV BAMTKDkwMEZFMjFFRUE0NTU2N0ZCQjkzMjJGMzhGMjFDMUZCQzlFRjgwRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZOjPgAYB6iuDS5Q9JQNX0O3ld e+ALzPQ4nWOpP0f4LL8lUARFwcYOUscDojrmcfivlUDbZ+3YnoTMD6ryxLetBUpD 7aydws+XqrZtM3cw8dDz13oXGgcNY/0DRRwzQ8PH6vz37NyJEvQEakF7c+u5ZYzp aypFmp+xRVHVQL3QI+bPYg7GKnDeaENeU+A8WAqT3E5bpSuiZrwhjn1G1lTB+Tw1 jmNKJf/xGMacwReC4eH0+xKj/LJ4lRoxP4a1wrQt469mN+ImmTUp8AA0ZW2eARZ0 3YAgQgtw9BcKffNoYI0NVPKeshF4JsTHjglzd+2YaJ03O86SxQa7mJ+2GnVtAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUkA/iHupFVn+7kyLzjyHB+8nvgNEwHwYDVR0j BBgwFoAUzkFgy3AA8t3pyHKR+Q1xwQp55jcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZGUyZDA5MC00NzY2LTQ3NWMtOWNlZi03YmViNTg1Y2YyNDEvMS9DRTQxNjBDQjcw MDBGMkRERTlDODcyOTFGOTBENzFDMTBBNzlFNjM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0U0MTYwQ0I3MDAwRjJEREU5Qzg3MjkxRjkwRDcxQzEwQTc5 RTYzNy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBkZTJkMDkwLTQ3NjYtNDc1Yy05 Y2VmLTdiZWI1ODVjZjI0MS8xLzMyMzAzMDMxM2E2NDY2MzMzYTY0NjEzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzczNzMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 89pAMA0GCSqGSIb3DQEBCwUAA4IBAQBq02TcYalE0iEx2hcnTUcXzpYyHzjfdas1 UqbNNWJI2eQ+wYwTjlUb+COVJnePqichPRODeXEKCiBk6Jek7+mO5gIwGHQLW1nv fK9Ldwohfv2BUk8lHUI4LY0JXEdT82sJF55w8G69VA1QCUCtkBPfQcLOnWOr8QxD AgEnWQnClT7dqf+jyeTgJ4fdrTOSwmFktd3rcqKIghOFSZTyKkh+s80Q1/VwVlPK OAR4LQB5iYh3UPulFCuYzQqpK1XhWzQoUx04CsmRJB3AIin8XmJCWi6+CmBo1vDq Ec1Tj8miIDq6CQlvP1FSqeRWHooJaJwZzc3rSVwF2+r6s0Fy2sTz -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:02 2024 by rpki-client on console-fra.rpki-client.org