$ rpki-client -vvf repo-rpki.idnic.net/repo/12c511be-67a2-44c9-b182-a911ba95be00/0/323030313a6466353a353238303a3a2f34382d3438203d3e20313431313237.roa File: 323030313a6466353a353238303a3a2f34382d3438203d3e20313431313237.roa (raw, json) Hash identifier: ytsbJoowjejam8im/CXHpxBx0NQjILkSC74yHsn7Jos= Subject key identifier: 06:46:EE:7C:E5:96:4F:EA:BA:9D:BD:18:3B:B4:A1:2A:5C:C4:EE:13 Certificate issuer: /CN=4412C369832E86CF255C7255EB1ECA7938910246 Certificate serial: 650529220A5EB9443FC3A277C2040C069127249B Authority key identifier: 44:12:C3:69:83:2E:86:CF:25:5C:72:55:EB:1E:CA:79:38:91:02:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4412C369832E86CF255C7255EB1ECA7938910246.cer Subject info access: rsync://repo-rpki.idnic.net/repo/12c511be-67a2-44c9-b182-a911ba95be00/0/323030313a6466353a353238303a3a2f34382d3438203d3e20313431313237.roa Signing time: Wed 20 Nov 2024 06:00:02 +0000 ROA not before: Wed 20 Nov 2024 05:55:02 +0000 ROA not after: Wed 19 Nov 2025 06:00:02 +0000 asID: 141127 IP address blocks: 2001:df5:5280::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/12c511be-67a2-44c9-b182-a911ba95be00/0/4412C369832E86CF255C7255EB1ECA7938910246.crl rsync://repo-rpki.idnic.net/repo/12c511be-67a2-44c9-b182-a911ba95be00/0/4412C369832E86CF255C7255EB1ECA7938910246.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4412C369832E86CF255C7255EB1ECA7938910246.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 10:14:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:05:29:22:0a:5e:b9:44:3f:c3:a2:77:c2:04:0c:06:91:27:24:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4412C369832E86CF255C7255EB1ECA7938910246 Validity Not Before: Nov 20 05:55:02 2024 GMT Not After : Nov 19 06:00:02 2025 GMT Subject: CN=0646EE7CE5964FEABA9DBD183BB4A12A5CC4EE13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:48:7e:f0:92:6d:cc:e7:90:81:2b:83:5b:41: 29:a7:8c:a3:24:48:70:c7:0e:de:a1:00:54:6b:d6: c6:77:32:ca:a6:3e:0b:3f:6f:40:13:ec:ac:c7:9e: 4d:42:c9:b5:ea:14:55:d1:8c:94:22:2b:b8:9d:2b: 6f:b0:2a:53:e7:37:ed:16:53:f7:fe:63:2f:80:a5: 12:da:ea:a1:c8:81:40:b5:0c:a3:f2:fa:d6:c3:e3: f8:20:80:f2:8c:53:d9:d5:98:3e:5b:84:4e:ad:3e: dd:7e:3e:2a:02:fa:e1:ec:57:30:73:b5:6f:55:34: eb:7b:d2:4e:c1:54:d0:56:78:86:01:83:aa:56:0c: dd:9b:e1:6f:50:b4:27:1e:0b:4d:3f:28:25:05:40: 6c:c3:8e:d8:44:3e:0d:26:ce:5e:42:ff:95:a4:a3: 56:bd:9d:7e:5d:07:be:d8:7f:5b:3c:d2:a8:67:40: 14:dc:2d:cf:73:fd:96:76:7b:7e:f4:86:38:a0:97: 19:4e:61:ec:0d:2f:09:ee:d5:af:46:51:82:4d:c1: bd:4a:a6:c0:70:3e:77:bd:9a:47:46:53:cd:db:a0: 23:c2:7b:47:f5:72:27:93:07:5b:a7:6b:d2:c9:cd: 8b:a5:81:45:69:9b:96:6f:1e:00:16:c6:95:d3:c2: 09:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:46:EE:7C:E5:96:4F:EA:BA:9D:BD:18:3B:B4:A1:2A:5C:C4:EE:13 X509v3 Authority Key Identifier: keyid:44:12:C3:69:83:2E:86:CF:25:5C:72:55:EB:1E:CA:79:38:91:02:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/12c511be-67a2-44c9-b182-a911ba95be00/0/4412C369832E86CF255C7255EB1ECA7938910246.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4412C369832E86CF255C7255EB1ECA7938910246.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/12c511be-67a2-44c9-b182-a911ba95be00/0/323030313a6466353a353238303a3a2f34382d3438203d3e20313431313237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df5:5280::/48 Signature Algorithm: sha256WithRSAEncryption a3:25:4a:c6:6a:da:d4:9a:18:a1:9e:e4:fe:42:f1:a4:f1:32: 9c:1a:d4:9f:67:77:be:57:c2:06:59:ee:9d:92:25:1e:a6:a6: 84:a7:08:36:42:49:c9:bf:ce:b5:6c:ce:87:26:a5:82:82:aa: 79:78:eb:04:0b:27:39:52:e5:5a:90:c2:62:de:d2:60:5e:51: 51:1d:f6:de:85:20:8b:d1:b6:45:a6:87:3c:d2:01:bd:01:78: c2:da:bf:ac:9a:ea:13:59:ec:01:97:0f:b1:2b:2f:cf:bb:27: ca:61:9e:87:69:f9:93:8b:7c:f7:37:16:4f:86:8d:2b:7d:b6: 9a:e7:e7:b0:de:64:a3:a7:d8:47:58:4d:a5:fb:68:0e:0a:6d: 98:bd:13:58:ed:34:57:46:73:59:8d:82:e6:25:fc:1c:40:0b: 62:80:9d:10:e0:53:05:9f:95:69:6f:a3:51:67:bc:1e:a8:3f: c2:e8:ba:5a:25:d9:2e:ec:3a:6a:d1:6f:4c:e8:e0:26:47:e4: 4d:ae:20:ee:bd:7e:56:a8:c1:7d:3e:6d:55:c2:a3:f1:4e:d3: 94:1b:a2:05:c7:cb:43:99:f4:d7:21:b3:10:f0:ff:c7:64:e4: 43:49:2e:c8:23:0b:4d:dd:dc:80:75:94:48:f4:6f:1f:0f:41: 4c:f2:12:f7 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUZQUpIgpeuUQ/w6J3wgQMBpEnJJswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDQxMkMzNjk4MzJFODZDRjI1NUM3MjU1RUIxRUNBNzkz ODkxMDI0NjAeFw0yNDExMjAwNTU1MDJaFw0yNTExMTkwNjAwMDJaMDMxMTAvBgNV BAMTKDA2NDZFRTdDRTU5NjRGRUFCQTlEQkQxODNCQjRBMTJBNUNDNEVFMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbSH7wkm3M55CBK4NbQSmnjKMk SHDHDt6hAFRr1sZ3MsqmPgs/b0AT7KzHnk1CybXqFFXRjJQiK7idK2+wKlPnN+0W U/f+Yy+ApRLa6qHIgUC1DKPy+tbD4/gggPKMU9nVmD5bhE6tPt1+PioC+uHsVzBz tW9VNOt70k7BVNBWeIYBg6pWDN2b4W9QtCceC00/KCUFQGzDjthEPg0mzl5C/5Wk o1a9nX5dB77Yf1s80qhnQBTcLc9z/ZZ2e370hjiglxlOYewNLwnu1a9GUYJNwb1K psBwPne9mkdGU83boCPCe0f1cieTB1una9LJzYulgUVpm5ZvHgAWxpXTwgl9AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUBkbufOWWT+q6nb0YO7ShKlzE7hMwHwYDVR0j BBgwFoAURBLDaYMuhs8lXHJV6x7KeTiRAkYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MmM1MTFiZS02N2EyLTQ0YzktYjE4Mi1hOTExYmE5NWJlMDAvMC80NDEyQzM2OTgz MkU4NkNGMjU1QzcyNTVFQjFFQ0E3OTM4OTEwMjQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDQxMkMzNjk4MzJFODZDRjI1NUM3MjU1RUIxRUNBNzkzODkx MDI0Ni5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEyYzUxMWJlLTY3YTItNDRjOS1i MTgyLWE5MTFiYTk1YmUwMC8wLzMyMzAzMDMxM2E2NDY2MzUzYTM1MzIzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMxMzEzMjM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9VKAMA0GCSqGSIb3DQEBCwUAA4IBAQCjJUrGatrUmhihnuT+QvGk8TKcGtSfZ3e+ V8IGWe6dkiUepqaEpwg2QknJv861bM6HJqWCgqp5eOsECyc5UuVakMJi3tJgXlFR HfbehSCL0bZFpoc80gG9AXjC2r+smuoTWewBlw+xKy/PuyfKYZ6HafmTi3z3NxZP ho0rfbaa5+ew3mSjp9hHWE2l+2gOCm2YvRNY7TRXRnNZjYLmJfwcQAtigJ0Q4FMF n5Vpb6NRZ7weqD/C6LpaJdku7Dpq0W9M6OAmR+RNriDuvX5WqMF9Pm1VwqPxTtOU G6IFx8tDmfTXIbMQ8P/HZORDSS7IIwtN3dyAdZRI9G8fD0FM8hL3 -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:37 2024 by rpki-client on console-ams.rpki-client.org