$ rpki-client -vvf repo-rpki.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/323030313a6466323a633738303a3a2f34382d3438203d3e20313339393836.roa File: 323030313a6466323a633738303a3a2f34382d3438203d3e20313339393836.roa (raw, json) Hash identifier: JQpuzPpgMJxGLxhMuj0nJ0ZdOtgrc6n706ZmSjIL56Q= Subject key identifier: 34:66:4D:B2:0B:36:51:35:08:A3:31:2D:0A:02:BF:77:2F:31:8B:F8 Certificate issuer: /CN=95C3BA7F23B6351721F77DA8020731F9DA46B3C8 Certificate serial: 09AA65CE4DB99A20926233BC66BC299DFFD73FA5 Authority key identifier: 95:C3:BA:7F:23:B6:35:17:21:F7:7D:A8:02:07:31:F9:DA:46:B3:C8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95C3BA7F23B6351721F77DA8020731F9DA46B3C8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/323030313a6466323a633738303a3a2f34382d3438203d3e20313339393836.roa Signing time: Mon 01 Jul 2024 01:04:58 +0000 ROA not before: Mon 01 Jul 2024 00:59:58 +0000 ROA not after: Mon 30 Jun 2025 01:04:58 +0000 asID: 139986 IP address blocks: 2001:df2:c780::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/95C3BA7F23B6351721F77DA8020731F9DA46B3C8.crl rsync://repo-rpki.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/95C3BA7F23B6351721F77DA8020731F9DA46B3C8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95C3BA7F23B6351721F77DA8020731F9DA46B3C8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:aa:65:ce:4d:b9:9a:20:92:62:33:bc:66:bc:29:9d:ff:d7:3f:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95C3BA7F23B6351721F77DA8020731F9DA46B3C8 Validity Not Before: Jul 1 00:59:58 2024 GMT Not After : Jun 30 01:04:58 2025 GMT Subject: CN=34664DB20B36513508A3312D0A02BF772F318BF8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ab:ef:36:74:3e:c7:82:7d:84:50:db:8e:52: 69:cc:0e:98:0c:df:ca:21:02:d8:66:8a:f0:c2:30: 09:84:75:9a:08:89:cb:0e:ad:f0:2d:2c:75:72:26: f3:e9:0b:89:50:32:bc:42:7d:d6:36:ab:d8:09:77: 08:a3:dd:74:e4:f8:15:c4:33:e8:36:97:4e:f9:aa: f9:e2:62:49:a4:d0:7c:df:17:2d:c6:c0:0d:bb:ec: 95:ed:5e:0b:39:28:a7:06:ed:fe:c2:76:b1:74:fd: cd:60:03:e1:e4:95:79:19:42:4c:ac:41:78:d4:c3: 85:aa:88:7c:c1:4b:35:49:89:90:bb:b9:e4:62:55: 64:05:99:a7:61:78:c3:e1:77:1f:9f:f7:31:d0:22: 5e:9f:dd:b3:e1:f7:bd:7a:c3:c7:d4:2d:aa:c4:8f: 58:51:61:ef:ce:ab:e8:28:d1:b8:2c:e7:3c:99:c0: e2:45:22:61:8a:1c:3d:67:d0:35:af:74:3f:e1:20: 59:c7:61:4a:f0:18:cd:bd:46:74:92:f3:79:26:de: b8:38:56:91:81:2d:06:d9:6e:b7:7a:be:a7:b8:77: f5:ac:75:9e:38:8b:d0:38:41:10:4c:32:17:ae:4c: ee:a4:9d:c0:ab:fa:49:e5:a4:16:58:be:ba:29:59: d9:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:66:4D:B2:0B:36:51:35:08:A3:31:2D:0A:02:BF:77:2F:31:8B:F8 X509v3 Authority Key Identifier: keyid:95:C3:BA:7F:23:B6:35:17:21:F7:7D:A8:02:07:31:F9:DA:46:B3:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/95C3BA7F23B6351721F77DA8020731F9DA46B3C8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95C3BA7F23B6351721F77DA8020731F9DA46B3C8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/323030313a6466323a633738303a3a2f34382d3438203d3e20313339393836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:c780::/48 Signature Algorithm: sha256WithRSAEncryption 1f:7b:21:42:b6:89:fa:b6:22:6a:0d:eb:9d:66:c3:bb:04:90: b3:8e:63:7d:0c:1d:ae:73:9e:8b:0b:d9:cf:d5:a0:ba:3a:a1: 53:0f:a0:49:e1:70:9a:e4:97:20:5c:bf:53:c7:33:cb:95:a8: e6:95:8a:b8:ed:b7:42:6d:34:65:3a:1c:ca:bc:47:aa:cd:48: be:a4:e5:66:7c:96:12:c7:c8:f9:72:0e:11:fc:21:38:97:b0: 08:cf:92:88:b4:7d:78:bd:03:8f:f9:67:82:6f:cb:9c:9f:0f: 34:18:3e:22:e2:42:6e:ad:c3:b0:a4:04:1d:45:b4:d1:70:50: a1:4b:81:af:06:ae:d1:98:f9:ae:89:66:75:83:12:cb:e5:5e: b8:6e:ba:d1:c4:c3:f7:72:28:c3:74:1a:17:28:3e:04:1c:ba: 63:98:2f:ba:60:14:18:bb:c8:59:14:a0:ca:83:76:f0:df:57: a4:ea:34:de:aa:8a:b3:71:29:83:72:9b:16:ec:ae:d1:fe:fe: 79:5e:39:ae:bb:fa:43:11:e1:26:5f:d2:f8:9c:d8:2c:ff:9a: 22:7b:e3:16:d7:1c:7c:98:67:aa:c1:3b:52:24:6e:f4:71:3b: 5c:00:99:73:6d:ab:4d:31:d8:a8:14:ac:8c:5d:e8:d9:72:22: 68:ff:64:41 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUCaplzk25miCSYjO8Zrwpnf/XP6UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVDM0JBN0YyM0I2MzUxNzIxRjc3REE4MDIwNzMxRjlE QTQ2QjNDODAeFw0yNDA3MDEwMDU5NThaFw0yNTA2MzAwMTA0NThaMDMxMTAvBgNV BAMTKDM0NjY0REIyMEIzNjUxMzUwOEEzMzEyRDBBMDJCRjc3MkYzMThCRjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWq+82dD7Hgn2EUNuOUmnMDpgM 38ohAthmivDCMAmEdZoIicsOrfAtLHVyJvPpC4lQMrxCfdY2q9gJdwij3XTk+BXE M+g2l075qvniYkmk0HzfFy3GwA277JXtXgs5KKcG7f7CdrF0/c1gA+HklXkZQkys QXjUw4WqiHzBSzVJiZC7ueRiVWQFmadheMPhdx+f9zHQIl6f3bPh9716w8fULarE j1hRYe/Oq+go0bgs5zyZwOJFImGKHD1n0DWvdD/hIFnHYUrwGM29RnSS83km3rg4 VpGBLQbZbrd6vqe4d/WsdZ44i9A4QRBMMheuTO6kncCr+knlpBZYvropWdmFAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUNGZNsgs2UTUIozEtCgK/dy8xi/gwHwYDVR0j BBgwFoAUlcO6fyO2NRch932oAgcx+dpGs8gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDBlOWM5Zi1kNjA3LTQ0OTctYWYyOC00ZDJiOTA5MmQ1YTYvMC85NUMzQkE3RjIz QjYzNTE3MjFGNzdEQTgwMjA3MzFGOURBNDZCM0M4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVDM0JBN0YyM0I2MzUxNzIxRjc3REE4MDIwNzMxRjlEQTQ2 QjNDOC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0MGU5YzlmLWQ2MDctNDQ5Ny1h ZjI4LTRkMmI5MDkyZDVhNi8wLzMyMzAzMDMxM2E2NDY2MzIzYTYzMzczODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzkzODM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8seAMA0GCSqGSIb3DQEBCwUAA4IBAQAfeyFCton6tiJqDeudZsO7BJCzjmN9DB2u c56LC9nP1aC6OqFTD6BJ4XCa5JcgXL9TxzPLlajmlYq47bdCbTRlOhzKvEeqzUi+ pOVmfJYSx8j5cg4R/CE4l7AIz5KItH14vQOP+WeCb8ucnw80GD4i4kJurcOwpAQd RbTRcFChS4GvBq7RmPmuiWZ1gxLL5V64brrRxMP3cijDdBoXKD4EHLpjmC+6YBQY u8hZFKDKg3bw31ek6jTeqoqzcSmDcpsW7K7R/v55Xjmuu/pDEeEmX9L4nNgs/5oi e+MW1xx8mGeqwTtSJG70cTtcAJlzbatNMdioFKyMXejZciJo/2RB -----END CERTIFICATE-----Generated at Wed Nov 20 23:10:17 2024 by rpki-client on console-fra.rpki-client.org