$ rpki-client -vvf repo-rpki.idnic.net/repo/14ed8d6c-f0fa-47cc-aeaa-b4e3ee116882/1/323030313a6466333a643234303a3a2f34382d3438203d3e20313336303839.roa File: 323030313a6466333a643234303a3a2f34382d3438203d3e20313336303839.roa (raw, json) Hash identifier: Q+2SiZ5kRQpRjzNeh4/gQR3qb6BsHkJe8tpwU1eFVpg= Subject key identifier: 93:28:95:2C:7F:18:AE:3A:10:76:E4:24:76:91:32:0F:99:E7:C6:D3 Certificate issuer: /CN=780A63837871EA9CE6D017414F6F1C5ABA3EF7D9 Certificate serial: 1B8543ADFF52A630B4593736CA47241D437E78EF Authority key identifier: 78:0A:63:83:78:71:EA:9C:E6:D0:17:41:4F:6F:1C:5A:BA:3E:F7:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/780A63837871EA9CE6D017414F6F1C5ABA3EF7D9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14ed8d6c-f0fa-47cc-aeaa-b4e3ee116882/1/323030313a6466333a643234303a3a2f34382d3438203d3e20313336303839.roa Signing time: Thu 23 May 2024 12:36:38 +0000 ROA not before: Thu 23 May 2024 12:31:38 +0000 ROA not after: Thu 22 May 2025 12:36:38 +0000 asID: 136089 IP address blocks: 2001:df3:d240::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14ed8d6c-f0fa-47cc-aeaa-b4e3ee116882/1/780A63837871EA9CE6D017414F6F1C5ABA3EF7D9.crl rsync://repo-rpki.idnic.net/repo/14ed8d6c-f0fa-47cc-aeaa-b4e3ee116882/1/780A63837871EA9CE6D017414F6F1C5ABA3EF7D9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/780A63837871EA9CE6D017414F6F1C5ABA3EF7D9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 17:02:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:85:43:ad:ff:52:a6:30:b4:59:37:36:ca:47:24:1d:43:7e:78:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=780A63837871EA9CE6D017414F6F1C5ABA3EF7D9 Validity Not Before: May 23 12:31:38 2024 GMT Not After : May 22 12:36:38 2025 GMT Subject: CN=9328952C7F18AE3A1076E4247691320F99E7C6D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:21:77:fd:ba:f5:46:49:e8:4d:2f:50:36:29: a0:b9:32:8f:04:c8:4d:c7:84:38:1e:6f:a1:6f:29: 20:e1:b3:1c:8b:ea:78:64:8c:c8:47:a6:3b:c9:92: 3e:28:51:9b:4a:a2:d6:1d:9f:b9:39:53:6e:9b:65: 7b:cf:87:39:04:e4:f3:c8:bd:7d:ff:23:79:dc:6f: 2e:1c:d3:d4:00:1a:56:fc:92:0f:57:65:f0:fb:06: 30:0e:06:f1:46:8e:b3:62:07:a2:f5:7f:4c:7c:6d: 39:e7:d9:ed:a5:19:b3:3a:f8:b9:7a:63:a2:ed:27: 22:fd:eb:e9:f9:44:88:0c:a2:28:b8:bd:12:27:2b: d2:6e:9a:e7:f4:ac:68:4f:9a:fb:9b:33:38:ac:7e: 6c:1b:48:4d:76:d0:1e:1e:5f:fa:d9:ba:bf:88:ec: df:bf:80:45:33:04:24:41:5a:42:ad:85:72:46:0f: a7:57:6e:3e:d2:ce:31:28:65:b8:f5:be:e2:4a:92: 96:14:bf:f7:8d:8e:b1:7a:03:88:35:81:d7:34:f4: ac:1b:c7:5d:91:c0:a2:a9:f5:02:0c:21:61:d9:fa: 5f:83:27:a5:bf:9b:52:fa:7d:14:75:b6:95:1e:4d: 50:91:0b:50:11:a4:a2:a5:84:78:ec:71:18:01:b4: 38:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:28:95:2C:7F:18:AE:3A:10:76:E4:24:76:91:32:0F:99:E7:C6:D3 X509v3 Authority Key Identifier: keyid:78:0A:63:83:78:71:EA:9C:E6:D0:17:41:4F:6F:1C:5A:BA:3E:F7:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14ed8d6c-f0fa-47cc-aeaa-b4e3ee116882/1/780A63837871EA9CE6D017414F6F1C5ABA3EF7D9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/780A63837871EA9CE6D017414F6F1C5ABA3EF7D9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14ed8d6c-f0fa-47cc-aeaa-b4e3ee116882/1/323030313a6466333a643234303a3a2f34382d3438203d3e20313336303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:d240::/48 Signature Algorithm: sha256WithRSAEncryption 74:38:7d:d5:36:a3:d9:68:d2:c3:91:9a:ea:d9:6d:99:1c:7a: bb:bc:df:81:23:42:88:4e:1e:a2:a4:88:de:98:26:fe:9d:a6: 6e:59:cb:4f:f5:f6:37:54:8d:e6:8b:ef:51:c2:80:89:15:12: 3f:ac:dd:01:f8:f5:9e:10:ea:a0:26:1f:e6:7d:e4:43:a0:50: bf:fc:d9:c5:36:9b:f4:f2:03:27:98:a0:99:55:1b:a6:d4:8a: bc:42:6b:51:32:fa:07:bd:24:57:0c:a4:8a:62:a1:39:2b:7d: 6a:48:0d:2d:66:9e:35:7c:99:ef:1d:33:a2:5d:b7:1b:71:c3: 37:d0:73:bc:78:7e:82:34:57:b3:56:d1:60:4a:3b:85:1d:0d: c0:68:f6:3f:ff:44:f3:10:03:86:eb:21:1a:a4:b3:4e:f9:a1: fd:33:e8:8c:52:95:e7:3f:21:e1:f1:ba:7c:28:a8:4d:50:75: 4f:0c:a5:b7:ba:cf:6f:6e:c0:f4:1c:ee:41:ae:c9:04:3b:eb: 8f:a8:62:fa:46:0e:c5:63:ec:25:27:b6:90:39:96:95:8e:5d: e9:31:00:7c:61:e0:e5:f4:b9:72:17:c4:92:bf:66:c5:84:74: 1a:1b:70:61:b8:6b:18:14:72:5b:cc:79:b2:4b:a1:2e:a2:cf: 0e:96:4b:b8 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUG4VDrf9SpjC0WTc2ykckHUN+eO8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzgwQTYzODM3ODcxRUE5Q0U2RDAxNzQxNEY2RjFDNUFC QTNFRjdEOTAeFw0yNDA1MjMxMjMxMzhaFw0yNTA1MjIxMjM2MzhaMDMxMTAvBgNV BAMTKDkzMjg5NTJDN0YxOEFFM0ExMDc2RTQyNDc2OTEzMjBGOTlFN0M2RDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNIXf9uvVGSehNL1A2KaC5Mo8E yE3HhDgeb6FvKSDhsxyL6nhkjMhHpjvJkj4oUZtKotYdn7k5U26bZXvPhzkE5PPI vX3/I3ncby4c09QAGlb8kg9XZfD7BjAOBvFGjrNiB6L1f0x8bTnn2e2lGbM6+Ll6 Y6LtJyL96+n5RIgMoii4vRInK9Jumuf0rGhPmvubMzisfmwbSE120B4eX/rZur+I 7N+/gEUzBCRBWkKthXJGD6dXbj7SzjEoZbj1vuJKkpYUv/eNjrF6A4g1gdc09Kwb x12RwKKp9QIMIWHZ+l+DJ6W/m1L6fRR1tpUeTVCRC1ARpKKlhHjscRgBtDhpAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUkyiVLH8YrjoQduQkdpEyD5nnxtMwHwYDVR0j BBgwFoAUeApjg3hx6pzm0BdBT28cWro+99kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NGVkOGQ2Yy1mMGZhLTQ3Y2MtYWVhYS1iNGUzZWUxMTY4ODIvMS83ODBBNjM4Mzc4 NzFFQTlDRTZEMDE3NDE0RjZGMUM1QUJBM0VGN0Q5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzgwQTYzODM3ODcxRUE5Q0U2RDAxNzQxNEY2RjFDNUFCQTNF RjdEOS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0ZWQ4ZDZjLWYwZmEtNDdjYy1h ZWFhLWI0ZTNlZTExNjg4Mi8xLzMyMzAzMDMxM2E2NDY2MzMzYTY0MzIzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzAzODM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 89JAMA0GCSqGSIb3DQEBCwUAA4IBAQB0OH3VNqPZaNLDkZrq2W2ZHHq7vN+BI0KI Th6ipIjemCb+naZuWctP9fY3VI3mi+9RwoCJFRI/rN0B+PWeEOqgJh/mfeRDoFC/ /NnFNpv08gMnmKCZVRum1Iq8QmtRMvoHvSRXDKSKYqE5K31qSA0tZp41fJnvHTOi XbcbccM30HO8eH6CNFezVtFgSjuFHQ3AaPY//0TzEAOG6yEapLNO+aH9M+iMUpXn PyHh8bp8KKhNUHVPDKW3us9vbsD0HO5BrskEO+uPqGL6Rg7FY+wlJ7aQOZaVjl3p MQB8YeDl9LlyF8SSv2bFhHQaG3BhuGsYFHJbzHmyS6Euos8Olku4 -----END CERTIFICATE-----Generated at Fri Nov 22 09:29:42 2024 by rpki-client on console-fra.rpki-client.org