$ rpki-client -vvf repo-rpki.idnic.net/repo/1bae58ac-5917-4069-9a6c-83dc1ba32126/0/323030313a6466303a3232393a3a2f34382d3438203d3e20313331373738.roa File: 323030313a6466303a3232393a3a2f34382d3438203d3e20313331373738.roa (raw, json) Hash identifier: 4nSQ/iGCwdxa7Cn3istPAWcahjYvD0wVk1MPIKQ3DRU= Subject key identifier: EA:95:56:F6:02:F3:D6:29:82:C4:06:16:B8:0F:7A:D9:4F:F3:C0:5D Certificate issuer: /CN=0FFE5F19FBEB5489FFCCDF37FEFE0A0C6AB5695E Certificate serial: 72C970FF1B1BCDDE21D9AF92EA5A53897CF6D9BC Authority key identifier: 0F:FE:5F:19:FB:EB:54:89:FF:CC:DF:37:FE:FE:0A:0C:6A:B5:69:5E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FFE5F19FBEB5489FFCCDF37FEFE0A0C6AB5695E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1bae58ac-5917-4069-9a6c-83dc1ba32126/0/323030313a6466303a3232393a3a2f34382d3438203d3e20313331373738.roa Signing time: Mon 01 Jul 2024 01:05:16 +0000 ROA not before: Mon 01 Jul 2024 01:00:16 +0000 ROA not after: Mon 30 Jun 2025 01:05:16 +0000 asID: 131778 IP address blocks: 2001:df0:229::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1bae58ac-5917-4069-9a6c-83dc1ba32126/0/0FFE5F19FBEB5489FFCCDF37FEFE0A0C6AB5695E.crl rsync://repo-rpki.idnic.net/repo/1bae58ac-5917-4069-9a6c-83dc1ba32126/0/0FFE5F19FBEB5489FFCCDF37FEFE0A0C6AB5695E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FFE5F19FBEB5489FFCCDF37FEFE0A0C6AB5695E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:c9:70:ff:1b:1b:cd:de:21:d9:af:92:ea:5a:53:89:7c:f6:d9:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FFE5F19FBEB5489FFCCDF37FEFE0A0C6AB5695E Validity Not Before: Jul 1 01:00:16 2024 GMT Not After : Jun 30 01:05:16 2025 GMT Subject: CN=EA9556F602F3D62982C40616B80F7AD94FF3C05D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:6c:6b:1b:2c:8c:82:96:a5:a2:b5:85:fc:7b: df:85:0d:fe:bc:3e:c6:e5:c9:9e:0b:c8:1d:4a:fa: d9:5a:d1:c4:b0:fa:1c:40:93:5a:1f:68:42:10:8d: 95:39:9f:39:b8:6b:b1:94:38:8f:b7:1a:ba:00:36: 60:6a:ce:bf:11:99:5c:9d:88:b5:24:6d:c0:f8:12: b3:f4:84:c4:58:40:e9:b3:1d:3c:77:94:79:61:b8: ed:fc:e3:12:56:ec:51:7c:3d:f2:fd:87:4c:94:11: 51:ee:92:43:35:9c:e2:25:98:49:ef:e7:8f:16:90: 86:d5:c7:84:2a:ef:db:fe:7a:ba:c8:24:5f:ed:5b: cc:61:50:c7:be:61:d8:ed:1c:56:42:3b:e6:8b:6f: 10:07:89:0d:9a:53:d1:b1:0d:f2:ee:21:37:04:81: 33:2b:3e:c1:45:32:e2:22:54:ce:5b:c6:80:54:d2: 8d:a6:3c:32:01:e0:b1:fb:5f:b8:b9:ce:75:e0:13: 52:09:ee:c2:a8:1a:d2:e4:d7:cb:d3:fa:7c:ed:8a: 07:17:e0:2b:cd:6d:d5:fb:1c:f6:d0:cb:fe:14:12: 81:1e:75:1a:55:a0:17:96:57:ad:82:2b:0c:54:86: b1:a9:66:7f:55:01:dd:fb:bd:1d:a9:41:17:06:25: 95:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:95:56:F6:02:F3:D6:29:82:C4:06:16:B8:0F:7A:D9:4F:F3:C0:5D X509v3 Authority Key Identifier: keyid:0F:FE:5F:19:FB:EB:54:89:FF:CC:DF:37:FE:FE:0A:0C:6A:B5:69:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1bae58ac-5917-4069-9a6c-83dc1ba32126/0/0FFE5F19FBEB5489FFCCDF37FEFE0A0C6AB5695E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FFE5F19FBEB5489FFCCDF37FEFE0A0C6AB5695E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1bae58ac-5917-4069-9a6c-83dc1ba32126/0/323030313a6466303a3232393a3a2f34382d3438203d3e20313331373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:229::/48 Signature Algorithm: sha256WithRSAEncryption 6f:d9:b1:93:ea:4a:90:b6:be:04:29:2c:3c:f5:44:83:88:90: 11:b7:60:b9:ec:de:90:ee:9b:be:d7:1b:d9:fd:2b:22:cb:6f: 49:29:48:8b:61:ad:ab:06:53:d1:ed:1a:cc:dc:8d:51:72:ad: 16:0c:05:f2:6a:17:54:08:45:08:57:fd:12:2a:20:fd:b2:61: 66:87:74:d0:7b:82:a4:c1:f2:da:a4:00:2d:f6:80:93:47:18: 8a:16:35:bf:31:2b:b5:1e:23:d0:ef:e0:c1:23:58:51:1e:a5: b7:e0:98:ca:fd:30:fd:6d:d9:b8:f5:60:02:ec:6f:bc:3b:a5: 16:49:01:fc:91:3d:a9:03:5a:c8:c1:48:68:63:eb:17:f3:92: d2:d2:67:a5:6d:22:74:04:ca:44:94:87:ff:b6:2b:17:5c:34: bd:b7:bd:01:be:53:a1:7a:b5:1e:ef:eb:94:bf:38:1a:84:a4: 7d:44:75:f9:3a:38:5c:f0:f9:1e:52:a6:d3:c7:de:ba:3e:d6: 24:ab:00:ad:92:c3:b2:bb:e2:e2:64:39:62:83:c6:6f:5d:a0: 1b:63:e2:3d:dc:ec:16:24:65:84:33:32:f2:b9:94:18:ea:b2: 2e:bc:78:46:2e:d3:91:97:61:ba:7d:90:8e:e1:f9:6e:46:4c: 79:36:fa:c3 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUcslw/xsbzd4h2a+S6lpTiXz22bwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZGRTVGMTlGQkVCNTQ4OUZGQ0NERjM3RkVGRTBBMEM2 QUI1Njk1RTAeFw0yNDA3MDEwMTAwMTZaFw0yNTA2MzAwMTA1MTZaMDMxMTAvBgNV BAMTKEVBOTU1NkY2MDJGM0Q2Mjk4MkM0MDYxNkI4MEY3QUQ5NEZGM0MwNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8bGsbLIyClqWitYX8e9+FDf68 PsblyZ4LyB1K+tla0cSw+hxAk1ofaEIQjZU5nzm4a7GUOI+3GroANmBqzr8RmVyd iLUkbcD4ErP0hMRYQOmzHTx3lHlhuO384xJW7FF8PfL9h0yUEVHukkM1nOIlmEnv 548WkIbVx4Qq79v+errIJF/tW8xhUMe+YdjtHFZCO+aLbxAHiQ2aU9GxDfLuITcE gTMrPsFFMuIiVM5bxoBU0o2mPDIB4LH7X7i5znXgE1IJ7sKoGtLk18vT+nztigcX 4CvNbdX7HPbQy/4UEoEedRpVoBeWV62CKwxUhrGpZn9VAd37vR2pQRcGJZUFAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU6pVW9gLz1imCxAYWuA962U/zwF0wHwYDVR0j BBgwFoAUD/5fGfvrVIn/zN83/v4KDGq1aV4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YmFlNThhYy01OTE3LTQwNjktOWE2Yy04M2RjMWJhMzIxMjYvMC8wRkZFNUYxOUZC RUI1NDg5RkZDQ0RGMzdGRUZFMEEwQzZBQjU2OTVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEZGRTVGMTlGQkVCNTQ4OUZGQ0NERjM3RkVGRTBBMEM2QUI1 Njk1RS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiYWU1OGFjLTU5MTctNDA2OS05 YTZjLTgzZGMxYmEzMjEyNi8wLzMyMzAzMDMxM2E2NDY2MzAzYTMyMzIzOTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzMTM3MzczOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfAC KTANBgkqhkiG9w0BAQsFAAOCAQEAb9mxk+pKkLa+BCksPPVEg4iQEbdguezekO6b vtcb2f0rIstvSSlIi2GtqwZT0e0azNyNUXKtFgwF8moXVAhFCFf9Eiog/bJhZod0 0HuCpMHy2qQALfaAk0cYihY1vzErtR4j0O/gwSNYUR6lt+CYyv0w/W3ZuPVgAuxv vDulFkkB/JE9qQNayMFIaGPrF/OS0tJnpW0idATKRJSH/7YrF1w0vbe9Ab5ToXq1 Hu/rlL84GoSkfUR1+To4XPD5HlKm08feuj7WJKsArZLDsrvi4mQ5YoPGb12gG2Pi PdzsFiRlhDMy8rmUGOqyLrx4Ri7TkZdhun2QjuH5bkZMeTb6ww== -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:43 2024 by rpki-client on console-fra.rpki-client.org