$ rpki-client -vvf repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/1/323030313a6466333a653034303a3a2f34382d3438203d3e20313532383036.roa File: 323030313a6466333a653034303a3a2f34382d3438203d3e20313532383036.roa (raw, json) Hash identifier: th3Xv42aRE7pNCMbqK8emeLE7s2AiqsmCsXh48rzB6c= Subject key identifier: 05:E2:58:5C:BF:65:A9:B9:5D:60:3C:6D:B8:9B:BB:16:B7:6B:C1:C0 Certificate issuer: /CN=C2E1998AC1681A41F68250BFABD05A982E00EA44 Certificate serial: 0F9188FED79DFE5BAFD606E8A88E109F8C4ED8D7 Authority key identifier: C2:E1:99:8A:C1:68:1A:41:F6:82:50:BF:AB:D0:5A:98:2E:00:EA:44 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2E1998AC1681A41F68250BFABD05A982E00EA44.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/1/323030313a6466333a653034303a3a2f34382d3438203d3e20313532383036.roa Signing time: Mon 10 Jun 2024 19:14:04 +0000 ROA not before: Mon 10 Jun 2024 19:09:04 +0000 ROA not after: Mon 09 Jun 2025 19:14:04 +0000 asID: 152806 IP address blocks: 2001:df3:e040::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/1/C2E1998AC1681A41F68250BFABD05A982E00EA44.crl rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/1/C2E1998AC1681A41F68250BFABD05A982E00EA44.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2E1998AC1681A41F68250BFABD05A982E00EA44.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:91:88:fe:d7:9d:fe:5b:af:d6:06:e8:a8:8e:10:9f:8c:4e:d8:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2E1998AC1681A41F68250BFABD05A982E00EA44 Validity Not Before: Jun 10 19:09:04 2024 GMT Not After : Jun 9 19:14:04 2025 GMT Subject: CN=05E2585CBF65A9B95D603C6DB89BBB16B76BC1C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b0:6c:bc:74:76:1d:49:28:eb:05:d6:3c:9f: 27:0f:c6:a9:2b:28:e1:4c:c5:3f:d3:1c:e9:9c:ac: b5:e7:b2:46:a9:ff:1a:9e:30:27:d1:b1:18:b2:7c: 22:6f:db:eb:cc:1d:4e:0e:7c:ff:ef:30:0b:36:04: 5b:eb:c3:ab:5d:c6:91:e9:bf:c1:15:44:77:63:05: e5:a3:f4:b1:c4:ab:24:e8:b6:9a:c4:e5:56:70:37: 3a:ad:55:80:eb:11:a4:96:c1:45:d6:bf:d0:9e:bb: 57:fc:e9:36:da:3d:cc:ea:1d:c0:a2:25:29:2d:32: c9:fe:bd:9f:cb:a8:38:ea:2c:0e:ac:10:e1:99:d6: c9:cd:bc:5a:bd:f3:c5:1b:d1:d7:df:9b:da:ab:ff: 7b:d1:e4:55:f7:df:c4:be:2a:37:41:33:ee:a5:55: ac:fb:bb:f9:3c:c6:fe:0b:83:ef:78:3b:44:9a:39: 69:34:5e:01:8c:a3:84:23:34:ce:db:e2:71:a1:33: b9:74:c6:07:90:d3:3a:07:00:01:2e:02:01:d7:0f: ad:c7:50:e7:c5:4c:e0:88:f6:1a:86:dd:e5:0e:19: 17:27:84:a4:9d:7f:9a:7e:af:7e:69:82:5f:c3:e6: f1:ae:39:93:6f:e7:61:f0:24:bc:35:cf:82:a2:f5: c8:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:E2:58:5C:BF:65:A9:B9:5D:60:3C:6D:B8:9B:BB:16:B7:6B:C1:C0 X509v3 Authority Key Identifier: keyid:C2:E1:99:8A:C1:68:1A:41:F6:82:50:BF:AB:D0:5A:98:2E:00:EA:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/1/C2E1998AC1681A41F68250BFABD05A982E00EA44.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2E1998AC1681A41F68250BFABD05A982E00EA44.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/1/323030313a6466333a653034303a3a2f34382d3438203d3e20313532383036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:e040::/48 Signature Algorithm: sha256WithRSAEncryption 8c:28:5a:f1:a7:b5:75:0d:73:ef:57:39:de:69:8f:d1:e1:7f: 70:53:71:c4:da:c3:4d:62:30:8b:a2:0d:0e:96:e5:74:cc:fa: a5:83:68:4f:92:f6:47:41:8a:3c:e9:00:5e:f7:59:c0:8c:e9: 66:75:3f:ff:0c:00:59:78:33:bb:cd:51:22:0c:72:8c:93:52: 2f:5f:22:44:49:cd:91:e7:24:04:c2:20:9a:e0:7d:cb:0a:ea: e9:c8:73:1b:8f:fd:48:48:47:86:36:d0:45:ff:14:ed:61:9d: cf:81:a9:51:69:db:c1:51:f8:0a:5b:dc:a3:2d:b1:a8:a6:19: 60:b7:39:51:45:76:0c:2e:b1:2a:57:dc:6a:98:45:d6:81:4b: 80:1d:75:a0:84:8a:1a:1e:c2:77:de:b7:d5:0d:9d:eb:b4:65: c9:ea:a6:b6:54:14:37:89:1f:d1:ae:ce:0c:d5:23:17:02:96: 5d:4c:2c:ac:07:bf:5c:fc:4a:c3:28:5c:ae:24:95:ae:ef:b0: 97:74:1e:d0:8e:88:b9:79:0c:97:0a:a9:33:51:99:7a:25:a9: 8f:72:08:74:18:83:91:bb:dd:50:1b:c8:b3:63:11:e0:8d:16: e6:07:1b:51:03:ad:d5:32:82:39:47:e2:65:9a:90:8f:ed:1e: 12:e2:96:77 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUD5GI/ted/luv1gboqI4Qn4xO2NcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJFMTk5OEFDMTY4MUE0MUY2ODI1MEJGQUJEMDVBOTgy RTAwRUE0NDAeFw0yNDA2MTAxOTA5MDRaFw0yNTA2MDkxOTE0MDRaMDMxMTAvBgNV BAMTKDA1RTI1ODVDQkY2NUE5Qjk1RDYwM0M2REI4OUJCQjE2Qjc2QkMxQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMsGy8dHYdSSjrBdY8nycPxqkr KOFMxT/THOmcrLXnskap/xqeMCfRsRiyfCJv2+vMHU4OfP/vMAs2BFvrw6tdxpHp v8EVRHdjBeWj9LHEqyTotprE5VZwNzqtVYDrEaSWwUXWv9Ceu1f86TbaPczqHcCi JSktMsn+vZ/LqDjqLA6sEOGZ1snNvFq988Ub0dffm9qr/3vR5FX338S+KjdBM+6l Vaz7u/k8xv4Lg+94O0SaOWk0XgGMo4QjNM7b4nGhM7l0xgeQ0zoHAAEuAgHXD63H UOfFTOCI9hqG3eUOGRcnhKSdf5p+r35pgl/D5vGuOZNv52HwJLw1z4Ki9ciZAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUBeJYXL9lqbldYDxtuJu7FrdrwcAwHwYDVR0j BBgwFoAUwuGZisFoGkH2glC/q9BamC4A6kQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YmRjZTM5MS1hNWQzLTQxMWItYTk3Yi1lODYyZmJmNTYzMWMvMS9DMkUxOTk4QUMx NjgxQTQxRjY4MjUwQkZBQkQwNUE5ODJFMDBFQTQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzJFMTk5OEFDMTY4MUE0MUY2ODI1MEJGQUJEMDVBOTgyRTAw RUE0NC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiZGNlMzkxLWE1ZDMtNDExYi1h OTdiLWU4NjJmYmY1NjMxYy8xLzMyMzAzMDMxM2E2NDY2MzMzYTY1MzAzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzgzMDM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8+BAMA0GCSqGSIb3DQEBCwUAA4IBAQCMKFrxp7V1DXPvVzneaY/R4X9wU3HE2sNN YjCLog0OluV0zPqlg2hPkvZHQYo86QBe91nAjOlmdT//DABZeDO7zVEiDHKMk1Iv XyJESc2R5yQEwiCa4H3LCurpyHMbj/1ISEeGNtBF/xTtYZ3PgalRadvBUfgKW9yj LbGophlgtzlRRXYMLrEqV9xqmEXWgUuAHXWghIoaHsJ33rfVDZ3rtGXJ6qa2VBQ3 iR/Rrs4M1SMXApZdTCysB79c/ErDKFyuJJWu77CXdB7Qjoi5eQyXCqkzUZl6JamP cgh0GIORu91QG8izYxHgjRbmBxtRA63VMoI5R+JlmpCP7R4S4pZ3 -----END CERTIFICATE-----Generated at Thu Nov 21 05:03:32 2024 by rpki-client on console-fra.rpki-client.org