$ rpki-client -vvf repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/323030313a6466303a353463303a3a2f34382d3438203d3e20313431353936.roa File: 323030313a6466303a353463303a3a2f34382d3438203d3e20313431353936.roa (raw, json) Hash identifier: 3EvU4TBtv6BXZiyYaAbxIfh7U9gKO1iNAgsQ6ldwMyE= Subject key identifier: 3F:EC:11:3C:E9:A0:97:7A:FA:22:C6:73:0D:15:E2:81:74:C7:A5:A6 Certificate issuer: /CN=139934661CE07BEBBFA824F7225502B15AE8B653 Certificate serial: 13C0E202977522D509D05E152D1F0F11BC72EDDB Authority key identifier: 13:99:34:66:1C:E0:7B:EB:BF:A8:24:F7:22:55:02:B1:5A:E8:B6:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/139934661CE07BEBBFA824F7225502B15AE8B653.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/323030313a6466303a353463303a3a2f34382d3438203d3e20313431353936.roa Signing time: Tue 02 Jul 2024 11:00:01 +0000 ROA not before: Tue 02 Jul 2024 10:55:01 +0000 ROA not after: Tue 01 Jul 2025 11:00:01 +0000 asID: 141596 IP address blocks: 2001:df0:54c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/139934661CE07BEBBFA824F7225502B15AE8B653.crl rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/139934661CE07BEBBFA824F7225502B15AE8B653.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/139934661CE07BEBBFA824F7225502B15AE8B653.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:c0:e2:02:97:75:22:d5:09:d0:5e:15:2d:1f:0f:11:bc:72:ed:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=139934661CE07BEBBFA824F7225502B15AE8B653 Validity Not Before: Jul 2 10:55:01 2024 GMT Not After : Jul 1 11:00:01 2025 GMT Subject: CN=3FEC113CE9A0977AFA22C6730D15E28174C7A5A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:b7:ec:55:55:34:5b:d9:d3:ae:61:7a:d4:9a: 66:f9:c3:29:f4:6b:88:13:3f:ee:80:0e:bb:40:be: df:e7:88:56:8f:91:9d:31:8f:52:6e:20:d2:e4:07: 26:5a:28:9d:e9:44:74:30:06:c5:e1:1a:73:72:0c: a9:8c:f5:c8:b3:ff:03:59:54:7d:52:d3:9e:83:41: 33:88:6e:16:13:64:f2:38:df:df:ae:bd:73:04:74: e8:80:ca:89:d8:7b:27:98:5a:92:07:e7:db:b0:56: 8d:da:a1:bb:08:93:59:77:3b:56:14:ef:90:f8:07: 09:db:83:98:dc:d2:25:1d:70:0b:9b:53:e4:1a:48: bd:fe:97:61:7e:d6:6e:ac:56:3c:c1:9f:c4:d3:57: 2b:6b:79:43:e1:6b:03:e9:b7:77:f2:87:ab:f4:c0: cd:e5:2a:89:33:f1:ff:ee:74:1d:fa:f0:03:21:a7: 58:92:47:05:b5:fc:39:dc:30:d1:24:50:c3:02:c5: 57:22:1c:16:31:c2:9b:bc:b8:fb:8e:8c:0b:ce:ac: 82:84:a2:e5:d2:2d:ca:56:67:c7:30:3d:19:2d:d8: 63:11:d3:1f:89:d6:9b:81:53:87:c1:ce:a3:91:39: 94:7f:f3:30:ec:94:d7:7a:12:9f:34:5b:c4:e3:c1: 38:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:EC:11:3C:E9:A0:97:7A:FA:22:C6:73:0D:15:E2:81:74:C7:A5:A6 X509v3 Authority Key Identifier: keyid:13:99:34:66:1C:E0:7B:EB:BF:A8:24:F7:22:55:02:B1:5A:E8:B6:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/139934661CE07BEBBFA824F7225502B15AE8B653.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/139934661CE07BEBBFA824F7225502B15AE8B653.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/323030313a6466303a353463303a3a2f34382d3438203d3e20313431353936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:54c0::/48 Signature Algorithm: sha256WithRSAEncryption 22:84:79:1c:18:af:01:04:4b:81:78:22:9c:de:16:1b:8b:44: ad:d5:2c:c2:3f:76:41:93:bf:77:8e:d3:f1:4f:be:21:3f:45: 64:50:63:c9:d2:f0:0f:78:6f:e1:65:55:32:13:bb:94:a6:b1: 33:cc:f1:e5:b7:ca:43:78:c5:e4:62:ef:7a:10:42:fc:33:2d: af:28:88:c2:09:26:0a:c9:9e:9b:ec:dc:17:21:50:3e:77:d7: 73:2c:4c:73:dd:39:a3:72:3d:23:84:38:12:02:e2:a9:fe:42: 52:85:31:a1:f7:5d:cb:12:14:64:f6:70:3a:fc:a1:9f:09:76: 6d:9f:e1:7a:2e:b3:3a:c8:fc:2d:43:aa:11:81:7f:ea:d0:24: f0:55:1f:0b:1d:2d:c3:17:ba:9b:5a:05:28:b9:1f:81:37:44: 3d:c9:89:95:1a:7d:83:76:42:52:4e:96:e3:ae:20:f2:2f:7e: d4:ea:7b:9a:ca:a2:18:47:38:16:c3:58:21:fb:0b:73:f6:14: ce:94:7e:83:a3:58:71:f2:fa:49:3b:59:e1:76:f8:5e:6b:de: e3:83:ca:9e:ef:eb:42:a6:83:c2:9b:ce:50:27:27:4c:e0:67: a4:f0:ec:3a:99:41:22:49:83:71:4f:33:c0:45:67:d5:ae:9e: 84:d7:fe:b4 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUE8DiApd1ItUJ0F4VLR8PEbxy7dswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTM5OTM0NjYxQ0UwN0JFQkJGQTgyNEY3MjI1NTAyQjE1 QUU4QjY1MzAeFw0yNDA3MDIxMDU1MDFaFw0yNTA3MDExMTAwMDFaMDMxMTAvBgNV BAMTKDNGRUMxMTNDRTlBMDk3N0FGQTIyQzY3MzBEMTVFMjgxNzRDN0E1QTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpt+xVVTRb2dOuYXrUmmb5wyn0 a4gTP+6ADrtAvt/niFaPkZ0xj1JuINLkByZaKJ3pRHQwBsXhGnNyDKmM9ciz/wNZ VH1S056DQTOIbhYTZPI439+uvXMEdOiAyonYeyeYWpIH59uwVo3aobsIk1l3O1YU 75D4Bwnbg5jc0iUdcAubU+QaSL3+l2F+1m6sVjzBn8TTVytreUPhawPpt3fyh6v0 wM3lKokz8f/udB368AMhp1iSRwW1/DncMNEkUMMCxVciHBYxwpu8uPuOjAvOrIKE ouXSLcpWZ8cwPRkt2GMR0x+J1puBU4fBzqOROZR/8zDslNd6Ep80W8TjwTilAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUP+wRPOmgl3r6IsZzDRXigXTHpaYwHwYDVR0j BBgwFoAUE5k0Zhzge+u/qCT3IlUCsVrotlMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x Y2EyOTJiMi00YWU0LTQxZGYtODg3YS1jMTcyYzNlMWFlNzMvMC8xMzk5MzQ2NjFD RTA3QkVCQkZBODI0RjcyMjU1MDJCMTVBRThCNjUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTM5OTM0NjYxQ0UwN0JFQkJGQTgyNEY3MjI1NTAyQjE1QUU4 QjY1My5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFjYTI5MmIyLTRhZTQtNDFkZi04 ODdhLWMxNzJjM2UxYWU3My8wLzMyMzAzMDMxM2E2NDY2MzAzYTM1MzQ2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMxMzUzOTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8FTAMA0GCSqGSIb3DQEBCwUAA4IBAQAihHkcGK8BBEuBeCKc3hYbi0St1SzCP3ZB k793jtPxT74hP0VkUGPJ0vAPeG/hZVUyE7uUprEzzPHlt8pDeMXkYu96EEL8My2v KIjCCSYKyZ6b7NwXIVA+d9dzLExz3Tmjcj0jhDgSAuKp/kJShTGh913LEhRk9nA6 /KGfCXZtn+F6LrM6yPwtQ6oRgX/q0CTwVR8LHS3DF7qbWgUouR+BN0Q9yYmVGn2D dkJSTpbjriDyL37U6nuayqIYRzgWw1gh+wtz9hTOlH6Do1hx8vpJO1nhdvhea97j g8qe7+tCpoPCm85QJydM4Gek8Ow6mUEiSYNxTzPARWfVrp6E1/60 -----END CERTIFICATE-----Generated at Fri Nov 22 22:09:27 2024 by rpki-client on console-ams.rpki-client.org