$ rpki-client -vvf repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/323030313a6466303a353463303a3a2f34382d3438203d3e20313439333437.roa File: 323030313a6466303a353463303a3a2f34382d3438203d3e20313439333437.roa (raw, json) Hash identifier: MLL6/qDsxtEsMRa44Zl6aIIBEl0tDem6dFSdspx4PV8= Subject key identifier: B0:CB:DB:06:7F:F1:EF:AD:97:0B:16:B9:A9:A8:6B:11:0D:69:44:E4 Certificate issuer: /CN=139934661CE07BEBBFA824F7225502B15AE8B653 Certificate serial: 633555F4BE9833B3D6A64D2DF1ED72B32E007AAA Authority key identifier: 13:99:34:66:1C:E0:7B:EB:BF:A8:24:F7:22:55:02:B1:5A:E8:B6:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/139934661CE07BEBBFA824F7225502B15AE8B653.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/323030313a6466303a353463303a3a2f34382d3438203d3e20313439333437.roa Signing time: Sat 14 Dec 2024 09:00:01 +0000 ROA not before: Sat 14 Dec 2024 08:55:01 +0000 ROA not after: Sat 13 Dec 2025 09:00:01 +0000 asID: 149347 IP address blocks: 2001:df0:54c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/139934661CE07BEBBFA824F7225502B15AE8B653.crl rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/139934661CE07BEBBFA824F7225502B15AE8B653.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/139934661CE07BEBBFA824F7225502B15AE8B653.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 10:12:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:35:55:f4:be:98:33:b3:d6:a6:4d:2d:f1:ed:72:b3:2e:00:7a:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=139934661CE07BEBBFA824F7225502B15AE8B653 Validity Not Before: Dec 14 08:55:01 2024 GMT Not After : Dec 13 09:00:01 2025 GMT Subject: CN=B0CBDB067FF1EFAD970B16B9A9A86B110D6944E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:19:32:75:d7:6f:02:52:34:f6:be:2f:12:a7: 7c:3e:76:36:34:f1:02:c0:55:92:84:15:f2:09:ad: 73:7a:6d:a0:51:49:ba:f2:4f:48:65:2f:12:26:03: 6f:0b:8c:ff:92:b7:b3:fb:fc:dd:b0:cc:f3:82:d0: b0:b1:6b:74:57:10:46:1c:ae:08:26:95:be:cc:90: fb:2b:5f:17:d7:11:f5:be:c2:60:31:f0:fd:ca:cb: ef:95:3c:47:b5:f6:7a:db:df:9f:12:ae:34:43:4a: 51:60:3b:f2:b3:31:a2:f0:f1:f9:2f:0c:6a:59:7e: d6:48:7f:1e:db:47:7f:af:40:5f:e5:c2:ad:33:f2: 61:59:44:c5:d2:7a:e6:97:f3:b5:4a:6d:1b:63:97: 64:ba:57:76:05:0b:ff:fb:8a:11:77:f4:15:f3:70: 70:6f:36:50:95:4e:53:fd:50:8d:7d:c0:3f:8f:95: 8d:44:16:e7:7f:47:16:74:bc:25:21:27:ba:36:29: bf:26:e8:52:8f:ad:c9:25:6c:4c:de:79:5c:af:a8: 40:af:fa:ea:55:a4:55:1f:df:e3:45:59:f5:bf:e9: 27:2e:6d:bc:b7:44:57:a4:ca:19:89:9a:a2:b3:19: d3:dc:18:7d:2c:9f:e5:51:8d:d2:19:41:ef:93:fb: 2e:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:CB:DB:06:7F:F1:EF:AD:97:0B:16:B9:A9:A8:6B:11:0D:69:44:E4 X509v3 Authority Key Identifier: keyid:13:99:34:66:1C:E0:7B:EB:BF:A8:24:F7:22:55:02:B1:5A:E8:B6:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/139934661CE07BEBBFA824F7225502B15AE8B653.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/139934661CE07BEBBFA824F7225502B15AE8B653.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/323030313a6466303a353463303a3a2f34382d3438203d3e20313439333437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:54c0::/48 Signature Algorithm: sha256WithRSAEncryption 7b:69:ca:6a:41:97:21:2f:3c:87:00:95:0c:0d:8c:68:e9:ec: 42:7a:88:b6:71:51:ac:81:a0:1a:df:5f:82:38:31:30:99:76: 46:4e:aa:13:0d:b7:1c:b3:f4:78:66:56:27:63:ba:86:c3:2e: 99:e8:76:a7:bf:dc:3f:2c:b7:ed:d6:d3:43:72:91:dd:f4:3c: dd:f5:23:e6:05:c4:62:03:58:f4:75:6d:5f:46:5a:57:6f:cc: 4f:82:db:46:3f:6f:10:d7:ca:f5:cd:ec:00:f9:06:d8:fa:2f: c1:ee:4b:3b:bf:cc:a0:78:62:94:b4:96:cd:d7:27:ef:b2:3d: c6:f9:73:63:3e:19:78:0d:47:ef:e8:f2:f7:5f:69:4b:65:4d: 8e:04:16:eb:da:30:11:d2:e6:2c:5f:60:c9:67:f1:f4:67:73: 82:36:83:10:26:bb:5c:09:12:f9:a7:6f:63:d4:3b:91:4b:4d: 5d:cc:09:5d:8e:7f:52:53:6d:df:5b:0e:ba:58:0e:18:30:81: b0:02:ee:f3:17:67:82:08:ab:0b:54:ff:01:8f:be:76:b1:af: e3:31:2b:d5:56:4a:b5:b0:77:74:d3:5d:b2:c0:a3:9e:be:4e: 64:02:1e:de:60:19:32:f2:3b:85:b4:27:d6:08:d5:f0:9b:f7: b9:39:59:6b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUYzVV9L6YM7PWpk0t8e1ysy4AeqowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTM5OTM0NjYxQ0UwN0JFQkJGQTgyNEY3MjI1NTAyQjE1 QUU4QjY1MzAeFw0yNDEyMTQwODU1MDFaFw0yNTEyMTMwOTAwMDFaMDMxMTAvBgNV BAMTKEIwQ0JEQjA2N0ZGMUVGQUQ5NzBCMTZCOUE5QTg2QjExMEQ2OTQ0RTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkGTJ1128CUjT2vi8Sp3w+djY0 8QLAVZKEFfIJrXN6baBRSbryT0hlLxImA28LjP+St7P7/N2wzPOC0LCxa3RXEEYc rggmlb7MkPsrXxfXEfW+wmAx8P3Ky++VPEe19nrb358SrjRDSlFgO/KzMaLw8fkv DGpZftZIfx7bR3+vQF/lwq0z8mFZRMXSeuaX87VKbRtjl2S6V3YFC//7ihF39BXz cHBvNlCVTlP9UI19wD+PlY1EFud/RxZ0vCUhJ7o2Kb8m6FKPrcklbEzeeVyvqECv +upVpFUf3+NFWfW/6Scubby3RFekyhmJmqKzGdPcGH0sn+VRjdIZQe+T+y7lAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUsMvbBn/x762XCxa5qahrEQ1pROQwHwYDVR0j BBgwFoAUE5k0Zhzge+u/qCT3IlUCsVrotlMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x Y2EyOTJiMi00YWU0LTQxZGYtODg3YS1jMTcyYzNlMWFlNzMvMC8xMzk5MzQ2NjFD RTA3QkVCQkZBODI0RjcyMjU1MDJCMTVBRThCNjUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTM5OTM0NjYxQ0UwN0JFQkJGQTgyNEY3MjI1NTAyQjE1QUU4 QjY1My5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFjYTI5MmIyLTRhZTQtNDFkZi04 ODdhLWMxNzJjM2UxYWU3My8wLzMyMzAzMDMxM2E2NDY2MzAzYTM1MzQ2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDM5MzMzNDM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8FTAMA0GCSqGSIb3DQEBCwUAA4IBAQB7acpqQZchLzyHAJUMDYxo6exCeoi2cVGs gaAa31+CODEwmXZGTqoTDbccs/R4ZlYnY7qGwy6Z6Hanv9w/LLft1tNDcpHd9Dzd 9SPmBcRiA1j0dW1fRlpXb8xPgttGP28Q18r1zewA+QbY+i/B7ks7v8ygeGKUtJbN 1yfvsj3G+XNjPhl4DUfv6PL3X2lLZU2OBBbr2jAR0uYsX2DJZ/H0Z3OCNoMQJrtc CRL5p29j1DuRS01dzAldjn9SU23fWw66WA4YMIGwAu7zF2eCCKsLVP8Bj752sa/j MSvVVkq1sHd0012ywKOevk5kAh7eYBky8juFtCfWCNXwm/e5OVlr -----END CERTIFICATE-----Generated at Sun Apr 6 07:22:42 2025 by rpki-client