$ rpki-client -vvf repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/323030313a6466303a353463303a3a2f34382d3438203d3e20313439333437.roa File: 323030313a6466303a353463303a3a2f34382d3438203d3e20313439333437.roa (raw, json) Hash identifier: IGBAb35REu0LXD+uYT8xZZGBJm7m8pEdoEflMHvh5dA= Subject key identifier: FA:D9:72:AC:A2:4C:80:78:B9:B7:AF:79:12:89:44:99:C8:62:76:75 Certificate issuer: /CN=139934661CE07BEBBFA824F7225502B15AE8B653 Certificate serial: 2D65FEEBB6C43B6A8640D0EE1529BE9420AA3F6E Authority key identifier: 13:99:34:66:1C:E0:7B:EB:BF:A8:24:F7:22:55:02:B1:5A:E8:B6:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/139934661CE07BEBBFA824F7225502B15AE8B653.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/323030313a6466303a353463303a3a2f34382d3438203d3e20313439333437.roa Signing time: Sat 13 Jan 2024 09:00:00 +0000 ROA not before: Sat 13 Jan 2024 08:55:00 +0000 ROA not after: Sat 11 Jan 2025 09:00:00 +0000 asID: 149347 IP address blocks: 2001:df0:54c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/139934661CE07BEBBFA824F7225502B15AE8B653.crl rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/139934661CE07BEBBFA824F7225502B15AE8B653.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/139934661CE07BEBBFA824F7225502B15AE8B653.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 03:58:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:65:fe:eb:b6:c4:3b:6a:86:40:d0:ee:15:29:be:94:20:aa:3f:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=139934661CE07BEBBFA824F7225502B15AE8B653 Validity Not Before: Jan 13 08:55:00 2024 GMT Not After : Jan 11 09:00:00 2025 GMT Subject: CN=FAD972ACA24C8078B9B7AF7912894499C8627675 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e9:6e:71:33:ee:ed:20:c8:78:dc:d5:55:fe: 8e:0a:9f:7a:36:70:68:df:60:3b:fa:96:7e:1f:22: 10:51:1b:79:e1:bf:49:30:1d:0b:80:d8:83:ea:45: 2e:e1:1b:95:ef:a2:e6:e6:da:7e:46:a4:b3:1b:19: 09:cd:a3:a0:d9:9c:3f:e6:6e:ce:f5:23:03:70:c4: b6:af:4a:12:60:31:58:81:63:df:67:11:de:f2:60: 0b:08:ae:c2:3e:12:49:35:cf:ce:75:88:fc:28:06: 4b:a3:b6:c4:55:f3:97:4a:b1:c2:9d:03:ce:a8:7e: 94:83:63:61:bf:f0:0d:f4:0f:6b:b7:0c:a3:6b:00: 91:70:ad:f8:94:b1:ab:72:64:32:f8:8d:75:77:1a: d7:79:4e:1d:e7:86:1c:49:e4:03:d6:bc:5d:5d:8e: f6:c6:d2:b6:c8:3c:8f:29:6f:c7:b8:87:7f:99:b9: ce:ea:ba:45:b6:cd:d4:ec:08:92:0a:52:ca:a1:20: 8a:01:17:d4:8e:75:27:78:4c:95:e8:4b:ce:4b:34: 35:73:d8:cd:3b:26:57:b0:de:4f:fa:35:31:c9:dd: 8b:25:d8:7d:42:95:c4:d0:5d:01:63:e0:66:5c:17: 31:b0:17:3e:f6:51:17:18:9d:fe:5b:55:0c:d0:ff: 4e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:D9:72:AC:A2:4C:80:78:B9:B7:AF:79:12:89:44:99:C8:62:76:75 X509v3 Authority Key Identifier: keyid:13:99:34:66:1C:E0:7B:EB:BF:A8:24:F7:22:55:02:B1:5A:E8:B6:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/139934661CE07BEBBFA824F7225502B15AE8B653.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/139934661CE07BEBBFA824F7225502B15AE8B653.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/323030313a6466303a353463303a3a2f34382d3438203d3e20313439333437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:54c0::/48 Signature Algorithm: sha256WithRSAEncryption 7a:f9:01:7a:8e:29:ad:0d:8b:29:28:b6:bd:4d:5b:e2:83:15: 9f:21:55:74:ed:d6:ac:3d:cf:0e:50:6c:68:b3:48:df:4b:6a: 5b:8c:8e:39:e9:31:1d:f1:95:20:3c:e0:8f:f6:95:9f:5a:d4: 94:c1:7b:18:16:c9:71:16:65:fc:fc:37:c9:4c:3d:2f:65:b0: fc:1d:3c:8d:fe:73:16:59:5d:8d:a0:0f:bc:b9:84:c3:6b:cc: 28:10:0f:a6:b5:11:0a:bb:cd:ba:b0:55:96:bc:8b:51:d2:f4: b9:eb:89:6c:fe:fd:28:77:bb:fa:16:93:c0:a7:81:63:25:c9: 79:5b:9b:ee:6a:f4:bf:79:36:aa:51:c5:92:e1:86:ce:16:da: 62:d0:08:e0:fb:d5:38:4b:39:dd:6a:7a:5d:32:85:66:4b:0c: 4d:99:e9:c2:49:f0:43:c9:d9:26:3b:67:50:a6:5f:5e:75:13: bc:48:85:3e:08:be:8b:09:40:87:d8:eb:49:b5:42:a3:f6:00: 0c:07:e7:a4:7e:ee:ac:68:f1:0a:e1:73:00:c5:7e:fb:24:0e: f7:9e:a7:2b:d3:82:b8:1c:d0:1c:ea:bb:81:c5:38:66:96:92: 26:67:6f:70:81:5d:13:29:35:01:34:c1:e8:fe:32:2f:b7:c3: cd:22:d9:3e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIULWX+67bEO2qGQNDuFSm+lCCqP24wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTM5OTM0NjYxQ0UwN0JFQkJGQTgyNEY3MjI1NTAyQjE1 QUU4QjY1MzAeFw0yNDAxMTMwODU1MDBaFw0yNTAxMTEwOTAwMDBaMDMxMTAvBgNV BAMTKEZBRDk3MkFDQTI0QzgwNzhCOUI3QUY3OTEyODk0NDk5Qzg2Mjc2NzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC16W5xM+7tIMh43NVV/o4Kn3o2 cGjfYDv6ln4fIhBRG3nhv0kwHQuA2IPqRS7hG5Xvoubm2n5GpLMbGQnNo6DZnD/m bs71IwNwxLavShJgMViBY99nEd7yYAsIrsI+Ekk1z851iPwoBkujtsRV85dKscKd A86ofpSDY2G/8A30D2u3DKNrAJFwrfiUsatyZDL4jXV3Gtd5Th3nhhxJ5APWvF1d jvbG0rbIPI8pb8e4h3+Zuc7qukW2zdTsCJIKUsqhIIoBF9SOdSd4TJXoS85LNDVz 2M07Jlew3k/6NTHJ3Ysl2H1ClcTQXQFj4GZcFzGwFz72URcYnf5bVQzQ/04XAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU+tlyrKJMgHi5t695EolEmchidnUwHwYDVR0j BBgwFoAUE5k0Zhzge+u/qCT3IlUCsVrotlMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x Y2EyOTJiMi00YWU0LTQxZGYtODg3YS1jMTcyYzNlMWFlNzMvMC8xMzk5MzQ2NjFD RTA3QkVCQkZBODI0RjcyMjU1MDJCMTVBRThCNjUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTM5OTM0NjYxQ0UwN0JFQkJGQTgyNEY3MjI1NTAyQjE1QUU4 QjY1My5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFjYTI5MmIyLTRhZTQtNDFkZi04 ODdhLWMxNzJjM2UxYWU3My8wLzMyMzAzMDMxM2E2NDY2MzAzYTM1MzQ2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDM5MzMzNDM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8FTAMA0GCSqGSIb3DQEBCwUAA4IBAQB6+QF6jimtDYspKLa9TVvigxWfIVV07das Pc8OUGxos0jfS2pbjI456TEd8ZUgPOCP9pWfWtSUwXsYFslxFmX8/DfJTD0vZbD8 HTyN/nMWWV2NoA+8uYTDa8woEA+mtREKu826sFWWvItR0vS564ls/v0od7v6FpPA p4FjJcl5W5vuavS/eTaqUcWS4YbOFtpi0Ajg+9U4SzndanpdMoVmSwxNmenCSfBD ydkmO2dQpl9edRO8SIU+CL6LCUCH2OtJtUKj9gAMB+ekfu6saPEK4XMAxX77JA73 nqcr04K4HNAc6ruBxThmlpImZ29wgV0TKTUBNMHo/jIvt8PNItk+ -----END CERTIFICATE-----Generated at Sat Jun 1 22:59:25 2024 by rpki-client on console-fra.rpki-client.org