$ rpki-client -vvf repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/323030313a6466313a363338303a3a2f34382d3438203d3e20313339333831.roa File: 323030313a6466313a363338303a3a2f34382d3438203d3e20313339333831.roa (raw, json) Hash identifier: +AMBcTRDOItbHkoJjd3Z20zd7vvhBKXQR154gJmvfP8= Subject key identifier: 84:EE:B6:04:53:A3:9D:A1:7E:1D:BB:4D:AD:F7:2A:1D:66:8D:9C:C4 Certificate issuer: /CN=D68CA7C6F514D7168C00790717FB869AF68B125E Certificate serial: 404DCFBA0A97BA014F88B724E17DF0983BA39867 Authority key identifier: D6:8C:A7:C6:F5:14:D7:16:8C:00:79:07:17:FB:86:9A:F6:8B:12:5E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/323030313a6466313a363338303a3a2f34382d3438203d3e20313339333831.roa Signing time: Mon 09 Sep 2024 07:00:00 +0000 ROA not before: Mon 09 Sep 2024 06:55:00 +0000 ROA not after: Mon 08 Sep 2025 07:00:00 +0000 asID: 139381 IP address blocks: 2001:df1:6380::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.crl rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:4d:cf:ba:0a:97:ba:01:4f:88:b7:24:e1:7d:f0:98:3b:a3:98:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D68CA7C6F514D7168C00790717FB869AF68B125E Validity Not Before: Sep 9 06:55:00 2024 GMT Not After : Sep 8 07:00:00 2025 GMT Subject: CN=84EEB60453A39DA17E1DBB4DADF72A1D668D9CC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:20:c8:26:e6:b2:12:b4:a0:79:7b:59:6b:9e: 59:81:0f:55:9a:67:65:b8:fe:a4:92:1a:51:c4:b7: 51:0c:aa:5f:67:17:fd:05:b5:35:88:a1:61:e7:c3: 84:43:16:c7:fa:5d:30:e2:51:39:46:41:48:11:ee: f7:d5:c8:39:d3:83:ff:a0:55:4f:bb:0f:72:45:27: 87:1a:49:4a:b5:3f:2a:98:ad:b7:63:39:21:44:93: 42:f4:b1:f9:4e:e9:c1:2f:99:39:04:96:fe:fa:e4: e8:b6:2b:30:40:7a:dc:ca:41:8f:e7:b6:b2:e3:6a: 60:32:4b:09:c7:5d:78:2a:ac:47:b4:17:b6:2e:6e: bd:b9:08:f7:e4:9f:53:5c:db:0c:27:5e:77:9b:79: 09:ea:26:ce:60:8e:58:75:48:ef:33:06:da:52:b7: 5a:6f:52:70:26:86:10:25:85:02:5b:88:36:03:c1: 8e:93:b5:5a:72:5d:49:d2:4c:8d:ca:a2:c2:31:56: 93:01:3e:0f:94:a9:32:ca:6f:04:dd:1e:d0:ed:90: 92:11:09:72:fc:4e:30:c4:cc:64:2b:25:bc:10:51: 98:ef:8c:22:6c:44:ad:a7:49:45:58:b6:c8:f4:81: fe:e1:5f:28:96:0f:a0:0c:55:3f:fe:b4:d0:d6:4c: 3f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:EE:B6:04:53:A3:9D:A1:7E:1D:BB:4D:AD:F7:2A:1D:66:8D:9C:C4 X509v3 Authority Key Identifier: keyid:D6:8C:A7:C6:F5:14:D7:16:8C:00:79:07:17:FB:86:9A:F6:8B:12:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/323030313a6466313a363338303a3a2f34382d3438203d3e20313339333831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:6380::/48 Signature Algorithm: sha256WithRSAEncryption 24:85:a6:0b:21:2e:ed:a0:06:60:d1:80:78:6b:d5:43:1d:15: fb:3b:13:b3:16:5c:d0:48:9b:dc:5a:36:b6:a4:a8:0c:67:d0: 71:1d:44:67:d6:06:58:f2:87:8d:8b:e9:f8:48:5a:61:12:fe: 9f:ec:92:1c:17:11:f2:36:cd:8c:14:c2:18:3f:27:87:c0:64: 94:9b:c0:a6:94:ed:6d:a3:a2:1e:5f:11:93:1f:46:06:ac:9d: dc:3d:a1:85:55:3d:aa:ac:84:61:22:fd:e6:88:89:56:a2:c5: cc:86:19:e1:22:2f:98:09:ee:ba:8e:82:d0:48:78:49:15:87: d0:6e:a9:6f:5e:32:ca:d9:6d:21:c6:ff:ca:79:cd:3a:07:8e: 43:53:ed:cd:dd:95:67:19:10:54:e8:e5:96:18:11:f3:98:2f: e1:e6:d9:f6:da:72:f1:97:bc:de:84:72:63:83:b8:bb:6e:fb: c0:0d:85:25:29:12:c6:d2:27:4f:b6:3d:a8:b9:d7:e7:a5:45: 45:96:50:ff:59:dd:16:ee:e0:30:4a:3c:4c:bc:26:ba:fd:93: 89:da:88:80:94:08:3b:88:6a:d6:b2:84:00:2a:16:bc:cb:71: f6:5e:96:46:a3:84:21:ee:12:da:ba:5c:84:30:e8:74:cd:d1: 8c:87:9b:0f -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUQE3PugqXugFPiLck4X3wmDujmGcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDY4Q0E3QzZGNTE0RDcxNjhDMDA3OTA3MTdGQjg2OUFG NjhCMTI1RTAeFw0yNDA5MDkwNjU1MDBaFw0yNTA5MDgwNzAwMDBaMDMxMTAvBgNV BAMTKDg0RUVCNjA0NTNBMzlEQTE3RTFEQkI0REFERjcyQTFENjY4RDlDQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+IMgm5rIStKB5e1lrnlmBD1Wa Z2W4/qSSGlHEt1EMql9nF/0FtTWIoWHnw4RDFsf6XTDiUTlGQUgR7vfVyDnTg/+g VU+7D3JFJ4caSUq1PyqYrbdjOSFEk0L0sflO6cEvmTkElv765Oi2KzBAetzKQY/n trLjamAySwnHXXgqrEe0F7Yubr25CPfkn1Nc2wwnXnebeQnqJs5gjlh1SO8zBtpS t1pvUnAmhhAlhQJbiDYDwY6TtVpyXUnSTI3KosIxVpMBPg+UqTLKbwTdHtDtkJIR CXL8TjDEzGQrJbwQUZjvjCJsRK2nSUVYtsj0gf7hXyiWD6AMVT/+tNDWTD+lAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUhO62BFOjnaF+HbtNrfcqHWaNnMQwHwYDVR0j BBgwFoAU1oynxvUU1xaMAHkHF/uGmvaLEl4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGRjMWRkOC02ZDI1LTQ3YzctYWFhNC1iZGRmMWI5ZDY3N2UvMC9ENjhDQTdDNkY1 MTRENzE2OEMwMDc5MDcxN0ZCODY5QUY2OEIxMjVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDY4Q0E3QzZGNTE0RDcxNjhDMDA3OTA3MTdGQjg2OUFGNjhC MTI1RS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZGMxZGQ4LTZkMjUtNDdjNy1h YWE0LWJkZGYxYjlkNjc3ZS8wLzMyMzAzMDMxM2E2NDY2MzEzYTM2MzMzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzMzODMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8WOAMA0GCSqGSIb3DQEBCwUAA4IBAQAkhaYLIS7toAZg0YB4a9VDHRX7OxOzFlzQ SJvcWja2pKgMZ9BxHURn1gZY8oeNi+n4SFphEv6f7JIcFxHyNs2MFMIYPyeHwGSU m8CmlO1to6IeXxGTH0YGrJ3cPaGFVT2qrIRhIv3miIlWosXMhhnhIi+YCe66joLQ SHhJFYfQbqlvXjLK2W0hxv/Kec06B45DU+3N3ZVnGRBU6OWWGBHzmC/h5tn22nLx l7zehHJjg7i7bvvADYUlKRLG0idPtj2oudfnpUVFllD/Wd0W7uAwSjxMvCa6/ZOJ 2oiAlAg7iGrWsoQAKha8y3H2XpZGo4Qh7hLaulyEMOh0zdGMh5sP -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:05 2024 by rpki-client on console-fra.rpki-client.org