$ rpki-client -vvf repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/323030313a6466313a363338303a3a2f34382d3438203d3e203435333035.roa File: 323030313a6466313a363338303a3a2f34382d3438203d3e203435333035.roa (raw, json) Hash identifier: 9QQ+2QkEe5ZH/Gx9crXFjTQMx7fu4j8ocdzuLtt+l68= Subject key identifier: 09:79:3A:5E:53:3E:53:C8:A6:83:AC:5B:BD:1E:89:0A:A0:37:52:B9 Certificate issuer: /CN=D68CA7C6F514D7168C00790717FB869AF68B125E Certificate serial: 56F6A05972155871DC665688473362DB5EE96FF5 Authority key identifier: D6:8C:A7:C6:F5:14:D7:16:8C:00:79:07:17:FB:86:9A:F6:8B:12:5E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/323030313a6466313a363338303a3a2f34382d3438203d3e203435333035.roa Signing time: Mon 03 Jun 2024 06:00:00 +0000 ROA not before: Mon 03 Jun 2024 05:55:00 +0000 ROA not after: Mon 02 Jun 2025 06:00:00 +0000 asID: 45305 IP address blocks: 2001:df1:6380::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.crl rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Mar 2025 16:05:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:f6:a0:59:72:15:58:71:dc:66:56:88:47:33:62:db:5e:e9:6f:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D68CA7C6F514D7168C00790717FB869AF68B125E Validity Not Before: Jun 3 05:55:00 2024 GMT Not After : Jun 2 06:00:00 2025 GMT Subject: CN=09793A5E533E53C8A683AC5BBD1E890AA03752B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:67:2d:a5:f9:cd:f2:34:b1:cc:3b:27:31:d6: 6e:ad:37:81:df:16:ba:4f:d9:c6:68:96:6f:77:2d: 7a:38:f6:d4:dd:83:a6:5b:d9:b4:2e:aa:ed:95:da: f2:22:ab:31:f2:12:ff:fb:51:44:b3:23:c9:b2:46: 2a:23:0f:69:b6:55:9d:e1:23:41:07:a0:c7:e0:b8: 1c:09:3d:67:53:94:8e:f4:2b:ad:d8:0d:3a:fb:2c: 33:77:05:4a:a0:75:49:0c:be:c4:80:4b:6f:2f:eb: cb:af:f4:c8:c4:29:fc:3c:b0:47:3d:83:95:c3:3a: d3:81:3b:ed:00:f8:99:34:f7:5b:90:58:2c:3d:e8: 86:be:28:88:c6:25:e9:eb:1e:81:68:d0:06:86:bb: 14:c9:d7:c9:cc:ef:fd:44:dc:f3:1f:bb:32:0b:82: 7e:e6:01:c2:16:56:4f:b5:3f:7b:64:12:d3:c5:95: 12:65:ab:c3:7f:13:a8:b5:e3:6d:70:2a:4f:26:63: bc:20:c7:b5:4d:5b:ad:ba:88:ec:bb:76:f7:1e:31: ae:72:b1:0f:4c:3c:e8:7e:77:6d:44:0c:ef:2f:a9: 2c:d2:ff:2b:ff:60:02:93:8c:be:25:1f:f4:77:ae: c9:f2:7d:20:77:d2:97:d2:b5:f3:25:d6:40:96:94: 2c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:79:3A:5E:53:3E:53:C8:A6:83:AC:5B:BD:1E:89:0A:A0:37:52:B9 X509v3 Authority Key Identifier: keyid:D6:8C:A7:C6:F5:14:D7:16:8C:00:79:07:17:FB:86:9A:F6:8B:12:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/323030313a6466313a363338303a3a2f34382d3438203d3e203435333035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:6380::/48 Signature Algorithm: sha256WithRSAEncryption 10:79:ba:5f:04:f2:47:33:0f:e4:1b:b3:95:17:56:0a:93:25: 53:21:03:cf:90:eb:0f:80:84:9b:80:05:5b:88:41:64:96:8f: ed:f6:9a:78:2f:51:db:80:4c:df:42:e3:91:25:c9:f0:69:0f: 8b:23:e3:a6:75:68:7d:d7:9b:ff:f8:2e:34:1a:71:53:1b:d8: 05:76:38:f2:dc:c6:7f:12:ca:99:3f:b1:e3:fe:f9:b4:37:0a: 4e:50:63:0b:b2:a1:53:5a:58:f8:68:d9:20:19:e5:bc:aa:68: 09:88:07:ff:5b:00:e9:9f:b5:b3:d8:3a:67:85:be:55:09:d1: 4f:2e:bb:f0:fd:e5:27:f2:fb:e9:f6:25:72:96:e5:de:c5:90: 97:20:2a:fa:41:67:11:5c:0a:ba:12:86:18:8c:d7:ca:bd:5f: 69:9e:18:5c:50:10:13:48:ee:87:1b:c2:8a:6a:06:3e:3d:b8: d5:ae:63:6d:e9:19:19:0c:e2:f2:83:e3:fb:fa:ef:ef:07:3d: 09:c2:b1:63:e1:b8:f7:a8:d7:4f:ff:99:d8:a7:51:ce:ad:f8: b0:0f:d3:b7:37:50:0a:4b:34:4f:21:55:88:43:3b:58:4e:ea: b2:98:21:83:b3:19:a8:63:9e:47:83:ec:53:6a:94:ea:ba:83: e6:e0:59:10 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUVvagWXIVWHHcZlaIRzNi217pb/UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDY4Q0E3QzZGNTE0RDcxNjhDMDA3OTA3MTdGQjg2OUFG NjhCMTI1RTAeFw0yNDA2MDMwNTU1MDBaFw0yNTA2MDIwNjAwMDBaMDMxMTAvBgNV BAMTKDA5NzkzQTVFNTMzRTUzQzhBNjgzQUM1QkJEMUU4OTBBQTAzNzUyQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaZy2l+c3yNLHMOycx1m6tN4Hf FrpP2cZolm93LXo49tTdg6Zb2bQuqu2V2vIiqzHyEv/7UUSzI8myRiojD2m2VZ3h I0EHoMfguBwJPWdTlI70K63YDTr7LDN3BUqgdUkMvsSAS28v68uv9MjEKfw8sEc9 g5XDOtOBO+0A+Jk091uQWCw96Ia+KIjGJenrHoFo0AaGuxTJ18nM7/1E3PMfuzIL gn7mAcIWVk+1P3tkEtPFlRJlq8N/E6i1421wKk8mY7wgx7VNW626iOy7dvceMa5y sQ9MPOh+d21EDO8vqSzS/yv/YAKTjL4lH/R3rsnyfSB30pfStfMl1kCWlCxnAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUCXk6XlM+U8img6xbvR6JCqA3UrkwHwYDVR0j BBgwFoAU1oynxvUU1xaMAHkHF/uGmvaLEl4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGRjMWRkOC02ZDI1LTQ3YzctYWFhNC1iZGRmMWI5ZDY3N2UvMC9ENjhDQTdDNkY1 MTRENzE2OEMwMDc5MDcxN0ZCODY5QUY2OEIxMjVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDY4Q0E3QzZGNTE0RDcxNjhDMDA3OTA3MTdGQjg2OUFGNjhC MTI1RS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZGMxZGQ4LTZkMjUtNDdjNy1h YWE0LWJkZGYxYjlkNjc3ZS8wLzMyMzAzMDMxM2E2NDY2MzEzYTM2MzMzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzQzNTMzMzAzNS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfFj gDANBgkqhkiG9w0BAQsFAAOCAQEAEHm6XwTyRzMP5BuzlRdWCpMlUyEDz5DrD4CE m4AFW4hBZJaP7faaeC9R24BM30LjkSXJ8GkPiyPjpnVofdeb//guNBpxUxvYBXY4 8tzGfxLKmT+x4/75tDcKTlBjC7KhU1pY+GjZIBnlvKpoCYgH/1sA6Z+1s9g6Z4W+ VQnRTy678P3lJ/L76fYlcpbl3sWQlyAq+kFnEVwKuhKGGIzXyr1faZ4YXFAQE0ju hxvCimoGPj241a5jbekZGQzi8oPj+/rv7wc9CcKxY+G496jXT/+Z2KdRzq34sA/T tzdQCks0TyFViEM7WE7qspghg7MZqGOeR4PsU2qU6rqD5uBZEA== -----END CERTIFICATE-----Generated at Tue Mar 11 05:05:08 2025 by rpki-client