$ rpki-client -vvf repo-rpki.idnic.net/repo/236561d4-23c8-4c9b-890e-4f2632e52c97/1/323030313a6466343a6334303a3a2f34382d3438203d3e20313533303639.roa File: 323030313a6466343a6334303a3a2f34382d3438203d3e20313533303639.roa (raw, json) Hash identifier: fpi4CO6dz+MooFZgF3fJxoijLeT4dgpZBighVWAxUxY= Subject key identifier: 62:C1:52:2D:B4:23:2A:D5:B7:D8:1C:8B:A7:61:51:7E:FD:18:06:16 Certificate issuer: /CN=E3928623409C1C10E292F838F8308E11636E6C03 Certificate serial: 28723FEC3E73B47D4E7206336DD53F0871899CAF Authority key identifier: E3:92:86:23:40:9C:1C:10:E2:92:F8:38:F8:30:8E:11:63:6E:6C:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E3928623409C1C10E292F838F8308E11636E6C03.cer Subject info access: rsync://repo-rpki.idnic.net/repo/236561d4-23c8-4c9b-890e-4f2632e52c97/1/323030313a6466343a6334303a3a2f34382d3438203d3e20313533303639.roa Signing time: Thu 18 Jul 2024 04:41:08 +0000 ROA not before: Thu 18 Jul 2024 04:36:08 +0000 ROA not after: Thu 17 Jul 2025 04:41:08 +0000 asID: 153069 IP address blocks: 2001:df4:c40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/236561d4-23c8-4c9b-890e-4f2632e52c97/1/E3928623409C1C10E292F838F8308E11636E6C03.crl rsync://repo-rpki.idnic.net/repo/236561d4-23c8-4c9b-890e-4f2632e52c97/1/E3928623409C1C10E292F838F8308E11636E6C03.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E3928623409C1C10E292F838F8308E11636E6C03.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 16:06:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:72:3f:ec:3e:73:b4:7d:4e:72:06:33:6d:d5:3f:08:71:89:9c:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E3928623409C1C10E292F838F8308E11636E6C03 Validity Not Before: Jul 18 04:36:08 2024 GMT Not After : Jul 17 04:41:08 2025 GMT Subject: CN=62C1522DB4232AD5B7D81C8BA761517EFD180616 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:cf:2e:56:6e:c5:c0:dd:0c:bf:f5:3c:14:49: dd:d0:e8:1d:c2:2e:87:46:6e:8a:75:96:29:82:72: b9:21:aa:6a:83:3a:04:3e:ac:d7:f2:e3:7c:27:62: 2e:de:3c:fd:70:f1:f0:ec:3e:c2:8c:88:ce:1c:62: b9:89:cb:15:08:5e:41:35:c4:6d:ba:3c:ec:dc:ad: 0b:bb:6b:52:e3:8a:42:59:78:36:81:e6:0e:35:86: 88:7e:e4:a4:32:21:46:13:c6:22:7f:d7:f7:f3:22: 9c:e1:2d:e9:bc:1e:0f:a6:28:08:e1:f8:61:69:a4: 67:9d:23:2d:d9:99:b7:8e:ec:3e:a1:98:c1:61:25: d8:1a:8b:ea:dd:4b:d6:01:d9:d1:c7:e3:f8:3b:e1: e3:d8:f3:82:ff:2b:8f:05:16:6f:70:5f:93:37:ad: 55:e6:13:b8:85:16:ba:be:6c:50:f4:0d:64:66:55: 36:3a:cf:df:ac:f9:db:36:aa:ce:ce:14:7a:99:5a: e1:11:75:4c:17:31:ba:ac:eb:24:67:47:ff:71:d5: 00:b5:5c:c6:18:c5:9a:9f:b6:e5:43:9f:d5:34:f8: a0:ef:05:c0:d9:91:46:98:94:61:6a:0d:10:9c:2b: b2:ca:6e:97:c3:d9:a5:94:83:0d:bd:6a:bd:42:4b: 2f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:C1:52:2D:B4:23:2A:D5:B7:D8:1C:8B:A7:61:51:7E:FD:18:06:16 X509v3 Authority Key Identifier: keyid:E3:92:86:23:40:9C:1C:10:E2:92:F8:38:F8:30:8E:11:63:6E:6C:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/236561d4-23c8-4c9b-890e-4f2632e52c97/1/E3928623409C1C10E292F838F8308E11636E6C03.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E3928623409C1C10E292F838F8308E11636E6C03.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/236561d4-23c8-4c9b-890e-4f2632e52c97/1/323030313a6466343a6334303a3a2f34382d3438203d3e20313533303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:c40::/48 Signature Algorithm: sha256WithRSAEncryption 7e:6f:5a:f4:43:c3:01:0b:49:42:ff:3c:18:7d:64:6a:3f:ca: 6f:3f:27:af:93:c4:36:df:da:cd:e5:f7:a2:45:7c:c6:52:5b: 19:74:20:ca:37:1d:6b:82:96:5c:3d:d8:66:bb:46:24:14:25: 59:37:1e:00:38:b2:63:b7:ea:8b:56:de:0a:cb:c7:96:0b:a4: 51:25:8a:fa:11:5e:f0:48:f7:92:2f:05:dc:c0:ea:2e:06:fc: 6f:5e:ab:12:90:95:d4:14:1f:cf:96:bd:a8:a8:26:f2:cc:94: 8b:a6:89:92:60:3f:1f:64:cd:e4:81:31:7d:0e:7f:c8:9e:13: ff:10:d1:bc:b1:c8:c6:26:e0:2c:23:24:b4:00:6f:a3:70:cf: 0b:84:46:c1:27:89:50:a5:df:7e:cd:8d:5a:b6:6b:82:92:a2: 5e:30:14:5e:d9:42:44:65:90:dd:2c:14:48:5b:29:9a:b8:a7: 26:df:17:c9:ab:48:dd:ea:a4:b6:d8:a2:ce:4b:64:2b:20:01: 92:73:78:9f:b1:42:f9:a9:4e:2a:1f:01:09:6d:b8:0a:bf:bd: fd:d0:55:2d:30:c3:42:8c:a1:a6:73:e2:91:a6:9a:cc:76:d1: 7e:9b:61:08:4a:b4:b9:2b:3a:b1:49:11:e6:33:ea:99:59:51: b2:07:03:64 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUKHI/7D5ztH1OcgYzbdU/CHGJnK8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTM5Mjg2MjM0MDlDMUMxMEUyOTJGODM4RjgzMDhFMTE2 MzZFNkMwMzAeFw0yNDA3MTgwNDM2MDhaFw0yNTA3MTcwNDQxMDhaMDMxMTAvBgNV BAMTKDYyQzE1MjJEQjQyMzJBRDVCN0Q4MUM4QkE3NjE1MTdFRkQxODA2MTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClzy5WbsXA3Qy/9TwUSd3Q6B3C LodGbop1limCcrkhqmqDOgQ+rNfy43wnYi7ePP1w8fDsPsKMiM4cYrmJyxUIXkE1 xG26POzcrQu7a1LjikJZeDaB5g41hoh+5KQyIUYTxiJ/1/fzIpzhLem8Hg+mKAjh +GFppGedIy3ZmbeO7D6hmMFhJdgai+rdS9YB2dHH4/g74ePY84L/K48FFm9wX5M3 rVXmE7iFFrq+bFD0DWRmVTY6z9+s+ds2qs7OFHqZWuERdUwXMbqs6yRnR/9x1QC1 XMYYxZqftuVDn9U0+KDvBcDZkUaYlGFqDRCcK7LKbpfD2aWUgw29ar1CSy+lAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUYsFSLbQjKtW32ByLp2FRfv0YBhYwHwYDVR0j BBgwFoAU45KGI0CcHBDikvg4+DCOEWNubAMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MzY1NjFkNC0yM2M4LTRjOWItODkwZS00ZjI2MzJlNTJjOTcvMS9FMzkyODYyMzQw OUMxQzEwRTI5MkY4MzhGODMwOEUxMTYzNkU2QzAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTM5Mjg2MjM0MDlDMUMxMEUyOTJGODM4RjgzMDhFMTE2MzZF NkMwMy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIzNjU2MWQ0LTIzYzgtNGM5Yi04 OTBlLTRmMjYzMmU1MmM5Ny8xLzMyMzAzMDMxM2E2NDY2MzQzYTYzMzQzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzUzMzMwMzYzOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfQM QDANBgkqhkiG9w0BAQsFAAOCAQEAfm9a9EPDAQtJQv88GH1kaj/Kbz8nr5PENt/a zeX3okV8xlJbGXQgyjcda4KWXD3YZrtGJBQlWTceADiyY7fqi1beCsvHlgukUSWK +hFe8Ej3ki8F3MDqLgb8b16rEpCV1BQfz5a9qKgm8syUi6aJkmA/H2TN5IExfQ5/ yJ4T/xDRvLHIxibgLCMktABvo3DPC4RGwSeJUKXffs2NWrZrgpKiXjAUXtlCRGWQ 3SwUSFspmrinJt8XyatI3eqkttiizktkKyABknN4n7FC+alOKh8BCW24Cr+9/dBV LTDDQoyhpnPikaaazHbRfpthCEq0uSs6sUkR5jPqmVlRsgcDZA== -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:43 2024 by rpki-client on console-fra.rpki-client.org