$ rpki-client -vvf repo-rpki.idnic.net/repo/2410fa43-0be3-471a-9c20-81046291ca11/0/323030313a6466303a3434613a3a2f34382d3438203d3e203436303536.roa File: 323030313a6466303a3434613a3a2f34382d3438203d3e203436303536.roa (raw, json) Hash identifier: IwsKkFffgyNfH4ox4LfLjfZ4nzkrEVSbF9KbxXS1PIc= Subject key identifier: 14:E7:F8:58:1D:48:E4:52:B2:02:EA:45:88:A5:2A:5E:0E:61:AA:83 Certificate issuer: /CN=AB58721182B4EAA8FECD4AD8808CEEF5CDDD1B06 Certificate serial: 6CE0C53A516F5BB86DB20F56EFB0E7E2935E9FCE Authority key identifier: AB:58:72:11:82:B4:EA:A8:FE:CD:4A:D8:80:8C:EE:F5:CD:DD:1B:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AB58721182B4EAA8FECD4AD8808CEEF5CDDD1B06.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2410fa43-0be3-471a-9c20-81046291ca11/0/323030313a6466303a3434613a3a2f34382d3438203d3e203436303536.roa Signing time: Mon 01 Jul 2024 01:06:03 +0000 ROA not before: Mon 01 Jul 2024 01:01:03 +0000 ROA not after: Mon 30 Jun 2025 01:06:03 +0000 asID: 46056 IP address blocks: 2001:df0:44a::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2410fa43-0be3-471a-9c20-81046291ca11/0/AB58721182B4EAA8FECD4AD8808CEEF5CDDD1B06.crl rsync://repo-rpki.idnic.net/repo/2410fa43-0be3-471a-9c20-81046291ca11/0/AB58721182B4EAA8FECD4AD8808CEEF5CDDD1B06.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AB58721182B4EAA8FECD4AD8808CEEF5CDDD1B06.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Feb 2025 02:30:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:e0:c5:3a:51:6f:5b:b8:6d:b2:0f:56:ef:b0:e7:e2:93:5e:9f:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AB58721182B4EAA8FECD4AD8808CEEF5CDDD1B06 Validity Not Before: Jul 1 01:01:03 2024 GMT Not After : Jun 30 01:06:03 2025 GMT Subject: CN=14E7F8581D48E452B202EA4588A52A5E0E61AA83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:f1:d2:b1:fb:ee:41:8c:fe:10:ef:78:4e:5f: e3:49:25:fe:59:ca:5d:1a:10:ec:84:80:00:4b:ec: 71:25:16:37:d6:2d:f2:75:c5:3a:3f:88:e9:54:8d: 59:ca:df:72:2a:6e:db:27:2e:7f:51:99:6b:a9:05: df:7a:df:78:9b:1d:c8:03:3f:33:58:88:0a:cf:c6: 39:4e:b4:bb:8e:2c:68:5e:57:16:af:86:6e:dc:bf: e7:dd:5e:e6:73:c5:97:aa:2e:7b:f0:a4:08:e5:89: 43:84:3b:b5:39:74:73:3d:74:3d:18:7e:c9:d8:f0: 19:c7:be:27:97:9e:cd:d6:49:81:b1:71:68:40:72: ed:2b:c4:54:c3:79:2e:3e:84:74:89:ea:4e:30:d1: 1a:97:ae:6a:9f:8d:22:a0:15:52:2b:08:a2:f4:e1: d0:af:a3:ce:47:f7:fe:55:59:92:12:6e:c6:8d:00: c5:83:67:09:50:a0:8b:d5:32:9e:15:26:c3:e1:0a: 53:ff:03:e4:8b:92:d9:a7:97:88:f8:b9:5c:f4:9f: f6:c3:00:97:f0:98:6a:7e:d4:0c:74:d8:9e:1b:02: 68:02:a4:01:25:38:f0:de:41:7f:69:02:f7:88:53: 16:7b:1b:b5:e5:a1:e2:a6:71:b7:2e:3a:69:f4:de: a6:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:E7:F8:58:1D:48:E4:52:B2:02:EA:45:88:A5:2A:5E:0E:61:AA:83 X509v3 Authority Key Identifier: keyid:AB:58:72:11:82:B4:EA:A8:FE:CD:4A:D8:80:8C:EE:F5:CD:DD:1B:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2410fa43-0be3-471a-9c20-81046291ca11/0/AB58721182B4EAA8FECD4AD8808CEEF5CDDD1B06.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AB58721182B4EAA8FECD4AD8808CEEF5CDDD1B06.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2410fa43-0be3-471a-9c20-81046291ca11/0/323030313a6466303a3434613a3a2f34382d3438203d3e203436303536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:44a::/48 Signature Algorithm: sha256WithRSAEncryption 02:72:9f:e3:f1:8b:0f:e1:0c:53:31:11:3b:64:e0:b4:a0:b1: 51:65:2a:03:ca:61:2c:87:e0:4a:ec:09:f0:3a:96:0d:5b:18: f2:e6:48:98:11:b0:35:03:73:15:6e:34:94:81:dd:61:01:ca: ef:d8:a4:d8:fb:20:fe:f1:73:6a:44:a0:99:84:f2:4b:69:99: 18:d0:86:4d:f5:41:d7:0f:0e:fc:5d:bc:35:5b:25:fb:7c:5c: 77:cd:fb:3b:30:0f:a1:08:5f:80:1b:67:ed:75:0d:7c:b3:94: f9:38:2f:83:30:50:a9:c3:ac:7c:bb:a2:53:7b:2c:8f:e3:b8: a7:a0:5b:f2:23:d7:3e:c8:c2:4e:d7:89:4e:a9:12:62:a9:49: 31:af:56:52:1a:32:97:bf:bb:5b:39:bf:ae:f2:6d:61:cc:d4: 9c:62:65:29:f2:f2:87:a8:85:4d:3d:de:74:63:12:99:7a:98: 9b:4a:da:37:db:bf:38:dc:ce:df:b1:93:e8:75:37:c3:ff:5b: 15:45:1d:1f:4f:48:57:9e:ed:e0:60:f5:98:02:5d:b3:40:8c: 11:77:af:d3:21:eb:bd:df:59:09:22:4e:13:5a:de:2e:89:3b: 15:cd:80:1d:ba:0a:ec:cd:1b:59:05:ae:56:16:7c:25:13:d6: 4a:af:6e:93 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUbODFOlFvW7htsg9W77Dn4pNen84wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUI1ODcyMTE4MkI0RUFBOEZFQ0Q0QUQ4ODA4Q0VFRjVD REREMUIwNjAeFw0yNDA3MDEwMTAxMDNaFw0yNTA2MzAwMTA2MDNaMDMxMTAvBgNV BAMTKDE0RTdGODU4MUQ0OEU0NTJCMjAyRUE0NTg4QTUyQTVFMEU2MUFBODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDp8dKx++5BjP4Q73hOX+NJJf5Z yl0aEOyEgABL7HElFjfWLfJ1xTo/iOlUjVnK33IqbtsnLn9RmWupBd9633ibHcgD PzNYiArPxjlOtLuOLGheVxavhm7cv+fdXuZzxZeqLnvwpAjliUOEO7U5dHM9dD0Y fsnY8BnHvieXns3WSYGxcWhAcu0rxFTDeS4+hHSJ6k4w0RqXrmqfjSKgFVIrCKL0 4dCvo85H9/5VWZISbsaNAMWDZwlQoIvVMp4VJsPhClP/A+SLktmnl4j4uVz0n/bD AJfwmGp+1Ax02J4bAmgCpAElOPDeQX9pAveIUxZ7G7XloeKmcbcuOmn03qbrAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUFOf4WB1I5FKyAupFiKUqXg5hqoMwHwYDVR0j BBgwFoAUq1hyEYK06qj+zUrYgIzu9c3dGwYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NDEwZmE0My0wYmUzLTQ3MWEtOWMyMC04MTA0NjI5MWNhMTEvMC9BQjU4NzIxMTgy QjRFQUE4RkVDRDRBRDg4MDhDRUVGNUNEREQxQjA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUI1ODcyMTE4MkI0RUFBOEZFQ0Q0QUQ4ODA4Q0VFRjVDRERE MUIwNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0MTBmYTQzLTBiZTMtNDcxYS05 YzIwLTgxMDQ2MjkxY2ExMS8wLzMyMzAzMDMxM2E2NDY2MzAzYTM0MzQ2MTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM0MzYzMDM1MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ3wBEow DQYJKoZIhvcNAQELBQADggEBAAJyn+Pxiw/hDFMxETtk4LSgsVFlKgPKYSyH4Ers CfA6lg1bGPLmSJgRsDUDcxVuNJSB3WEByu/YpNj7IP7xc2pEoJmE8ktpmRjQhk31 QdcPDvxdvDVbJft8XHfN+zswD6EIX4AbZ+11DXyzlPk4L4MwUKnDrHy7olN7LI/j uKegW/Ij1z7Iwk7XiU6pEmKpSTGvVlIaMpe/u1s5v67ybWHM1JxiZSny8oeohU09 3nRjEpl6mJtK2jfbvzjczt+xk+h1N8P/WxVFHR9PSFee7eBg9ZgCXbNAjBF3r9Mh 673fWQkiThNa3i6JOxXNgB26CuzNG1kFrlYWfCUT1kqvbpM= -----END CERTIFICATE-----Generated at Fri Feb 21 11:04:41 2025 by rpki-client