$ rpki-client -vvf repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/323030313a6466303a376163303a3a2f34382d3438203d3e20313439333838.roa File: 323030313a6466303a376163303a3a2f34382d3438203d3e20313439333838.roa (raw, json) Hash identifier: MCnkQ/dpu2kFOdk5oMz5Mu22plFa3j93DAfSetDmpxU= Subject key identifier: 96:D4:F8:C0:9C:91:53:03:69:A6:FC:AE:F3:28:12:BB:79:AD:0E:D3 Certificate issuer: /CN=D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14 Certificate serial: 121AB6E1941BB911F7DC628D241FB9995F1A1E4D Authority key identifier: D2:9E:D5:B5:FC:4D:BF:FE:44:7D:DD:02:2C:0D:01:EB:00:BA:8F:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/323030313a6466303a376163303a3a2f34382d3438203d3e20313439333838.roa Signing time: Thu 04 Jan 2024 11:00:01 +0000 ROA not before: Thu 04 Jan 2024 10:55:01 +0000 ROA not after: Thu 02 Jan 2025 11:00:01 +0000 asID: 149388 IP address blocks: 2001:df0:7ac0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.crl rsync://repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 09:36:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:1a:b6:e1:94:1b:b9:11:f7:dc:62:8d:24:1f:b9:99:5f:1a:1e:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14 Validity Not Before: Jan 4 10:55:01 2024 GMT Not After : Jan 2 11:00:01 2025 GMT Subject: CN=96D4F8C09C91530369A6FCAEF32812BB79AD0ED3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:13:7e:f7:a0:90:c8:38:9d:87:65:e0:9a:99: 37:68:1f:64:23:98:eb:75:a0:19:a6:9b:92:16:3f: 57:d0:b4:5f:2b:51:05:43:54:e7:4e:98:f0:ea:bd: 6c:2e:e5:20:13:ac:ef:4d:c8:7a:b5:70:c3:1c:78: f0:ba:2c:ec:00:0b:59:6f:03:bc:0a:3a:f1:74:a7: c6:77:95:8c:7c:0d:c0:39:6c:82:0d:aa:79:c7:b1: 46:44:c9:68:6b:87:5f:ba:fc:65:3f:24:b4:35:76: 65:fa:f6:46:5a:08:cc:f2:53:2b:9f:93:38:72:e5: 11:70:8b:be:10:0a:2f:ca:16:69:ff:12:b0:77:b3: 55:cf:7b:73:43:50:ac:52:d5:a5:fe:9a:6c:e6:45: 53:1a:bf:3c:38:99:85:2b:08:68:c0:bf:aa:3e:12: 96:57:69:9e:62:35:e1:36:f9:db:53:c5:fa:26:6d: dc:e3:6c:c3:7b:2a:9a:54:34:0a:e8:f8:8d:3a:d3: f0:cd:f1:05:fe:b0:95:f9:a6:8d:a6:d1:a7:f9:50: dc:5d:20:41:11:cc:7e:41:fc:9f:92:1b:22:8a:02: f7:8d:75:39:d4:1b:c6:8d:d5:75:a9:19:d8:a0:32: a6:92:21:40:1d:59:b2:0a:a2:90:35:bb:43:0b:5d: c0:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:D4:F8:C0:9C:91:53:03:69:A6:FC:AE:F3:28:12:BB:79:AD:0E:D3 X509v3 Authority Key Identifier: keyid:D2:9E:D5:B5:FC:4D:BF:FE:44:7D:DD:02:2C:0D:01:EB:00:BA:8F:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/323030313a6466303a376163303a3a2f34382d3438203d3e20313439333838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:7ac0::/48 Signature Algorithm: sha256WithRSAEncryption a9:35:38:c6:06:0d:67:41:46:2a:37:8a:71:6c:df:f6:82:17: cb:8c:18:ff:73:d9:41:77:ba:41:f0:d2:13:b1:3d:02:d2:3a: 58:07:bd:a1:39:ea:29:45:46:00:92:00:78:3e:74:93:9e:96: b6:64:84:21:7f:59:27:80:23:e3:0b:d8:71:58:95:2f:aa:d8: 4e:99:10:43:dd:61:4a:f6:93:dd:db:2a:ae:29:c7:e5:41:ea: 79:a3:0f:90:0e:cc:f5:03:2b:88:75:34:23:80:7b:64:df:89: 8d:88:85:87:22:53:0d:69:f9:37:c6:4c:53:61:14:cd:d8:30: 58:18:76:f1:c3:00:8b:a9:3b:fd:73:9c:dd:27:98:21:81:e9: 75:39:1d:49:ea:b9:e7:ec:17:c7:13:93:7d:09:9b:bc:fc:06: f8:ac:ba:25:c5:97:bd:23:8c:ae:8a:b1:3b:82:2e:cc:dd:c2: 0e:a8:96:68:a1:87:6d:ad:04:2b:49:3b:f8:b9:cf:7a:5f:a8: 8e:d4:cc:a4:98:88:57:1c:01:d4:fb:46:68:54:ef:3d:fe:0d: 06:bd:05:a7:b3:e8:14:ee:37:d8:41:29:26:e0:f5:ba:27:61: b3:6a:88:c0:ac:14:05:f4:1f:47:e4:a3:87:e6:21:09:36:2c: 29:2e:da:18 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUEhq24ZQbuRH33GKNJB+5mV8aHk0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI5RUQ1QjVGQzREQkZGRTQ0N0RERDAyMkMwRDAxRUIw MEJBOEYxNDAeFw0yNDAxMDQxMDU1MDFaFw0yNTAxMDIxMTAwMDFaMDMxMTAvBgNV BAMTKDk2RDRGOEMwOUM5MTUzMDM2OUE2RkNBRUYzMjgxMkJCNzlBRDBFRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7E373oJDIOJ2HZeCamTdoH2Qj mOt1oBmmm5IWP1fQtF8rUQVDVOdOmPDqvWwu5SATrO9NyHq1cMMcePC6LOwAC1lv A7wKOvF0p8Z3lYx8DcA5bIINqnnHsUZEyWhrh1+6/GU/JLQ1dmX69kZaCMzyUyuf kzhy5RFwi74QCi/KFmn/ErB3s1XPe3NDUKxS1aX+mmzmRVMavzw4mYUrCGjAv6o+ EpZXaZ5iNeE2+dtTxfombdzjbMN7KppUNAro+I060/DN8QX+sJX5po2m0af5UNxd IEERzH5B/J+SGyKKAveNdTnUG8aN1XWpGdigMqaSIUAdWbIKopA1u0MLXcDtAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUltT4wJyRUwNppvyu8ygSu3mtDtMwHwYDVR0j BBgwFoAU0p7VtfxNv/5Efd0CLA0B6wC6jxQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ODUyNDNlNS1jNjYwLTQxMTItYmRjMy01OTQ0MTJkZWRjNGQvMC9EMjlFRDVCNUZD NERCRkZFNDQ3REREMDIyQzBEMDFFQjAwQkE4RjE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI5RUQ1QjVGQzREQkZGRTQ0N0RERDAyMkMwRDAxRUIwMEJB OEYxNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI4NTI0M2U1LWM2NjAtNDExMi1i ZGMzLTU5NDQxMmRlZGM0ZC8wLzMyMzAzMDMxM2E2NDY2MzAzYTM3NjE2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDM5MzMzODM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8HrAMA0GCSqGSIb3DQEBCwUAA4IBAQCpNTjGBg1nQUYqN4pxbN/2ghfLjBj/c9lB d7pB8NITsT0C0jpYB72hOeopRUYAkgB4PnSTnpa2ZIQhf1kngCPjC9hxWJUvqthO mRBD3WFK9pPd2yquKcflQep5ow+QDsz1AyuIdTQjgHtk34mNiIWHIlMNafk3xkxT YRTN2DBYGHbxwwCLqTv9c5zdJ5ghgel1OR1J6rnn7BfHE5N9CZu8/Ab4rLolxZe9 I4yuirE7gi7M3cIOqJZooYdtrQQrSTv4uc96X6iO1MykmIhXHAHU+0ZoVO89/g0G vQWns+gU7jfYQSkm4PW6J2GzaojArBQF9B9H5KOH5iEJNiwpLtoY -----END CERTIFICATE-----Generated at Sat Jun 1 01:58:00 2024 by rpki-client on console-ams.rpki-client.org