$ rpki-client -vvf repo-rpki.idnic.net/repo/28f5ba5e-1f5c-4284-9a16-0135a9fd4e28/0/323030313a6466323a633963303a3a2f34382d3438203d3e20313531353338.roa File: 323030313a6466323a633963303a3a2f34382d3438203d3e20313531353338.roa (raw, json) Hash identifier: 0nm8+wg97E8X0p8UXEGrmZEjRdWW322tQB5S1kkGNIo= Subject key identifier: 30:1B:88:61:97:67:74:E6:47:80:69:5D:C5:D5:4E:B7:31:A7:39:72 Certificate issuer: /CN=C7840142ADE3E1876CB50EA3A410454EB3889153 Certificate serial: 46866C1B889ABEF1A57C2EC4E4790A0FB7CE48DF Authority key identifier: C7:84:01:42:AD:E3:E1:87:6C:B5:0E:A3:A4:10:45:4E:B3:88:91:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7840142ADE3E1876CB50EA3A410454EB3889153.cer Subject info access: rsync://repo-rpki.idnic.net/repo/28f5ba5e-1f5c-4284-9a16-0135a9fd4e28/0/323030313a6466323a633963303a3a2f34382d3438203d3e20313531353338.roa Signing time: Wed 17 Jul 2024 01:39:49 +0000 ROA not before: Wed 17 Jul 2024 01:34:49 +0000 ROA not after: Wed 16 Jul 2025 01:39:49 +0000 asID: 151538 IP address blocks: 2001:df2:c9c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/28f5ba5e-1f5c-4284-9a16-0135a9fd4e28/0/C7840142ADE3E1876CB50EA3A410454EB3889153.crl rsync://repo-rpki.idnic.net/repo/28f5ba5e-1f5c-4284-9a16-0135a9fd4e28/0/C7840142ADE3E1876CB50EA3A410454EB3889153.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7840142ADE3E1876CB50EA3A410454EB3889153.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:86:6c:1b:88:9a:be:f1:a5:7c:2e:c4:e4:79:0a:0f:b7:ce:48:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C7840142ADE3E1876CB50EA3A410454EB3889153 Validity Not Before: Jul 17 01:34:49 2024 GMT Not After : Jul 16 01:39:49 2025 GMT Subject: CN=301B8861976774E64780695DC5D54EB731A73972 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:eb:6c:15:e9:a2:8b:27:ce:06:02:1f:06:f6: e5:0e:ce:20:8c:7b:dd:9c:ea:98:97:bc:4a:8e:a1: fa:90:5f:0d:cf:75:c2:39:61:a8:2e:01:22:0a:cb: d6:a5:aa:b6:b4:54:19:f5:97:14:d0:e8:24:0c:e0: f3:dd:19:2a:26:8f:3d:55:cf:1c:ef:6d:60:45:20: 65:a0:5d:36:10:99:44:95:b4:d3:57:00:01:e5:46: 45:81:96:bb:b8:62:b2:e0:4b:6b:9a:10:87:dd:0c: 88:7a:32:93:ac:7e:dc:c5:4c:ff:48:85:5a:30:58: a0:07:0d:9c:ab:98:dd:97:a4:92:20:86:9a:87:7d: ab:c8:2b:b8:fa:20:77:9b:70:0a:3a:60:87:d2:4f: 99:6c:10:7e:27:0d:cc:07:23:01:27:9d:fe:3d:b2: 8d:18:59:bf:64:68:af:bc:07:7d:ce:a4:09:41:09: a2:33:73:40:d4:33:90:db:08:ee:39:30:80:bb:21: 1a:af:9e:60:26:58:fb:2e:49:0f:35:97:c3:90:65: a5:74:bc:65:7d:d7:89:da:46:48:e6:90:52:ea:2f: a1:52:6a:09:59:96:0e:76:8c:5e:cd:00:f8:75:bb: 04:1e:78:25:45:34:e6:f8:03:a7:6e:69:b6:83:ef: d6:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:1B:88:61:97:67:74:E6:47:80:69:5D:C5:D5:4E:B7:31:A7:39:72 X509v3 Authority Key Identifier: keyid:C7:84:01:42:AD:E3:E1:87:6C:B5:0E:A3:A4:10:45:4E:B3:88:91:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/28f5ba5e-1f5c-4284-9a16-0135a9fd4e28/0/C7840142ADE3E1876CB50EA3A410454EB3889153.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7840142ADE3E1876CB50EA3A410454EB3889153.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/28f5ba5e-1f5c-4284-9a16-0135a9fd4e28/0/323030313a6466323a633963303a3a2f34382d3438203d3e20313531353338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:c9c0::/48 Signature Algorithm: sha256WithRSAEncryption a4:ff:3a:81:dc:1a:fe:0b:67:8c:99:85:60:a0:5e:ea:35:70: 84:6a:24:22:9e:54:ce:23:a4:f2:85:d6:29:d0:c9:fa:fb:59: 4d:06:9b:96:7f:49:25:10:c1:c9:b5:03:11:81:48:0a:65:c6: 29:41:9b:7d:3a:b0:da:79:9c:f3:33:30:81:cb:f4:5f:d6:8b: f7:84:34:7b:5d:52:af:e3:f8:86:5f:33:2d:8c:00:f8:2b:b0: 13:ae:cd:22:4a:a8:cc:4d:93:05:4f:04:18:40:70:ac:de:a1: 62:6f:33:f7:17:10:55:ca:e0:e4:91:81:c3:e0:79:83:08:cf: 17:d5:07:ee:6c:09:17:d9:b7:04:cf:e4:d3:9f:4c:bf:ff:9f: 61:ee:b7:e2:08:ba:f7:19:be:b5:00:e2:1f:d3:af:36:35:d3: 97:df:80:7d:21:a2:24:af:7a:b3:93:0f:d7:f8:a3:71:66:5f: 67:9f:75:dc:f4:b3:59:09:2b:48:f9:0f:96:1f:b5:ca:d2:d8: 02:74:2d:a7:b6:73:96:e7:b6:c2:4e:c9:51:48:a4:14:ab:f0: e4:d5:0a:a1:29:4a:0a:b4:2d:ff:61:38:f1:7f:4a:c1:68:5f: 19:f4:f1:b0:3a:ae:74:3a:04:8c:31:fe:83:e8:28:5b:d8:55: 71:84:23:80 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIURoZsG4iavvGlfC7E5HkKD7fOSN8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzc4NDAxNDJBREUzRTE4NzZDQjUwRUEzQTQxMDQ1NEVC Mzg4OTE1MzAeFw0yNDA3MTcwMTM0NDlaFw0yNTA3MTYwMTM5NDlaMDMxMTAvBgNV BAMTKDMwMUI4ODYxOTc2Nzc0RTY0NzgwNjk1REM1RDU0RUI3MzFBNzM5NzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU62wV6aKLJ84GAh8G9uUOziCM e92c6piXvEqOofqQXw3PdcI5YaguASIKy9alqra0VBn1lxTQ6CQM4PPdGSomjz1V zxzvbWBFIGWgXTYQmUSVtNNXAAHlRkWBlru4YrLgS2uaEIfdDIh6MpOsftzFTP9I hVowWKAHDZyrmN2XpJIghpqHfavIK7j6IHebcAo6YIfST5lsEH4nDcwHIwEnnf49 so0YWb9kaK+8B33OpAlBCaIzc0DUM5DbCO45MIC7IRqvnmAmWPsuSQ81l8OQZaV0 vGV914naRkjmkFLqL6FSaglZlg52jF7NAPh1uwQeeCVFNOb4A6duabaD79bXAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUMBuIYZdndOZHgGldxdVOtzGnOXIwHwYDVR0j BBgwFoAUx4QBQq3j4YdstQ6jpBBFTrOIkVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OGY1YmE1ZS0xZjVjLTQyODQtOWExNi0wMTM1YTlmZDRlMjgvMC9DNzg0MDE0MkFE RTNFMTg3NkNCNTBFQTNBNDEwNDU0RUIzODg5MTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzc4NDAxNDJBREUzRTE4NzZDQjUwRUEzQTQxMDQ1NEVCMzg4 OTE1My5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI4ZjViYTVlLTFmNWMtNDI4NC05 YTE2LTAxMzVhOWZkNGUyOC8wLzMyMzAzMDMxM2E2NDY2MzIzYTYzMzk2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMxMzUzMzM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8snAMA0GCSqGSIb3DQEBCwUAA4IBAQCk/zqB3Br+C2eMmYVgoF7qNXCEaiQinlTO I6TyhdYp0Mn6+1lNBpuWf0klEMHJtQMRgUgKZcYpQZt9OrDaeZzzMzCBy/Rf1ov3 hDR7XVKv4/iGXzMtjAD4K7ATrs0iSqjMTZMFTwQYQHCs3qFibzP3FxBVyuDkkYHD 4HmDCM8X1QfubAkX2bcEz+TTn0y//59h7rfiCLr3Gb61AOIf0682NdOX34B9IaIk r3qzkw/X+KNxZl9nn3Xc9LNZCStI+Q+WH7XK0tgCdC2ntnOW57bCTslRSKQUq/Dk 1QqhKUoKtC3/YTjxf0rBaF8Z9PGwOq50OgSMMf6D6Chb2FVxhCOA -----END CERTIFICATE-----Generated at Wed Nov 20 23:10:17 2024 by rpki-client on console-fra.rpki-client.org