$ rpki-client -vvf repo-rpki.idnic.net/repo/2a8f0435-4d38-47ef-850f-51ba4617fb3d/0/323030313a6466363a313830303a3a2f34382d3438203d3e20313331373535.roa File: 323030313a6466363a313830303a3a2f34382d3438203d3e20313331373535.roa (raw, json) Hash identifier: HGlDA4/8VVAgy1tfZNlAnPXlJMICAK8Z05H6MVK5yJM= Subject key identifier: C6:A1:5E:4C:C6:D6:FB:EE:8D:7D:4F:1F:10:D0:77:31:F8:0E:1B:29 Certificate issuer: /CN=DC34C8B5F438B8D4CB13F2451AD1F0955E5F7FBB Certificate serial: A0CAEDA47AE3D107D9AE26DB397531904528C0 Authority key identifier: DC:34:C8:B5:F4:38:B8:D4:CB:13:F2:45:1A:D1:F0:95:5E:5F:7F:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC34C8B5F438B8D4CB13F2451AD1F0955E5F7FBB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a8f0435-4d38-47ef-850f-51ba4617fb3d/0/323030313a6466363a313830303a3a2f34382d3438203d3e20313331373535.roa Signing time: Thu 26 Sep 2024 07:02:07 +0000 ROA not before: Thu 26 Sep 2024 06:57:07 +0000 ROA not after: Thu 25 Sep 2025 07:02:07 +0000 asID: 131755 IP address blocks: 2001:df6:1800::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a8f0435-4d38-47ef-850f-51ba4617fb3d/0/DC34C8B5F438B8D4CB13F2451AD1F0955E5F7FBB.crl rsync://repo-rpki.idnic.net/repo/2a8f0435-4d38-47ef-850f-51ba4617fb3d/0/DC34C8B5F438B8D4CB13F2451AD1F0955E5F7FBB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC34C8B5F438B8D4CB13F2451AD1F0955E5F7FBB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 23:14:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: a0:ca:ed:a4:7a:e3:d1:07:d9:ae:26:db:39:75:31:90:45:28:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC34C8B5F438B8D4CB13F2451AD1F0955E5F7FBB Validity Not Before: Sep 26 06:57:07 2024 GMT Not After : Sep 25 07:02:07 2025 GMT Subject: CN=C6A15E4CC6D6FBEE8D7D4F1F10D07731F80E1B29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f4:24:f0:c3:dc:d5:9b:bb:87:6f:e3:8f:49: 69:0c:84:84:20:38:91:06:aa:6f:4d:a8:2d:3d:bc: 61:ce:b9:30:ff:c5:6f:eb:9f:4c:03:e5:67:16:fc: 9d:20:bd:9c:72:70:db:a0:7c:42:6b:20:36:8f:b6: 2f:7b:c6:3a:a8:cb:2c:e0:89:03:88:2c:be:d7:4c: 1b:91:55:d5:3e:6a:96:b5:05:3c:ef:d7:a8:c5:b1: eb:e8:fa:69:b5:4b:cf:a1:30:73:d2:05:1b:ea:6b: 10:97:bf:68:91:6a:86:7c:25:06:3f:a7:27:6e:68: 2e:e6:02:ff:ad:49:2e:96:0d:e6:b4:90:cc:da:72: 5b:62:ad:99:85:ba:f2:3f:8a:f7:c3:cc:b3:61:ba: d9:12:99:58:5b:fe:6f:c7:92:6d:9d:cc:63:60:2d: 38:a8:56:6b:0c:05:9a:09:50:17:61:43:cb:28:61: f9:2d:61:a8:20:0b:da:b7:74:97:21:1d:f1:df:ae: c1:12:89:73:4d:18:2f:d0:56:a6:11:a8:ec:93:d9: 56:19:c9:86:cc:6b:5e:1f:f0:90:c9:25:44:60:38: 61:cd:c1:33:14:8c:7c:12:df:31:36:5f:96:3d:ff: eb:78:2d:8a:57:66:35:e8:4e:a1:fb:83:b5:90:78: 48:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:A1:5E:4C:C6:D6:FB:EE:8D:7D:4F:1F:10:D0:77:31:F8:0E:1B:29 X509v3 Authority Key Identifier: keyid:DC:34:C8:B5:F4:38:B8:D4:CB:13:F2:45:1A:D1:F0:95:5E:5F:7F:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a8f0435-4d38-47ef-850f-51ba4617fb3d/0/DC34C8B5F438B8D4CB13F2451AD1F0955E5F7FBB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC34C8B5F438B8D4CB13F2451AD1F0955E5F7FBB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a8f0435-4d38-47ef-850f-51ba4617fb3d/0/323030313a6466363a313830303a3a2f34382d3438203d3e20313331373535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:1800::/48 Signature Algorithm: sha256WithRSAEncryption 45:c1:92:72:4d:05:9c:b9:38:80:fd:fb:0d:58:96:5f:e7:57: f4:48:44:ff:8d:46:8c:b1:a2:63:ac:9e:f4:73:14:48:f6:65: 68:5a:a5:57:90:0a:6d:82:e4:37:77:36:1b:7e:05:88:1f:b0: 68:d2:e7:fa:54:d0:5a:13:77:e1:56:a2:9b:d8:3c:61:8e:22: 00:da:df:ea:3f:68:0c:49:f2:ee:3c:ba:85:1f:bc:1b:00:b6: 80:ca:a2:1f:15:08:be:ac:8b:74:ed:fd:10:61:ad:da:38:a5: c4:eb:5c:27:74:ac:f4:68:11:f6:5e:88:de:ac:e3:07:35:ec: ed:bd:b0:c5:fc:ac:b1:34:34:89:a7:18:aa:98:79:4f:a9:0f: f8:46:7e:e4:47:a1:ae:80:b6:e7:78:f5:94:0c:3a:b8:f9:c4: 66:25:cc:3b:3b:00:47:08:91:79:9a:78:df:1d:77:18:a9:7e: 58:78:78:01:56:5e:31:f8:69:ee:1d:3e:1d:3b:f3:be:6f:b6: 56:3d:26:ac:90:f3:62:34:b3:08:49:73:7a:7d:f4:c8:aa:e0: 1f:64:db:1a:37:ff:3b:80:dc:cd:e0:6e:78:8d:ea:a3:c4:24: 0d:18:d6:56:a1:9b:1d:bb:28:45:b8:1e:b1:37:f3:74:06:4d: e0:61:81:15 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUAKDK7aR649EH2a4m2zl1MZBFKMAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREMzNEM4QjVGNDM4QjhENENCMTNGMjQ1MUFEMUYwOTU1 RTVGN0ZCQjAeFw0yNDA5MjYwNjU3MDdaFw0yNTA5MjUwNzAyMDdaMDMxMTAvBgNV BAMTKEM2QTE1RTRDQzZENkZCRUU4RDdENEYxRjEwRDA3NzMxRjgwRTFCMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDb9CTww9zVm7uHb+OPSWkMhIQg OJEGqm9NqC09vGHOuTD/xW/rn0wD5WcW/J0gvZxycNugfEJrIDaPti97xjqoyyzg iQOILL7XTBuRVdU+apa1BTzv16jFsevo+mm1S8+hMHPSBRvqaxCXv2iRaoZ8JQY/ pyduaC7mAv+tSS6WDea0kMzacltirZmFuvI/ivfDzLNhutkSmVhb/m/Hkm2dzGNg LTioVmsMBZoJUBdhQ8soYfktYaggC9q3dJchHfHfrsESiXNNGC/QVqYRqOyT2VYZ yYbMa14f8JDJJURgOGHNwTMUjHwS3zE2X5Y9/+t4LYpXZjXoTqH7g7WQeEhZAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUxqFeTMbW++6NfU8fENB3MfgOGykwHwYDVR0j BBgwFoAU3DTItfQ4uNTLE/JFGtHwlV5ff7swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YThmMDQzNS00ZDM4LTQ3ZWYtODUwZi01MWJhNDYxN2ZiM2QvMC9EQzM0QzhCNUY0 MzhCOEQ0Q0IxM0YyNDUxQUQxRjA5NTVFNUY3RkJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREMzNEM4QjVGNDM4QjhENENCMTNGMjQ1MUFEMUYwOTU1RTVG N0ZCQi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhOGYwNDM1LTRkMzgtNDdlZi04 NTBmLTUxYmE0NjE3ZmIzZC8wLzMyMzAzMDMxM2E2NDY2MzYzYTMxMzgzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMxMzczNTM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9hgAMA0GCSqGSIb3DQEBCwUAA4IBAQBFwZJyTQWcuTiA/fsNWJZf51f0SET/jUaM saJjrJ70cxRI9mVoWqVXkAptguQ3dzYbfgWIH7Bo0uf6VNBaE3fhVqKb2DxhjiIA 2t/qP2gMSfLuPLqFH7wbALaAyqIfFQi+rIt07f0QYa3aOKXE61wndKz0aBH2Xoje rOMHNeztvbDF/KyxNDSJpxiqmHlPqQ/4Rn7kR6GugLbnePWUDDq4+cRmJcw7OwBH CJF5mnjfHXcYqX5YeHgBVl4x+GnuHT4dO/O+b7ZWPSaskPNiNLMISXN6ffTIquAf ZNsaN/87gNzN4G54jeqjxCQNGNZWoZsduyhFuB6xN/N0Bk3gYYEV -----END CERTIFICATE-----Generated at Fri Feb 21 11:13:35 2025 by rpki-client