$ rpki-client -vvf repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/323030313a6466313a633263303a3a2f34382d3438203d3e20313439393039.roa File: 323030313a6466313a633263303a3a2f34382d3438203d3e20313439393039.roa (raw, json) Hash identifier: YwTP6biL0vWcLoh9MoLz1Uo2jrp+zMTivqpB+PZ6AqY= Subject key identifier: 26:8B:97:40:59:86:EC:11:0C:DA:82:B3:37:DA:64:CA:59:D0:77:D6 Certificate issuer: /CN=289151EF8AE8A79D8F426683D1525AD82FAB3D5C Certificate serial: 31F7311E6C813D9B435C7B3DB1D12CF0AD407ED9 Authority key identifier: 28:91:51:EF:8A:E8:A7:9D:8F:42:66:83:D1:52:5A:D8:2F:AB:3D:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/323030313a6466313a633263303a3a2f34382d3438203d3e20313439393039.roa Signing time: Thu 09 May 2024 08:00:02 +0000 ROA not before: Thu 09 May 2024 07:55:02 +0000 ROA not after: Thu 08 May 2025 08:00:02 +0000 asID: 149909 IP address blocks: 2001:df1:c2c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.crl rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:f7:31:1e:6c:81:3d:9b:43:5c:7b:3d:b1:d1:2c:f0:ad:40:7e:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=289151EF8AE8A79D8F426683D1525AD82FAB3D5C Validity Not Before: May 9 07:55:02 2024 GMT Not After : May 8 08:00:02 2025 GMT Subject: CN=268B97405986EC110CDA82B337DA64CA59D077D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:e7:fa:85:ca:ee:78:35:46:23:4a:a9:96:48: 7f:79:a3:f3:b6:11:95:fd:5e:5c:da:00:99:82:82: 29:53:6b:6a:98:1c:04:c8:9b:83:0d:94:c1:bd:f0: 42:e4:fa:ac:f6:e6:c7:7e:06:9d:df:41:d9:cc:65: ff:e2:4c:fa:62:0f:c0:89:ad:2a:f0:7a:95:0e:68: 0d:52:88:92:e8:fd:af:5b:63:6b:48:50:2a:c9:0d: 4d:2f:93:60:7f:d6:d0:30:9a:90:46:f8:74:80:a6: 35:76:2b:87:79:d5:ff:50:7e:c4:7f:95:0f:a0:53: 29:71:2d:e4:db:ba:df:3b:28:c4:3c:ea:28:17:be: 47:14:0b:45:0e:d8:60:ec:86:fe:db:5b:f4:72:4f: 63:b0:c0:b6:91:a5:b2:50:e8:26:d9:84:99:b5:d6: 2a:f6:fb:49:26:91:41:c0:ea:09:30:fd:c5:ec:c7: 11:28:81:99:c3:3f:57:95:bf:67:a8:b6:ba:59:8c: 3f:69:37:b3:ab:95:b8:f9:fa:cb:a4:b9:87:0a:83: e7:03:2f:05:8f:8e:e4:f5:c3:7a:e4:73:49:3b:eb: f9:8e:ec:a3:75:51:db:2d:32:27:27:03:79:d7:6d: 89:60:09:09:10:e7:7e:92:95:48:2f:31:57:ab:67: 85:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:8B:97:40:59:86:EC:11:0C:DA:82:B3:37:DA:64:CA:59:D0:77:D6 X509v3 Authority Key Identifier: keyid:28:91:51:EF:8A:E8:A7:9D:8F:42:66:83:D1:52:5A:D8:2F:AB:3D:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/323030313a6466313a633263303a3a2f34382d3438203d3e20313439393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:c2c0::/48 Signature Algorithm: sha256WithRSAEncryption 89:3c:69:a7:87:41:22:31:ca:eb:d6:1e:88:69:ff:ca:a6:1d: 50:d5:2c:01:3a:a1:84:4f:04:52:73:37:81:ca:5f:cd:b7:48: 40:93:7e:3c:66:d2:50:8f:05:1c:60:0f:83:f0:d1:bb:3e:e7: b1:83:84:d9:c1:c7:a7:ed:ea:ab:16:c8:6e:d4:aa:0e:4c:27: c8:ed:11:d6:2f:6d:26:70:4c:88:35:b3:62:1c:7f:57:8a:9f: 7c:c8:ba:3f:2c:52:02:e9:ba:83:69:a0:d4:6c:b0:3a:a7:f4: f9:ee:be:f0:88:61:23:7c:be:98:d0:d1:64:3a:cb:47:ab:2f: 87:7d:26:26:93:70:f2:21:73:04:e1:1c:5d:c9:39:2f:d9:bf: 77:7b:0d:1f:c7:6c:ce:c9:7e:a3:e5:cb:02:3e:e8:19:c6:58: a4:db:b5:c1:e5:e8:0d:7e:d5:3d:b1:fb:15:39:d0:ef:dc:58: fc:03:dc:6d:a8:ce:df:03:68:2c:b8:1a:94:80:71:7e:a0:4f: d9:d1:b4:b1:90:a4:39:a3:29:f7:07:79:5c:a7:d3:ee:9c:c3: 00:71:be:87:ed:b4:c8:68:a3:56:6a:c9:4c:f3:94:0f:2d:04: 97:37:01:52:88:4e:9b:19:3d:24:6b:e6:7d:62:0c:84:fa:85: ab:64:eb:d3 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUMfcxHmyBPZtDXHs9sdEs8K1AftkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg5MTUxRUY4QUU4QTc5RDhGNDI2NjgzRDE1MjVBRDgy RkFCM0Q1QzAeFw0yNDA1MDkwNzU1MDJaFw0yNTA1MDgwODAwMDJaMDMxMTAvBgNV BAMTKDI2OEI5NzQwNTk4NkVDMTEwQ0RBODJCMzM3REE2NENBNTlEMDc3RDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDy5/qFyu54NUYjSqmWSH95o/O2 EZX9XlzaAJmCgilTa2qYHATIm4MNlMG98ELk+qz25sd+Bp3fQdnMZf/iTPpiD8CJ rSrwepUOaA1SiJLo/a9bY2tIUCrJDU0vk2B/1tAwmpBG+HSApjV2K4d51f9QfsR/ lQ+gUylxLeTbut87KMQ86igXvkcUC0UO2GDshv7bW/RyT2OwwLaRpbJQ6CbZhJm1 1ir2+0kmkUHA6gkw/cXsxxEogZnDP1eVv2eotrpZjD9pN7Orlbj5+sukuYcKg+cD LwWPjuT1w3rkc0k76/mO7KN1UdstMicnA3nXbYlgCQkQ536SlUgvMVerZ4UVAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUJouXQFmG7BEM2oKzN9pkylnQd9YwHwYDVR0j BBgwFoAUKJFR74rop52PQmaD0VJa2C+rPVwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YmJlNjgxNS0zMTBlLTQyMDYtYTUwMC02YmI5ZDMyNjNhYmYvMC8yODkxNTFFRjhB RThBNzlEOEY0MjY2ODNEMTUyNUFEODJGQUIzRDVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg5MTUxRUY4QUU4QTc5RDhGNDI2NjgzRDE1MjVBRDgyRkFC M0Q1Qy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJiYmU2ODE1LTMxMGUtNDIwNi1h NTAwLTZiYjlkMzI2M2FiZi8wLzMyMzAzMDMxM2E2NDY2MzEzYTYzMzI2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDM5MzkzMDM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8cLAMA0GCSqGSIb3DQEBCwUAA4IBAQCJPGmnh0EiMcrr1h6Iaf/Kph1Q1SwBOqGE TwRSczeByl/Nt0hAk348ZtJQjwUcYA+D8NG7Puexg4TZwcen7eqrFshu1KoOTCfI 7RHWL20mcEyINbNiHH9Xip98yLo/LFIC6bqDaaDUbLA6p/T57r7wiGEjfL6Y0NFk OstHqy+HfSYmk3DyIXME4RxdyTkv2b93ew0fx2zOyX6j5csCPugZxlik27XB5egN ftU9sfsVOdDv3Fj8A9xtqM7fA2gsuBqUgHF+oE/Z0bSxkKQ5oyn3B3lcp9PunMMA cb6H7bTIaKNWaslM85QPLQSXNwFSiE6bGT0ka+Z9YgyE+oWrZOvT -----END CERTIFICATE-----Generated at Fri Nov 22 23:37:26 2024 by rpki-client on console-fra.rpki-client.org