$ rpki-client -vvf repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/323030313a6466343a3763303a3a2f34382d3438203d3e20313531353735.roa File: 323030313a6466343a3763303a3a2f34382d3438203d3e20313531353735.roa (raw, json) Hash identifier: ONsSDNwNCKSQA0g6zXrNIJFeG1JttoPkAupg3mK+FJ4= Subject key identifier: F8:40:2C:F1:CA:68:07:93:D3:53:3C:E4:8B:3B:4C:02:E0:40:8D:D0 Certificate issuer: /CN=4AA76DED689FD4420809D0962087A03BCF018FEA Certificate serial: 708E0CAFA66ADE830DF4E200704A8BB4F9D86432 Authority key identifier: 4A:A7:6D:ED:68:9F:D4:42:08:09:D0:96:20:87:A0:3B:CF:01:8F:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/323030313a6466343a3763303a3a2f34382d3438203d3e20313531353735.roa Signing time: Thu 11 Jul 2024 07:51:47 +0000 ROA not before: Thu 11 Jul 2024 07:46:47 +0000 ROA not after: Thu 10 Jul 2025 07:51:47 +0000 asID: 151575 IP address blocks: 2001:df4:7c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.crl rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:8e:0c:af:a6:6a:de:83:0d:f4:e2:00:70:4a:8b:b4:f9:d8:64:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AA76DED689FD4420809D0962087A03BCF018FEA Validity Not Before: Jul 11 07:46:47 2024 GMT Not After : Jul 10 07:51:47 2025 GMT Subject: CN=F8402CF1CA680793D3533CE48B3B4C02E0408DD0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:da:a4:6c:82:03:da:9d:fa:ab:2f:a7:66:3e: 9a:31:af:ca:01:27:42:01:40:31:a4:3c:31:37:2b: 94:33:f3:fe:f3:cc:5f:0d:01:08:61:c8:63:76:a3: a7:b8:8d:e4:d5:7a:b0:7c:f3:11:75:75:b8:fe:65: c0:d6:e0:ef:a3:72:74:98:14:ed:ca:9f:92:d1:df: 25:eb:b6:f2:69:50:d9:c2:aa:a4:9b:e3:9d:9f:d8: 0b:e1:ac:b1:ef:ad:05:05:eb:ad:a5:bb:98:89:23: 9d:8e:8c:cb:93:3e:64:33:95:7a:c3:96:0f:b7:63: 5b:52:2e:25:a4:41:00:06:3e:76:de:6a:6c:23:a3: 1d:d9:80:64:d3:8a:76:c1:bd:6f:37:00:d7:27:6b: b1:d2:74:3e:90:d6:06:20:5a:82:c7:a1:ee:73:a5: e2:24:e9:47:b6:e5:01:ff:9f:df:34:b4:68:c6:88: 49:43:51:77:74:e2:99:e8:44:ca:1f:cd:cb:9a:7f: 71:74:c6:db:cc:e8:94:72:fb:9f:96:16:9e:86:5c: 3e:ce:9a:76:04:46:ca:17:7f:77:54:1e:30:8a:07: 8f:bc:c0:3a:1a:38:75:9f:e5:55:a6:d9:f5:1b:48: 64:a5:e3:e4:2e:c1:1d:75:71:2b:36:66:1f:ca:f1: 95:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:40:2C:F1:CA:68:07:93:D3:53:3C:E4:8B:3B:4C:02:E0:40:8D:D0 X509v3 Authority Key Identifier: keyid:4A:A7:6D:ED:68:9F:D4:42:08:09:D0:96:20:87:A0:3B:CF:01:8F:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/323030313a6466343a3763303a3a2f34382d3438203d3e20313531353735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:7c0::/48 Signature Algorithm: sha256WithRSAEncryption 53:b2:ab:19:72:07:a6:2a:76:4a:d7:a8:ae:63:f9:b4:b4:40: 50:36:55:32:b5:a0:81:0b:70:71:4f:35:4c:c5:40:8a:d4:dc: 12:e5:66:dc:2d:5b:6c:e0:51:1d:a0:6b:ed:ab:7b:1e:04:70: 8f:38:c4:d5:7c:8d:31:95:55:52:b6:4c:12:c1:42:fe:34:a0: 39:ba:fa:93:c9:91:b6:a1:1e:38:75:c4:c6:a1:29:8c:f9:8b: 97:81:d3:7e:8d:91:8f:8d:1b:e1:6b:d5:7f:ae:de:12:f6:0c: d6:68:7b:a2:12:31:aa:e3:f9:00:b8:0b:aa:00:5a:5d:f2:62: 06:44:51:bd:f6:50:bd:0a:03:9f:0a:8e:f6:7b:c6:ca:9f:44: 5b:a4:58:d7:0a:09:78:0a:08:d2:82:73:c9:35:b8:88:6d:5f: 5d:fe:80:92:67:7b:ef:35:58:be:fa:99:f6:49:5c:a8:6f:c7: 09:47:41:d0:81:fd:9f:19:06:62:2e:20:16:48:91:00:dd:87: 03:5e:88:08:47:c6:59:79:33:fe:f0:ce:33:19:b4:0b:30:25: b2:97:55:b6:e5:70:06:1d:b7:99:ae:35:5a:d5:2e:18:7c:f1: 23:50:35:6b:a0:55:98:b3:8d:49:bb:a8:5b:8c:bf:29:3e:f8: 16:18:f9:58 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUcI4Mr6Zq3oMN9OIAcEqLtPnYZDIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0EwM0JD RjAxOEZFQTAeFw0yNDA3MTEwNzQ2NDdaFw0yNTA3MTAwNzUxNDdaMDMxMTAvBgNV BAMTKEY4NDAyQ0YxQ0E2ODA3OTNEMzUzM0NFNDhCM0I0QzAyRTA0MDhERDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY2qRsggPanfqrL6dmPpoxr8oB J0IBQDGkPDE3K5Qz8/7zzF8NAQhhyGN2o6e4jeTVerB88xF1dbj+ZcDW4O+jcnSY FO3Kn5LR3yXrtvJpUNnCqqSb452f2AvhrLHvrQUF662lu5iJI52OjMuTPmQzlXrD lg+3Y1tSLiWkQQAGPnbeamwjox3ZgGTTinbBvW83ANcna7HSdD6Q1gYgWoLHoe5z peIk6Ue25QH/n980tGjGiElDUXd04pnoRMofzcuaf3F0xtvM6JRy+5+WFp6GXD7O mnYERsoXf3dUHjCKB4+8wDoaOHWf5VWm2fUbSGSl4+QuwR11cSs2Zh/K8ZX5AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU+EAs8cpoB5PTUzzkiztMAuBAjdAwHwYDVR0j BBgwFoAUSqdt7Wif1EIICdCWIIegO88Bj+owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzI4MGFmMy1hYTFkLTQyNzEtOGMwNi1hM2ZhMjg4OTg0MjYvMC80QUE3NkRFRDY4 OUZENDQyMDgwOUQwOTYyMDg3QTAzQkNGMDE4RkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0EwM0JDRjAx OEZFQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJjMjgwYWYzLWFhMWQtNDI3MS04 YzA2LWEzZmEyODg5ODQyNi8wLzMyMzAzMDMxM2E2NDY2MzQzYTM3NjMzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzUzMTM1MzczNS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfQH wDANBgkqhkiG9w0BAQsFAAOCAQEAU7KrGXIHpip2SteormP5tLRAUDZVMrWggQtw cU81TMVAitTcEuVm3C1bbOBRHaBr7at7HgRwjzjE1XyNMZVVUrZMEsFC/jSgObr6 k8mRtqEeOHXExqEpjPmLl4HTfo2Rj40b4WvVf67eEvYM1mh7ohIxquP5ALgLqgBa XfJiBkRRvfZQvQoDnwqO9nvGyp9EW6RY1woJeAoI0oJzyTW4iG1fXf6Akmd77zVY vvqZ9klcqG/HCUdB0IH9nxkGYi4gFkiRAN2HA16ICEfGWXkz/vDOMxm0CzAlspdV tuVwBh23ma41WtUuGHzxI1A1a6BVmLONSbuoW4y/KT74Fhj5WA== -----END CERTIFICATE-----Generated at Sun Nov 24 11:23:25 2024 by rpki-client on console-ams.rpki-client.org