$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/323030313a6466313a373830303a3a2f34382d3438203d3e203538343837.roa File: 323030313a6466313a373830303a3a2f34382d3438203d3e203538343837.roa (raw, json) Hash identifier: QoCbDV1iEX5pO+bibNTu+PL6YjhwlVtwchcxFD62gLg= Subject key identifier: 4E:4F:69:43:84:D8:CE:81:5B:09:A7:0B:48:7D:AB:28:B4:F0:17:79 Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 4049A4E1F3331EACD8572D73C7EC995C58703182 Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/323030313a6466313a373830303a3a2f34382d3438203d3e203538343837.roa Signing time: Wed 20 Nov 2024 09:00:02 +0000 ROA not before: Wed 20 Nov 2024 08:55:02 +0000 ROA not after: Wed 19 Nov 2025 09:00:02 +0000 asID: 58487 IP address blocks: 2001:df1:7800::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:29:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:49:a4:e1:f3:33:1e:ac:d8:57:2d:73:c7:ec:99:5c:58:70:31:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Nov 20 08:55:02 2024 GMT Not After : Nov 19 09:00:02 2025 GMT Subject: CN=4E4F694384D8CE815B09A70B487DAB28B4F01779 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:48:9e:ef:52:62:6b:da:1d:3b:77:9a:2a:85: bb:86:cd:49:25:70:0d:f0:fb:80:54:e0:7e:a9:c4: e9:f8:3e:1e:22:36:60:60:48:8d:c0:d5:fc:8a:2a: 52:0d:16:6a:bc:d3:3f:82:96:61:2b:12:8d:a1:64: d0:fb:9b:65:20:d7:75:87:54:d6:07:21:97:c4:dc: 7f:e0:4d:d6:61:48:3a:53:9b:58:8b:9a:01:6d:d5: f3:86:0f:a4:b7:60:7e:e7:38:3d:a9:50:da:3a:a0: 02:ee:b1:e3:e0:8c:ba:e1:0b:fb:39:37:84:1f:49: 83:76:69:67:51:3b:8f:90:44:9b:91:61:4a:b1:04: 1f:b1:9a:8d:f6:c1:bc:59:b7:43:e5:c6:e3:fc:e4: e8:5b:04:f0:67:d3:54:4e:eb:d4:06:08:07:f1:2b: 1a:8a:2d:b3:3d:95:23:9b:a0:dc:c6:f0:f4:b6:23: 00:55:bf:d7:d2:c6:ec:e2:89:f3:6d:2c:ff:fb:1e: 63:4a:b5:be:d2:fa:60:ac:d2:55:67:ec:05:32:39: af:42:2a:13:fb:60:61:3e:9a:ae:66:63:98:45:29: 8f:4f:72:6f:41:08:d5:3c:dc:e6:fc:9e:6d:75:64: 08:73:b0:50:47:95:2f:24:e3:24:e6:6e:4b:73:97: 25:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:4F:69:43:84:D8:CE:81:5B:09:A7:0B:48:7D:AB:28:B4:F0:17:79 X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/323030313a6466313a373830303a3a2f34382d3438203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:7800::/48 Signature Algorithm: sha256WithRSAEncryption 43:eb:c1:9b:35:53:72:a6:65:84:6b:bd:2c:78:d3:9d:e7:02: 98:e7:ec:4d:95:c4:49:e2:ef:99:ce:9d:93:43:6f:44:d9:de: 9d:02:87:ab:0a:35:da:24:89:57:cd:a2:bb:18:d5:07:cd:8a: 45:38:66:b5:1f:73:fb:ee:b7:64:51:7c:b0:ac:76:54:e4:eb: 01:15:b5:6b:2b:c8:18:d9:6d:f7:c9:27:8c:d6:df:b5:08:e8: 67:6b:cc:b0:e0:92:82:02:a3:90:b6:3a:34:90:1f:6c:6e:47: 80:6f:09:f6:5e:85:51:48:6d:b5:75:5e:76:8c:56:cb:7d:03: 7c:66:ac:e7:61:46:1b:55:98:c6:01:fb:d5:34:cc:c2:0a:b4: 72:2b:9c:4a:72:2d:f5:6f:22:87:d8:cd:4d:06:99:07:ff:a8: cb:1a:ee:de:38:4c:50:08:ad:fd:c8:08:c6:bb:31:b5:e7:72: 51:dd:ad:8e:eb:d9:b4:0f:c1:24:26:12:7f:cc:7e:02:23:3f: ba:26:81:86:59:18:bf:b8:32:27:8d:a2:bc:4f:ca:48:31:ac: e0:22:30:95:61:32:2e:e7:8b:d0:63:cd:c7:37:b1:ca:e1:61: 84:d2:f1:a1:78:1d:bd:e6:58:05:59:87:26:d0:83:12:f0:74: 60:de:70:f6 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUQEmk4fMzHqzYVy1zx+yZXFhwMYIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yNDExMjAwODU1MDJaFw0yNTExMTkwOTAwMDJaMDMxMTAvBgNV BAMTKDRFNEY2OTQzODREOENFODE1QjA5QTcwQjQ4N0RBQjI4QjRGMDE3NzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsSJ7vUmJr2h07d5oqhbuGzUkl cA3w+4BU4H6pxOn4Ph4iNmBgSI3A1fyKKlINFmq80z+ClmErEo2hZND7m2Ug13WH VNYHIZfE3H/gTdZhSDpTm1iLmgFt1fOGD6S3YH7nOD2pUNo6oALusePgjLrhC/s5 N4QfSYN2aWdRO4+QRJuRYUqxBB+xmo32wbxZt0PlxuP85OhbBPBn01RO69QGCAfx KxqKLbM9lSOboNzG8PS2IwBVv9fSxuziifNtLP/7HmNKtb7S+mCs0lVn7AUyOa9C KhP7YGE+mq5mY5hFKY9Pcm9BCNU83Ob8nm11ZAhzsFBHlS8k4yTmbktzlyW7AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUTk9pQ4TYzoFbCacLSH2rKLTwF3kwHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMyMzAzMDMxM2E2NDY2MzEzYTM3MzgzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzODM0MzgzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfF4 ADANBgkqhkiG9w0BAQsFAAOCAQEAQ+vBmzVTcqZlhGu9LHjTnecCmOfsTZXESeLv mc6dk0NvRNnenQKHqwo12iSJV82iuxjVB82KRThmtR9z++63ZFF8sKx2VOTrARW1 ayvIGNlt98knjNbftQjoZ2vMsOCSggKjkLY6NJAfbG5HgG8J9l6FUUhttXVedoxW y30DfGas52FGG1WYxgH71TTMwgq0ciucSnIt9W8ih9jNTQaZB/+oyxru3jhMUAit /cgIxrsxtedyUd2tjuvZtA/BJCYSf8x+AiM/uiaBhlkYv7gyJ42ivE/KSDGs4CIw lWEyLueL0GPNxzexyuFhhNLxoXgdveZYBVmHJtCDEvB0YN5w9g== -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:50 2024 by rpki-client on console-fra.rpki-client.org