$ rpki-client -vvf repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/323030313a6466373a336230303a3a2f34382d3438203d3e20313338313037.roa File: 323030313a6466373a336230303a3a2f34382d3438203d3e20313338313037.roa (raw, json) Hash identifier: iArmdB6Xmwne1qM2afDTqVSj06uD3mLVfN37VycmReA= Subject key identifier: 02:A0:DB:0F:AB:3F:E2:88:86:33:0B:93:33:E2:97:36:45:5B:EB:25 Certificate issuer: /CN=986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F Certificate serial: 37D58A59321C521FAD773DEEBDB9B0149994521B Authority key identifier: 98:6E:FE:1C:2B:B8:B0:E4:E1:47:2E:9D:AA:5B:77:5A:A4:F6:68:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/323030313a6466373a336230303a3a2f34382d3438203d3e20313338313037.roa Signing time: Mon 01 Jul 2024 01:04:03 +0000 ROA not before: Mon 01 Jul 2024 00:59:03 +0000 ROA not after: Mon 30 Jun 2025 01:04:03 +0000 asID: 138107 IP address blocks: 2001:df7:3b00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.crl rsync://repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:d5:8a:59:32:1c:52:1f:ad:77:3d:ee:bd:b9:b0:14:99:94:52:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F Validity Not Before: Jul 1 00:59:03 2024 GMT Not After : Jun 30 01:04:03 2025 GMT Subject: CN=02A0DB0FAB3FE28886330B9333E29736455BEB25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:41:49:f2:61:9c:ae:4e:ed:be:3e:00:fd:ed: 25:26:fc:a0:e7:4b:22:33:27:7c:a6:92:88:09:1f: c6:45:06:b8:f6:fd:ae:10:15:9f:fa:08:d0:a7:d2: 28:21:e4:f0:d9:f3:54:38:4f:38:f4:ef:66:05:56: c4:35:4d:be:49:8d:d7:17:b7:38:15:fa:ed:ee:b4: 49:df:92:19:d2:88:b6:70:ed:30:56:5f:98:92:21: ab:02:2c:55:b8:84:f5:9f:0b:f1:36:4e:8f:d1:be: 9f:ef:70:ea:e2:54:e8:c2:42:b7:f6:e7:f8:6f:89: c7:87:db:f7:3b:aa:57:01:b2:5f:97:df:a5:82:7e: e3:fb:00:2e:af:40:33:17:0c:40:67:74:46:28:4a: 08:51:25:2e:4c:bc:cd:3d:fe:85:38:00:49:64:35: 43:d9:0f:6c:2c:4e:76:34:f9:6c:03:87:ad:8f:5d: 9c:b7:db:0c:b4:57:bd:d9:5a:96:a8:21:14:06:47: a3:7f:db:01:8f:4c:82:8f:8b:6e:62:4c:7a:86:84: a5:ea:89:f5:38:91:01:30:7c:5f:70:8d:72:9c:0d: 96:a8:e8:bf:2e:9d:97:1b:52:4b:13:6a:78:ac:97: 5d:1c:14:bc:6b:6e:c9:91:9d:5c:f4:30:56:c9:68: cd:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:A0:DB:0F:AB:3F:E2:88:86:33:0B:93:33:E2:97:36:45:5B:EB:25 X509v3 Authority Key Identifier: keyid:98:6E:FE:1C:2B:B8:B0:E4:E1:47:2E:9D:AA:5B:77:5A:A4:F6:68:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/323030313a6466373a336230303a3a2f34382d3438203d3e20313338313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:3b00::/48 Signature Algorithm: sha256WithRSAEncryption 61:1c:b0:fb:66:e7:29:2c:61:5b:e8:af:32:39:85:a4:f8:58: b9:dc:73:7d:e8:2a:6e:1f:97:dd:9b:5f:47:c8:31:f5:3c:8c: 43:aa:4d:29:03:f3:02:0a:b4:c8:8d:b6:6b:86:37:27:0a:77: 81:aa:58:cd:4e:23:f3:e2:a3:7a:a0:c6:fa:e0:1d:99:d0:d8: 48:cc:f4:4e:ae:c5:24:fa:05:70:f8:55:56:99:d2:c0:32:4f: ff:27:95:4e:2a:c0:2c:dc:f2:d8:f5:23:1a:00:d2:2c:e0:c5: 40:0e:29:5b:b7:e0:54:af:cd:18:c2:3a:24:62:d0:81:e7:6b: 02:12:18:80:5c:18:33:4e:52:5d:f8:9c:f5:c9:18:dd:b1:25: e1:33:a1:b2:23:89:53:02:7e:7e:26:e3:93:e2:e9:2f:d8:1a: 18:a1:77:61:bb:dc:52:f5:ff:c4:48:43:e5:2d:82:9d:92:23: f6:a1:77:bd:4c:75:18:f8:ac:70:27:b8:1e:6b:b5:b5:60:1d: 24:78:ea:d5:ee:06:86:2f:b6:98:42:b1:f9:e8:4a:9a:e0:2b: ca:be:62:59:9a:d0:6d:8f:87:da:e1:16:2d:ce:6d:ab:6c:0e: 25:d5:3f:c9:e9:95:ac:cf:69:54:ea:4d:a2:82:7e:7b:2e:4f: 49:d8:c3:be -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUN9WKWTIcUh+tdz3uvbmwFJmUUhswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTg2RUZFMUMyQkI4QjBFNEUxNDcyRTlEQUE1Qjc3NUFB NEY2Njg5RjAeFw0yNDA3MDEwMDU5MDNaFw0yNTA2MzAwMTA0MDNaMDMxMTAvBgNV BAMTKDAyQTBEQjBGQUIzRkUyODg4NjMzMEI5MzMzRTI5NzM2NDU1QkVCMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVQUnyYZyuTu2+PgD97SUm/KDn SyIzJ3ymkogJH8ZFBrj2/a4QFZ/6CNCn0igh5PDZ81Q4Tzj072YFVsQ1Tb5JjdcX tzgV+u3utEnfkhnSiLZw7TBWX5iSIasCLFW4hPWfC/E2To/Rvp/vcOriVOjCQrf2 5/hviceH2/c7qlcBsl+X36WCfuP7AC6vQDMXDEBndEYoSghRJS5MvM09/oU4AElk NUPZD2wsTnY0+WwDh62PXZy32wy0V73ZWpaoIRQGR6N/2wGPTIKPi25iTHqGhKXq ifU4kQEwfF9wjXKcDZao6L8unZcbUksTanisl10cFLxrbsmRnVz0MFbJaM1JAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUAqDbD6s/4oiGMwuTM+KXNkVb6yUwHwYDVR0j BBgwFoAUmG7+HCu4sOThRy6dqlt3WqT2aJ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MTYyZDE1Yi0xMDJiLTQzMWYtYTUzOS0wYTkzMmIzMTM2NmMvMC85ODZFRkUxQzJC QjhCMEU0RTE0NzJFOURBQTVCNzc1QUE0RjY2ODlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTg2RUZFMUMyQkI4QjBFNEUxNDcyRTlEQUE1Qjc3NUFBNEY2 Njg5Ri5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMxNjJkMTViLTEwMmItNDMxZi1h NTM5LTBhOTMyYjMxMzY2Yy8wLzMyMzAzMDMxM2E2NDY2MzczYTMzNjIzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzEzMDM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9zsAMA0GCSqGSIb3DQEBCwUAA4IBAQBhHLD7ZucpLGFb6K8yOYWk+Fi53HN96Cpu H5fdm19HyDH1PIxDqk0pA/MCCrTIjbZrhjcnCneBqljNTiPz4qN6oMb64B2Z0NhI zPROrsUk+gVw+FVWmdLAMk//J5VOKsAs3PLY9SMaANIs4MVADilbt+BUr80Ywjok YtCB52sCEhiAXBgzTlJd+Jz1yRjdsSXhM6GyI4lTAn5+JuOT4ukv2BoYoXdhu9xS 9f/ESEPlLYKdkiP2oXe9THUY+KxwJ7gea7W1YB0keOrV7gaGL7aYQrH56Eqa4CvK vmJZmtBtj4fa4RYtzm2rbA4l1T/J6ZWsz2lU6k2ign57Lk9J2MO+ -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:43 2024 by rpki-client on console-fra.rpki-client.org