$ rpki-client -vvf repo-rpki.idnic.net/repo/3521e5ee-5882-4943-b408-43c37582fb0b/0/323030313a6466323a376663303a3a2f34382d3438203d3e20313530323432.roa File: 323030313a6466323a376663303a3a2f34382d3438203d3e20313530323432.roa (raw, json) Hash identifier: UQvjbahM5wEVbxKknlNWx8E15RhJ5vKpHF1nJfhJShU= Subject key identifier: C0:46:07:C5:16:CF:C4:B9:EF:33:30:58:EC:B4:9A:4E:27:29:44:43 Certificate issuer: /CN=9AF96929E0E99A4F2539BB15137093D976C714CB Certificate serial: 1806ADC0BFE5F22999F2E06CA768CC5517FF6C37 Authority key identifier: 9A:F9:69:29:E0:E9:9A:4F:25:39:BB:15:13:70:93:D9:76:C7:14:CB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9AF96929E0E99A4F2539BB15137093D976C714CB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3521e5ee-5882-4943-b408-43c37582fb0b/0/323030313a6466323a376663303a3a2f34382d3438203d3e20313530323432.roa Signing time: Thu 20 Jun 2024 04:23:44 +0000 ROA not before: Thu 20 Jun 2024 04:18:44 +0000 ROA not after: Thu 19 Jun 2025 04:23:44 +0000 asID: 150242 IP address blocks: 2001:df2:7fc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3521e5ee-5882-4943-b408-43c37582fb0b/0/9AF96929E0E99A4F2539BB15137093D976C714CB.crl rsync://repo-rpki.idnic.net/repo/3521e5ee-5882-4943-b408-43c37582fb0b/0/9AF96929E0E99A4F2539BB15137093D976C714CB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9AF96929E0E99A4F2539BB15137093D976C714CB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:06:ad:c0:bf:e5:f2:29:99:f2:e0:6c:a7:68:cc:55:17:ff:6c:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9AF96929E0E99A4F2539BB15137093D976C714CB Validity Not Before: Jun 20 04:18:44 2024 GMT Not After : Jun 19 04:23:44 2025 GMT Subject: CN=C04607C516CFC4B9EF333058ECB49A4E27294443 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:13:89:d0:b4:71:04:75:b1:40:39:38:65:84: 91:56:35:7d:2d:f4:99:4f:70:d2:65:7a:27:ca:e0: 59:2d:ed:40:7b:03:92:09:28:cd:6b:fd:bd:c6:62: 89:b4:5a:d2:61:1c:ce:e1:63:e8:5b:fe:85:40:a7: 42:af:98:65:76:4c:23:47:59:50:67:19:43:2a:ba: 8f:49:ed:d0:e3:c5:7e:78:cb:f0:53:07:9f:ce:f1: 44:e4:44:20:1c:6e:1c:d3:68:80:53:c5:7f:f0:dd: a2:6c:b8:f8:ef:59:3d:b5:ef:65:74:8b:eb:30:6e: fb:8c:fe:41:33:21:3c:a9:1e:44:97:f0:90:49:75: 17:59:2a:33:e3:2c:44:c2:9b:4e:73:4c:5a:29:24: bd:a5:3a:2f:4e:0a:e9:f1:1e:f0:5a:42:fc:7e:df: cd:0c:2f:aa:f1:ee:09:bc:27:70:f7:0d:ec:5b:f3: 02:43:4f:96:b9:c5:9f:37:4a:94:00:81:d7:27:77: 19:d5:aa:a6:ee:b8:b6:86:fe:92:b6:3a:c4:ff:cc: 39:ca:a2:54:ec:0c:99:37:a8:22:45:78:56:65:00: 8c:18:df:52:23:65:fa:6a:9e:15:e9:63:d8:86:3b: d1:96:3c:80:a3:54:a3:87:da:56:6f:f4:21:3a:d0: 5b:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:46:07:C5:16:CF:C4:B9:EF:33:30:58:EC:B4:9A:4E:27:29:44:43 X509v3 Authority Key Identifier: keyid:9A:F9:69:29:E0:E9:9A:4F:25:39:BB:15:13:70:93:D9:76:C7:14:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3521e5ee-5882-4943-b408-43c37582fb0b/0/9AF96929E0E99A4F2539BB15137093D976C714CB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9AF96929E0E99A4F2539BB15137093D976C714CB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3521e5ee-5882-4943-b408-43c37582fb0b/0/323030313a6466323a376663303a3a2f34382d3438203d3e20313530323432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:7fc0::/48 Signature Algorithm: sha256WithRSAEncryption d5:45:48:f5:f5:d6:16:06:8d:7f:91:dc:39:13:3f:14:5e:fe: f5:22:01:cd:12:c5:41:90:d1:fa:19:72:df:8f:ee:e1:c3:22: 36:e6:2e:68:ea:72:88:c3:e9:f6:83:34:60:05:ed:03:03:32: 89:e3:e5:c8:58:d9:c7:c4:dd:17:91:c1:88:e8:57:92:d9:c2: b5:2c:aa:c6:13:e6:4f:b3:a6:08:98:e5:66:9a:ca:b4:20:b2: ae:6e:35:08:d3:ad:55:a8:9a:25:23:6b:fd:eb:a6:f0:a3:dc: d1:28:22:74:18:00:53:92:f1:bb:02:34:c4:9c:e4:0b:ad:e0: 31:04:e7:c2:c1:e6:e5:5d:5d:e2:85:56:5f:e0:c3:ef:d3:0c: 46:a9:a8:e6:b7:f8:5e:90:7a:49:1b:98:9a:bf:6f:bc:cf:c9: 36:68:35:2d:40:5f:e0:b0:8e:b4:c1:6b:0f:42:84:2a:8c:a6: 3a:ce:5c:83:bd:2b:93:05:ac:6e:7d:9a:18:a7:18:bd:18:84: 7c:fa:03:a7:1a:2a:65:2e:3c:15:b9:61:9d:ba:59:33:af:42: 79:b7:90:fa:2e:74:97:c9:e6:e8:80:e2:d3:d6:ef:93:f4:84: 69:93:d1:5c:6f:4c:67:19:31:fe:54:61:a3:01:35:56:10:f5: 6f:f6:0e:8b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUGAatwL/l8imZ8uBsp2jMVRf/bDcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUFGOTY5MjlFMEU5OUE0RjI1MzlCQjE1MTM3MDkzRDk3 NkM3MTRDQjAeFw0yNDA2MjAwNDE4NDRaFw0yNTA2MTkwNDIzNDRaMDMxMTAvBgNV BAMTKEMwNDYwN0M1MTZDRkM0QjlFRjMzMzA1OEVDQjQ5QTRFMjcyOTQ0NDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPE4nQtHEEdbFAOThlhJFWNX0t 9JlPcNJleifK4Fkt7UB7A5IJKM1r/b3GYom0WtJhHM7hY+hb/oVAp0KvmGV2TCNH WVBnGUMquo9J7dDjxX54y/BTB5/O8UTkRCAcbhzTaIBTxX/w3aJsuPjvWT2172V0 i+swbvuM/kEzITypHkSX8JBJdRdZKjPjLETCm05zTFopJL2lOi9OCunxHvBaQvx+ 380ML6rx7gm8J3D3Dexb8wJDT5a5xZ83SpQAgdcndxnVqqbuuLaG/pK2OsT/zDnK olTsDJk3qCJFeFZlAIwY31IjZfpqnhXpY9iGO9GWPICjVKOH2lZv9CE60FurAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUwEYHxRbPxLnvMzBY7LSaTicpREMwHwYDVR0j BBgwFoAUmvlpKeDpmk8lObsVE3CT2XbHFMswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NTIxZTVlZS01ODgyLTQ5NDMtYjQwOC00M2MzNzU4MmZiMGIvMC85QUY5NjkyOUUw RTk5QTRGMjUzOUJCMTUxMzcwOTNEOTc2QzcxNENCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUFGOTY5MjlFMEU5OUE0RjI1MzlCQjE1MTM3MDkzRDk3NkM3 MTRDQi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM1MjFlNWVlLTU4ODItNDk0My1i NDA4LTQzYzM3NTgyZmIwYi8wLzMyMzAzMDMxM2E2NDY2MzIzYTM3NjY2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMwMzIzNDMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8n/AMA0GCSqGSIb3DQEBCwUAA4IBAQDVRUj19dYWBo1/kdw5Ez8UXv71IgHNEsVB kNH6GXLfj+7hwyI25i5o6nKIw+n2gzRgBe0DAzKJ4+XIWNnHxN0XkcGI6FeS2cK1 LKrGE+ZPs6YImOVmmsq0ILKubjUI061VqJolI2v966bwo9zRKCJ0GABTkvG7AjTE nOQLreAxBOfCweblXV3ihVZf4MPv0wxGqajmt/hekHpJG5iav2+8z8k2aDUtQF/g sI60wWsPQoQqjKY6zlyDvSuTBaxufZoYpxi9GIR8+gOnGiplLjwVuWGdulkzr0J5 t5D6LnSXyebogOLT1u+T9IRpk9Fcb0xnGTH+VGGjATVWEPVv9g6L -----END CERTIFICATE-----Generated at Mon Nov 25 19:46:14 2024 by rpki-client on console-fra.rpki-client.org