$ rpki-client -vvf repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/323030313a6466333a316363303a3a2f34382d3438203d3e20313532303035.roa File: 323030313a6466333a316363303a3a2f34382d3438203d3e20313532303035.roa (raw, json) Hash identifier: eQwZ0HpEaRU5AO86abCZFFKH0HF0iLl7VUx7NHne24s= Subject key identifier: 1A:DD:4F:AA:E3:E2:F3:2C:01:D2:96:AA:23:60:27:E2:0E:33:DD:83 Certificate issuer: /CN=49011B0D97FF49210FC27249FDD23F7172FD5561 Certificate serial: 2317B8B90D57DEE788185CF1CA89C441CBAB8886 Authority key identifier: 49:01:1B:0D:97:FF:49:21:0F:C2:72:49:FD:D2:3F:71:72:FD:55:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49011B0D97FF49210FC27249FDD23F7172FD5561.cer Subject info access: rsync://repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/323030313a6466333a316363303a3a2f34382d3438203d3e20313532303035.roa Signing time: Mon 04 Nov 2024 04:42:56 +0000 ROA not before: Mon 04 Nov 2024 04:37:56 +0000 ROA not after: Mon 03 Nov 2025 04:42:56 +0000 asID: 152005 IP address blocks: 2001:df3:1cc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/49011B0D97FF49210FC27249FDD23F7172FD5561.crl rsync://repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/49011B0D97FF49210FC27249FDD23F7172FD5561.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49011B0D97FF49210FC27249FDD23F7172FD5561.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:17:b8:b9:0d:57:de:e7:88:18:5c:f1:ca:89:c4:41:cb:ab:88:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49011B0D97FF49210FC27249FDD23F7172FD5561 Validity Not Before: Nov 4 04:37:56 2024 GMT Not After : Nov 3 04:42:56 2025 GMT Subject: CN=1ADD4FAAE3E2F32C01D296AA236027E20E33DD83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:79:f8:7c:1b:6f:c5:be:89:87:c9:d9:f2:1d: 4d:eb:78:f1:5c:51:1d:31:f8:03:8b:72:70:4b:5c: 0f:cd:f4:87:ec:6c:bb:04:ca:82:05:8d:7f:f1:52: 81:95:bd:2a:b6:83:a7:20:a7:3e:16:2c:d6:18:c1: b4:0b:69:9f:5f:9e:63:e1:8c:2f:cd:5e:a3:65:80: 54:bd:53:45:eb:a3:db:cc:ff:7a:5a:c3:a9:47:15: bd:41:39:59:fb:3f:d0:05:a3:a4:86:35:01:33:56: 7f:84:41:d9:8c:28:4d:10:d2:82:60:22:d9:f7:e1: 6c:4e:09:17:9a:66:27:96:e7:23:f1:91:5e:35:2d: db:21:19:8e:b9:ce:6f:ad:fe:89:d3:20:99:ba:48: f4:84:4a:9d:90:b8:9f:f6:a2:d7:f2:75:63:59:0f: bd:29:49:95:92:f2:f0:d6:03:57:7a:bc:8e:40:54: 96:fc:f7:7c:69:9f:80:03:79:d4:84:39:44:ee:3d: 83:df:35:64:55:8b:5d:be:b2:e4:2a:f4:10:12:c9: 0a:36:cf:e8:56:48:31:d9:64:19:09:5f:f8:fd:d5: 75:cd:4e:6e:1c:1e:c6:67:09:3f:95:68:01:15:4d: d2:c1:4d:eb:65:0e:fd:c2:63:0a:7c:51:1c:d8:50: 4e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:DD:4F:AA:E3:E2:F3:2C:01:D2:96:AA:23:60:27:E2:0E:33:DD:83 X509v3 Authority Key Identifier: keyid:49:01:1B:0D:97:FF:49:21:0F:C2:72:49:FD:D2:3F:71:72:FD:55:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/49011B0D97FF49210FC27249FDD23F7172FD5561.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49011B0D97FF49210FC27249FDD23F7172FD5561.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/323030313a6466333a316363303a3a2f34382d3438203d3e20313532303035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:1cc0::/48 Signature Algorithm: sha256WithRSAEncryption 2f:a1:4d:a8:f2:c9:82:bf:f9:a6:36:27:0c:71:b9:a8:71:b5: 42:a7:ba:fe:91:24:7b:5d:fc:d4:39:94:72:21:e6:4e:21:bb: 8f:65:d6:09:d2:a2:2f:c2:ec:15:41:46:7b:a4:bb:4d:16:29: c1:00:30:a1:f1:f9:82:b9:0a:cc:5e:43:98:0a:75:87:b9:92: 2c:fd:87:ef:73:ef:74:56:9a:b0:fb:38:42:86:7b:2b:39:4d: 6a:5f:9e:af:0a:58:19:c7:a8:d1:97:df:0e:03:c9:3b:43:9a: 1f:87:10:9d:7a:3d:a6:33:15:84:3c:37:b4:2b:76:fa:a9:5c: cf:a2:8c:18:f2:ea:d8:4e:a0:31:4f:c7:a2:cf:33:e8:f0:f2: 2a:ba:87:bc:95:06:46:e0:b1:ca:1c:16:ee:8d:70:47:16:16: 1b:05:8f:99:5c:bb:ae:9c:c5:2b:47:43:84:8c:04:9a:46:06: 53:fb:05:f6:21:13:f3:d7:21:86:71:32:79:dc:e1:5b:d0:ae: 89:19:2d:09:fa:0b:a0:4e:38:a8:17:cb:c4:da:f5:15:6f:1c: ff:eb:75:67:f1:d1:19:9b:40:43:a7:95:87:c6:7d:d6:a0:d1: 95:51:5f:37:ca:5d:fc:56:a0:47:37:aa:08:62:76:f3:db:a6: b2:a0:5a:6b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUIxe4uQ1X3ueIGFzxyonEQcuriIYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDkwMTFCMEQ5N0ZGNDkyMTBGQzI3MjQ5RkREMjNGNzE3 MkZENTU2MTAeFw0yNDExMDQwNDM3NTZaFw0yNTExMDMwNDQyNTZaMDMxMTAvBgNV BAMTKDFBREQ0RkFBRTNFMkYzMkMwMUQyOTZBQTIzNjAyN0UyMEUzM0REODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXefh8G2/FvomHydnyHU3rePFc UR0x+AOLcnBLXA/N9IfsbLsEyoIFjX/xUoGVvSq2g6cgpz4WLNYYwbQLaZ9fnmPh jC/NXqNlgFS9U0Xro9vM/3paw6lHFb1BOVn7P9AFo6SGNQEzVn+EQdmMKE0Q0oJg Itn34WxOCReaZieW5yPxkV41LdshGY65zm+t/onTIJm6SPSESp2QuJ/2otfydWNZ D70pSZWS8vDWA1d6vI5AVJb893xpn4ADedSEOUTuPYPfNWRVi12+suQq9BASyQo2 z+hWSDHZZBkJX/j91XXNTm4cHsZnCT+VaAEVTdLBTetlDv3CYwp8URzYUE63AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUGt1PquPi8ywB0paqI2An4g4z3YMwHwYDVR0j BBgwFoAUSQEbDZf/SSEPwnJJ/dI/cXL9VWEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODQ4ODUxOS04ZjA0LTQ0ZjUtODMxMi04ZDlkMzYxNmQwZDkvMC80OTAxMUIwRDk3 RkY0OTIxMEZDMjcyNDlGREQyM0Y3MTcyRkQ1NTYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDkwMTFCMEQ5N0ZGNDkyMTBGQzI3MjQ5RkREMjNGNzE3MkZE NTU2MS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4NDg4NTE5LThmMDQtNDRmNS04 MzEyLThkOWQzNjE2ZDBkOS8wLzMyMzAzMDMxM2E2NDY2MzMzYTMxNjM2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzAzMDM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8xzAMA0GCSqGSIb3DQEBCwUAA4IBAQAvoU2o8smCv/mmNicMcbmocbVCp7r+kSR7 XfzUOZRyIeZOIbuPZdYJ0qIvwuwVQUZ7pLtNFinBADCh8fmCuQrMXkOYCnWHuZIs /Yfvc+90Vpqw+zhChnsrOU1qX56vClgZx6jRl98OA8k7Q5ofhxCdej2mMxWEPDe0 K3b6qVzPoowY8urYTqAxT8eizzPo8PIquoe8lQZG4LHKHBbujXBHFhYbBY+ZXLuu nMUrR0OEjASaRgZT+wX2IRPz1yGGcTJ53OFb0K6JGS0J+gugTjioF8vE2vUVbxz/ 63Vn8dEZm0BDp5WHxn3WoNGVUV83yl38VqBHN6oIYnbz26ayoFpr -----END CERTIFICATE-----Generated at Thu Nov 21 15:01:34 2024 by rpki-client on console-fra.rpki-client.org