$ rpki-client -vvf repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/323030313a6466333a316363303a3a2f34382d3438203d3e20313532303035.roa File: 323030313a6466333a316363303a3a2f34382d3438203d3e20313532303035.roa (raw, json) Hash identifier: GlJzjlLIP+VYq001fSSL3JZRcIW0kJz9RaxJOI4O4Mk= Subject key identifier: 70:95:91:89:23:24:6E:C8:3D:C8:36:13:87:41:3B:7D:3F:D9:3D:E8 Certificate issuer: /CN=49011B0D97FF49210FC27249FDD23F7172FD5561 Certificate serial: 1DBD0B37C32DCDAB958C8E3DF91FD8170F6C5138 Authority key identifier: 49:01:1B:0D:97:FF:49:21:0F:C2:72:49:FD:D2:3F:71:72:FD:55:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49011B0D97FF49210FC27249FDD23F7172FD5561.cer Subject info access: rsync://repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/323030313a6466333a316363303a3a2f34382d3438203d3e20313532303035.roa Signing time: Sun 03 Dec 2023 07:47:12 +0000 ROA not before: Sun 03 Dec 2023 07:42:12 +0000 ROA not after: Sun 01 Dec 2024 07:47:12 +0000 asID: 152005 IP address blocks: 2001:df3:1cc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/49011B0D97FF49210FC27249FDD23F7172FD5561.crl rsync://repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/49011B0D97FF49210FC27249FDD23F7172FD5561.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49011B0D97FF49210FC27249FDD23F7172FD5561.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:bd:0b:37:c3:2d:cd:ab:95:8c:8e:3d:f9:1f:d8:17:0f:6c:51:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49011B0D97FF49210FC27249FDD23F7172FD5561 Validity Not Before: Dec 3 07:42:12 2023 GMT Not After : Dec 1 07:47:12 2024 GMT Subject: CN=7095918923246EC83DC8361387413B7D3FD93DE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:35:a8:e0:5d:f5:07:46:9d:50:2f:70:01:3e: e2:bf:53:0d:4e:11:dc:76:f5:fe:5d:bc:8d:6b:c3: a9:99:b5:55:ee:b2:9a:27:a5:17:1c:97:02:ff:81: ba:df:2d:4f:73:67:21:c4:6e:32:6f:e3:2b:45:b2: f1:ea:fb:42:4b:93:b4:cb:33:d8:4f:88:5a:72:34: d7:1b:43:91:18:1c:6e:99:7b:bc:f9:53:34:09:0b: 67:65:d7:c9:7b:2f:f9:b7:f3:74:a1:78:a7:63:9f: 84:77:87:b1:67:b5:c4:2a:52:95:05:3f:78:ce:51: e8:5e:90:41:b1:32:90:14:49:b4:76:3d:8c:21:ea: fe:a6:cb:11:76:d9:06:a6:02:2b:7a:e1:c4:2f:08: 7b:1f:64:10:ee:54:d4:d0:1a:11:29:c6:fa:9b:25: bb:8a:10:c4:4b:f7:96:22:ce:cb:78:70:61:68:db: b0:fe:60:ac:32:41:02:18:15:92:5a:b9:7b:ee:c3: 57:b9:cc:cc:a4:2b:a6:94:f9:64:f1:89:af:47:9e: c2:b7:48:84:22:74:07:4c:6f:73:5e:9c:04:7a:ad: ff:a0:1d:f7:f3:0f:ee:0a:7d:41:8c:8f:fd:f2:b7: 82:ec:52:f5:01:a7:63:c9:c4:1b:b7:29:25:7e:df: 11:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:95:91:89:23:24:6E:C8:3D:C8:36:13:87:41:3B:7D:3F:D9:3D:E8 X509v3 Authority Key Identifier: keyid:49:01:1B:0D:97:FF:49:21:0F:C2:72:49:FD:D2:3F:71:72:FD:55:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/49011B0D97FF49210FC27249FDD23F7172FD5561.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49011B0D97FF49210FC27249FDD23F7172FD5561.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/323030313a6466333a316363303a3a2f34382d3438203d3e20313532303035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:1cc0::/48 Signature Algorithm: sha256WithRSAEncryption 5b:7f:ba:f0:5a:23:4e:22:57:68:28:d3:e3:83:63:3e:1b:1e: 05:a8:8d:83:37:c7:57:7d:ee:c6:0c:a2:08:70:16:88:b4:ed: 7e:e0:a5:ea:e1:d0:d6:fd:fe:c6:32:36:c0:fd:aa:9e:70:8a: db:61:2e:32:5d:38:d8:f2:d7:8e:75:5d:9c:42:97:07:50:48: 65:41:84:79:8f:51:8a:da:95:74:85:32:80:4e:d1:2e:48:c0: 1d:20:b9:83:a5:b5:36:7b:7f:c4:13:fc:6d:a3:33:e8:c6:6f: 8f:79:f7:b6:b8:96:a2:96:98:83:65:7e:63:a1:9d:c7:e4:2e: ae:6b:2d:25:cd:cf:92:86:e4:1f:05:fd:7e:1e:a0:de:2f:0d: 3a:c9:38:c2:c2:12:73:6a:72:e4:95:9f:7c:cf:b7:64:94:71: 29:15:be:dd:4f:bd:d7:a1:18:26:b2:89:29:bd:3f:f5:d1:66: b8:42:4c:65:28:fe:5f:33:a8:a2:d5:d8:f5:c6:f5:af:83:06: f0:ba:e1:51:8f:a8:25:ad:a1:1a:3b:b0:d1:f2:f7:63:a3:aa: 52:8d:89:70:1c:b4:67:33:b7:6e:d5:79:3e:ee:79:53:22:cc: ee:7d:69:10:df:c9:21:2a:9a:da:4e:ea:49:55:8b:c0:cb:d2: cc:b6:bc:21 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUHb0LN8MtzauVjI49+R/YFw9sUTgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDkwMTFCMEQ5N0ZGNDkyMTBGQzI3MjQ5RkREMjNGNzE3 MkZENTU2MTAeFw0yMzEyMDMwNzQyMTJaFw0yNDEyMDEwNzQ3MTJaMDMxMTAvBgNV BAMTKDcwOTU5MTg5MjMyNDZFQzgzREM4MzYxMzg3NDEzQjdEM0ZEOTNERTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmNajgXfUHRp1QL3ABPuK/Uw1O Edx29f5dvI1rw6mZtVXusponpRcclwL/gbrfLU9zZyHEbjJv4ytFsvHq+0JLk7TL M9hPiFpyNNcbQ5EYHG6Ze7z5UzQJC2dl18l7L/m383SheKdjn4R3h7FntcQqUpUF P3jOUehekEGxMpAUSbR2PYwh6v6myxF22QamAit64cQvCHsfZBDuVNTQGhEpxvqb JbuKEMRL95Yizst4cGFo27D+YKwyQQIYFZJauXvuw1e5zMykK6aU+WTxia9HnsK3 SIQidAdMb3NenAR6rf+gHffzD+4KfUGMj/3yt4LsUvUBp2PJxBu3KSV+3xH/AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUcJWRiSMkbsg9yDYTh0E7fT/ZPegwHwYDVR0j BBgwFoAUSQEbDZf/SSEPwnJJ/dI/cXL9VWEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODQ4ODUxOS04ZjA0LTQ0ZjUtODMxMi04ZDlkMzYxNmQwZDkvMC80OTAxMUIwRDk3 RkY0OTIxMEZDMjcyNDlGREQyM0Y3MTcyRkQ1NTYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDkwMTFCMEQ5N0ZGNDkyMTBGQzI3MjQ5RkREMjNGNzE3MkZE NTU2MS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4NDg4NTE5LThmMDQtNDRmNS04 MzEyLThkOWQzNjE2ZDBkOS8wLzMyMzAzMDMxM2E2NDY2MzMzYTMxNjM2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzAzMDM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8xzAMA0GCSqGSIb3DQEBCwUAA4IBAQBbf7rwWiNOIldoKNPjg2M+Gx4FqI2DN8dX fe7GDKIIcBaItO1+4KXq4dDW/f7GMjbA/aqecIrbYS4yXTjY8teOdV2cQpcHUEhl QYR5j1GK2pV0hTKATtEuSMAdILmDpbU2e3/EE/xtozPoxm+Pefe2uJailpiDZX5j oZ3H5C6uay0lzc+ShuQfBf1+HqDeLw06yTjCwhJzanLklZ98z7dklHEpFb7dT73X oRgmsokpvT/10Wa4QkxlKP5fM6ii1dj1xvWvgwbwuuFRj6glraEaO7DR8vdjo6pS jYlwHLRnM7du1Xk+7nlTIszufWkQ38khKpraTupJVYvAy9LMtrwh -----END CERTIFICATE-----Generated at Sun Jun 2 12:44:44 2024 by rpki-client on console-ams.rpki-client.org