$ rpki-client -vvf repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/1/323030313a6466343a353463303a3a2f34382d3438203d3e20313533313233.roa File: 323030313a6466343a353463303a3a2f34382d3438203d3e20313533313233.roa (raw, json) Hash identifier: UXO0EVGk79VKVpzVVu+4tgus2AIbsvGynIdxAjYw1NA= Subject key identifier: 74:AE:CE:BA:80:D0:DE:E8:A7:97:F6:75:94:6B:F9:D8:29:02:F2:C4 Certificate issuer: /CN=1C13BBF82B802D9CB18A9FE51C67745AD430C918 Certificate serial: 08D13C22997F99D6F5D73E293EDCF37F2B674FFE Authority key identifier: 1C:13:BB:F8:2B:80:2D:9C:B1:8A:9F:E5:1C:67:74:5A:D4:30:C9:18 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1C13BBF82B802D9CB18A9FE51C67745AD430C918.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/1/323030313a6466343a353463303a3a2f34382d3438203d3e20313533313233.roa Signing time: Tue 12 Nov 2024 10:01:05 +0000 ROA not before: Tue 12 Nov 2024 09:56:05 +0000 ROA not after: Tue 11 Nov 2025 10:01:05 +0000 asID: 153123 IP address blocks: 2001:df4:54c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/1/1C13BBF82B802D9CB18A9FE51C67745AD430C918.crl rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/1/1C13BBF82B802D9CB18A9FE51C67745AD430C918.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1C13BBF82B802D9CB18A9FE51C67745AD430C918.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:d1:3c:22:99:7f:99:d6:f5:d7:3e:29:3e:dc:f3:7f:2b:67:4f:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1C13BBF82B802D9CB18A9FE51C67745AD430C918 Validity Not Before: Nov 12 09:56:05 2024 GMT Not After : Nov 11 10:01:05 2025 GMT Subject: CN=74AECEBA80D0DEE8A797F675946BF9D82902F2C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:76:2c:d0:37:1e:22:c3:90:e0:47:0a:ea:67: 27:a3:dd:8a:e6:89:45:ad:f9:c8:c3:7b:2d:06:47: 16:ca:4d:f1:27:29:f0:cf:cc:cf:be:4f:25:e5:01: 32:d5:34:1e:8c:ac:d8:28:b4:cc:07:28:66:35:0b: f6:b6:7a:ff:50:e2:49:bf:cd:d4:7c:83:b4:92:15: d8:49:66:3c:58:b7:c2:83:3c:3c:41:75:ae:e5:0a: 37:77:95:9e:e6:fe:21:b0:bd:89:eb:59:57:b1:0b: 55:f8:8a:bf:51:07:d7:38:08:9a:96:90:20:35:0a: 4f:6c:6f:a2:46:17:9a:d2:8b:79:2c:c3:6f:b2:fa: 47:65:41:93:f9:3e:5b:19:5d:ce:ad:8b:93:de:cf: de:7d:0c:dd:ba:8d:21:ec:3f:5f:f7:c1:90:67:d6: 1b:44:99:fd:f1:c3:fb:9f:45:de:38:49:14:81:81: fb:ee:02:cf:da:46:b0:62:14:8e:68:b2:93:e5:0b: 8c:dd:ca:50:70:07:2b:fb:07:ae:91:4e:b4:38:04: b8:96:40:89:16:f3:52:63:ab:a6:6e:03:4c:e2:76: 4e:29:4f:32:37:c7:48:ef:40:a8:35:be:ea:d1:34: 71:5f:2b:53:11:6c:58:66:51:b2:37:09:a2:f2:6c: 77:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:AE:CE:BA:80:D0:DE:E8:A7:97:F6:75:94:6B:F9:D8:29:02:F2:C4 X509v3 Authority Key Identifier: keyid:1C:13:BB:F8:2B:80:2D:9C:B1:8A:9F:E5:1C:67:74:5A:D4:30:C9:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/1/1C13BBF82B802D9CB18A9FE51C67745AD430C918.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1C13BBF82B802D9CB18A9FE51C67745AD430C918.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/1/323030313a6466343a353463303a3a2f34382d3438203d3e20313533313233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:54c0::/48 Signature Algorithm: sha256WithRSAEncryption 77:9a:40:87:f4:af:02:e6:df:c9:c6:12:5c:6c:06:7c:6b:58: c5:06:e2:a6:2f:87:ce:33:e8:f6:43:cc:aa:13:a2:92:3a:36: 78:2e:23:a7:5f:30:41:c6:8c:06:18:df:4a:fd:77:04:50:a0: cf:4f:8c:61:da:64:62:bb:cf:41:03:f8:8b:17:f1:35:b7:49: 20:cf:db:61:42:49:8e:9e:da:f9:7a:b7:6e:57:bf:80:f8:e2: fa:ad:0b:fc:ae:0e:5f:31:0f:c7:8a:e6:69:53:ff:fc:69:3d: 8f:e5:b7:48:1d:31:37:63:ca:a5:66:a8:1b:82:d7:59:bb:08: 37:2b:c8:c7:74:50:c2:ec:f4:16:39:fb:21:24:c9:2d:52:f9: c6:54:3c:16:03:32:30:13:a9:a7:60:0d:c9:55:21:ac:84:22: 51:fd:90:82:47:9b:95:11:44:29:58:42:6e:ec:07:6b:62:ab: 53:5f:0c:42:4a:02:71:7c:91:9e:a4:bf:09:84:ff:ca:2d:48: e9:5f:a3:33:ac:bc:49:43:55:3e:79:f6:3d:29:c6:71:9a:43: e2:c4:a2:fc:2c:14:4c:2b:1d:aa:28:8e:07:16:20:ae:77:8b: 93:92:78:65:b5:1f:b8:7c:97:f1:fb:f7:9a:60:94:bc:5e:62: 13:18:eb:54 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUCNE8Ipl/mdb11z4pPtzzfytnT/4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUMxM0JCRjgyQjgwMkQ5Q0IxOEE5RkU1MUM2Nzc0NUFE NDMwQzkxODAeFw0yNDExMTIwOTU2MDVaFw0yNTExMTExMDAxMDVaMDMxMTAvBgNV BAMTKDc0QUVDRUJBODBEMERFRThBNzk3RjY3NTk0NkJGOUQ4MjkwMkYyQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmdizQNx4iw5DgRwrqZyej3Yrm iUWt+cjDey0GRxbKTfEnKfDPzM++TyXlATLVNB6MrNgotMwHKGY1C/a2ev9Q4km/ zdR8g7SSFdhJZjxYt8KDPDxBda7lCjd3lZ7m/iGwvYnrWVexC1X4ir9RB9c4CJqW kCA1Ck9sb6JGF5rSi3ksw2+y+kdlQZP5PlsZXc6ti5Pez959DN26jSHsP1/3wZBn 1htEmf3xw/ufRd44SRSBgfvuAs/aRrBiFI5ospPlC4zdylBwByv7B66RTrQ4BLiW QIkW81Jjq6ZuA0zidk4pTzI3x0jvQKg1vurRNHFfK1MRbFhmUbI3CaLybHcvAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUdK7OuoDQ3uinl/Z1lGv52CkC8sQwHwYDVR0j BBgwFoAUHBO7+CuALZyxip/lHGd0WtQwyRgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTkyMzM5Ny04Y2Y4LTRjZWYtODg1Ni0wZDI2OGQ3M2VkYjEvMS8xQzEzQkJGODJC ODAyRDlDQjE4QTlGRTUxQzY3NzQ1QUQ0MzBDOTE4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUMxM0JCRjgyQjgwMkQ5Q0IxOEE5RkU1MUM2Nzc0NUFENDMw QzkxOC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhOTIzMzk3LThjZjgtNGNlZi04 ODU2LTBkMjY4ZDczZWRiMS8xLzMyMzAzMDMxM2E2NDY2MzQzYTM1MzQ2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzEzMjMzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9FTAMA0GCSqGSIb3DQEBCwUAA4IBAQB3mkCH9K8C5t/JxhJcbAZ8a1jFBuKmL4fO M+j2Q8yqE6KSOjZ4LiOnXzBBxowGGN9K/XcEUKDPT4xh2mRiu89BA/iLF/E1t0kg z9thQkmOntr5erduV7+A+OL6rQv8rg5fMQ/HiuZpU//8aT2P5bdIHTE3Y8qlZqgb gtdZuwg3K8jHdFDC7PQWOfshJMktUvnGVDwWAzIwE6mnYA3JVSGshCJR/ZCCR5uV EUQpWEJu7AdrYqtTXwxCSgJxfJGepL8JhP/KLUjpX6MzrLxJQ1U+efY9KcZxmkPi xKL8LBRMKx2qKI4HFiCud4uTknhltR+4fJfx+/eaYJS8XmITGOtU -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:48 2024 by rpki-client on console-fra.rpki-client.org