$ rpki-client -vvf repo-rpki.idnic.net/repo/3b75bfd0-a86c-4beb-9f99-aac33fb5e49f/0/323030313a6466333a323534303a3a2f34382d3438203d3e20313530313936.roa File: 323030313a6466333a323534303a3a2f34382d3438203d3e20313530313936.roa (raw, json) Hash identifier: kmzcQC63v+qqQSJg7CZDAHQpc3dhyM5Y3cmWTdToQis= Subject key identifier: D1:21:FB:DE:15:C3:11:C7:BE:D6:8D:39:85:D0:31:55:EC:53:DF:3F Certificate issuer: /CN=731DB67572B48A3A86F0475A0E21E1A27DFC6A8E Certificate serial: 371E4C96463C8B107ADA87F27FE996959112828E Authority key identifier: 73:1D:B6:75:72:B4:8A:3A:86:F0:47:5A:0E:21:E1:A2:7D:FC:6A:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/731DB67572B48A3A86F0475A0E21E1A27DFC6A8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3b75bfd0-a86c-4beb-9f99-aac33fb5e49f/0/323030313a6466333a323534303a3a2f34382d3438203d3e20313530313936.roa Signing time: Mon 29 Jul 2024 08:36:07 +0000 ROA not before: Mon 29 Jul 2024 08:31:07 +0000 ROA not after: Mon 28 Jul 2025 08:36:07 +0000 asID: 150196 IP address blocks: 2001:df3:2540::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3b75bfd0-a86c-4beb-9f99-aac33fb5e49f/0/731DB67572B48A3A86F0475A0E21E1A27DFC6A8E.crl rsync://repo-rpki.idnic.net/repo/3b75bfd0-a86c-4beb-9f99-aac33fb5e49f/0/731DB67572B48A3A86F0475A0E21E1A27DFC6A8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/731DB67572B48A3A86F0475A0E21E1A27DFC6A8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:1e:4c:96:46:3c:8b:10:7a:da:87:f2:7f:e9:96:95:91:12:82:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=731DB67572B48A3A86F0475A0E21E1A27DFC6A8E Validity Not Before: Jul 29 08:31:07 2024 GMT Not After : Jul 28 08:36:07 2025 GMT Subject: CN=D121FBDE15C311C7BED68D3985D03155EC53DF3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:51:52:50:58:62:38:92:47:1d:87:f2:ac:73: 09:63:52:05:15:cd:b8:6f:44:a5:a0:4b:3b:a8:ed: 2c:d5:2f:1b:51:32:ac:a0:c9:3f:f9:01:de:de:56: 02:6e:d9:fb:23:15:fc:eb:7c:17:d2:7e:7c:fe:e3: 63:62:56:b3:18:53:8f:51:73:40:8c:85:29:0a:3a: 00:e0:cf:33:20:2c:9f:3c:f9:92:40:ac:aa:8b:04: f5:33:69:6d:fc:37:f8:a0:67:87:3b:18:85:42:42: b1:3d:36:d9:5c:6f:28:42:40:88:0e:4d:67:c5:0b: 48:8a:c7:ce:a0:b9:59:d2:ce:a7:3e:2e:e0:cd:58: 59:c8:70:d2:b7:9d:82:ee:c0:62:58:00:2a:4e:4e: 50:2e:80:93:45:bd:db:be:77:8e:6a:a8:06:8d:8f: 21:42:1a:53:ae:34:2e:31:ef:5b:ad:60:ed:21:a5: 68:cb:82:6b:4d:69:b0:dd:0a:23:db:b8:57:e2:2a: a6:24:e2:1d:ea:a3:13:c7:c5:82:c3:c2:cd:43:ff: d2:56:b4:fb:89:d5:b6:5f:dd:67:42:91:be:02:f7: dc:a1:37:b1:9d:75:7e:4d:a8:5a:17:ae:04:c8:0b: 71:b2:31:37:8b:ed:a6:44:01:ba:e2:42:2c:5f:0b: ee:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:21:FB:DE:15:C3:11:C7:BE:D6:8D:39:85:D0:31:55:EC:53:DF:3F X509v3 Authority Key Identifier: keyid:73:1D:B6:75:72:B4:8A:3A:86:F0:47:5A:0E:21:E1:A2:7D:FC:6A:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3b75bfd0-a86c-4beb-9f99-aac33fb5e49f/0/731DB67572B48A3A86F0475A0E21E1A27DFC6A8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/731DB67572B48A3A86F0475A0E21E1A27DFC6A8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3b75bfd0-a86c-4beb-9f99-aac33fb5e49f/0/323030313a6466333a323534303a3a2f34382d3438203d3e20313530313936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:2540::/48 Signature Algorithm: sha256WithRSAEncryption 2b:5b:01:a9:58:41:d1:bf:d4:29:a5:d8:e2:fd:c9:5b:60:84: 7c:88:d0:9e:dd:f5:b5:58:bb:ab:9a:77:d5:cd:74:99:d4:3d: f0:22:02:c0:b5:e8:50:66:11:c8:82:bd:1b:9b:4b:40:d4:92: 01:e2:a9:07:5c:9e:1a:b9:ea:72:a1:d4:8c:79:78:f7:41:cc: a3:35:3e:0f:90:14:0b:b8:68:ca:30:0c:f1:12:d1:55:42:f5: fe:b5:2e:09:3c:50:05:72:47:59:09:da:4b:c2:e6:b6:7c:6c: 6c:1c:ad:1c:66:fb:5f:e8:ae:f2:65:2a:9b:73:42:c0:5e:67: 44:a5:9b:a7:59:75:7c:8d:12:d3:0f:c7:59:5a:f2:77:b9:3f: b5:d1:ad:6a:fc:d9:c8:e0:8a:31:5b:bb:d4:5e:c4:e7:ec:d9: a5:62:3f:8c:9a:8e:3c:9c:c5:78:e0:88:24:32:df:64:72:c6: ad:6f:1e:b6:44:3f:da:f0:39:9e:05:15:d1:25:70:f0:c3:c0: b7:d8:ab:b5:26:33:45:29:27:5c:51:a5:e7:8f:64:5a:56:90: dc:db:52:5f:c8:3d:c5:c0:e1:01:53:91:03:50:50:b8:f8:a4: ad:da:32:c8:6f:3a:52:45:77:2f:9d:d3:bb:5b:c8:9c:e8:59: 77:4f:ef:ca -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUNx5MlkY8ixB62ofyf+mWlZESgo4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzMxREI2NzU3MkI0OEEzQTg2RjA0NzVBMEUyMUUxQTI3 REZDNkE4RTAeFw0yNDA3MjkwODMxMDdaFw0yNTA3MjgwODM2MDdaMDMxMTAvBgNV BAMTKEQxMjFGQkRFMTVDMzExQzdCRUQ2OEQzOTg1RDAzMTU1RUM1M0RGM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDUVJQWGI4kkcdh/KscwljUgUV zbhvRKWgSzuo7SzVLxtRMqygyT/5Ad7eVgJu2fsjFfzrfBfSfnz+42NiVrMYU49R c0CMhSkKOgDgzzMgLJ88+ZJArKqLBPUzaW38N/igZ4c7GIVCQrE9NtlcbyhCQIgO TWfFC0iKx86guVnSzqc+LuDNWFnIcNK3nYLuwGJYACpOTlAugJNFvdu+d45qqAaN jyFCGlOuNC4x71utYO0hpWjLgmtNabDdCiPbuFfiKqYk4h3qoxPHxYLDws1D/9JW tPuJ1bZf3WdCkb4C99yhN7GddX5NqFoXrgTIC3GyMTeL7aZEAbriQixfC+75AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU0SH73hXDEce+1o05hdAxVexT3z8wHwYDVR0j BBgwFoAUcx22dXK0ijqG8EdaDiHhon38ao4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Yjc1YmZkMC1hODZjLTRiZWItOWY5OS1hYWMzM2ZiNWU0OWYvMC83MzFEQjY3NTcy QjQ4QTNBODZGMDQ3NUEwRTIxRTFBMjdERkM2QThFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzMxREI2NzU3MkI0OEEzQTg2RjA0NzVBMEUyMUUxQTI3REZD NkE4RS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiNzViZmQwLWE4NmMtNGJlYi05 Zjk5LWFhYzMzZmI1ZTQ5Zi8wLzMyMzAzMDMxM2E2NDY2MzMzYTMyMzUzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMwMzEzOTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8yVAMA0GCSqGSIb3DQEBCwUAA4IBAQArWwGpWEHRv9Qppdji/clbYIR8iNCe3fW1 WLurmnfVzXSZ1D3wIgLAtehQZhHIgr0bm0tA1JIB4qkHXJ4auepyodSMeXj3Qcyj NT4PkBQLuGjKMAzxEtFVQvX+tS4JPFAFckdZCdpLwua2fGxsHK0cZvtf6K7yZSqb c0LAXmdEpZunWXV8jRLTD8dZWvJ3uT+10a1q/NnI4IoxW7vUXsTn7NmlYj+Mmo48 nMV44IgkMt9kcsatbx62RD/a8DmeBRXRJXDww8C32Ku1JjNFKSdcUaXnj2RaVpDc 21JfyD3FwOEBU5EDUFC4+KSt2jLIbzpSRXcvndO7W8ic6Fl3T+/K -----END CERTIFICATE-----Generated at Fri Nov 22 23:37:26 2024 by rpki-client on console-fra.rpki-client.org