$ rpki-client -vvf repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/323030313a6466323a633238303a3a2f34382d3438203d3e20313339393839.roa File: 323030313a6466323a633238303a3a2f34382d3438203d3e20313339393839.roa (raw, json) Hash identifier: REe8Gnbzv+cpC5r6l+mKFTeY9qAThVwp1bhR4g0ii3Q= Subject key identifier: F5:A4:6F:A0:A5:25:84:28:ED:22:FB:93:0E:54:BE:E1:3F:20:E8:62 Certificate issuer: /CN=5A0CBE2DBCF9883569F8C24BFB9E595442D835D0 Certificate serial: 3A6B8D3DB47F96DCF88F76F03D1B3D0A4F405B52 Authority key identifier: 5A:0C:BE:2D:BC:F9:88:35:69:F8:C2:4B:FB:9E:59:54:42:D8:35:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/323030313a6466323a633238303a3a2f34382d3438203d3e20313339393839.roa Signing time: Fri 26 Jul 2024 11:00:01 +0000 ROA not before: Fri 26 Jul 2024 10:55:01 +0000 ROA not after: Fri 25 Jul 2025 11:00:01 +0000 asID: 139989 IP address blocks: 2001:df2:c280::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.crl rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:6b:8d:3d:b4:7f:96:dc:f8:8f:76:f0:3d:1b:3d:0a:4f:40:5b:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5A0CBE2DBCF9883569F8C24BFB9E595442D835D0 Validity Not Before: Jul 26 10:55:01 2024 GMT Not After : Jul 25 11:00:01 2025 GMT Subject: CN=F5A46FA0A5258428ED22FB930E54BEE13F20E862 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:fd:05:13:d5:9a:cc:de:6d:54:94:5c:ef:25: ca:af:84:b9:58:22:90:28:6b:3a:8e:0d:67:25:fb: c4:43:2e:65:b2:d2:08:c7:f3:3d:4d:95:e2:34:04: 17:3a:44:a6:85:b6:51:71:c9:c6:8e:47:f2:20:4f: 5c:5c:ec:25:bc:ed:36:46:94:df:8f:28:c0:47:18: 20:8f:64:e5:a9:06:24:62:36:5b:e0:94:9a:7a:0f: f6:04:51:16:3b:10:a3:21:34:ad:43:e8:0b:02:29: d0:d2:35:bc:86:c6:66:23:e5:be:57:05:5a:e2:65: 66:0c:2d:e3:1d:e9:a7:91:b1:5b:d0:59:ab:f6:3e: d1:89:61:87:c2:a4:47:4e:77:8e:45:2e:3f:f6:1f: e8:46:c4:3f:87:35:c4:06:36:65:52:3c:38:54:c1: ad:69:7d:0f:ee:b5:f8:cf:ef:72:43:ba:fe:b2:13: 3f:58:77:7c:00:d4:e6:ab:2e:79:d6:39:37:4f:db: 9c:94:b4:a6:9a:39:9a:fa:94:a3:0f:28:72:fd:66: bd:9b:9a:f1:7a:c1:b5:1c:27:3e:d8:c8:91:1d:df: bd:fc:5a:9f:10:9d:0b:b3:59:76:cd:37:a3:22:95: e8:7e:40:8f:2d:ac:8c:f6:d8:e6:32:53:0f:b2:67: 09:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:A4:6F:A0:A5:25:84:28:ED:22:FB:93:0E:54:BE:E1:3F:20:E8:62 X509v3 Authority Key Identifier: keyid:5A:0C:BE:2D:BC:F9:88:35:69:F8:C2:4B:FB:9E:59:54:42:D8:35:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/323030313a6466323a633238303a3a2f34382d3438203d3e20313339393839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:c280::/48 Signature Algorithm: sha256WithRSAEncryption 23:a8:e6:88:4b:6a:ed:aa:7f:40:45:69:2b:95:65:fa:ca:5f: ff:67:69:58:80:45:80:65:d7:1d:4c:bd:00:11:d1:93:4d:94: 6f:0b:48:d4:b8:78:7b:12:6e:84:36:3a:0b:24:5e:df:69:be: 16:11:2a:dc:61:06:97:7f:cf:64:f8:f5:36:d8:7b:08:fd:20: 80:6c:9e:f3:72:15:da:36:2b:bb:32:5a:ef:e2:69:15:3c:4c: 87:da:89:ec:b9:c8:37:2d:95:99:78:d3:16:16:f3:53:76:60: 5d:94:5c:e5:a2:d4:f2:a7:fb:7d:86:85:23:15:17:e1:84:b0: e8:3e:d7:73:db:17:14:f2:b7:57:bd:dc:c4:c0:14:f0:28:5d: 32:9d:0f:94:63:ee:8b:39:3d:8c:5c:93:87:e5:14:89:bc:93: a6:3e:29:c1:c2:6c:ab:99:8f:3b:2e:81:38:82:15:1e:41:51: 1f:68:b7:92:7d:20:8d:03:90:f2:24:57:e7:d3:ca:63:c2:34: 12:a4:58:3c:0c:66:7d:0c:7b:a0:ed:98:f9:0a:df:47:3f:e3: 03:9e:d8:a0:6f:88:ec:57:4b:04:ff:19:51:38:6b:54:a4:6e: 43:22:b1:c1:69:44:7a:6b:2e:d1:40:98:31:0b:37:f0:a4:3e: a6:db:f1:4d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUOmuNPbR/ltz4j3bwPRs9Ck9AW1IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUEwQ0JFMkRCQ0Y5ODgzNTY5RjhDMjRCRkI5RTU5NTQ0 MkQ4MzVEMDAeFw0yNDA3MjYxMDU1MDFaFw0yNTA3MjUxMTAwMDFaMDMxMTAvBgNV BAMTKEY1QTQ2RkEwQTUyNTg0MjhFRDIyRkI5MzBFNTRCRUUxM0YyMEU4NjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDc/QUT1ZrM3m1UlFzvJcqvhLlY IpAoazqODWcl+8RDLmWy0gjH8z1NleI0BBc6RKaFtlFxycaOR/IgT1xc7CW87TZG lN+PKMBHGCCPZOWpBiRiNlvglJp6D/YEURY7EKMhNK1D6AsCKdDSNbyGxmYj5b5X BVriZWYMLeMd6aeRsVvQWav2PtGJYYfCpEdOd45FLj/2H+hGxD+HNcQGNmVSPDhU wa1pfQ/utfjP73JDuv6yEz9Yd3wA1OarLnnWOTdP25yUtKaaOZr6lKMPKHL9Zr2b mvF6wbUcJz7YyJEd3738Wp8QnQuzWXbNN6Mileh+QI8trIz22OYyUw+yZwmpAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU9aRvoKUlhCjtIvuTDlS+4T8g6GIwHwYDVR0j BBgwFoAUWgy+Lbz5iDVp+MJL+55ZVELYNdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MDMxNzQ2ZS1iMGY2LTQ4MjctOGM0ZS1iODE5MmRlY2MzOWEvMC81QTBDQkUyREJD Rjk4ODM1NjlGOEMyNEJGQjlFNTk1NDQyRDgzNUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUEwQ0JFMkRCQ0Y5ODgzNTY5RjhDMjRCRkI5RTU5NTQ0MkQ4 MzVEMC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQwMzE3NDZlLWIwZjYtNDgyNy04 YzRlLWI4MTkyZGVjYzM5YS8wLzMyMzAzMDMxM2E2NDY2MzIzYTYzMzIzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzkzODM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8sKAMA0GCSqGSIb3DQEBCwUAA4IBAQAjqOaIS2rtqn9ARWkrlWX6yl//Z2lYgEWA ZdcdTL0AEdGTTZRvC0jUuHh7Em6ENjoLJF7fab4WESrcYQaXf89k+PU22HsI/SCA bJ7zchXaNiu7Mlrv4mkVPEyH2onsucg3LZWZeNMWFvNTdmBdlFzlotTyp/t9hoUj FRfhhLDoPtdz2xcU8rdXvdzEwBTwKF0ynQ+UY+6LOT2MXJOH5RSJvJOmPinBwmyr mY87LoE4ghUeQVEfaLeSfSCNA5DyJFfn08pjwjQSpFg8DGZ9DHug7Zj5Ct9HP+MD ntigb4jsV0sE/xlROGtUpG5DIrHBaUR6ay7RQJgxCzfwpD6m2/FN -----END CERTIFICATE-----Generated at Mon Nov 25 19:46:14 2024 by rpki-client on console-fra.rpki-client.org