$ rpki-client -vvf repo-rpki.idnic.net/repo/435bc130-964a-47b8-922b-83069de67a7c/0/323030313a6466343a646138303a3a2f34382d3438203d3e20313431303735.roa File: 323030313a6466343a646138303a3a2f34382d3438203d3e20313431303735.roa (raw, json) Hash identifier: 440yzb75Q1ifuPJKBrQv7u7fvgNxfcKqc/noGFO7Q4s= Subject key identifier: 1F:A1:15:6D:AB:46:7F:EE:48:2B:9C:51:76:8D:F8:3A:B8:63:FF:E9 Certificate issuer: /CN=926C43E6DACC18978406A2C9C57272491FFF9536 Certificate serial: 66DEB86769AF2E74D076C70C1FE9EE3D3D094819 Authority key identifier: 92:6C:43:E6:DA:CC:18:97:84:06:A2:C9:C5:72:72:49:1F:FF:95:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/926C43E6DACC18978406A2C9C57272491FFF9536.cer Subject info access: rsync://repo-rpki.idnic.net/repo/435bc130-964a-47b8-922b-83069de67a7c/0/323030313a6466343a646138303a3a2f34382d3438203d3e20313431303735.roa Signing time: Thu 20 Jun 2024 10:00:01 +0000 ROA not before: Thu 20 Jun 2024 09:55:01 +0000 ROA not after: Thu 19 Jun 2025 10:00:01 +0000 asID: 141075 IP address blocks: 2001:df4:da80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/435bc130-964a-47b8-922b-83069de67a7c/0/926C43E6DACC18978406A2C9C57272491FFF9536.crl rsync://repo-rpki.idnic.net/repo/435bc130-964a-47b8-922b-83069de67a7c/0/926C43E6DACC18978406A2C9C57272491FFF9536.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/926C43E6DACC18978406A2C9C57272491FFF9536.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:de:b8:67:69:af:2e:74:d0:76:c7:0c:1f:e9:ee:3d:3d:09:48:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=926C43E6DACC18978406A2C9C57272491FFF9536 Validity Not Before: Jun 20 09:55:01 2024 GMT Not After : Jun 19 10:00:01 2025 GMT Subject: CN=1FA1156DAB467FEE482B9C51768DF83AB863FFE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:30:7f:b5:a3:17:3a:d8:c5:a2:ee:0a:f8:27: 80:2f:b4:eb:5b:30:e6:a9:39:76:ae:31:80:4d:4e: d3:6a:c0:cb:52:26:1d:f3:42:42:03:b1:99:17:71: c2:b4:b7:be:74:4d:ac:6d:d2:9c:5f:bf:0a:5f:71: da:37:2b:b5:f5:ad:25:65:b8:61:c3:e4:35:c5:34: 38:d4:21:77:94:ae:71:0f:fc:0d:3a:ef:97:54:37: 16:98:67:4d:68:f7:d8:dd:ca:69:cf:f0:97:d8:47: 4c:02:56:2c:74:75:40:ef:78:6a:6b:36:3d:f2:b3: 51:23:2c:ea:c0:66:90:3a:9d:c5:5c:41:7a:45:0a: 1d:21:65:20:b7:14:59:08:97:fb:61:b7:26:71:9b: 90:95:36:de:fd:e0:77:ae:42:f9:99:5b:c8:3c:99: 25:ba:05:c2:85:d4:01:50:4c:41:45:18:82:87:af: 69:f4:2c:4c:54:a5:44:0b:1f:76:30:5d:a2:68:c3: 25:d4:ba:bf:f2:26:0e:35:a0:e4:1e:81:fa:58:b7: ed:e4:2d:8c:a8:c4:7d:ce:55:d2:26:de:bf:05:c8: 7a:ba:cd:26:02:f0:43:52:7f:40:bc:5c:1b:1d:72: 92:cb:95:30:7c:25:78:c2:ba:6b:c8:17:69:4c:f0: 09:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:A1:15:6D:AB:46:7F:EE:48:2B:9C:51:76:8D:F8:3A:B8:63:FF:E9 X509v3 Authority Key Identifier: keyid:92:6C:43:E6:DA:CC:18:97:84:06:A2:C9:C5:72:72:49:1F:FF:95:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/435bc130-964a-47b8-922b-83069de67a7c/0/926C43E6DACC18978406A2C9C57272491FFF9536.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/926C43E6DACC18978406A2C9C57272491FFF9536.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/435bc130-964a-47b8-922b-83069de67a7c/0/323030313a6466343a646138303a3a2f34382d3438203d3e20313431303735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:da80::/48 Signature Algorithm: sha256WithRSAEncryption 94:e1:50:a8:2b:17:dd:83:8c:06:e8:fa:e4:48:83:de:36:97: c4:2d:4b:5c:d5:e5:8a:5a:dd:aa:67:c3:1f:3e:60:8b:4c:68: 39:be:75:f8:29:b4:76:54:8b:77:dd:a7:3b:6d:0b:a3:a8:0d: d2:eb:2a:22:c3:00:27:fb:c7:d2:42:35:81:f9:3a:25:8d:18: 5b:70:01:31:38:96:7f:4a:20:fa:df:d6:a1:85:3d:ec:e4:ee: 92:8c:37:e2:2c:62:6f:4e:84:0d:72:8b:a8:31:90:70:a6:59: e0:09:25:2d:c4:d6:93:3a:10:45:e9:f6:a5:7b:df:8c:0c:7a: bf:e2:bc:0f:08:09:5b:2c:a5:da:7e:da:a8:65:8c:73:87:81: 91:6b:eb:cd:94:1d:87:00:3e:82:e8:2d:34:61:67:fa:d6:85: aa:1c:60:6c:66:cd:6b:0a:9d:d2:6c:ac:81:5d:68:5d:3a:f8: 29:29:20:4a:92:39:76:ca:a9:01:33:d5:67:16:65:38:59:03: 34:53:d1:d4:06:81:8e:c4:51:80:2b:20:f0:d8:85:6a:51:7a: 07:49:cb:0a:3f:61:6b:75:06:95:fc:92:1d:cc:df:9d:88:53: 07:83:32:ee:95:77:39:0a:bf:6b:13:0f:98:f0:eb:f1:5b:df: 8b:80:88:f7 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUZt64Z2mvLnTQdscMH+nuPT0JSBkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTI2QzQzRTZEQUNDMTg5Nzg0MDZBMkM5QzU3MjcyNDkx RkZGOTUzNjAeFw0yNDA2MjAwOTU1MDFaFw0yNTA2MTkxMDAwMDFaMDMxMTAvBgNV BAMTKDFGQTExNTZEQUI0NjdGRUU0ODJCOUM1MTc2OERGODNBQjg2M0ZGRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQMH+1oxc62MWi7gr4J4AvtOtb MOapOXauMYBNTtNqwMtSJh3zQkIDsZkXccK0t750Taxt0pxfvwpfcdo3K7X1rSVl uGHD5DXFNDjUIXeUrnEP/A0675dUNxaYZ01o99jdymnP8JfYR0wCVix0dUDveGpr Nj3ys1EjLOrAZpA6ncVcQXpFCh0hZSC3FFkIl/thtyZxm5CVNt794HeuQvmZW8g8 mSW6BcKF1AFQTEFFGIKHr2n0LExUpUQLH3YwXaJowyXUur/yJg41oOQegfpYt+3k LYyoxH3OVdIm3r8FyHq6zSYC8ENSf0C8XBsdcpLLlTB8JXjCumvIF2lM8AkRAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUH6EVbatGf+5IK5xRdo34Orhj/+kwHwYDVR0j BBgwFoAUkmxD5trMGJeEBqLJxXJySR//lTYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MzViYzEzMC05NjRhLTQ3YjgtOTIyYi04MzA2OWRlNjdhN2MvMC85MjZDNDNFNkRB Q0MxODk3ODQwNkEyQzlDNTcyNzI0OTFGRkY5NTM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTI2QzQzRTZEQUNDMTg5Nzg0MDZBMkM5QzU3MjcyNDkxRkZG OTUzNi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQzNWJjMTMwLTk2NGEtNDdiOC05 MjJiLTgzMDY5ZGU2N2E3Yy8wLzMyMzAzMDMxM2E2NDY2MzQzYTY0NjEzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMxMzAzNzM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9NqAMA0GCSqGSIb3DQEBCwUAA4IBAQCU4VCoKxfdg4wG6PrkSIPeNpfELUtc1eWK Wt2qZ8MfPmCLTGg5vnX4KbR2VIt33ac7bQujqA3S6yoiwwAn+8fSQjWB+ToljRhb cAExOJZ/SiD639ahhT3s5O6SjDfiLGJvToQNcouoMZBwplngCSUtxNaTOhBF6fal e9+MDHq/4rwPCAlbLKXaftqoZYxzh4GRa+vNlB2HAD6C6C00YWf61oWqHGBsZs1r Cp3SbKyBXWhdOvgpKSBKkjl2yqkBM9VnFmU4WQM0U9HUBoGOxFGAKyDw2IVqUXoH ScsKP2FrdQaV/JIdzN+diFMHgzLulXc5Cr9rEw+Y8OvxW9+LgIj3 -----END CERTIFICATE-----Generated at Fri Nov 22 21:02:27 2024 by rpki-client on console-fra.rpki-client.org