$ rpki-client -vvf repo-rpki.idnic.net/repo/46302810-564c-45b7-8a72-ef6b8f6309c0/0/323030313a6466343a6530303a3a2f34382d3438203d3e20313335343731.roa File: 323030313a6466343a6530303a3a2f34382d3438203d3e20313335343731.roa (raw, json) Hash identifier: lPa8DdxFd1cETaniJFMsUZo/EW/3xjBsB7NOdfKIGEI= Subject key identifier: D2:BA:4F:58:28:45:3B:39:94:A1:DF:2C:11:E5:DE:6C:20:57:84:8A Certificate issuer: /CN=EDBD845A9597FEC4AD90030F9018E4B8B63FCC77 Certificate serial: 2EEF42D26FC3545BF20A1883BA99F36125557E74 Authority key identifier: ED:BD:84:5A:95:97:FE:C4:AD:90:03:0F:90:18:E4:B8:B6:3F:CC:77 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EDBD845A9597FEC4AD90030F9018E4B8B63FCC77.cer Subject info access: rsync://repo-rpki.idnic.net/repo/46302810-564c-45b7-8a72-ef6b8f6309c0/0/323030313a6466343a6530303a3a2f34382d3438203d3e20313335343731.roa Signing time: Mon 01 Jul 2024 01:03:28 +0000 ROA not before: Mon 01 Jul 2024 00:58:28 +0000 ROA not after: Mon 30 Jun 2025 01:03:28 +0000 asID: 135471 IP address blocks: 2001:df4:e00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/46302810-564c-45b7-8a72-ef6b8f6309c0/0/EDBD845A9597FEC4AD90030F9018E4B8B63FCC77.crl rsync://repo-rpki.idnic.net/repo/46302810-564c-45b7-8a72-ef6b8f6309c0/0/EDBD845A9597FEC4AD90030F9018E4B8B63FCC77.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EDBD845A9597FEC4AD90030F9018E4B8B63FCC77.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:ef:42:d2:6f:c3:54:5b:f2:0a:18:83:ba:99:f3:61:25:55:7e:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EDBD845A9597FEC4AD90030F9018E4B8B63FCC77 Validity Not Before: Jul 1 00:58:28 2024 GMT Not After : Jun 30 01:03:28 2025 GMT Subject: CN=D2BA4F5828453B3994A1DF2C11E5DE6C2057848A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:aa:95:bc:03:10:fb:ad:19:38:02:ac:8b:49: 3f:96:81:55:b9:57:58:bf:16:54:cb:71:61:83:3f: cb:5d:a8:7b:99:a6:15:81:77:b5:2a:1e:8a:ef:3d: 35:2e:4d:61:43:29:da:61:d3:17:91:51:50:d4:14: b6:4d:ef:f0:2f:71:34:af:46:73:56:50:dc:15:e3: b7:f0:68:31:b3:fd:b9:78:a2:f8:09:f0:01:5a:07: 64:11:d4:2f:f6:64:ab:ab:d7:a2:e0:ff:85:5d:d0: 0a:42:6a:9a:25:6f:fc:5e:c9:0e:3b:90:43:f3:95: a3:69:bd:dc:df:df:1c:1e:cf:c4:2b:b9:23:67:67: 76:8d:2f:1f:3c:da:ec:47:f9:9b:2a:71:f1:ea:56: 0f:4a:ff:b4:76:a5:be:54:80:cd:80:4e:44:b4:e0: ff:51:b4:64:df:2b:9f:59:4f:a5:17:76:bd:2e:f8: da:ff:a8:c6:2b:73:06:48:45:5f:5d:a1:9b:70:9f: 1a:5d:bf:7b:d7:13:90:28:c6:9f:77:b8:a1:d5:69: d6:bf:f3:7b:98:f9:2c:71:f5:fb:d1:6b:e0:b1:c5: cf:aa:71:8a:fe:a5:50:bb:0a:5a:e2:27:c4:29:a5: 33:a3:ad:3a:d0:33:99:bd:90:cd:b5:bb:96:4e:ad: 2e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:BA:4F:58:28:45:3B:39:94:A1:DF:2C:11:E5:DE:6C:20:57:84:8A X509v3 Authority Key Identifier: keyid:ED:BD:84:5A:95:97:FE:C4:AD:90:03:0F:90:18:E4:B8:B6:3F:CC:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/46302810-564c-45b7-8a72-ef6b8f6309c0/0/EDBD845A9597FEC4AD90030F9018E4B8B63FCC77.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EDBD845A9597FEC4AD90030F9018E4B8B63FCC77.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/46302810-564c-45b7-8a72-ef6b8f6309c0/0/323030313a6466343a6530303a3a2f34382d3438203d3e20313335343731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:e00::/48 Signature Algorithm: sha256WithRSAEncryption 02:7a:c2:e7:59:04:ab:e8:c5:a4:2d:c2:d7:2b:25:1e:23:34: 7c:45:f4:df:95:c5:69:9c:0b:18:73:c5:f3:43:fc:32:4d:86: ef:44:ce:c4:d3:0d:77:55:f6:ae:23:ae:47:63:e7:59:78:62: f8:9b:92:1d:bc:82:4b:d9:77:67:18:c1:35:7c:15:ec:57:e7: af:00:3c:9f:33:3d:3e:25:39:cc:fa:38:49:47:d6:8e:44:71: 62:8c:cd:72:fc:6a:47:a0:09:4d:60:9a:69:3f:47:d2:f5:55: e0:bd:fc:e4:00:ea:94:17:e1:6b:e8:41:0d:e1:f9:1f:f5:20: 85:4c:dd:37:0e:36:31:02:21:fa:e3:dd:01:1e:b7:4c:57:eb: 73:fa:1a:2d:7e:cd:66:ae:f6:d0:c5:27:de:ac:64:65:82:d0: d0:70:58:2f:92:90:e6:3d:30:cb:ab:dd:52:66:89:b2:38:5a: dd:94:da:3c:fc:6e:7d:4c:eb:43:61:5b:27:6a:ec:2c:c2:ac: 3a:b4:1b:db:b8:75:6d:9f:9e:0e:d8:9f:df:48:f6:72:be:ed: 8e:d0:a4:9b:a9:76:44:88:45:d4:85:ab:0c:fa:d4:f0:3a:e8: 2a:e9:97:f7:07:0f:33:39:8e:c5:6a:ef:e0:eb:2c:ab:da:ef: 3a:6d:da:cc -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIULu9C0m/DVFvyChiDupnzYSVVfnQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRURCRDg0NUE5NTk3RkVDNEFEOTAwMzBGOTAxOEU0QjhC NjNGQ0M3NzAeFw0yNDA3MDEwMDU4MjhaFw0yNTA2MzAwMTAzMjhaMDMxMTAvBgNV BAMTKEQyQkE0RjU4Mjg0NTNCMzk5NEExREYyQzExRTVERTZDMjA1Nzg0OEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuqpW8AxD7rRk4AqyLST+WgVW5 V1i/FlTLcWGDP8tdqHuZphWBd7UqHorvPTUuTWFDKdph0xeRUVDUFLZN7/AvcTSv RnNWUNwV47fwaDGz/bl4ovgJ8AFaB2QR1C/2ZKur16Lg/4Vd0ApCapolb/xeyQ47 kEPzlaNpvdzf3xwez8QruSNnZ3aNLx882uxH+ZsqcfHqVg9K/7R2pb5UgM2ATkS0 4P9RtGTfK59ZT6UXdr0u+Nr/qMYrcwZIRV9doZtwnxpdv3vXE5Aoxp93uKHVada/ 83uY+Sxx9fvRa+Cxxc+qcYr+pVC7ClriJ8QppTOjrTrQM5m9kM21u5ZOrS6nAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU0rpPWChFOzmUod8sEeXebCBXhIowHwYDVR0j BBgwFoAU7b2EWpWX/sStkAMPkBjkuLY/zHcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NjMwMjgxMC01NjRjLTQ1YjctOGE3Mi1lZjZiOGY2MzA5YzAvMC9FREJEODQ1QTk1 OTdGRUM0QUQ5MDAzMEY5MDE4RTRCOEI2M0ZDQzc3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRURCRDg0NUE5NTk3RkVDNEFEOTAwMzBGOTAxOEU0QjhCNjNG Q0M3Ny5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ2MzAyODEwLTU2NGMtNDViNy04 YTcyLWVmNmI4ZjYzMDljMC8wLzMyMzAzMDMxM2E2NDY2MzQzYTY1MzAzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNTM0MzczMS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfQO ADANBgkqhkiG9w0BAQsFAAOCAQEAAnrC51kEq+jFpC3C1yslHiM0fEX035XFaZwL GHPF80P8Mk2G70TOxNMNd1X2riOuR2PnWXhi+JuSHbyCS9l3ZxjBNXwV7FfnrwA8 nzM9PiU5zPo4SUfWjkRxYozNcvxqR6AJTWCaaT9H0vVV4L385ADqlBfha+hBDeH5 H/UghUzdNw42MQIh+uPdAR63TFfrc/oaLX7NZq720MUn3qxkZYLQ0HBYL5KQ5j0w y6vdUmaJsjha3ZTaPPxufUzrQ2FbJ2rsLMKsOrQb27h1bZ+eDtif30j2cr7tjtCk m6l2RIhF1IWrDPrU8DroKumX9wcPMzmOxWrv4Ossq9rvOm3azA== -----END CERTIFICATE-----Generated at Sun Nov 24 10:18:21 2024 by rpki-client on console-fra.rpki-client.org