$ rpki-client -vvf repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/323030313a6466323a383163303a3a2f34382d3438203d3e20313432333839.roa File: 323030313a6466323a383163303a3a2f34382d3438203d3e20313432333839.roa (raw, json) Hash identifier: 5eQlD68HaKHERHfII59DwwAA8bgfmp1d8Ez+zw7QzCU= Subject key identifier: EC:BC:2E:65:5C:B1:39:3C:1B:DC:18:31:11:B3:52:C3:99:4F:2F:0A Certificate issuer: /CN=A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC Certificate serial: 1744C1B201A4919DD71BEFE8BFD453609FC4BB88 Authority key identifier: A9:CC:42:A0:5B:0D:6C:A3:79:60:F7:C2:AB:E4:B4:64:DB:56:AC:AC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/323030313a6466323a383163303a3a2f34382d3438203d3e20313432333839.roa Signing time: Fri 07 Jun 2024 08:01:01 +0000 ROA not before: Fri 07 Jun 2024 07:56:01 +0000 ROA not after: Fri 06 Jun 2025 08:01:01 +0000 asID: 142389 IP address blocks: 2001:df2:81c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.crl rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 14:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:44:c1:b2:01:a4:91:9d:d7:1b:ef:e8:bf:d4:53:60:9f:c4:bb:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC Validity Not Before: Jun 7 07:56:01 2024 GMT Not After : Jun 6 08:01:01 2025 GMT Subject: CN=ECBC2E655CB1393C1BDC183111B352C3994F2F0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:7d:7a:12:25:00:66:75:5e:b9:ee:43:ea:57: 7d:4e:12:6b:d3:39:da:7c:87:85:87:0b:a9:b6:da: 52:78:ea:63:6c:26:3a:48:fc:e1:07:31:7a:15:c1: 67:cc:1e:24:9d:22:6c:62:28:a1:2b:05:35:3f:80: eb:44:a0:83:fc:d5:5a:a0:c2:67:3d:56:5c:86:f6: b8:e9:57:c2:6f:87:24:1f:28:9a:04:d5:af:cd:e1: 9c:52:8f:b7:f5:cc:02:b3:69:e0:8e:0a:54:1f:fe: 35:bd:d7:7f:7b:f3:af:99:b8:eb:b6:5f:c8:c5:db: eb:a3:ac:3d:ef:73:90:e8:a8:78:43:cc:b3:b5:5a: 7d:e8:c5:b6:72:36:11:7a:fa:bb:7c:8c:21:21:d9: a8:ff:5c:c4:7f:25:92:2b:8f:5a:90:0e:a7:37:e4: 8a:b1:d6:98:8a:91:3d:69:15:f9:22:1a:4d:f6:f7: 85:5e:ce:88:9e:cb:87:84:27:2a:3b:87:3c:ad:1b: 89:32:32:d1:b1:70:c7:68:2a:67:07:6b:77:47:8c: 68:93:46:5a:da:10:c6:13:43:e3:6f:5d:82:bc:08: 57:2e:48:72:fe:c1:5e:f4:cc:09:81:3f:60:bb:15: d8:dd:cd:17:99:c6:b1:dd:76:fd:42:69:a8:d2:7c: 5a:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:BC:2E:65:5C:B1:39:3C:1B:DC:18:31:11:B3:52:C3:99:4F:2F:0A X509v3 Authority Key Identifier: keyid:A9:CC:42:A0:5B:0D:6C:A3:79:60:F7:C2:AB:E4:B4:64:DB:56:AC:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/323030313a6466323a383163303a3a2f34382d3438203d3e20313432333839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:81c0::/48 Signature Algorithm: sha256WithRSAEncryption 21:91:4b:9d:a7:ff:4d:63:1c:c7:4a:64:1e:ef:a1:47:21:f4: e6:4c:23:83:f9:53:fe:0d:fe:29:6f:c8:0d:ee:ad:12:7d:a6: e7:59:25:4d:ce:ca:37:1b:b0:66:37:cc:91:88:df:9c:3d:bf: f4:9e:47:65:04:af:45:4f:1b:6d:f4:04:f0:eb:e0:a9:c4:5e: 69:b0:1c:1b:72:fe:2f:91:fb:1a:17:5e:a1:4c:99:bd:9c:c1: 87:1a:ab:e4:f3:16:99:62:28:79:92:55:b1:6f:31:2b:6e:f8: be:3a:8f:5a:8e:86:3a:da:73:cc:e8:aa:7d:14:08:ee:69:f1: fe:c6:f7:da:6c:a6:92:71:68:b7:ec:a3:2e:fe:2b:10:e8:c7: 7d:69:00:e1:b6:26:bc:f3:18:e2:b9:f2:c6:3b:80:71:cb:9e: c3:72:47:5d:2b:2f:05:d6:4e:16:a4:01:58:23:32:01:e3:3d: 05:70:27:16:98:93:b1:6d:51:4c:38:e9:6e:a4:f9:bf:9d:36: 3d:89:2a:ed:4d:ba:1b:77:af:52:21:85:fe:46:12:9e:6b:52: 87:55:5d:53:72:3e:cf:fb:6f:9e:df:32:1e:b1:97:ca:ae:14: 61:9f:b9:3b:f0:7e:d8:47:70:0b:68:f6:bb:35:5b:af:c8:10: 11:a4:6d:77 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUF0TBsgGkkZ3XG+/ov9RTYJ/Eu4gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlDQzQyQTA1QjBENkNBMzc5NjBGN0MyQUJFNEI0NjRE QjU2QUNBQzAeFw0yNDA2MDcwNzU2MDFaFw0yNTA2MDYwODAxMDFaMDMxMTAvBgNV BAMTKEVDQkMyRTY1NUNCMTM5M0MxQkRDMTgzMTExQjM1MkMzOTk0RjJGMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDefXoSJQBmdV657kPqV31OEmvT Odp8h4WHC6m22lJ46mNsJjpI/OEHMXoVwWfMHiSdImxiKKErBTU/gOtEoIP81Vqg wmc9VlyG9rjpV8JvhyQfKJoE1a/N4ZxSj7f1zAKzaeCOClQf/jW9139786+ZuOu2 X8jF2+ujrD3vc5DoqHhDzLO1Wn3oxbZyNhF6+rt8jCEh2aj/XMR/JZIrj1qQDqc3 5Iqx1piKkT1pFfkiGk3294Vezoiey4eEJyo7hzytG4kyMtGxcMdoKmcHa3dHjGiT RlraEMYTQ+NvXYK8CFcuSHL+wV70zAmBP2C7FdjdzReZxrHddv1CaajSfFqHAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU7LwuZVyxOTwb3BgxEbNSw5lPLwowHwYDVR0j BBgwFoAUqcxCoFsNbKN5YPfCq+S0ZNtWrKwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZDc5ZTdhNy0xYWFlLTRlNTItYmFjMy04ZjdjNjdhZTBhMDQvMC9BOUNDNDJBMDVC MEQ2Q0EzNzk2MEY3QzJBQkU0QjQ2NERCNTZBQ0FDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTlDQzQyQTA1QjBENkNBMzc5NjBGN0MyQUJFNEI0NjREQjU2 QUNBQy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkNzllN2E3LTFhYWUtNGU1Mi1i YWMzLThmN2M2N2FlMGEwNC8wLzMyMzAzMDMxM2E2NDY2MzIzYTM4MzE2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMyMzMzODM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8oHAMA0GCSqGSIb3DQEBCwUAA4IBAQAhkUudp/9NYxzHSmQe76FHIfTmTCOD+VP+ Df4pb8gN7q0SfabnWSVNzso3G7BmN8yRiN+cPb/0nkdlBK9FTxtt9ATw6+CpxF5p sBwbcv4vkfsaF16hTJm9nMGHGqvk8xaZYih5klWxbzErbvi+Oo9ajoY62nPM6Kp9 FAjuafH+xvfabKaScWi37KMu/isQ6Md9aQDhtia88xjiufLGO4Bxy57DckddKy8F 1k4WpAFYIzIB4z0FcCcWmJOxbVFMOOlupPm/nTY9iSrtTbobd69SIYX+RhKea1KH VV1Tcj7P+2+e3zIesZfKrhRhn7k78H7YR3ALaPa7NVuvyBARpG13 -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:11 2024 by rpki-client on console-fra.rpki-client.org