$ rpki-client -vvf repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/1/323030313a6466333a373263303a3a2f34382d3438203d3e20313532333733.roa File: 323030313a6466333a373263303a3a2f34382d3438203d3e20313532333733.roa (raw, json) Hash identifier: EIanH44a3OZa7t5cqCO/qi16Elr//l0pXLiAros+AY4= Subject key identifier: BA:B0:52:1C:57:4B:71:31:A9:99:38:17:5A:7D:37:62:1F:EE:A3:44 Certificate issuer: /CN=1AC49AEAF48C9251C7913EA38CF4BAF8E40B7E4F Certificate serial: 6336F9CA53B27016AB6B8C09425799077A591FA8 Authority key identifier: 1A:C4:9A:EA:F4:8C:92:51:C7:91:3E:A3:8C:F4:BA:F8:E4:0B:7E:4F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AC49AEAF48C9251C7913EA38CF4BAF8E40B7E4F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/1/323030313a6466333a373263303a3a2f34382d3438203d3e20313532333733.roa Signing time: Thu 21 Mar 2024 19:34:14 +0000 ROA not before: Thu 21 Mar 2024 19:29:14 +0000 ROA not after: Thu 20 Mar 2025 19:34:14 +0000 asID: 152373 IP address blocks: 2001:df3:72c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/1/1AC49AEAF48C9251C7913EA38CF4BAF8E40B7E4F.crl rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/1/1AC49AEAF48C9251C7913EA38CF4BAF8E40B7E4F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AC49AEAF48C9251C7913EA38CF4BAF8E40B7E4F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 16:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:36:f9:ca:53:b2:70:16:ab:6b:8c:09:42:57:99:07:7a:59:1f:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1AC49AEAF48C9251C7913EA38CF4BAF8E40B7E4F Validity Not Before: Mar 21 19:29:14 2024 GMT Not After : Mar 20 19:34:14 2025 GMT Subject: CN=BAB0521C574B7131A99938175A7D37621FEEA344 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3c:7b:47:cd:0a:79:3c:b3:21:04:ec:4a:21: dc:2d:14:90:4f:d5:52:1a:60:80:43:a5:cc:f5:17: e9:dd:91:c2:ad:c5:a3:21:28:1b:e4:f9:ae:e3:c1: 09:db:68:c3:e8:96:2a:a6:53:bd:17:e2:02:56:fb: a2:2c:70:3c:87:8a:0b:75:c0:1b:4d:e9:7a:b3:2f: cd:87:b4:c7:3c:e1:42:a5:91:08:84:fb:34:13:f1: d6:84:14:81:5b:f0:df:17:c1:23:53:cf:a8:0f:3e: ab:ab:45:83:aa:94:cc:f7:23:0b:da:f6:a7:6a:97: 0e:42:ed:57:29:92:12:60:66:5b:15:7e:ed:e7:00: 4e:ca:60:32:f5:75:02:bf:86:28:0c:6c:ee:09:98: 94:8a:15:9c:b5:6c:75:bc:e9:e1:6d:5d:59:2e:f8: 10:d2:e6:72:2a:42:06:75:12:1d:fb:ba:75:27:46: 61:55:72:fa:da:df:3d:4f:6f:48:c4:89:e2:1d:a6: 61:ac:10:86:74:cc:97:61:11:12:32:11:29:6a:40: 66:8c:00:cd:c6:73:7a:d7:83:7f:c0:63:11:11:5d: c5:c0:3d:e1:2e:7d:52:cd:fe:14:c1:80:1b:a4:a0: fc:71:53:5d:9f:fe:11:83:d0:74:26:3c:63:04:b2: da:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:B0:52:1C:57:4B:71:31:A9:99:38:17:5A:7D:37:62:1F:EE:A3:44 X509v3 Authority Key Identifier: keyid:1A:C4:9A:EA:F4:8C:92:51:C7:91:3E:A3:8C:F4:BA:F8:E4:0B:7E:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/1/1AC49AEAF48C9251C7913EA38CF4BAF8E40B7E4F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AC49AEAF48C9251C7913EA38CF4BAF8E40B7E4F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/1/323030313a6466333a373263303a3a2f34382d3438203d3e20313532333733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:72c0::/48 Signature Algorithm: sha256WithRSAEncryption 56:f2:91:37:b6:a9:dd:0c:e3:73:32:86:2f:ca:87:6b:d3:42: 42:75:c3:ff:a7:b0:7f:be:18:39:36:9e:97:44:e2:78:68:cc: b0:a1:87:01:80:6a:1d:cc:65:7f:38:87:d5:e9:e0:bf:46:c1: 96:d7:f3:2b:76:c6:4e:04:63:1e:1e:0b:7b:87:3f:55:79:ab: 6f:03:2a:02:5a:ec:5b:e3:ba:a5:ab:85:73:05:20:3b:85:66: 2b:5c:92:be:3d:eb:3a:37:6c:8e:44:db:3e:17:cf:5a:f2:71: 9f:fb:04:70:f6:83:3a:4c:d6:c4:df:59:6a:41:32:5c:33:f5: eb:4a:4c:94:f0:d5:09:24:81:13:9e:32:01:e7:8d:d0:b3:43: ce:56:6b:1f:b0:e6:35:9c:58:95:ba:23:cc:97:4f:a1:f6:ef: 5c:e5:2e:27:37:72:18:b1:e1:f9:b9:98:58:5d:4f:51:35:36: d5:b9:1f:2d:70:bc:9d:ff:e7:cc:ce:7a:ab:02:48:91:50:1d: ff:93:a3:80:61:ad:43:e9:4d:b9:b7:43:47:62:1b:cb:06:2b: 00:a8:e6:49:35:0c:2b:1f:6a:b0:49:68:06:cf:a7:70:2e:63: 4c:0b:81:c2:49:31:36:85:0c:99:80:16:9a:b1:5d:76:6e:8c: f4:54:ae:b4 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUYzb5ylOycBara4wJQleZB3pZH6gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUFDNDlBRUFGNDhDOTI1MUM3OTEzRUEzOENGNEJBRjhF NDBCN0U0RjAeFw0yNDAzMjExOTI5MTRaFw0yNTAzMjAxOTM0MTRaMDMxMTAvBgNV BAMTKEJBQjA1MjFDNTc0QjcxMzFBOTk5MzgxNzVBN0QzNzYyMUZFRUEzNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9PHtHzQp5PLMhBOxKIdwtFJBP 1VIaYIBDpcz1F+ndkcKtxaMhKBvk+a7jwQnbaMPoliqmU70X4gJW+6IscDyHigt1 wBtN6XqzL82HtMc84UKlkQiE+zQT8daEFIFb8N8XwSNTz6gPPqurRYOqlMz3Iwva 9qdqlw5C7VcpkhJgZlsVfu3nAE7KYDL1dQK/higMbO4JmJSKFZy1bHW86eFtXVku +BDS5nIqQgZ1Eh37unUnRmFVcvra3z1Pb0jEieIdpmGsEIZ0zJdhERIyESlqQGaM AM3Gc3rXg3/AYxERXcXAPeEufVLN/hTBgBukoPxxU12f/hGD0HQmPGMEstrTAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUurBSHFdLcTGpmTgXWn03Yh/uo0QwHwYDVR0j BBgwFoAUGsSa6vSMklHHkT6jjPS6+OQLfk8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MTIzNGM0YS1hOGZmLTQwMzYtODQyMC1kYTgxNjIxMTE4MDYvMS8xQUM0OUFFQUY0 OEM5MjUxQzc5MTNFQTM4Q0Y0QkFGOEU0MEI3RTRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUFDNDlBRUFGNDhDOTI1MUM3OTEzRUEzOENGNEJBRjhFNDBC N0U0Ri5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxMjM0YzRhLWE4ZmYtNDAzNi04 NDIwLWRhODE2MjExMTgwNi8xLzMyMzAzMDMxM2E2NDY2MzMzYTM3MzI2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzMzNzMzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 83LAMA0GCSqGSIb3DQEBCwUAA4IBAQBW8pE3tqndDONzMoYvyodr00JCdcP/p7B/ vhg5Np6XROJ4aMywoYcBgGodzGV/OIfV6eC/RsGW1/MrdsZOBGMeHgt7hz9Veatv AyoCWuxb47qlq4VzBSA7hWYrXJK+Pes6N2yORNs+F89a8nGf+wRw9oM6TNbE31lq QTJcM/XrSkyU8NUJJIETnjIB543Qs0POVmsfsOY1nFiVuiPMl0+h9u9c5S4nN3IY seH5uZhYXU9RNTbVuR8tcLyd/+fMznqrAkiRUB3/k6OAYa1D6U25t0NHYhvLBisA qOZJNQwrH2qwSWgGz6dwLmNMC4HCSTE2hQyZgBaasV12boz0VK60 -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:43 2024 by rpki-client on console-fra.rpki-client.org