$ rpki-client -vvf repo-rpki.idnic.net/repo/5bd4340b-21c4-4fc7-a259-e2354c53fdd2/0/323030313a6466373a376130303a3a2f34382d3438203d3e20313336303537.roa File: 323030313a6466373a376130303a3a2f34382d3438203d3e20313336303537.roa (raw, json) Hash identifier: 6Z6gxTWfD3ARKqfG9o8QF6TpfuXdMJbjFHfFmTtyniQ= Subject key identifier: 5A:F6:0C:3A:DA:23:84:0B:FA:3A:2C:68:BA:AF:4E:54:50:97:7E:25 Certificate issuer: /CN=90173425DBB7D1DBD164BBA26F4657B17A266A97 Certificate serial: 72865DF5BF45DE9852B1860E34CAECD8D28912DD Authority key identifier: 90:17:34:25:DB:B7:D1:DB:D1:64:BB:A2:6F:46:57:B1:7A:26:6A:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90173425DBB7D1DBD164BBA26F4657B17A266A97.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5bd4340b-21c4-4fc7-a259-e2354c53fdd2/0/323030313a6466373a376130303a3a2f34382d3438203d3e20313336303537.roa Signing time: Thu 19 Sep 2024 08:00:00 +0000 ROA not before: Thu 19 Sep 2024 07:55:00 +0000 ROA not after: Thu 18 Sep 2025 08:00:00 +0000 asID: 136057 IP address blocks: 2001:df7:7a00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5bd4340b-21c4-4fc7-a259-e2354c53fdd2/0/90173425DBB7D1DBD164BBA26F4657B17A266A97.crl rsync://repo-rpki.idnic.net/repo/5bd4340b-21c4-4fc7-a259-e2354c53fdd2/0/90173425DBB7D1DBD164BBA26F4657B17A266A97.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90173425DBB7D1DBD164BBA26F4657B17A266A97.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:86:5d:f5:bf:45:de:98:52:b1:86:0e:34:ca:ec:d8:d2:89:12:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90173425DBB7D1DBD164BBA26F4657B17A266A97 Validity Not Before: Sep 19 07:55:00 2024 GMT Not After : Sep 18 08:00:00 2025 GMT Subject: CN=5AF60C3ADA23840BFA3A2C68BAAF4E5450977E25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:9c:e7:75:db:e8:0e:db:52:7b:81:d3:1b:92: 67:33:a2:17:3f:a7:08:3a:b6:5e:7e:94:c1:26:33: 97:81:5a:28:16:fa:04:56:fe:cd:9f:e6:fc:58:07: 73:b6:8a:49:f6:7b:0e:23:52:90:5f:90:a5:f6:32: 82:57:e2:d8:a5:57:2f:e3:ec:ef:b0:76:83:d8:e9: 39:d2:40:90:ed:af:89:07:5a:6a:5a:84:45:70:a9: 22:c2:89:78:10:de:ee:71:c6:59:fc:7a:a7:48:3d: 90:79:71:a7:14:60:8c:71:a3:77:81:98:ed:15:ae: da:65:c9:a7:c3:f5:1b:ca:96:1f:4e:06:14:b5:4d: e9:c8:59:22:03:06:59:d3:81:ca:53:ac:2d:f4:a0: 6b:9b:27:89:9d:90:4a:e6:0f:a6:d5:8b:71:e4:79: 74:f1:cd:25:4d:d6:b4:8d:6d:03:d9:ae:7d:43:de: 02:03:48:7e:2e:71:70:37:83:8e:c5:51:52:05:a7: 70:85:a9:8f:8c:81:87:f3:86:52:69:1f:5b:37:f0: 26:66:b4:ec:83:78:a4:25:e1:6f:ba:83:0e:59:b1: d3:5c:69:17:ab:99:32:49:86:1f:17:39:f9:d1:ee: 0a:c8:a9:88:89:66:76:e1:f2:bb:6a:75:70:cd:04: 8b:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:F6:0C:3A:DA:23:84:0B:FA:3A:2C:68:BA:AF:4E:54:50:97:7E:25 X509v3 Authority Key Identifier: keyid:90:17:34:25:DB:B7:D1:DB:D1:64:BB:A2:6F:46:57:B1:7A:26:6A:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5bd4340b-21c4-4fc7-a259-e2354c53fdd2/0/90173425DBB7D1DBD164BBA26F4657B17A266A97.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90173425DBB7D1DBD164BBA26F4657B17A266A97.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5bd4340b-21c4-4fc7-a259-e2354c53fdd2/0/323030313a6466373a376130303a3a2f34382d3438203d3e20313336303537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:7a00::/48 Signature Algorithm: sha256WithRSAEncryption 8a:d5:3a:a2:f2:8f:76:96:04:df:70:48:52:e7:2f:f4:a1:9e: 5e:17:00:5f:47:fb:5a:82:b5:0e:f6:84:f2:b2:df:bf:d1:4f: ff:ef:37:e2:a4:43:89:e4:49:3e:e5:a1:ab:9e:51:0e:11:8e: a1:57:b5:ee:e2:b3:49:d6:28:3e:59:dc:82:36:e0:e6:2c:43: 6b:e2:92:c4:53:71:62:7f:a9:0e:fd:24:7f:2c:e6:f9:20:31: 65:74:9d:86:2d:c9:22:d9:e1:f0:68:e4:53:a5:85:82:3b:bd: b8:e3:17:3d:87:17:ac:69:fd:2e:53:55:38:6b:c5:35:fa:a1: a6:7e:6c:a6:96:fd:b6:77:34:4e:d1:05:c2:a7:75:52:b0:e6: e4:84:5c:9d:25:ae:47:32:47:c5:85:b5:7f:b5:1a:0c:a1:12: f0:22:ec:7f:ac:a6:77:23:5d:f6:3c:1c:8e:81:76:df:63:90: f7:58:bc:e0:f0:cd:1f:bb:55:1f:3d:f5:d7:97:54:c1:06:c6: cf:a0:a3:a0:c0:3b:55:e6:a8:d4:60:10:26:44:32:ac:0f:fc: 75:17:93:66:7a:b4:de:55:d2:3d:a8:f0:43:f4:cd:d1:f1:51: 7a:d8:84:5e:75:45:22:9d:31:89:bc:ca:50:f0:c3:f6:ae:48: 9c:bb:51:fb -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUcoZd9b9F3phSsYYONMrs2NKJEt0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTAxNzM0MjVEQkI3RDFEQkQxNjRCQkEyNkY0NjU3QjE3 QTI2NkE5NzAeFw0yNDA5MTkwNzU1MDBaFw0yNTA5MTgwODAwMDBaMDMxMTAvBgNV BAMTKDVBRjYwQzNBREEyMzg0MEJGQTNBMkM2OEJBQUY0RTU0NTA5NzdFMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFnOd12+gO21J7gdMbkmczohc/ pwg6tl5+lMEmM5eBWigW+gRW/s2f5vxYB3O2ikn2ew4jUpBfkKX2MoJX4tilVy/j 7O+wdoPY6TnSQJDtr4kHWmpahEVwqSLCiXgQ3u5xxln8eqdIPZB5cacUYIxxo3eB mO0VrtplyafD9RvKlh9OBhS1TenIWSIDBlnTgcpTrC30oGubJ4mdkErmD6bVi3Hk eXTxzSVN1rSNbQPZrn1D3gIDSH4ucXA3g47FUVIFp3CFqY+MgYfzhlJpH1s38CZm tOyDeKQl4W+6gw5ZsdNcaRermTJJhh8XOfnR7grIqYiJZnbh8rtqdXDNBIsRAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUWvYMOtojhAv6Oixouq9OVFCXfiUwHwYDVR0j BBgwFoAUkBc0Jdu30dvRZLuib0ZXsXomapcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YmQ0MzQwYi0yMWM0LTRmYzctYTI1OS1lMjM1NGM1M2ZkZDIvMC85MDE3MzQyNURC QjdEMURCRDE2NEJCQTI2RjQ2NTdCMTdBMjY2QTk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTAxNzM0MjVEQkI3RDFEQkQxNjRCQkEyNkY0NjU3QjE3QTI2 NkE5Ny5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzViZDQzNDBiLTIxYzQtNGZjNy1h MjU5LWUyMzU0YzUzZmRkMi8wLzMyMzAzMDMxM2E2NDY2MzczYTM3NjEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzAzNTM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 93oAMA0GCSqGSIb3DQEBCwUAA4IBAQCK1Tqi8o92lgTfcEhS5y/0oZ5eFwBfR/ta grUO9oTyst+/0U//7zfipEOJ5Ek+5aGrnlEOEY6hV7Xu4rNJ1ig+WdyCNuDmLENr 4pLEU3Fif6kO/SR/LOb5IDFldJ2GLcki2eHwaORTpYWCO7244xc9hxesaf0uU1U4 a8U1+qGmfmymlv22dzRO0QXCp3VSsObkhFydJa5HMkfFhbV/tRoMoRLwIux/rKZ3 I132PByOgXbfY5D3WLzg8M0fu1UfPfXXl1TBBsbPoKOgwDtV5qjUYBAmRDKsD/x1 F5NmerTeVdI9qPBD9M3R8VF62IRedUUinTGJvMpQ8MP2rkicu1H7 -----END CERTIFICATE-----Generated at Thu Nov 21 09:07:04 2024 by rpki-client on console-ams.rpki-client.org