$ rpki-client -vvf repo-rpki.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/1/323030313a6466333a393034303a3a2f34382d3438203d3e20313532343139.roa File: 323030313a6466333a393034303a3a2f34382d3438203d3e20313532343139.roa (raw, json) Hash identifier: c9Rvt/abGoPRa3S2LeoVmElcfdM1+ZE/YizXc5x84jk= Subject key identifier: 1A:D5:0E:75:DE:96:AB:16:EB:85:84:0E:C8:7C:41:E2:64:D7:2F:14 Certificate issuer: /CN=05671A0ACAB26B342648AFFAC0C66ECB5A493DAB Certificate serial: 763C85A42255DA4A009F59AE4772486D799EFBE3 Authority key identifier: 05:67:1A:0A:CA:B2:6B:34:26:48:AF:FA:C0:C6:6E:CB:5A:49:3D:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/05671A0ACAB26B342648AFFAC0C66ECB5A493DAB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/1/323030313a6466333a393034303a3a2f34382d3438203d3e20313532343139.roa Signing time: Wed 24 Apr 2024 19:09:12 +0000 ROA not before: Wed 24 Apr 2024 19:04:12 +0000 ROA not after: Wed 23 Apr 2025 19:09:12 +0000 asID: 152419 IP address blocks: 2001:df3:9040::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/1/05671A0ACAB26B342648AFFAC0C66ECB5A493DAB.crl rsync://repo-rpki.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/1/05671A0ACAB26B342648AFFAC0C66ECB5A493DAB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/05671A0ACAB26B342648AFFAC0C66ECB5A493DAB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 10:52:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:3c:85:a4:22:55:da:4a:00:9f:59:ae:47:72:48:6d:79:9e:fb:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05671A0ACAB26B342648AFFAC0C66ECB5A493DAB Validity Not Before: Apr 24 19:04:12 2024 GMT Not After : Apr 23 19:09:12 2025 GMT Subject: CN=1AD50E75DE96AB16EB85840EC87C41E264D72F14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:da:90:c4:61:38:4b:56:70:ca:9d:eb:3b:80: 63:dc:32:03:a9:2b:2f:1d:76:c8:2d:ee:5f:b0:b5: cb:91:ef:fb:3d:2a:c0:ab:e9:8a:fa:93:b2:7c:46: 54:6a:c0:30:0c:e0:08:88:4d:a6:a6:4d:fa:a7:cb: a9:ba:b6:75:37:54:fb:c9:43:56:fd:ae:df:41:c5: 65:47:7b:5c:cf:1e:03:e6:ab:ce:1c:84:4a:68:35: d8:b5:d4:51:4e:24:10:6a:c2:ae:24:bf:76:83:3a: 81:e3:6d:ea:fd:78:98:5b:1c:e1:f1:b9:f3:96:60: 65:dd:8e:10:a3:de:f3:76:63:37:4d:ef:46:9c:f5: 1c:14:0a:90:e2:e9:7e:2b:9e:2f:0b:c4:26:1d:89: ba:3d:e2:6b:f2:6d:14:2a:b5:28:f2:2a:02:b6:2d: 9c:59:05:88:bf:4c:20:e0:12:4b:aa:64:5c:50:bd: 57:81:31:78:4e:53:a2:56:0d:42:7f:70:0d:56:11: 69:15:13:10:dc:d2:29:b6:e2:03:63:0e:dc:de:ab: 45:ab:74:c8:9d:74:ee:3f:b1:1d:20:ad:23:88:4d: f3:20:52:c5:64:5a:2a:aa:75:53:01:c3:cf:f8:43: 61:6d:15:cd:5e:98:b8:a9:db:0b:fe:2e:94:ca:1c: ea:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:D5:0E:75:DE:96:AB:16:EB:85:84:0E:C8:7C:41:E2:64:D7:2F:14 X509v3 Authority Key Identifier: keyid:05:67:1A:0A:CA:B2:6B:34:26:48:AF:FA:C0:C6:6E:CB:5A:49:3D:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/1/05671A0ACAB26B342648AFFAC0C66ECB5A493DAB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/05671A0ACAB26B342648AFFAC0C66ECB5A493DAB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/1/323030313a6466333a393034303a3a2f34382d3438203d3e20313532343139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:9040::/48 Signature Algorithm: sha256WithRSAEncryption 7c:fb:d4:11:59:93:f5:89:fa:58:3f:d6:7f:fc:97:3d:82:ca: 01:e7:a8:17:e7:89:e3:67:ef:73:b0:83:c3:b3:ee:4a:2e:24: 0b:58:c5:11:d7:ba:ad:8e:91:ef:87:2e:83:06:67:7c:88:5f: c5:a4:c6:1e:c2:4e:df:5b:98:96:1e:86:5a:dc:e8:7e:89:6e: 78:6f:75:40:c9:9c:bb:04:b1:52:fd:36:5b:64:0d:17:f1:ce: 2f:69:7b:44:fe:0a:c6:c6:33:20:0f:f9:32:8e:47:2a:48:e6: 8c:3b:17:42:a5:9a:76:32:c7:c8:62:75:18:17:1e:60:78:b4: de:a6:7a:12:10:7d:30:d9:45:a4:d7:ce:ed:d6:54:73:e4:b7: df:d6:68:ea:4f:b4:95:10:c9:bc:4d:fa:9c:63:4f:4d:08:c4: 36:81:01:25:67:eb:8e:40:d2:6f:7e:50:e0:6d:a7:25:c8:7e: 9d:88:8b:77:fa:98:0e:59:38:ff:59:90:45:c4:43:82:ae:3b: 2a:ba:e4:ec:58:d1:e4:ba:96:bb:d8:e2:55:14:80:39:1a:d9: ae:fe:81:76:25:85:6e:01:1a:12:8d:5d:6d:01:7d:05:eb:56: 89:e8:3e:d9:bd:42:69:61:38:2a:19:c9:2b:43:62:32:de:42: dd:16:96:ef -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUdjyFpCJV2koAn1muR3JIbXme++MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDU2NzFBMEFDQUIyNkIzNDI2NDhBRkZBQzBDNjZFQ0I1 QTQ5M0RBQjAeFw0yNDA0MjQxOTA0MTJaFw0yNTA0MjMxOTA5MTJaMDMxMTAvBgNV BAMTKDFBRDUwRTc1REU5NkFCMTZFQjg1ODQwRUM4N0M0MUUyNjRENzJGMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp2pDEYThLVnDKnes7gGPcMgOp Ky8ddsgt7l+wtcuR7/s9KsCr6Yr6k7J8RlRqwDAM4AiITaamTfqny6m6tnU3VPvJ Q1b9rt9BxWVHe1zPHgPmq84chEpoNdi11FFOJBBqwq4kv3aDOoHjber9eJhbHOHx ufOWYGXdjhCj3vN2YzdN70ac9RwUCpDi6X4rni8LxCYdibo94mvybRQqtSjyKgK2 LZxZBYi/TCDgEkuqZFxQvVeBMXhOU6JWDUJ/cA1WEWkVExDc0im24gNjDtzeq0Wr dMiddO4/sR0grSOITfMgUsVkWiqqdVMBw8/4Q2FtFc1emLip2wv+LpTKHOrbAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUGtUOdd6WqxbrhYQOyHxB4mTXLxQwHwYDVR0j BBgwFoAUBWcaCsqyazQmSK/6wMZuy1pJPaswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDgyM2JiMy01YTAxLTQ2NTgtYTc4My1mOGU4OWZhZGNmNDUvMS8wNTY3MUEwQUNB QjI2QjM0MjY0OEFGRkFDMEM2NkVDQjVBNDkzREFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDU2NzFBMEFDQUIyNkIzNDI2NDhBRkZBQzBDNjZFQ0I1QTQ5 M0RBQi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkODIzYmIzLTVhMDEtNDY1OC1h NzgzLWY4ZTg5ZmFkY2Y0NS8xLzMyMzAzMDMxM2E2NDY2MzMzYTM5MzAzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzQzMTM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 85BAMA0GCSqGSIb3DQEBCwUAA4IBAQB8+9QRWZP1ifpYP9Z//Jc9gsoB56gX54nj Z+9zsIPDs+5KLiQLWMUR17qtjpHvhy6DBmd8iF/FpMYewk7fW5iWHoZa3Oh+iW54 b3VAyZy7BLFS/TZbZA0X8c4vaXtE/grGxjMgD/kyjkcqSOaMOxdCpZp2MsfIYnUY Fx5geLTepnoSEH0w2UWk187t1lRz5Lff1mjqT7SVEMm8TfqcY09NCMQ2gQElZ+uO QNJvflDgbaclyH6diIt3+pgOWTj/WZBFxEOCrjsquuTsWNHkupa72OJVFIA5Gtmu /oF2JYVuARoSjV1tAX0F61aJ6D7ZvUJpYTgqGckrQ2Iy3kLdFpbv -----END CERTIFICATE-----Generated at Tue Mar 11 05:00:27 2025 by rpki-client