$ rpki-client -vvf repo-rpki.idnic.net/repo/5fb808eb-c98e-4036-be9a-193bbcc64892/1/323030313a6466333a633234303a3a2f34382d3438203d3e20313532343430.roa File: 323030313a6466333a633234303a3a2f34382d3438203d3e20313532343430.roa (raw, json) Hash identifier: HIX12w1hRtEw2WIpg/C7sZlHeBUCQK6oOAWQVazCr/c= Subject key identifier: 68:40:32:B6:EA:5D:18:9B:B8:AB:05:04:30:B8:C1:E6:D1:88:79:BB Certificate issuer: /CN=11A839F5FB6B345FB1586C56F146C0D80026AB7E Certificate serial: 3BF7238995942E4CF700BF29F92F7C59ACA84AFA Authority key identifier: 11:A8:39:F5:FB:6B:34:5F:B1:58:6C:56:F1:46:C0:D8:00:26:AB:7E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11A839F5FB6B345FB1586C56F146C0D80026AB7E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5fb808eb-c98e-4036-be9a-193bbcc64892/1/323030313a6466333a633234303a3a2f34382d3438203d3e20313532343430.roa Signing time: Wed 19 Jun 2024 06:40:34 +0000 ROA not before: Wed 19 Jun 2024 06:35:34 +0000 ROA not after: Wed 18 Jun 2025 06:40:34 +0000 asID: 152440 IP address blocks: 2001:df3:c240::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5fb808eb-c98e-4036-be9a-193bbcc64892/1/11A839F5FB6B345FB1586C56F146C0D80026AB7E.crl rsync://repo-rpki.idnic.net/repo/5fb808eb-c98e-4036-be9a-193bbcc64892/1/11A839F5FB6B345FB1586C56F146C0D80026AB7E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11A839F5FB6B345FB1586C56F146C0D80026AB7E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Mar 2025 03:34:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:f7:23:89:95:94:2e:4c:f7:00:bf:29:f9:2f:7c:59:ac:a8:4a:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11A839F5FB6B345FB1586C56F146C0D80026AB7E Validity Not Before: Jun 19 06:35:34 2024 GMT Not After : Jun 18 06:40:34 2025 GMT Subject: CN=684032B6EA5D189BB8AB050430B8C1E6D18879BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:13:26:63:19:5f:61:db:34:0c:f4:96:ee:1f: 53:7b:86:36:54:41:4b:fc:9a:c5:d2:63:9b:83:53: 16:14:99:62:69:fc:d4:5b:91:de:0b:21:8f:bb:c7: a1:76:63:90:d5:9b:9d:27:63:55:5c:a3:5f:ea:b1: 71:cc:56:a1:44:fc:99:ad:f0:d4:49:aa:ba:1f:b0: 1c:af:be:5b:05:8b:fc:29:76:d8:ad:e8:89:b0:9e: 47:3f:05:0b:75:bd:08:a0:af:75:f7:ba:5b:3c:8d: d5:da:06:7a:e3:4c:8c:af:5a:e8:18:c3:70:4c:b8: 54:f9:db:6c:0e:34:73:50:71:76:20:57:8c:77:8c: 83:76:69:49:c6:a8:20:9d:09:70:08:33:63:b1:c6: 33:d9:5b:75:74:e5:37:de:88:47:c9:6d:d7:f3:db: 27:b3:a1:01:71:7a:36:db:ca:fc:dc:c3:b3:cb:b0: 75:37:7f:0d:c3:b2:a5:fd:31:10:68:03:1d:94:7b: 61:99:e6:e0:14:34:ca:8a:04:66:d8:43:e3:e5:98: 65:9e:1a:0d:46:4b:b7:9d:a9:6c:d7:8b:2a:9a:00: 92:7e:16:bb:42:1e:15:7b:40:5e:e4:d1:6d:31:d3: d2:82:8c:9b:89:ff:43:47:6c:ee:96:d7:f2:fa:07: e3:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:40:32:B6:EA:5D:18:9B:B8:AB:05:04:30:B8:C1:E6:D1:88:79:BB X509v3 Authority Key Identifier: keyid:11:A8:39:F5:FB:6B:34:5F:B1:58:6C:56:F1:46:C0:D8:00:26:AB:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5fb808eb-c98e-4036-be9a-193bbcc64892/1/11A839F5FB6B345FB1586C56F146C0D80026AB7E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11A839F5FB6B345FB1586C56F146C0D80026AB7E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5fb808eb-c98e-4036-be9a-193bbcc64892/1/323030313a6466333a633234303a3a2f34382d3438203d3e20313532343430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:c240::/48 Signature Algorithm: sha256WithRSAEncryption c4:f2:d7:e4:ed:5a:3a:88:df:44:73:5f:3e:77:2a:33:b2:c4: 95:c4:29:0a:af:6e:c8:85:ba:e2:15:f7:db:31:23:69:14:8c: d0:e0:da:fa:84:d0:1f:ce:1d:2c:da:26:4b:c6:09:bf:9d:07: 0a:e5:b4:4f:25:9b:60:80:0d:35:cc:fe:1e:77:e3:49:2d:eb: b7:f4:0b:02:cf:76:9a:06:f4:00:6f:05:fd:c4:e7:09:aa:01: 9c:6f:a7:00:e7:7e:ed:20:ab:25:62:c3:3d:f2:bd:45:dc:e8: 98:20:42:e4:50:75:52:86:02:3d:73:74:96:c6:3e:43:c5:d1: 49:1b:98:7c:db:12:e3:48:71:97:97:53:68:6d:c5:53:ff:1d: be:f7:d0:8d:2b:f0:7e:3f:eb:79:e4:b2:7d:fd:18:ec:83:52: 92:f8:df:4d:85:88:f2:5a:ed:2e:62:75:c4:35:35:e1:f3:0a: cb:49:a5:ee:c8:59:6d:14:78:9f:d7:9f:38:80:c5:f1:49:84: c7:d8:fd:7c:00:fc:ed:71:f5:b0:f0:54:15:d1:37:4a:2c:8a: bc:b5:b8:15:b6:11:6b:ff:35:bd:88:31:46:6f:b6:b4:86:4d: 94:5b:a0:c7:30:03:c3:ce:b4:3f:8e:f7:d2:d9:1e:83:2f:3b: e5:c4:97:87 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUO/cjiZWULkz3AL8p+S98WayoSvowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFBODM5RjVGQjZCMzQ1RkIxNTg2QzU2RjE0NkMwRDgw MDI2QUI3RTAeFw0yNDA2MTkwNjM1MzRaFw0yNTA2MTgwNjQwMzRaMDMxMTAvBgNV BAMTKDY4NDAzMkI2RUE1RDE4OUJCOEFCMDUwNDMwQjhDMUU2RDE4ODc5QkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjEyZjGV9h2zQM9JbuH1N7hjZU QUv8msXSY5uDUxYUmWJp/NRbkd4LIY+7x6F2Y5DVm50nY1Vco1/qsXHMVqFE/Jmt 8NRJqrofsByvvlsFi/wpdtit6Imwnkc/BQt1vQigr3X3uls8jdXaBnrjTIyvWugY w3BMuFT522wONHNQcXYgV4x3jIN2aUnGqCCdCXAIM2OxxjPZW3V05TfeiEfJbdfz 2yezoQFxejbbyvzcw7PLsHU3fw3DsqX9MRBoAx2Ue2GZ5uAUNMqKBGbYQ+PlmGWe Gg1GS7edqWzXiyqaAJJ+FrtCHhV7QF7k0W0x09KCjJuJ/0NHbO6W1/L6B+NHAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUaEAytupdGJu4qwUEMLjB5tGIebswHwYDVR0j BBgwFoAUEag59ftrNF+xWGxW8UbA2AAmq34wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZmI4MDhlYi1jOThlLTQwMzYtYmU5YS0xOTNiYmNjNjQ4OTIvMS8xMUE4MzlGNUZC NkIzNDVGQjE1ODZDNTZGMTQ2QzBEODAwMjZBQjdFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFBODM5RjVGQjZCMzQ1RkIxNTg2QzU2RjE0NkMwRDgwMDI2 QUI3RS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVmYjgwOGViLWM5OGUtNDAzNi1i ZTlhLTE5M2JiY2M2NDg5Mi8xLzMyMzAzMDMxM2E2NDY2MzMzYTYzMzIzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzQzNDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 88JAMA0GCSqGSIb3DQEBCwUAA4IBAQDE8tfk7Vo6iN9Ec18+dyozssSVxCkKr27I hbriFffbMSNpFIzQ4Nr6hNAfzh0s2iZLxgm/nQcK5bRPJZtggA01zP4ed+NJLeu3 9AsCz3aaBvQAbwX9xOcJqgGcb6cA537tIKslYsM98r1F3OiYIELkUHVShgI9c3SW xj5DxdFJG5h82xLjSHGXl1NobcVT/x2+99CNK/B+P+t55LJ9/Rjsg1KS+N9NhYjy Wu0uYnXENTXh8wrLSaXuyFltFHif1584gMXxSYTH2P18APztcfWw8FQV0TdKLIq8 tbgVthFr/zW9iDFGb7a0hk2UW6DHMAPDzrQ/jvfS2R6DLzvlxJeH -----END CERTIFICATE-----Generated at Tue Mar 11 05:01:38 2025 by rpki-client