$ rpki-client -vvf repo-rpki.idnic.net/repo/60442043-244e-4b87-b00c-e57f4871d0ef/0/323030313a6466303a3261373a3a2f34382d3438203d3e203535363937.roa File: 323030313a6466303a3261373a3a2f34382d3438203d3e203535363937.roa (raw, json) Hash identifier: eJjCelSFgyjk+y+IHCyYFMftgYEJnsQUr4uQb3lyrQQ= Subject key identifier: 4C:12:CC:15:F4:F2:D9:F0:75:EB:85:B3:F4:25:1B:5C:A0:B5:2E:E0 Certificate issuer: /CN=1FA59BCEE428AFC03264229113A5539024697A14 Certificate serial: 0492A830A579B95104AAFA51B314888A44705B66 Authority key identifier: 1F:A5:9B:CE:E4:28:AF:C0:32:64:22:91:13:A5:53:90:24:69:7A:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FA59BCEE428AFC03264229113A5539024697A14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/60442043-244e-4b87-b00c-e57f4871d0ef/0/323030313a6466303a3261373a3a2f34382d3438203d3e203535363937.roa Signing time: Mon 01 Jul 2024 01:04:17 +0000 ROA not before: Mon 01 Jul 2024 00:59:17 +0000 ROA not after: Mon 30 Jun 2025 01:04:17 +0000 asID: 55697 IP address blocks: 2001:df0:2a7::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/60442043-244e-4b87-b00c-e57f4871d0ef/0/1FA59BCEE428AFC03264229113A5539024697A14.crl rsync://repo-rpki.idnic.net/repo/60442043-244e-4b87-b00c-e57f4871d0ef/0/1FA59BCEE428AFC03264229113A5539024697A14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FA59BCEE428AFC03264229113A5539024697A14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:92:a8:30:a5:79:b9:51:04:aa:fa:51:b3:14:88:8a:44:70:5b:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1FA59BCEE428AFC03264229113A5539024697A14 Validity Not Before: Jul 1 00:59:17 2024 GMT Not After : Jun 30 01:04:17 2025 GMT Subject: CN=4C12CC15F4F2D9F075EB85B3F4251B5CA0B52EE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:14:32:a0:ed:a0:1a:85:fb:1b:41:56:82:a4: 33:ab:b7:15:9e:ba:74:dd:a2:0d:fe:a4:c8:01:f9: 50:ee:1a:30:de:26:c3:81:5b:38:ca:09:74:44:d0: f5:91:4d:80:de:1d:7f:00:75:82:56:30:57:a6:26: 63:53:a8:37:3b:fa:de:b2:6e:cf:b1:2e:cf:c1:2b: 24:a0:ef:8a:85:2d:d6:b7:83:f2:59:7e:2a:91:c3: 74:05:4a:44:4f:e3:10:0d:0a:b0:21:22:e6:01:24: 16:70:95:44:94:0b:ed:94:d8:e9:6e:70:2c:6c:d1: 38:b4:a6:52:6d:f0:c1:44:60:36:d8:30:38:45:3d: 4b:d9:07:44:3d:06:c3:07:62:2a:0b:5c:26:ba:b4: aa:4f:f5:5f:ae:20:e9:20:3b:1e:3a:3d:12:73:e1: 4f:f1:82:ee:a9:77:49:60:cd:2b:91:bf:67:73:49: 18:c9:35:7c:74:b5:e4:38:e5:58:f6:a9:dc:d9:e3: c3:5f:54:c9:4e:63:37:ec:ff:41:bc:ff:7c:6e:c4: 86:c1:0a:c1:44:5a:75:4c:ff:6c:b8:1c:02:cc:c0: 29:f5:b2:ac:27:59:c6:84:fc:81:08:a5:c3:11:38: 74:d6:f5:c2:24:e7:c9:85:ee:38:f3:90:11:6c:5f: 6e:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:12:CC:15:F4:F2:D9:F0:75:EB:85:B3:F4:25:1B:5C:A0:B5:2E:E0 X509v3 Authority Key Identifier: keyid:1F:A5:9B:CE:E4:28:AF:C0:32:64:22:91:13:A5:53:90:24:69:7A:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/60442043-244e-4b87-b00c-e57f4871d0ef/0/1FA59BCEE428AFC03264229113A5539024697A14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FA59BCEE428AFC03264229113A5539024697A14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/60442043-244e-4b87-b00c-e57f4871d0ef/0/323030313a6466303a3261373a3a2f34382d3438203d3e203535363937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:2a7::/48 Signature Algorithm: sha256WithRSAEncryption 02:5c:8b:2f:a6:65:b7:8d:90:06:2b:5b:05:bb:46:ef:2b:13: c8:33:c9:41:03:84:7f:74:29:c8:d6:c1:7c:9f:4e:c6:2c:3f: 8a:72:24:8b:9e:f7:30:5a:9f:c9:ba:06:40:08:e1:1f:17:fc: f1:61:d1:6e:bc:c6:f5:fd:a3:9e:9b:bd:31:d6:2f:77:0d:fe: 9a:f6:ec:96:ee:13:bb:e0:7e:27:5f:40:a2:19:5b:88:3d:59: b6:c0:a2:8e:e0:b5:fb:4d:fd:04:f2:5b:ac:d2:f1:57:83:d4: cf:73:6b:fe:52:a7:28:c0:80:c6:53:42:f6:9b:23:a1:ae:2e: 33:1c:a6:06:1d:f6:fc:cd:9b:be:ea:b0:7b:e7:16:a9:3d:d3: 97:d5:0e:2b:e8:88:8c:98:11:6e:fd:39:12:6f:b0:ec:b9:99: db:ae:3b:76:71:c2:39:e6:03:9c:42:ec:07:c4:f9:fe:66:f0: 5e:39:2f:36:13:06:32:8e:3a:62:20:8f:e0:d5:78:40:2c:88: e5:e8:2c:8b:15:e3:c5:79:ce:a8:e6:ee:c3:7f:f3:56:97:ae: 4c:c9:2f:db:22:67:1f:df:67:81:20:b8:2c:2e:7a:f4:98:8e: b2:b2:84:7d:29:e6:2c:0c:38:e0:db:31:c5:92:f1:96:94:d1: 3e:76:5a:1b -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUBJKoMKV5uVEEqvpRsxSIikRwW2YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUZBNTlCQ0VFNDI4QUZDMDMyNjQyMjkxMTNBNTUzOTAy NDY5N0ExNDAeFw0yNDA3MDEwMDU5MTdaFw0yNTA2MzAwMTA0MTdaMDMxMTAvBgNV BAMTKDRDMTJDQzE1RjRGMkQ5RjA3NUVCODVCM0Y0MjUxQjVDQTBCNTJFRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgFDKg7aAahfsbQVaCpDOrtxWe unTdog3+pMgB+VDuGjDeJsOBWzjKCXRE0PWRTYDeHX8AdYJWMFemJmNTqDc7+t6y bs+xLs/BKySg74qFLda3g/JZfiqRw3QFSkRP4xANCrAhIuYBJBZwlUSUC+2U2Olu cCxs0Ti0plJt8MFEYDbYMDhFPUvZB0Q9BsMHYioLXCa6tKpP9V+uIOkgOx46PRJz 4U/xgu6pd0lgzSuRv2dzSRjJNXx0teQ45Vj2qdzZ48NfVMlOYzfs/0G8/3xuxIbB CsFEWnVM/2y4HALMwCn1sqwnWcaE/IEIpcMROHTW9cIk58mF7jjzkBFsX24/AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUTBLMFfTy2fB164Wz9CUbXKC1LuAwHwYDVR0j BBgwFoAUH6WbzuQor8AyZCKRE6VTkCRpehQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDQ0MjA0My0yNDRlLTRiODctYjAwYy1lNTdmNDg3MWQwZWYvMC8xRkE1OUJDRUU0 MjhBRkMwMzI2NDIyOTExM0E1NTM5MDI0Njk3QTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUZBNTlCQ0VFNDI4QUZDMDMyNjQyMjkxMTNBNTUzOTAyNDY5 N0ExNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwNDQyMDQzLTI0NGUtNGI4Ny1i MDBjLWU1N2Y0ODcxZDBlZi8wLzMyMzAzMDMxM2E2NDY2MzAzYTMyNjEzNzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNjM5Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ3wAqcw DQYJKoZIhvcNAQELBQADggEBAAJciy+mZbeNkAYrWwW7Ru8rE8gzyUEDhH90KcjW wXyfTsYsP4pyJIue9zBan8m6BkAI4R8X/PFh0W68xvX9o56bvTHWL3cN/pr27Jbu E7vgfidfQKIZW4g9WbbAoo7gtftN/QTyW6zS8VeD1M9za/5SpyjAgMZTQvabI6Gu LjMcpgYd9vzNm77qsHvnFqk905fVDivoiIyYEW79ORJvsOy5mduuO3ZxwjnmA5xC 7AfE+f5m8F45LzYTBjKOOmIgj+DVeEAsiOXoLIsV48V5zqjm7sN/81aXrkzJL9si Zx/fZ4EguCwuevSYjrKyhH0p5iwMOODbMcWS8ZaU0T52Whs= -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:33 2024 by rpki-client on console-ams.rpki-client.org