$ rpki-client -vvf repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/323030313a6466373a353330303a3a2f34382d3438203d3e20313338313135.roa File: 323030313a6466373a353330303a3a2f34382d3438203d3e20313338313135.roa (raw, json) Hash identifier: cEM+4StkyEglCT4lHQCTAQwPGP8wSQIN6J/jKANGX3Y= Subject key identifier: FD:B4:DD:67:F9:82:B8:1A:A3:0E:4F:4C:76:34:7D:24:84:C6:03:0E Certificate issuer: /CN=9DEEEB0CB9492DADDE47B31629ACDA7241728768 Certificate serial: 5A1FFFAFFCFAC5BF1ACDEA8D5AD9BF8E9DDD4D02 Authority key identifier: 9D:EE:EB:0C:B9:49:2D:AD:DE:47:B3:16:29:AC:DA:72:41:72:87:68 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DEEEB0CB9492DADDE47B31629ACDA7241728768.cer Subject info access: rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/323030313a6466373a353330303a3a2f34382d3438203d3e20313338313135.roa Signing time: Mon 01 Jul 2024 01:02:37 +0000 ROA not before: Mon 01 Jul 2024 00:57:37 +0000 ROA not after: Mon 30 Jun 2025 01:02:37 +0000 asID: 138115 IP address blocks: 2001:df7:5300::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/9DEEEB0CB9492DADDE47B31629ACDA7241728768.crl rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/9DEEEB0CB9492DADDE47B31629ACDA7241728768.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DEEEB0CB9492DADDE47B31629ACDA7241728768.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:1f:ff:af:fc:fa:c5:bf:1a:cd:ea:8d:5a:d9:bf:8e:9d:dd:4d:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9DEEEB0CB9492DADDE47B31629ACDA7241728768 Validity Not Before: Jul 1 00:57:37 2024 GMT Not After : Jun 30 01:02:37 2025 GMT Subject: CN=FDB4DD67F982B81AA30E4F4C76347D2484C6030E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:29:73:a2:ae:07:a3:52:3f:68:e9:30:79:6a: 1b:3d:96:17:82:14:01:a0:e2:ff:f7:74:f4:f5:70: d8:8b:83:9b:ed:1d:d7:91:4a:9a:ff:32:38:ea:1a: 5d:d7:d5:25:21:2a:b1:0c:c7:f1:93:ee:dd:3e:07: dd:42:32:18:64:da:f6:97:ed:14:50:df:d3:60:d7: 2d:a3:f1:e3:ba:05:53:8a:46:76:b6:7e:b9:86:df: bf:91:8e:e3:67:68:23:86:ad:3e:5e:cd:38:c2:c3: 51:29:33:a8:60:45:64:51:03:34:d6:bc:45:ce:32: 83:b3:b1:ef:d3:73:e9:45:bd:7a:79:5f:97:d3:ec: 2c:3c:d5:a5:a5:27:56:df:25:77:a9:ba:1f:77:ec: 04:b2:27:ae:49:7a:b5:d4:5e:0b:a9:04:1b:9c:13: 3c:f7:59:7c:14:f4:32:6d:14:c1:39:0f:9d:de:97: ae:94:19:bd:f8:05:8f:b4:17:9f:79:cc:72:dd:4b: b0:a0:c3:fa:d0:ce:d7:17:9a:24:3e:03:ea:f8:23: 98:12:1b:31:b4:e7:f6:c9:31:84:d0:12:ed:df:87: 64:d7:c0:61:3d:73:5f:c9:c9:d3:42:28:95:27:cf: 77:ef:52:df:ba:87:4d:a7:1d:56:32:e0:2f:6f:4f: 27:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:B4:DD:67:F9:82:B8:1A:A3:0E:4F:4C:76:34:7D:24:84:C6:03:0E X509v3 Authority Key Identifier: keyid:9D:EE:EB:0C:B9:49:2D:AD:DE:47:B3:16:29:AC:DA:72:41:72:87:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/9DEEEB0CB9492DADDE47B31629ACDA7241728768.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DEEEB0CB9492DADDE47B31629ACDA7241728768.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/323030313a6466373a353330303a3a2f34382d3438203d3e20313338313135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:5300::/48 Signature Algorithm: sha256WithRSAEncryption b2:c4:2e:dc:83:f9:8b:bd:c2:44:51:05:8d:c6:0b:d3:0c:99: 12:07:51:b7:0c:54:16:fb:95:b5:de:3c:07:a0:9b:64:cc:d8: 6e:20:9d:28:de:ea:6d:b3:53:2f:80:3d:5d:74:97:ce:94:a9: d4:c1:4d:1e:c2:18:4c:e1:38:dc:6c:d1:2a:a7:8f:2f:c1:aa: 6b:9b:4e:db:b0:4e:03:4d:9c:72:6b:a1:f2:ee:b4:cc:35:e4: aa:ca:84:65:17:de:4e:b4:c5:c2:fd:67:23:c6:de:16:b4:64: df:d6:ae:83:c1:38:75:f0:c9:15:af:0b:9a:c0:06:c2:bd:0c: 6c:69:88:4a:27:af:e8:d3:fc:5a:b1:34:36:f2:84:2b:19:5b: 8e:05:04:7d:45:73:e5:18:59:c3:82:f5:72:cd:c6:0e:18:dd: e0:60:57:dd:a1:61:86:93:2a:b5:08:32:b9:e1:9b:30:5f:73: fb:9c:3c:0b:be:a1:85:c0:05:a9:4b:49:87:46:67:1a:70:38: fa:85:d4:45:a1:30:77:b1:fa:43:63:c4:a7:c1:c0:6c:74:5e: c4:46:58:b3:db:fc:a1:be:a0:96:04:33:fc:8c:9c:90:55:24: 01:a5:8a:09:0c:92:53:aa:3d:c4:ce:1f:49:ac:dd:e0:46:27: d1:83:98:3a -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUWh//r/z6xb8azeqNWtm/jp3dTQIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOURFRUVCMENCOTQ5MkRBRERFNDdCMzE2MjlBQ0RBNzI0 MTcyODc2ODAeFw0yNDA3MDEwMDU3MzdaFw0yNTA2MzAwMTAyMzdaMDMxMTAvBgNV BAMTKEZEQjRERDY3Rjk4MkI4MUFBMzBFNEY0Qzc2MzQ3RDI0ODRDNjAzMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBKXOirgejUj9o6TB5ahs9lheC FAGg4v/3dPT1cNiLg5vtHdeRSpr/MjjqGl3X1SUhKrEMx/GT7t0+B91CMhhk2vaX 7RRQ39Ng1y2j8eO6BVOKRna2frmG37+RjuNnaCOGrT5ezTjCw1EpM6hgRWRRAzTW vEXOMoOzse/Tc+lFvXp5X5fT7Cw81aWlJ1bfJXepuh937ASyJ65JerXUXgupBBuc Ezz3WXwU9DJtFME5D53el66UGb34BY+0F595zHLdS7Cgw/rQztcXmiQ+A+r4I5gS GzG05/bJMYTQEu3fh2TXwGE9c1/JydNCKJUnz3fvUt+6h02nHVYy4C9vTydtAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU/bTdZ/mCuBqjDk9MdjR9JITGAw4wHwYDVR0j BBgwFoAUne7rDLlJLa3eR7MWKazackFyh2gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NGNmNjMyZC1kNjFhLTQ4MjYtYjU3Mi05ZjE5NDhhZTU4MGMvMC85REVFRUIwQ0I5 NDkyREFEREU0N0IzMTYyOUFDREE3MjQxNzI4NzY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOURFRUVCMENCOTQ5MkRBRERFNDdCMzE2MjlBQ0RBNzI0MTcy ODc2OC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0Y2Y2MzJkLWQ2MWEtNDgyNi1i NTcyLTlmMTk0OGFlNTgwYy8wLzMyMzAzMDMxM2E2NDY2MzczYTM1MzMzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzEzMTM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 91MAMA0GCSqGSIb3DQEBCwUAA4IBAQCyxC7cg/mLvcJEUQWNxgvTDJkSB1G3DFQW +5W13jwHoJtkzNhuIJ0o3upts1MvgD1ddJfOlKnUwU0ewhhM4TjcbNEqp48vwapr m07bsE4DTZxya6Hy7rTMNeSqyoRlF95OtMXC/Wcjxt4WtGTf1q6DwTh18MkVrwua wAbCvQxsaYhKJ6/o0/xasTQ28oQrGVuOBQR9RXPlGFnDgvVyzcYOGN3gYFfdoWGG kyq1CDK54ZswX3P7nDwLvqGFwAWpS0mHRmcacDj6hdRFoTB3sfpDY8SnwcBsdF7E Rliz2/yhvqCWBDP8jJyQVSQBpYoJDJJTqj3Ezh9JrN3gRifRg5g6 -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:57 2024 by rpki-client on console-fra.rpki-client.org