$ rpki-client -vvf repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/323030313a6466333a666438303a3a2f34382d3438203d3e20313430343432.roa File: 323030313a6466333a666438303a3a2f34382d3438203d3e20313430343432.roa (raw, json) Hash identifier: kic57aXXLWATxjKS0QIxUZVlZJ5rlzeUQ8B0nZVuNJE= Subject key identifier: BF:6A:B4:81:05:CC:AE:BE:ED:49:87:7F:1E:00:74:79:93:DA:DF:C6 Certificate issuer: /CN=DBE91560EBE58F31F01F543D751B03FC02EA7D9E Certificate serial: 6ACE07DC5EDB456E75D1413C354D3DD62EE7283F Authority key identifier: DB:E9:15:60:EB:E5:8F:31:F0:1F:54:3D:75:1B:03:FC:02:EA:7D:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/323030313a6466333a666438303a3a2f34382d3438203d3e20313430343432.roa Signing time: Mon 01 Jul 2024 01:03:57 +0000 ROA not before: Mon 01 Jul 2024 00:58:57 +0000 ROA not after: Mon 30 Jun 2025 01:03:57 +0000 asID: 140442 IP address blocks: 2001:df3:fd80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.crl rsync://repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:ce:07:dc:5e:db:45:6e:75:d1:41:3c:35:4d:3d:d6:2e:e7:28:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DBE91560EBE58F31F01F543D751B03FC02EA7D9E Validity Not Before: Jul 1 00:58:57 2024 GMT Not After : Jun 30 01:03:57 2025 GMT Subject: CN=BF6AB48105CCAEBEED49877F1E00747993DADFC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:4c:a4:79:62:78:dd:ca:71:dc:34:c9:7c:bb: 2b:30:49:b6:aa:bf:33:b2:b8:3c:1b:6f:a4:16:63: d1:de:01:a6:27:f6:b5:cf:3f:16:0b:9b:f2:4f:ce: dc:6f:14:9e:66:f8:61:54:7e:26:98:7d:7a:b7:8e: 28:76:8e:fd:b1:22:e1:1e:f8:96:3e:1a:96:87:c7: 19:50:bd:66:7f:da:78:9e:b1:6c:16:44:50:c8:95: aa:e7:01:b3:11:13:3b:e9:39:87:24:f1:86:01:80: c1:d9:ab:6b:d7:1f:56:4c:ad:dd:fa:dd:18:f9:4a: 43:fd:41:02:78:64:49:8b:bd:95:55:66:6a:2a:c0: ce:06:a7:30:73:29:e9:b6:58:52:11:53:1a:56:60: 27:c2:43:f7:76:90:b5:e3:48:df:a5:95:b8:83:03: 4a:8d:be:85:3b:65:79:5f:58:aa:ae:21:ad:15:9d: 90:07:80:4b:35:26:0d:43:c3:4c:76:d3:3c:5a:79: 7c:57:cd:06:6e:58:56:51:17:f2:97:6b:a7:65:c0: be:3c:08:18:e1:b8:05:39:9d:b0:81:99:8d:7c:3a: 39:61:1f:e3:6b:6c:4c:f9:76:a0:80:72:77:50:06: 5f:00:ae:1f:3d:af:8a:55:74:1e:50:24:78:32:f8: 8f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:6A:B4:81:05:CC:AE:BE:ED:49:87:7F:1E:00:74:79:93:DA:DF:C6 X509v3 Authority Key Identifier: keyid:DB:E9:15:60:EB:E5:8F:31:F0:1F:54:3D:75:1B:03:FC:02:EA:7D:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/323030313a6466333a666438303a3a2f34382d3438203d3e20313430343432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:fd80::/48 Signature Algorithm: sha256WithRSAEncryption 78:03:65:95:b8:2c:35:a2:e8:8d:2f:5e:16:3b:57:eb:98:c8: 45:e9:45:27:89:a8:19:2c:98:3f:ba:fc:1c:b2:eb:32:4f:bb: e2:fd:fe:3c:23:cf:9a:51:e8:e2:5b:ec:90:ab:d0:ab:35:98: 52:a9:7d:9f:e8:83:ef:6b:e7:95:85:a5:44:0d:04:dd:b0:85: 14:98:12:d3:ec:a2:8f:46:60:42:c7:9a:a3:28:d8:08:68:48: 71:6e:60:bd:08:3a:6c:fd:53:c6:53:4c:11:de:55:d5:d1:68: f5:20:37:7a:96:b0:ad:4d:af:a8:d2:45:5e:26:5d:41:cb:9c: 99:3a:4a:bb:01:82:66:c0:ce:6e:83:40:9e:17:59:4c:c7:e2: d2:eb:6f:ea:8f:65:8f:00:b0:97:3c:7b:05:7a:bf:2e:83:fc: ed:f8:63:f3:1f:0a:ce:aa:b1:2b:8f:35:fc:2e:e0:26:a6:06: 9a:0e:67:e8:c4:4e:99:e2:09:df:3e:68:7d:00:a1:5a:53:e8: f0:0e:f3:e5:98:1f:1a:46:e7:08:f2:c2:79:15:e9:f4:05:ab: 36:45:2c:37:91:44:3d:21:01:9a:e8:a7:33:2e:3f:65:0c:09: b6:1a:13:8e:2a:10:5d:52:ce:cc:90:d5:40:1b:04:87:85:ce: 83:71:98:c7 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUas4H3F7bRW510UE8NU091i7nKD8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREJFOTE1NjBFQkU1OEYzMUYwMUY1NDNENzUxQjAzRkMw MkVBN0Q5RTAeFw0yNDA3MDEwMDU4NTdaFw0yNTA2MzAwMTAzNTdaMDMxMTAvBgNV BAMTKEJGNkFCNDgxMDVDQ0FFQkVFRDQ5ODc3RjFFMDA3NDc5OTNEQURGQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGTKR5YnjdynHcNMl8uyswSbaq vzOyuDwbb6QWY9HeAaYn9rXPPxYLm/JPztxvFJ5m+GFUfiaYfXq3jih2jv2xIuEe +JY+GpaHxxlQvWZ/2niesWwWRFDIlarnAbMREzvpOYck8YYBgMHZq2vXH1ZMrd36 3Rj5SkP9QQJ4ZEmLvZVVZmoqwM4GpzBzKem2WFIRUxpWYCfCQ/d2kLXjSN+llbiD A0qNvoU7ZXlfWKquIa0VnZAHgEs1Jg1Dw0x20zxaeXxXzQZuWFZRF/KXa6dlwL48 CBjhuAU5nbCBmY18OjlhH+NrbEz5dqCAcndQBl8Arh89r4pVdB5QJHgy+I+XAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUv2q0gQXMrr7tSYd/HgB0eZPa38YwHwYDVR0j BBgwFoAU2+kVYOvljzHwH1Q9dRsD/ALqfZ4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NzI4Yzc3Yi0yMTAwLTRmMmEtOTBkOS0wOGM1M2U4NDFlMWIvMC9EQkU5MTU2MEVC RTU4RjMxRjAxRjU0M0Q3NTFCMDNGQzAyRUE3RDlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREJFOTE1NjBFQkU1OEYzMUYwMUY1NDNENzUxQjAzRkMwMkVB N0Q5RS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY3MjhjNzdiLTIxMDAtNGYyYS05 MGQ5LTA4YzUzZTg0MWUxYi8wLzMyMzAzMDMxM2E2NDY2MzMzYTY2NjQzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMwMzQzNDMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8/2AMA0GCSqGSIb3DQEBCwUAA4IBAQB4A2WVuCw1ouiNL14WO1frmMhF6UUniagZ LJg/uvwcsusyT7vi/f48I8+aUejiW+yQq9CrNZhSqX2f6IPva+eVhaVEDQTdsIUU mBLT7KKPRmBCx5qjKNgIaEhxbmC9CDps/VPGU0wR3lXV0Wj1IDd6lrCtTa+o0kVe Jl1By5yZOkq7AYJmwM5ug0CeF1lMx+LS62/qj2WPALCXPHsFer8ug/zt+GPzHwrO qrErjzX8LuAmpgaaDmfoxE6Z4gnfPmh9AKFaU+jwDvPlmB8aRucI8sJ5Fen0Bas2 RSw3kUQ9IQGa6KczLj9lDAm2GhOOKhBdUs7MkNVAGwSHhc6DcZjH -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:50 2024 by rpki-client on console-fra.rpki-client.org