$ rpki-client -vvf repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/323030313a6466323a653838303a3a2f34382d3438203d3e20313339393938.roa File: 323030313a6466323a653838303a3a2f34382d3438203d3e20313339393938.roa (raw, json) Hash identifier: RiJN0l87aY48VKpm5kB/oKohwUhSNuwZ2dejTOYaeE0= Subject key identifier: FA:74:39:73:74:9E:CF:9C:CD:6E:95:68:C4:C3:60:F2:E5:9B:06:4D Certificate issuer: /CN=08D07F010DA28112A94E8800C317B8DF7F1ABF43 Certificate serial: 09C933ACA92B980D8BA517635201F4FE4144F43F Authority key identifier: 08:D0:7F:01:0D:A2:81:12:A9:4E:88:00:C3:17:B8:DF:7F:1A:BF:43 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/323030313a6466323a653838303a3a2f34382d3438203d3e20313339393938.roa Signing time: Mon 01 Jul 2024 01:05:55 +0000 ROA not before: Mon 01 Jul 2024 01:00:55 +0000 ROA not after: Mon 30 Jun 2025 01:05:55 +0000 asID: 139998 IP address blocks: 2001:df2:e880::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.crl rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:c9:33:ac:a9:2b:98:0d:8b:a5:17:63:52:01:f4:fe:41:44:f4:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08D07F010DA28112A94E8800C317B8DF7F1ABF43 Validity Not Before: Jul 1 01:00:55 2024 GMT Not After : Jun 30 01:05:55 2025 GMT Subject: CN=FA743973749ECF9CCD6E9568C4C360F2E59B064D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:89:c9:06:34:a3:bc:04:26:a7:71:bb:d7:7f: 95:ee:cc:ed:09:00:95:70:81:70:58:fa:0f:40:85: a0:f1:89:66:6b:a1:01:9d:16:58:ca:ad:d0:37:c6: ef:32:bd:f1:7c:93:05:83:d7:bd:bf:07:e8:57:90: 6a:36:3e:ee:21:78:1c:4e:59:1e:ee:29:9f:aa:1c: df:27:00:57:ba:90:b3:89:00:46:53:28:c8:c9:5c: e0:23:2d:2f:b7:3d:6f:d3:96:28:27:b7:24:f1:32: f7:f6:0a:27:02:4a:f5:86:85:79:e3:88:a7:76:f8: d3:56:a8:14:4d:ae:05:10:35:a8:ea:2f:e2:b5:b1: 7f:82:c4:98:40:56:4c:4b:94:88:21:40:97:8d:1d: e4:88:9a:38:93:05:ef:9f:96:98:ce:4f:de:0d:1c: 79:de:4f:1f:59:e2:71:cd:ea:d3:7c:90:f8:97:84: 2c:fe:2c:16:d4:17:0a:f1:21:bc:65:b5:0f:c1:7a: e9:0f:6a:77:4c:82:7a:b4:11:a1:7b:47:89:dc:88: 51:f8:ca:c6:00:d6:47:8b:f2:d9:1c:9e:84:00:6e: 87:94:5e:85:2d:13:5a:44:b9:d6:0e:e9:cc:51:24: 0d:32:fc:fd:92:0b:65:e4:38:cf:c3:9b:32:bb:b5: b3:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:74:39:73:74:9E:CF:9C:CD:6E:95:68:C4:C3:60:F2:E5:9B:06:4D X509v3 Authority Key Identifier: keyid:08:D0:7F:01:0D:A2:81:12:A9:4E:88:00:C3:17:B8:DF:7F:1A:BF:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/323030313a6466323a653838303a3a2f34382d3438203d3e20313339393938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:e880::/48 Signature Algorithm: sha256WithRSAEncryption 1f:d6:6b:4f:da:2d:bc:cb:7f:15:cb:e8:7e:f0:8a:a1:cc:bc: e1:7e:36:52:3c:4d:a1:e5:11:4c:20:dc:25:93:07:f9:85:a0: f4:d1:c0:e4:be:90:5e:8c:f5:79:03:3e:62:f7:e6:af:2a:9b: 56:26:16:e9:62:20:ae:45:a9:aa:61:b4:55:9b:31:db:82:c7: a4:05:43:40:f7:bc:f5:5a:e2:fb:1a:67:26:50:75:7e:2d:5d: f6:be:09:e1:f0:98:d6:a0:dd:14:f0:b6:90:f2:71:c1:80:fd: 29:88:aa:6b:dd:c4:18:70:bf:c2:1c:06:8d:c3:6b:2a:f0:61: 07:7e:cc:ea:52:ce:a9:56:ba:da:24:5a:21:bf:0f:f2:85:fc: 43:4f:e9:c5:2a:7a:72:49:e4:8f:9e:66:5d:2d:64:9a:65:e2: 2e:2c:9c:53:74:2b:6b:ec:f5:b7:16:51:57:56:0e:fa:53:70: 98:48:3c:f3:0f:52:c9:de:8a:98:de:8d:31:03:dc:90:fb:51: 26:1b:ea:3a:fe:30:82:ee:be:d6:71:bd:ef:90:3e:8a:a2:b6: 22:a6:0b:fa:e9:b3:8b:fc:2f:b9:ee:3b:86:17:93:2d:c3:4a: 71:a9:f2:6f:64:80:5c:e9:dc:69:09:6a:63:d2:31:9a:d2:b2: 6f:38:c5:15 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUCckzrKkrmA2LpRdjUgH0/kFE9D8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDhEMDdGMDEwREEyODExMkE5NEU4ODAwQzMxN0I4REY3 RjFBQkY0MzAeFw0yNDA3MDEwMTAwNTVaFw0yNTA2MzAwMTA1NTVaMDMxMTAvBgNV BAMTKEZBNzQzOTczNzQ5RUNGOUNDRDZFOTU2OEM0QzM2MEYyRTU5QjA2NEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRickGNKO8BCancbvXf5XuzO0J AJVwgXBY+g9AhaDxiWZroQGdFljKrdA3xu8yvfF8kwWD172/B+hXkGo2Pu4heBxO WR7uKZ+qHN8nAFe6kLOJAEZTKMjJXOAjLS+3PW/TligntyTxMvf2CicCSvWGhXnj iKd2+NNWqBRNrgUQNajqL+K1sX+CxJhAVkxLlIghQJeNHeSImjiTBe+flpjOT94N HHneTx9Z4nHN6tN8kPiXhCz+LBbUFwrxIbxltQ/BeukPandMgnq0EaF7R4nciFH4 ysYA1keL8tkcnoQAboeUXoUtE1pEudYO6cxRJA0y/P2SC2XkOM/DmzK7tbN9AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU+nQ5c3Sez5zNbpVoxMNg8uWbBk0wHwYDVR0j BBgwFoAUCNB/AQ2igRKpTogAwxe4338av0MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGMyYTEzYi0xZjQwLTRjMDMtYmMzNS1mNjk2MTUxNmQ0ZDkvMC8wOEQwN0YwMTBE QTI4MTEyQTk0RTg4MDBDMzE3QjhERjdGMUFCRjQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDhEMDdGMDEwREEyODExMkE5NEU4ODAwQzMxN0I4REY3RjFB QkY0My5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwYzJhMTNiLTFmNDAtNGMwMy1i YzM1LWY2OTYxNTE2ZDRkOS8wLzMyMzAzMDMxM2E2NDY2MzIzYTY1MzgzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzkzOTM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8uiAMA0GCSqGSIb3DQEBCwUAA4IBAQAf1mtP2i28y38Vy+h+8IqhzLzhfjZSPE2h 5RFMINwlkwf5haD00cDkvpBejPV5Az5i9+avKptWJhbpYiCuRamqYbRVmzHbgsek BUNA97z1WuL7GmcmUHV+LV32vgnh8JjWoN0U8LaQ8nHBgP0piKpr3cQYcL/CHAaN w2sq8GEHfszqUs6pVrraJFohvw/yhfxDT+nFKnpySeSPnmZdLWSaZeIuLJxTdCtr 7PW3FlFXVg76U3CYSDzzD1LJ3oqY3o0xA9yQ+1EmG+o6/jCC7r7Wcb3vkD6KorYi pgv66bOL/C+57juGF5Mtw0pxqfJvZIBc6dxpCWpj0jGa0rJvOMUV -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:51 2024 by rpki-client on console-fra.rpki-client.org