$ rpki-client -vvf repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/323030313a6466323a653838303a3a2f34382d3438203d3e2034373837.roa File: 323030313a6466323a653838303a3a2f34382d3438203d3e2034373837.roa (raw, json) Hash identifier: 4IPSllJPKCbe7aQKXRkaaNgX/oYCfpS1iXyW/h8vCFE= Subject key identifier: D6:15:92:86:A7:94:01:6E:9E:FC:17:68:EE:76:D7:58:A2:73:B6:1F Certificate issuer: /CN=08D07F010DA28112A94E8800C317B8DF7F1ABF43 Certificate serial: 6DAD33355A6CA40FEEAAED9A95C5795CFC42B035 Authority key identifier: 08:D0:7F:01:0D:A2:81:12:A9:4E:88:00:C3:17:B8:DF:7F:1A:BF:43 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/323030313a6466323a653838303a3a2f34382d3438203d3e2034373837.roa Signing time: Mon 11 Nov 2024 02:55:17 +0000 ROA not before: Mon 11 Nov 2024 02:50:17 +0000 ROA not after: Mon 10 Nov 2025 02:55:17 +0000 asID: 4787 IP address blocks: 2001:df2:e880::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.crl rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:ad:33:35:5a:6c:a4:0f:ee:aa:ed:9a:95:c5:79:5c:fc:42:b0:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08D07F010DA28112A94E8800C317B8DF7F1ABF43 Validity Not Before: Nov 11 02:50:17 2024 GMT Not After : Nov 10 02:55:17 2025 GMT Subject: CN=D6159286A794016E9EFC1768EE76D758A273B61F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:41:68:ec:23:9d:a4:58:2a:15:b8:8f:75:be: 1c:2f:4e:f3:79:17:86:ad:28:7f:e8:78:2d:64:ad: 41:64:52:04:88:b1:6a:ad:76:04:2d:eb:19:5c:a2: 51:1b:e2:bd:40:14:66:c8:60:ad:a2:fa:04:75:2a: 47:08:9c:52:06:c4:f9:df:0a:3c:f6:17:82:6c:57: d8:58:c4:4b:f8:34:7c:44:4d:e9:ab:ab:7f:a3:8d: 09:cd:98:07:b2:18:07:d4:46:f6:fc:59:53:db:9c: 03:bc:66:80:1c:42:46:96:a6:49:7e:3c:0c:d8:17: 09:7d:05:92:47:68:54:f1:cb:7a:38:63:6d:ca:70: 0d:f2:54:d1:24:f5:32:b2:e2:45:d0:1a:b9:8f:fe: da:ff:4e:f0:02:58:79:25:0b:41:33:00:fe:aa:38: 15:d5:76:2b:d2:08:4e:25:6e:57:23:c6:2a:fb:05: c0:16:f9:6c:14:6b:32:d5:e4:d2:4b:57:7a:5e:6e: a7:e0:66:15:16:89:2b:6f:33:b2:10:bb:15:e4:69: b4:e0:69:a3:f2:29:0f:ba:30:5e:eb:5e:b6:f7:34: 7a:14:51:8c:e5:a2:32:3c:ce:bf:2b:a3:f3:65:fe: 3d:a5:14:69:9e:3b:37:a7:a5:85:fa:ab:6d:8d:ce: 73:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:15:92:86:A7:94:01:6E:9E:FC:17:68:EE:76:D7:58:A2:73:B6:1F X509v3 Authority Key Identifier: keyid:08:D0:7F:01:0D:A2:81:12:A9:4E:88:00:C3:17:B8:DF:7F:1A:BF:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/323030313a6466323a653838303a3a2f34382d3438203d3e2034373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:e880::/48 Signature Algorithm: sha256WithRSAEncryption 6e:34:cd:4e:be:a5:a8:5e:03:89:fc:93:d0:5b:99:ef:d7:97: a2:df:12:7a:91:84:21:6a:99:d4:f6:27:96:af:c6:06:a8:f2: 96:24:c3:6e:33:47:c9:43:e3:74:3f:ed:3c:cd:46:6e:07:29: 88:dd:8b:d3:a6:69:e2:a0:40:22:64:46:90:ce:00:20:dd:57: cf:9f:62:58:5e:cb:bf:15:cd:85:e1:00:e7:78:14:f2:72:c2: 59:a3:f7:08:c9:ed:e2:30:03:7a:6f:94:1a:05:09:f6:6e:90: f5:b9:79:c6:5e:92:53:1d:dc:89:ac:d6:09:e2:4e:05:d2:e6: d9:05:69:c3:74:54:5e:90:ed:e3:72:09:ed:c7:ed:dc:5c:45: 5b:40:51:ec:3d:ec:53:c0:bd:ca:ea:c3:b3:d1:79:a9:db:9d: fa:62:cb:3b:06:5f:22:8e:33:fb:b0:dc:7d:a9:58:d5:b6:78: d0:13:a5:5c:4b:f1:68:b0:86:d3:a6:39:ab:20:f8:8d:cb:cc: aa:36:92:71:2f:6b:ae:77:e9:76:e9:1a:3a:e5:f7:d1:f9:09: 56:bf:ed:90:4e:ee:41:a4:40:a5:17:c4:5e:62:98:ef:1c:05: d0:84:0c:08:25:b0:f8:ba:84:11:d6:59:4c:79:e0:ee:4c:b3: 26:58:0a:c4 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUba0zNVpspA/uqu2alcV5XPxCsDUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDhEMDdGMDEwREEyODExMkE5NEU4ODAwQzMxN0I4REY3 RjFBQkY0MzAeFw0yNDExMTEwMjUwMTdaFw0yNTExMTAwMjU1MTdaMDMxMTAvBgNV BAMTKEQ2MTU5Mjg2QTc5NDAxNkU5RUZDMTc2OEVFNzZENzU4QTI3M0I2MUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxQWjsI52kWCoVuI91vhwvTvN5 F4atKH/oeC1krUFkUgSIsWqtdgQt6xlcolEb4r1AFGbIYK2i+gR1KkcInFIGxPnf Cjz2F4JsV9hYxEv4NHxETemrq3+jjQnNmAeyGAfURvb8WVPbnAO8ZoAcQkaWpkl+ PAzYFwl9BZJHaFTxy3o4Y23KcA3yVNEk9TKy4kXQGrmP/tr/TvACWHklC0EzAP6q OBXVdivSCE4lblcjxir7BcAW+WwUazLV5NJLV3pebqfgZhUWiStvM7IQuxXkabTg aaPyKQ+6MF7rXrb3NHoUUYzlojI8zr8ro/Nl/j2lFGmeOzenpYX6q22NznMFAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU1hWShqeUAW6e/Bdo7nbXWKJzth8wHwYDVR0j BBgwFoAUCNB/AQ2igRKpTogAwxe4338av0MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGMyYTEzYi0xZjQwLTRjMDMtYmMzNS1mNjk2MTUxNmQ0ZDkvMC8wOEQwN0YwMTBE QTI4MTEyQTk0RTg4MDBDMzE3QjhERjdGMUFCRjQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDhEMDdGMDEwREEyODExMkE5NEU4ODAwQzMxN0I4REY3RjFB QkY0My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwYzJhMTNiLTFmNDAtNGMwMy1i YzM1LWY2OTYxNTE2ZDRkOS8wLzMyMzAzMDMxM2E2NDY2MzIzYTY1MzgzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzQzNzM4Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ3y6IAw DQYJKoZIhvcNAQELBQADggEBAG40zU6+paheA4n8k9Bbme/Xl6LfEnqRhCFqmdT2 J5avxgao8pYkw24zR8lD43Q/7TzNRm4HKYjdi9OmaeKgQCJkRpDOACDdV8+fYlhe y78VzYXhAOd4FPJywlmj9wjJ7eIwA3pvlBoFCfZukPW5ecZeklMd3Ims1gniTgXS 5tkFacN0VF6Q7eNyCe3H7dxcRVtAUew97FPAvcrqw7PReanbnfpiyzsGXyKOM/uw 3H2pWNW2eNATpVxL8WiwhtOmOasg+I3LzKo2knEva6536XbpGjrl99H5CVa/7ZBO 7kGkQKUXxF5imO8cBdCEDAglsPi6hBHWWUx54O5MsyZYCsQ= -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:51 2024 by rpki-client on console-fra.rpki-client.org