$ rpki-client -vvf repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/1/323030313a6466333a356263303a3a2f34382d3438203d3e20313532303832.roa File: 323030313a6466333a356263303a3a2f34382d3438203d3e20313532303832.roa (raw, json) Hash identifier: mEdT8OEiyI9JAMqfuO/nF4qCbRz5jV9PBOHoH0mrdzU= Subject key identifier: D6:B2:FF:80:7F:E3:E8:B7:80:F7:6A:56:0F:40:60:F1:8D:95:15:3D Certificate issuer: /CN=93B49EA86589396F687875020DE4D17DE244CD6E Certificate serial: 1C30E36F4182600F825079C3DADC89C1B60CAE47 Authority key identifier: 93:B4:9E:A8:65:89:39:6F:68:78:75:02:0D:E4:D1:7D:E2:44:CD:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/93B49EA86589396F687875020DE4D17DE244CD6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/1/323030313a6466333a356263303a3a2f34382d3438203d3e20313532303832.roa Signing time: Thu 12 Dec 2024 04:00:06 +0000 ROA not before: Thu 12 Dec 2024 03:55:06 +0000 ROA not after: Thu 11 Dec 2025 04:00:06 +0000 asID: 152082 IP address blocks: 2001:df3:5bc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/1/93B49EA86589396F687875020DE4D17DE244CD6E.crl rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/1/93B49EA86589396F687875020DE4D17DE244CD6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/93B49EA86589396F687875020DE4D17DE244CD6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 09:33:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:30:e3:6f:41:82:60:0f:82:50:79:c3:da:dc:89:c1:b6:0c:ae:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=93B49EA86589396F687875020DE4D17DE244CD6E Validity Not Before: Dec 12 03:55:06 2024 GMT Not After : Dec 11 04:00:06 2025 GMT Subject: CN=D6B2FF807FE3E8B780F76A560F4060F18D95153D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:2a:13:14:59:6c:dc:64:d4:77:23:cf:ac:50: 7e:85:8c:8e:d6:f9:4d:c3:99:6f:82:df:10:fd:8a: 4c:17:a4:3b:7a:d7:a1:b2:5f:6f:d6:ae:76:b1:17: 2f:ea:ad:9d:4e:fd:4a:3f:81:b6:1b:56:f7:f7:b0: 6e:ee:b9:9e:6a:15:b0:4e:14:ea:b5:7f:73:f4:7a: 85:cf:36:8d:15:a5:42:00:f2:a7:bc:11:89:f9:b1: dc:c6:76:0e:46:70:fc:e3:08:97:e9:cf:18:f9:05: f9:11:d0:54:4f:ff:9d:d4:a3:d0:a9:7c:d7:1a:fb: 42:8b:91:09:c3:f6:68:ff:6f:fb:6a:20:21:ee:08: 0e:01:cb:de:73:a1:d5:45:81:42:1e:a9:cd:63:f9: f8:32:83:a9:b6:8e:26:fd:64:33:ba:37:21:4f:53: c6:c1:e4:91:ff:51:a0:5a:1e:6b:d0:8e:cb:95:2c: c4:41:29:29:2a:20:6f:b8:6c:11:4e:c1:c6:26:5d: f3:52:d9:bd:6d:fb:3e:f1:7c:52:7e:50:a7:95:56: 9e:3b:f5:b2:1f:db:9e:6c:43:2a:b3:45:29:0d:4b: 4a:c4:9d:a7:12:0b:f2:08:da:1c:74:e4:7d:e6:92: 3b:98:b9:9f:bc:7d:ed:9b:50:84:ce:a8:ff:2d:97: eb:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:B2:FF:80:7F:E3:E8:B7:80:F7:6A:56:0F:40:60:F1:8D:95:15:3D X509v3 Authority Key Identifier: keyid:93:B4:9E:A8:65:89:39:6F:68:78:75:02:0D:E4:D1:7D:E2:44:CD:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/1/93B49EA86589396F687875020DE4D17DE244CD6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/93B49EA86589396F687875020DE4D17DE244CD6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/1/323030313a6466333a356263303a3a2f34382d3438203d3e20313532303832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:5bc0::/48 Signature Algorithm: sha256WithRSAEncryption 72:dc:35:b4:d3:63:ff:7d:04:02:ab:fd:55:6e:da:66:1c:3c: 5b:98:d9:5e:cd:83:6d:93:21:a9:98:6f:68:98:e8:c6:3f:6d: a8:19:b1:41:5e:3f:03:7f:e9:e9:3b:08:22:5d:15:55:28:a0: db:29:d4:08:04:94:db:a8:e4:c0:e4:e5:b3:32:ac:eb:8c:8e: 80:07:aa:84:26:cb:8f:3a:b5:d4:f6:db:20:95:00:44:db:26: 46:0c:76:56:e5:15:67:c6:46:a0:74:de:ca:fd:ae:d9:96:96: 31:f0:65:fc:ad:0b:92:e8:f3:a4:ca:04:67:3b:1e:6e:b3:55: f1:f0:11:da:4a:5a:f4:a4:a5:d2:50:12:44:b5:52:7d:dc:2a: 42:c3:6c:91:c0:e2:f4:c9:3d:b8:89:01:a2:93:e3:b7:bf:a9: 1e:7d:23:a9:c8:53:40:7d:4c:fe:c2:29:3e:a5:ee:5c:f7:47: 0d:44:6c:bd:80:a7:bc:6c:30:06:64:a5:e4:66:f0:0c:a1:f9: e0:9d:a6:59:bb:de:c5:9e:78:e8:c1:3d:17:d2:2f:5f:5f:4d: 6d:f2:a6:d6:b4:71:0e:5a:c9:25:ca:de:1f:79:9a:9c:38:a2: 42:c7:4d:41:f9:91:e0:ae:90:02:19:8e:e6:f4:f5:d2:be:c0: c6:22:fc:1e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUHDDjb0GCYA+CUHnD2tyJwbYMrkcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTNCNDlFQTg2NTg5Mzk2RjY4Nzg3NTAyMERFNEQxN0RF MjQ0Q0Q2RTAeFw0yNDEyMTIwMzU1MDZaFw0yNTEyMTEwNDAwMDZaMDMxMTAvBgNV BAMTKEQ2QjJGRjgwN0ZFM0U4Qjc4MEY3NkE1NjBGNDA2MEYxOEQ5NTE1M0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsKhMUWWzcZNR3I8+sUH6FjI7W +U3DmW+C3xD9ikwXpDt616GyX2/WrnaxFy/qrZ1O/Uo/gbYbVvf3sG7uuZ5qFbBO FOq1f3P0eoXPNo0VpUIA8qe8EYn5sdzGdg5GcPzjCJfpzxj5BfkR0FRP/53Uo9Cp fNca+0KLkQnD9mj/b/tqICHuCA4By95zodVFgUIeqc1j+fgyg6m2jib9ZDO6NyFP U8bB5JH/UaBaHmvQjsuVLMRBKSkqIG+4bBFOwcYmXfNS2b1t+z7xfFJ+UKeVVp47 9bIf255sQyqzRSkNS0rEnacSC/II2hx05H3mkjuYuZ+8fe2bUITOqP8tl+v7AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU1rL/gH/j6LeA92pWD0Bg8Y2VFT0wHwYDVR0j BBgwFoAUk7SeqGWJOW9oeHUCDeTRfeJEzW4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MzJlNGY4Ni00OGU3LTQ4YzctYmE5MS1lMjU5NjgzNzhlOTUvMS85M0I0OUVBODY1 ODkzOTZGNjg3ODc1MDIwREU0RDE3REUyNDRDRDZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTNCNDlFQTg2NTg5Mzk2RjY4Nzg3NTAyMERFNEQxN0RFMjQ0 Q0Q2RS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczMmU0Zjg2LTQ4ZTctNDhjNy1i YTkxLWUyNTk2ODM3OGU5NS8xLzMyMzAzMDMxM2E2NDY2MzMzYTM1NjI2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzAzODMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 81vAMA0GCSqGSIb3DQEBCwUAA4IBAQBy3DW002P/fQQCq/1VbtpmHDxbmNlezYNt kyGpmG9omOjGP22oGbFBXj8Df+npOwgiXRVVKKDbKdQIBJTbqOTA5OWzMqzrjI6A B6qEJsuPOrXU9tsglQBE2yZGDHZW5RVnxkagdN7K/a7ZlpYx8GX8rQuS6POkygRn Ox5us1Xx8BHaSlr0pKXSUBJEtVJ93CpCw2yRwOL0yT24iQGik+O3v6kefSOpyFNA fUz+wik+pe5c90cNRGy9gKe8bDAGZKXkZvAMofngnaZZu97FnnjowT0X0i9fX01t 8qbWtHEOWsklyt4feZqcOKJCx01B+ZHgrpACGY7m9PXSvsDGIvwe -----END CERTIFICATE-----Generated at Sun Apr 6 11:01:33 2025 by rpki-client