$ rpki-client -vvf repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/323030313a6466323a6634303a3a2f34382d3438203d3e20313530393232.roa File: 323030313a6466323a6634303a3a2f34382d3438203d3e20313530393232.roa (raw, json) Hash identifier: WXmwYCCBz9U30QvkJ3mnriaDuxTdO4B9LPThVSuXfS0= Subject key identifier: 4F:77:2B:76:D3:21:90:5B:A3:2C:9F:71:E0:C2:09:B2:11:F2:32:4B Certificate issuer: /CN=0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79 Certificate serial: 7008A95140D1A10870491586927263277D6B66C2 Authority key identifier: 03:21:C8:92:A6:AA:C0:A6:EA:4A:30:35:D8:8C:A6:BC:68:67:BF:79 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/323030313a6466323a6634303a3a2f34382d3438203d3e20313530393232.roa Signing time: Wed 07 Feb 2024 10:00:01 +0000 ROA not before: Wed 07 Feb 2024 09:55:01 +0000 ROA not after: Wed 05 Feb 2025 10:00:01 +0000 asID: 150922 IP address blocks: 2001:df2:f40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:08:a9:51:40:d1:a1:08:70:49:15:86:92:72:63:27:7d:6b:66:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79 Validity Not Before: Feb 7 09:55:01 2024 GMT Not After : Feb 5 10:00:01 2025 GMT Subject: CN=4F772B76D321905BA32C9F71E0C209B211F2324B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:1d:8e:e0:b9:34:e4:17:28:eb:17:56:45:9b: 78:d3:e4:8e:ab:ef:0d:2f:14:e5:34:04:a3:86:fe: a0:a7:f1:d5:58:d2:86:86:a9:8b:b1:e3:c4:78:a4: e1:2a:e4:fe:b7:da:77:99:b0:6c:5b:2d:04:40:ea: d2:fe:83:ba:d2:b4:f9:bd:46:fb:ad:36:23:e7:b2: 0b:b7:cf:d6:9f:8e:3d:42:1f:e1:8d:53:df:2f:e0: 01:19:98:ae:d2:e1:7a:73:1c:0f:6d:62:23:2f:80: 43:24:ae:aa:44:dd:11:b5:53:2d:53:d6:d0:43:c5: ee:d4:13:5d:5c:b0:df:80:ec:c2:60:5c:a0:d7:74: 13:01:52:31:96:38:89:43:ee:21:92:34:12:8b:b4: 1c:c8:91:64:95:c6:0a:07:6a:9e:a7:8b:48:7a:91: 8d:2d:9d:ba:c0:e9:8d:82:86:ed:48:e4:e3:47:ff: 2e:20:66:69:1b:61:59:07:67:b9:12:b4:56:7c:db: 0b:c3:fb:db:79:ba:62:4b:d8:c9:d4:b4:ae:bb:51: 0b:e9:6b:74:0b:6c:e0:ec:7b:33:47:47:87:13:d3: ed:0f:e0:04:95:c6:3b:7e:4f:32:58:47:4f:0a:6f: 57:a8:1e:f6:bf:79:fe:e8:3e:0e:02:f9:67:3b:a6: 77:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:77:2B:76:D3:21:90:5B:A3:2C:9F:71:E0:C2:09:B2:11:F2:32:4B X509v3 Authority Key Identifier: keyid:03:21:C8:92:A6:AA:C0:A6:EA:4A:30:35:D8:8C:A6:BC:68:67:BF:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/323030313a6466323a6634303a3a2f34382d3438203d3e20313530393232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:f40::/48 Signature Algorithm: sha256WithRSAEncryption 6a:33:77:c1:fe:fe:2c:cc:ba:c6:51:06:57:49:26:82:8e:4f: d4:f2:94:9a:fe:3d:f5:eb:15:1b:53:0c:70:0c:ae:be:c9:65: 14:ec:9b:e8:ca:4e:ee:85:fc:77:3b:df:09:82:af:e1:e6:9b: 45:50:80:c1:bc:c4:58:82:22:59:07:16:94:02:2f:56:3c:41: a8:2b:1b:58:21:1f:3e:1f:4f:9d:a0:af:c2:c7:47:aa:4b:78: d2:52:e9:5c:86:5a:e0:16:c6:ce:47:94:45:69:0c:75:fa:07: f0:f4:50:04:bd:94:d1:26:92:93:7b:5e:b7:77:1c:bd:d3:d3: b3:11:4b:75:21:62:af:ae:96:1c:bd:37:09:70:54:3c:81:32: de:ea:ac:10:48:0c:36:3d:8b:bc:47:41:0c:f7:f3:d3:24:e0: c2:93:a7:19:82:60:c5:d5:96:de:ff:a0:8d:e4:6d:50:ea:16: 92:5d:9f:e2:5c:26:e3:c2:22:e4:c8:20:33:0d:6a:a9:d7:cf: a9:2d:0b:51:c2:39:78:a4:06:a2:b0:b6:fa:f0:95:a6:74:f8: d7:2b:77:e0:62:fa:91:13:ca:85:32:22:70:db:7c:32:ea:1b: 3e:7e:fc:ef:d5:f1:39:a4:88:52:95:ae:be:36:18:0d:e4:0f: f5:3e:66:ab -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUcAipUUDRoQhwSRWGknJjJ31rZsIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2QkM2 ODY3QkY3OTAeFw0yNDAyMDcwOTU1MDFaFw0yNTAyMDUxMDAwMDFaMDMxMTAvBgNV BAMTKDRGNzcyQjc2RDMyMTkwNUJBMzJDOUY3MUUwQzIwOUIyMTFGMjMyNEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJHY7guTTkFyjrF1ZFm3jT5I6r 7w0vFOU0BKOG/qCn8dVY0oaGqYux48R4pOEq5P632neZsGxbLQRA6tL+g7rStPm9 RvutNiPnsgu3z9afjj1CH+GNU98v4AEZmK7S4XpzHA9tYiMvgEMkrqpE3RG1Uy1T 1tBDxe7UE11csN+A7MJgXKDXdBMBUjGWOIlD7iGSNBKLtBzIkWSVxgoHap6ni0h6 kY0tnbrA6Y2Chu1I5ONH/y4gZmkbYVkHZ7kStFZ82wvD+9t5umJL2MnUtK67UQvp a3QLbODsezNHR4cT0+0P4ASVxjt+TzJYR08Kb1eoHva/ef7oPg4C+Wc7pncjAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUT3crdtMhkFujLJ9x4MIJshHyMkswHwYDVR0j BBgwFoAUAyHIkqaqwKbqSjA12IymvGhnv3kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTFjNGMxZi03MTQxLTQ3ZDYtYTdmOC1lMzVmZmUxMTc0MDQvMC8wMzIxQzg5MkE2 QUFDMEE2RUE0QTMwMzVEODhDQTZCQzY4NjdCRjc5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2QkM2ODY3 QkY3OS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdhMWM0YzFmLTcxNDEtNDdkNi1h N2Y4LWUzNWZmZTExNzQwNC8wLzMyMzAzMDMxM2E2NDY2MzIzYTY2MzQzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzUzMDM5MzIzMi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfIP QDANBgkqhkiG9w0BAQsFAAOCAQEAajN3wf7+LMy6xlEGV0kmgo5P1PKUmv499esV G1MMcAyuvsllFOyb6MpO7oX8dzvfCYKv4eabRVCAwbzEWIIiWQcWlAIvVjxBqCsb WCEfPh9PnaCvwsdHqkt40lLpXIZa4BbGzkeURWkMdfoH8PRQBL2U0SaSk3tet3cc vdPTsxFLdSFir66WHL03CXBUPIEy3uqsEEgMNj2LvEdBDPfz0yTgwpOnGYJgxdWW 3v+gjeRtUOoWkl2f4lwm48Ii5MggMw1qqdfPqS0LUcI5eKQGorC2+vCVpnT41yt3 4GL6kRPKhTIicNt8MuobPn7879XxOaSIUpWuvjYYDeQP9T5mqw== -----END CERTIFICATE-----Generated at Fri Nov 22 22:09:28 2024 by rpki-client on console-ams.rpki-client.org