$ rpki-client -vvf repo-rpki.idnic.net/repo/7c4935d8-96a2-4564-85a3-32a53189367e/0/323030313a6466323a656434303a3a2f34382d3438203d3e203535363838.roa File: 323030313a6466323a656434303a3a2f34382d3438203d3e203535363838.roa (raw, json) Hash identifier: X0UMWkxgVZNkrtQ2paeqeH5GA2dE2MM2bedsBqpV/OQ= Subject key identifier: DA:52:43:D1:64:B2:37:A4:56:94:CD:02:E7:C0:37:27:2E:36:C3:35 Certificate issuer: /CN=4A9E8C61BE3670D865B8A79D7D32798550E64F2B Certificate serial: 27F70A2CE335FD1BCB1E06186C0E04B978123794 Authority key identifier: 4A:9E:8C:61:BE:36:70:D8:65:B8:A7:9D:7D:32:79:85:50:E6:4F:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A9E8C61BE3670D865B8A79D7D32798550E64F2B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7c4935d8-96a2-4564-85a3-32a53189367e/0/323030313a6466323a656434303a3a2f34382d3438203d3e203535363838.roa Signing time: Mon 13 Nov 2023 01:21:09 +0000 ROA not before: Mon 13 Nov 2023 01:16:09 +0000 ROA not after: Mon 11 Nov 2024 01:21:09 +0000 asID: 55688 IP address blocks: 2001:df2:ed40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7c4935d8-96a2-4564-85a3-32a53189367e/0/4A9E8C61BE3670D865B8A79D7D32798550E64F2B.crl rsync://repo-rpki.idnic.net/repo/7c4935d8-96a2-4564-85a3-32a53189367e/0/4A9E8C61BE3670D865B8A79D7D32798550E64F2B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A9E8C61BE3670D865B8A79D7D32798550E64F2B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 14:50:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:f7:0a:2c:e3:35:fd:1b:cb:1e:06:18:6c:0e:04:b9:78:12:37:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4A9E8C61BE3670D865B8A79D7D32798550E64F2B Validity Not Before: Nov 13 01:16:09 2023 GMT Not After : Nov 11 01:21:09 2024 GMT Subject: CN=DA5243D164B237A45694CD02E7C037272E36C335 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:9d:c3:1b:43:f5:6c:c3:a9:0d:35:e4:10:82: 3e:ed:2c:4d:58:22:0d:2e:75:6f:89:83:b8:d1:fc: 39:cd:bf:46:89:ab:01:ab:b4:a2:87:6c:79:37:a3: 8b:b6:99:e2:99:d9:30:a8:3f:f8:8e:9d:35:6b:c3: 2d:a1:c7:16:ee:77:ed:6f:49:fa:b8:fa:c6:5b:1b: b8:a4:19:b3:aa:6e:ef:ef:64:c0:de:b6:00:0f:4f: db:58:24:c5:8c:5b:14:2f:2e:98:e8:92:1a:b3:95: 10:b4:15:51:f3:81:7e:08:ac:22:1e:28:3c:8d:d1: f6:1d:80:44:ea:a2:32:4c:49:6a:f1:d8:23:af:09: 39:b7:4d:4c:fd:14:3f:f5:33:dc:ec:93:33:3d:59: d8:30:38:ca:e5:86:ac:ce:cc:d9:bc:65:ed:27:36: ab:75:4b:43:cb:31:b4:73:ee:fc:71:b4:23:86:43: 35:69:b4:dc:08:3e:37:8f:e1:93:21:e6:1b:eb:57: fc:c8:b7:05:41:e3:80:25:b2:33:9b:3b:43:a5:fa: b2:04:e1:da:70:83:4f:3a:0c:08:9e:7a:53:80:e6: 49:e6:9f:32:40:3a:d7:6e:af:ee:8c:63:ab:37:b7: eb:1f:c5:2a:e5:c8:d9:f3:2f:17:42:a8:b5:85:9d: 0a:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:52:43:D1:64:B2:37:A4:56:94:CD:02:E7:C0:37:27:2E:36:C3:35 X509v3 Authority Key Identifier: keyid:4A:9E:8C:61:BE:36:70:D8:65:B8:A7:9D:7D:32:79:85:50:E6:4F:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7c4935d8-96a2-4564-85a3-32a53189367e/0/4A9E8C61BE3670D865B8A79D7D32798550E64F2B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A9E8C61BE3670D865B8A79D7D32798550E64F2B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7c4935d8-96a2-4564-85a3-32a53189367e/0/323030313a6466323a656434303a3a2f34382d3438203d3e203535363838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:ed40::/48 Signature Algorithm: sha256WithRSAEncryption 3e:0a:c5:18:98:a3:7d:fe:21:fb:eb:2e:58:3f:2e:05:4a:c2: 7d:38:90:64:30:c5:f8:62:30:6b:3b:15:7a:e9:d4:1c:04:04: c9:b7:2b:10:21:24:7b:d5:60:a6:3a:16:b7:6a:a8:3a:28:b6: 0a:15:3c:ec:5e:00:c0:27:ab:f7:ca:45:5b:31:ad:c9:41:dc: ec:45:22:45:68:07:e9:3f:ed:31:44:a8:b4:77:1e:43:db:bc: 4a:39:77:ff:b2:ad:04:74:f4:3e:1f:28:aa:1e:66:74:bd:9c: 6e:13:37:4e:b5:e6:52:fa:64:03:9f:ec:39:fc:ea:6d:bb:21: b2:ef:7e:cf:df:8c:26:87:78:d9:6d:c4:1a:82:c8:69:3b:db: 5e:62:18:be:72:aa:39:7b:15:ac:8c:2f:35:24:fd:92:9d:5c: 91:af:be:13:b1:29:e3:86:7c:41:e3:9d:79:e8:63:a1:9b:5b: d8:21:85:6f:16:c1:22:d6:05:13:3b:0e:40:51:3c:7c:d7:87: 2d:d0:05:17:5b:43:24:96:6c:66:d3:88:72:8d:25:c6:ff:9d: 6e:67:2e:57:48:89:3c:35:88:35:54:0d:3e:2a:d1:3f:da:08: 37:37:1e:db:ee:bd:2c:4a:0e:94:99:c0:7d:d4:19:34:46:1f: 49:91:e7:bf -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUJ/cKLOM1/RvLHgYYbA4EuXgSN5QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEE5RThDNjFCRTM2NzBEODY1QjhBNzlEN0QzMjc5ODU1 MEU2NEYyQjAeFw0yMzExMTMwMTE2MDlaFw0yNDExMTEwMTIxMDlaMDMxMTAvBgNV BAMTKERBNTI0M0QxNjRCMjM3QTQ1Njk0Q0QwMkU3QzAzNzI3MkUzNkMzMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqncMbQ/Vsw6kNNeQQgj7tLE1Y Ig0udW+Jg7jR/DnNv0aJqwGrtKKHbHk3o4u2meKZ2TCoP/iOnTVrwy2hxxbud+1v Sfq4+sZbG7ikGbOqbu/vZMDetgAPT9tYJMWMWxQvLpjokhqzlRC0FVHzgX4IrCIe KDyN0fYdgETqojJMSWrx2COvCTm3TUz9FD/1M9zskzM9WdgwOMrlhqzOzNm8Ze0n Nqt1S0PLMbRz7vxxtCOGQzVptNwIPjeP4ZMh5hvrV/zItwVB44AlsjObO0Ol+rIE 4dpwg086DAieelOA5knmnzJAOtdur+6MY6s3t+sfxSrlyNnzLxdCqLWFnQoDAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU2lJD0WSyN6RWlM0C58A3Jy42wzUwHwYDVR0j BBgwFoAUSp6MYb42cNhluKedfTJ5hVDmTyswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YzQ5MzVkOC05NmEyLTQ1NjQtODVhMy0zMmE1MzE4OTM2N2UvMC80QTlFOEM2MUJF MzY3MEQ4NjVCOEE3OUQ3RDMyNzk4NTUwRTY0RjJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEE5RThDNjFCRTM2NzBEODY1QjhBNzlEN0QzMjc5ODU1MEU2 NEYyQi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjNDkzNWQ4LTk2YTItNDU2NC04 NWEzLTMyYTUzMTg5MzY3ZS8wLzMyMzAzMDMxM2E2NDY2MzIzYTY1NjQzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzNTM2MzgzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfLt QDANBgkqhkiG9w0BAQsFAAOCAQEAPgrFGJijff4h++suWD8uBUrCfTiQZDDF+GIw azsVeunUHAQEybcrECEke9VgpjoWt2qoOii2ChU87F4AwCer98pFWzGtyUHc7EUi RWgH6T/tMUSotHceQ9u8Sjl3/7KtBHT0Ph8oqh5mdL2cbhM3TrXmUvpkA5/sOfzq bbshsu9+z9+MJod42W3EGoLIaTvbXmIYvnKqOXsVrIwvNST9kp1cka++E7Ep44Z8 QeOdeehjoZtb2CGFbxbBItYFEzsOQFE8fNeHLdAFF1tDJJZsZtOIco0lxv+dbmcu V0iJPDWINVQNPirRP9oINzce2+69LEoOlJnAfdQZNEYfSZHnvw== -----END CERTIFICATE-----Generated at Sun Apr 28 15:43:58 2024 by rpki-client on console-fra.rpki-client.org