$ rpki-client -vvf repo-rpki.idnic.net/repo/801b79ac-3351-4705-8c3d-602adcd79bb7/0/323030313a6466353a6338303a3a2f34382d3438203d3e20313431313038.roa File: 323030313a6466353a6338303a3a2f34382d3438203d3e20313431313038.roa (raw, json) Hash identifier: X6Rsg1TfWPdkmJNWv+FJnlS7WWkveBK6RzkbYc8aDOc= Subject key identifier: 7B:CD:33:F2:AB:23:02:B2:51:22:D2:58:EB:0A:C7:36:F4:FB:A2:3B Certificate issuer: /CN=5C5587618B4E1C1F4CEFC699B01FFC3CECE3B66C Certificate serial: 7B61AEDC5B4E4F888EB1FBC2E0A68ACBEF2401C7 Authority key identifier: 5C:55:87:61:8B:4E:1C:1F:4C:EF:C6:99:B0:1F:FC:3C:EC:E3:B6:6C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C5587618B4E1C1F4CEFC699B01FFC3CECE3B66C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/801b79ac-3351-4705-8c3d-602adcd79bb7/0/323030313a6466353a6338303a3a2f34382d3438203d3e20313431313038.roa Signing time: Wed 27 Nov 2024 11:00:41 +0000 ROA not before: Wed 27 Nov 2024 10:55:41 +0000 ROA not after: Wed 26 Nov 2025 11:00:41 +0000 asID: 141108 IP address blocks: 2001:df5:c80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/801b79ac-3351-4705-8c3d-602adcd79bb7/0/5C5587618B4E1C1F4CEFC699B01FFC3CECE3B66C.crl rsync://repo-rpki.idnic.net/repo/801b79ac-3351-4705-8c3d-602adcd79bb7/0/5C5587618B4E1C1F4CEFC699B01FFC3CECE3B66C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C5587618B4E1C1F4CEFC699B01FFC3CECE3B66C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 00:42:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:61:ae:dc:5b:4e:4f:88:8e:b1:fb:c2:e0:a6:8a:cb:ef:24:01:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5C5587618B4E1C1F4CEFC699B01FFC3CECE3B66C Validity Not Before: Nov 27 10:55:41 2024 GMT Not After : Nov 26 11:00:41 2025 GMT Subject: CN=7BCD33F2AB2302B25122D258EB0AC736F4FBA23B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:fa:29:92:52:d1:ec:f8:4a:d1:75:80:4a:61: f8:6f:1d:56:80:57:9f:dc:73:53:82:87:16:b8:d0: f2:39:28:34:f0:1a:b3:03:7d:07:2a:93:71:83:0c: 27:cc:45:61:c2:7d:40:b0:55:35:80:19:52:8c:33: a5:1e:b1:d9:9c:fb:5c:54:17:f8:a7:2e:61:4a:1e: 33:46:88:4e:5d:3b:ff:b5:43:c3:42:0e:13:a7:f2: ed:96:07:57:ff:09:3b:42:1f:94:7d:88:5c:5e:10: ef:fd:84:4f:13:01:66:02:17:26:4d:8b:a7:0b:29: 50:df:fa:a0:f6:0c:cc:51:74:22:e9:ab:4c:9d:fc: e7:7d:3f:c9:1b:fd:fd:35:04:12:50:b1:8f:29:08: b7:6a:60:57:8b:51:16:85:75:41:dd:9c:2e:ea:ac: df:45:d2:bc:c6:cc:f2:36:89:68:d0:32:46:80:7a: 6b:c8:24:82:8d:18:14:e7:88:18:7e:41:e4:12:ca: 33:a9:d8:3c:3e:76:31:60:5b:99:ad:60:a7:35:3c: 1f:56:bd:94:d6:bf:6c:8f:52:29:ba:fb:74:c6:30: d3:c2:93:29:d4:9b:8d:98:e7:fd:e3:8c:ff:5d:32: 67:b2:ed:43:6f:32:50:61:81:62:ca:9d:75:34:b4: 24:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:CD:33:F2:AB:23:02:B2:51:22:D2:58:EB:0A:C7:36:F4:FB:A2:3B X509v3 Authority Key Identifier: keyid:5C:55:87:61:8B:4E:1C:1F:4C:EF:C6:99:B0:1F:FC:3C:EC:E3:B6:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/801b79ac-3351-4705-8c3d-602adcd79bb7/0/5C5587618B4E1C1F4CEFC699B01FFC3CECE3B66C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C5587618B4E1C1F4CEFC699B01FFC3CECE3B66C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/801b79ac-3351-4705-8c3d-602adcd79bb7/0/323030313a6466353a6338303a3a2f34382d3438203d3e20313431313038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df5:c80::/48 Signature Algorithm: sha256WithRSAEncryption 36:43:05:64:0e:5a:99:18:c3:4c:3c:4a:0c:40:a3:5a:c0:cd: 61:7c:90:21:29:69:35:22:06:ae:65:cf:47:7d:1f:bc:db:84: 28:ef:38:7d:bf:c5:f7:c8:b3:20:47:fc:89:9e:98:6d:25:c4: 17:82:f7:87:a8:81:d2:ca:7e:aa:54:3c:a8:c0:50:0d:ef:55: 39:4e:20:44:da:c9:4c:e6:db:47:e1:d7:da:9c:13:f1:8d:0e: 5a:e2:35:14:b8:cf:b5:a4:d6:d9:2c:7c:25:a2:47:98:09:d9: ec:98:b6:67:c0:4a:db:33:f5:70:e0:ff:9d:0d:a7:88:6c:f1: 11:e4:f0:5e:2c:d3:e5:d4:cc:f8:19:5b:3f:d0:d6:54:8b:cb: c9:1e:d6:af:d3:17:30:b4:1c:f1:09:1c:17:68:8a:c0:d4:b9: 1c:fd:90:0c:83:eb:b7:c8:d4:1a:a6:2c:19:93:2b:cc:d2:ac: c0:e5:06:6f:68:fd:9d:59:da:40:01:0d:d9:9c:e1:0a:16:72: 52:f8:10:07:91:a5:76:ea:1a:6f:0e:45:be:25:ff:16:eb:bd: e7:d4:af:5b:73:f0:33:58:9c:5c:f1:1b:a2:72:05:98:60:46: 8f:06:ba:c8:26:4d:1c:bb:67:36:07:3f:da:ae:63:06:7b:35: af:ea:8e:e3 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUe2Gu3FtOT4iOsfvC4KaKy+8kAccwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUM1NTg3NjE4QjRFMUMxRjRDRUZDNjk5QjAxRkZDM0NF Q0UzQjY2QzAeFw0yNDExMjcxMDU1NDFaFw0yNTExMjYxMTAwNDFaMDMxMTAvBgNV BAMTKDdCQ0QzM0YyQUIyMzAyQjI1MTIyRDI1OEVCMEFDNzM2RjRGQkEyM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL+imSUtHs+ErRdYBKYfhvHVaA V5/cc1OChxa40PI5KDTwGrMDfQcqk3GDDCfMRWHCfUCwVTWAGVKMM6Uesdmc+1xU F/inLmFKHjNGiE5dO/+1Q8NCDhOn8u2WB1f/CTtCH5R9iFxeEO/9hE8TAWYCFyZN i6cLKVDf+qD2DMxRdCLpq0yd/Od9P8kb/f01BBJQsY8pCLdqYFeLURaFdUHdnC7q rN9F0rzGzPI2iWjQMkaAemvIJIKNGBTniBh+QeQSyjOp2Dw+djFgW5mtYKc1PB9W vZTWv2yPUim6+3TGMNPCkynUm42Y5/3jjP9dMmey7UNvMlBhgWLKnXU0tCR7AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUe80z8qsjArJRItJY6wrHNvT7ojswHwYDVR0j BBgwFoAUXFWHYYtOHB9M78aZsB/8POzjtmwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MDFiNzlhYy0zMzUxLTQ3MDUtOGMzZC02MDJhZGNkNzliYjcvMC81QzU1ODc2MThC NEUxQzFGNENFRkM2OTlCMDFGRkMzQ0VDRTNCNjZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUM1NTg3NjE4QjRFMUMxRjRDRUZDNjk5QjAxRkZDM0NFQ0Uz QjY2Qy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgwMWI3OWFjLTMzNTEtNDcwNS04 YzNkLTYwMmFkY2Q3OWJiNy8wLzMyMzAzMDMxM2E2NDY2MzUzYTYzMzgzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzMTMxMzAzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfUM gDANBgkqhkiG9w0BAQsFAAOCAQEANkMFZA5amRjDTDxKDECjWsDNYXyQISlpNSIG rmXPR30fvNuEKO84fb/F98izIEf8iZ6YbSXEF4L3h6iB0sp+qlQ8qMBQDe9VOU4g RNrJTObbR+HX2pwT8Y0OWuI1FLjPtaTW2Sx8JaJHmAnZ7Ji2Z8BK2zP1cOD/nQ2n iGzxEeTwXizT5dTM+BlbP9DWVIvLyR7Wr9MXMLQc8QkcF2iKwNS5HP2QDIPrt8jU GqYsGZMrzNKswOUGb2j9nVnaQAEN2ZzhChZyUvgQB5Glduoabw5FviX/Fuu959Sv W3PwM1icXPEbonIFmGBGjwa6yCZNHLtnNgc/2q5jBns1r+qO4w== -----END CERTIFICATE-----Generated at Sun Apr 6 15:59:32 2025 by rpki-client