$ rpki-client -vvf repo-rpki.idnic.net/repo/8a66f350-e642-402f-8ac3-6aef7e11aac3/0/323030313a6466343a366430303a3a2f34382d3438203d3e20313337333734.roa File: 323030313a6466343a366430303a3a2f34382d3438203d3e20313337333734.roa (raw, json) Hash identifier: neCvjYj4OGxzsARs2VAX0fQB/pQLEakmCBDGYrtFesk= Subject key identifier: AC:21:1B:4E:C6:D6:32:91:D5:83:6F:C6:02:DD:96:A9:43:B6:6C:55 Certificate issuer: /CN=9852ABB8508DE551F1723BC9AC5EC39B35056AE2 Certificate serial: 58B5103ED29DBADD1E1C742134A0D17DE3EBB1FE Authority key identifier: 98:52:AB:B8:50:8D:E5:51:F1:72:3B:C9:AC:5E:C3:9B:35:05:6A:E2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9852ABB8508DE551F1723BC9AC5EC39B35056AE2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8a66f350-e642-402f-8ac3-6aef7e11aac3/0/323030313a6466343a366430303a3a2f34382d3438203d3e20313337333734.roa Signing time: Tue 23 Jul 2024 04:47:30 +0000 ROA not before: Tue 23 Jul 2024 04:42:30 +0000 ROA not after: Tue 22 Jul 2025 04:47:30 +0000 asID: 137374 IP address blocks: 2001:df4:6d00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8a66f350-e642-402f-8ac3-6aef7e11aac3/0/9852ABB8508DE551F1723BC9AC5EC39B35056AE2.crl rsync://repo-rpki.idnic.net/repo/8a66f350-e642-402f-8ac3-6aef7e11aac3/0/9852ABB8508DE551F1723BC9AC5EC39B35056AE2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9852ABB8508DE551F1723BC9AC5EC39B35056AE2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:b5:10:3e:d2:9d:ba:dd:1e:1c:74:21:34:a0:d1:7d:e3:eb:b1:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9852ABB8508DE551F1723BC9AC5EC39B35056AE2 Validity Not Before: Jul 23 04:42:30 2024 GMT Not After : Jul 22 04:47:30 2025 GMT Subject: CN=AC211B4EC6D63291D5836FC602DD96A943B66C55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:9b:0c:99:b7:50:ea:b8:86:a6:fa:03:06:14: 36:10:35:19:69:a1:4e:18:6d:bd:8d:c6:a5:27:9d: 77:3f:1f:72:06:bd:8b:b9:37:98:32:5a:17:92:fe: cd:96:19:1a:4b:8e:1e:94:5e:a6:a0:0f:0b:eb:01: 3d:65:33:c7:80:4c:55:03:d9:6d:95:be:46:30:61: d4:03:ee:72:d8:d1:e1:28:d8:e3:1d:bd:17:39:9a: e2:47:68:fc:09:37:84:a7:6c:82:73:b6:d2:b9:ac: 2f:a4:68:8f:36:76:af:56:e6:75:a9:cf:78:f4:64: 79:dd:db:15:81:07:8e:01:60:7a:1b:2a:8b:fc:30: 6c:cf:b6:64:74:e3:ce:21:72:e5:f4:97:83:a8:05: 27:be:0a:67:1a:d0:6a:d7:a5:04:b6:6d:2e:ec:30: 4f:78:0e:6a:f4:46:83:fa:2e:1e:e8:7a:d1:fb:b0: 33:21:d6:a6:1f:2f:74:04:f8:5a:de:5f:b7:17:a6: 9d:fc:7c:85:1b:74:d3:f9:6d:c9:c7:5e:05:10:03: 3c:72:a5:7b:5c:84:ed:c1:b9:21:a7:e0:1a:a0:03: 68:60:c4:ce:ae:4a:c6:6c:2e:e5:b2:c1:4e:28:20: c2:b2:49:94:c2:d1:a4:71:ab:ae:06:0e:ae:15:8c: 04:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:21:1B:4E:C6:D6:32:91:D5:83:6F:C6:02:DD:96:A9:43:B6:6C:55 X509v3 Authority Key Identifier: keyid:98:52:AB:B8:50:8D:E5:51:F1:72:3B:C9:AC:5E:C3:9B:35:05:6A:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8a66f350-e642-402f-8ac3-6aef7e11aac3/0/9852ABB8508DE551F1723BC9AC5EC39B35056AE2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9852ABB8508DE551F1723BC9AC5EC39B35056AE2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8a66f350-e642-402f-8ac3-6aef7e11aac3/0/323030313a6466343a366430303a3a2f34382d3438203d3e20313337333734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:6d00::/48 Signature Algorithm: sha256WithRSAEncryption ae:9b:b2:77:81:64:c2:46:f4:8e:d6:04:fb:b6:31:a7:a8:39: 74:de:1c:fa:0c:d8:48:a8:e1:c3:84:74:df:b4:ed:c8:c6:c2: 58:67:b2:eb:83:b9:c4:2b:44:3b:f4:d3:1e:b8:89:df:fa:77: f6:5f:8c:9f:80:5d:1f:33:14:f8:bf:53:f9:b1:18:61:63:1e: 2b:73:fc:fc:6b:ca:61:66:0e:53:b6:d9:a7:c4:7e:7d:28:6a: fa:c8:ff:62:d0:7d:7e:de:c0:5d:67:8b:7e:06:52:43:12:c7: 02:cd:55:57:d9:08:31:5e:e2:9d:06:75:2c:c3:07:62:8c:bd: 67:8d:34:d8:20:c6:72:b8:77:81:cd:02:c0:84:d5:a3:40:a0: 63:c4:da:18:24:a4:06:56:80:49:75:22:7b:12:9d:c6:0a:6a: f6:f1:3a:a7:8c:34:e8:e3:51:1c:d0:83:59:58:17:5f:32:7c: 3a:6e:16:da:ce:a6:64:02:5d:04:98:82:80:d8:c9:10:bc:3f: 11:fd:80:91:7c:4c:88:6e:60:f8:eb:ca:b4:ec:2d:62:38:d2: cf:27:f9:1d:13:d8:df:52:90:ad:55:78:18:ac:bd:71:a2:8d: 49:1d:fa:4b:54:fa:84:db:b3:11:5d:6e:b7:dc:b9:9d:1a:8f: a5:02:40:ed -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUWLUQPtKdut0eHHQhNKDRfePrsf4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTg1MkFCQjg1MDhERTU1MUYxNzIzQkM5QUM1RUMzOUIz NTA1NkFFMjAeFw0yNDA3MjMwNDQyMzBaFw0yNTA3MjIwNDQ3MzBaMDMxMTAvBgNV BAMTKEFDMjExQjRFQzZENjMyOTFENTgzNkZDNjAyREQ5NkE5NDNCNjZDNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnmwyZt1DquIam+gMGFDYQNRlp oU4Ybb2NxqUnnXc/H3IGvYu5N5gyWheS/s2WGRpLjh6UXqagDwvrAT1lM8eATFUD 2W2VvkYwYdQD7nLY0eEo2OMdvRc5muJHaPwJN4SnbIJzttK5rC+kaI82dq9W5nWp z3j0ZHnd2xWBB44BYHobKov8MGzPtmR0484hcuX0l4OoBSe+Cmca0GrXpQS2bS7s ME94Dmr0RoP6Lh7oetH7sDMh1qYfL3QE+FreX7cXpp38fIUbdNP5bcnHXgUQAzxy pXtchO3BuSGn4BqgA2hgxM6uSsZsLuWywU4oIMKySZTC0aRxq64GDq4VjATFAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUrCEbTsbWMpHVg2/GAt2WqUO2bFUwHwYDVR0j BBgwFoAUmFKruFCN5VHxcjvJrF7DmzUFauIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YTY2ZjM1MC1lNjQyLTQwMmYtOGFjMy02YWVmN2UxMWFhYzMvMC85ODUyQUJCODUw OERFNTUxRjE3MjNCQzlBQzVFQzM5QjM1MDU2QUUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTg1MkFCQjg1MDhERTU1MUYxNzIzQkM5QUM1RUMzOUIzNTA1 NkFFMi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhhNjZmMzUwLWU2NDItNDAyZi04 YWMzLTZhZWY3ZTExYWFjMy8wLzMyMzAzMDMxM2E2NDY2MzQzYTM2NjQzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM3MzMzNzM0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9G0AMA0GCSqGSIb3DQEBCwUAA4IBAQCum7J3gWTCRvSO1gT7tjGnqDl03hz6DNhI qOHDhHTftO3IxsJYZ7Lrg7nEK0Q79NMeuInf+nf2X4yfgF0fMxT4v1P5sRhhYx4r c/z8a8phZg5TttmnxH59KGr6yP9i0H1+3sBdZ4t+BlJDEscCzVVX2QgxXuKdBnUs wwdijL1njTTYIMZyuHeBzQLAhNWjQKBjxNoYJKQGVoBJdSJ7Ep3GCmr28TqnjDTo 41Ec0INZWBdfMnw6bhbazqZkAl0EmIKA2MkQvD8R/YCRfEyIbmD468q07C1iONLP J/kdE9jfUpCtVXgYrL1xoo1JHfpLVPqE27MRXW633LmdGo+lAkDt -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:43 2024 by rpki-client on console-fra.rpki-client.org