$ rpki-client -vvf repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/323030313a6466323a623230303a3a2f34382d3438203d3e203233363934.roa File: 323030313a6466323a623230303a3a2f34382d3438203d3e203233363934.roa (raw, json) Hash identifier: aeHqzsDwYpkiZ2meJHiQaLCAVKepMtGrTnvq+XpcCkQ= Subject key identifier: D3:DA:D5:F1:21:06:8B:F5:6E:F4:E7:5A:4F:2A:F7:59:2F:80:88:E9 Certificate issuer: /CN=3E0D060F214DF8E6493243033EBD30ABD627ED36 Certificate serial: D487684ED1F2C28EE47C4681658AE82EEC9C06 Authority key identifier: 3E:0D:06:0F:21:4D:F8:E6:49:32:43:03:3E:BD:30:AB:D6:27:ED:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0D060F214DF8E6493243033EBD30ABD627ED36.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/323030313a6466323a623230303a3a2f34382d3438203d3e203233363934.roa Signing time: Thu 06 Jun 2024 11:00:01 +0000 ROA not before: Thu 06 Jun 2024 10:55:01 +0000 ROA not after: Thu 05 Jun 2025 11:00:01 +0000 asID: 23694 IP address blocks: 2001:df2:b200::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/3E0D060F214DF8E6493243033EBD30ABD627ED36.crl rsync://repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/3E0D060F214DF8E6493243033EBD30ABD627ED36.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0D060F214DF8E6493243033EBD30ABD627ED36.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Mar 2025 07:22:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: d4:87:68:4e:d1:f2:c2:8e:e4:7c:46:81:65:8a:e8:2e:ec:9c:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E0D060F214DF8E6493243033EBD30ABD627ED36 Validity Not Before: Jun 6 10:55:01 2024 GMT Not After : Jun 5 11:00:01 2025 GMT Subject: CN=D3DAD5F121068BF56EF4E75A4F2AF7592F8088E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:26:86:ad:4e:88:5a:b0:ee:89:62:7e:87:2f: 43:31:b9:ae:d2:17:7a:57:e0:50:1a:20:ef:27:bd: 7f:86:95:f3:96:cc:8a:27:03:ea:32:69:2e:79:20: bb:82:97:89:de:f7:37:ff:54:05:f8:06:cb:e9:25: 15:d1:ea:ce:33:ac:ef:de:93:5f:08:36:52:71:d6: 3a:08:53:13:bf:af:d6:3c:ab:06:40:0f:1f:92:f7: 19:53:5e:e7:b8:61:3d:85:84:56:8c:bf:d4:5c:b7: a4:1b:ac:82:0e:f6:ce:5f:0b:4e:e3:ed:8d:30:13: 72:39:71:1a:ba:33:c5:9e:0c:00:7b:1c:ee:98:41: 5a:cf:af:76:c3:20:14:13:37:c9:ee:c6:f9:ea:2f: 82:9d:6d:05:46:fe:d5:d3:97:77:af:48:ed:bd:b6: e9:b8:25:ea:77:d6:ef:2b:a0:00:53:94:1a:e4:cc: 5d:2f:38:c9:9c:0e:41:89:00:27:a9:82:10:c4:ea: e4:5f:f5:90:42:d0:87:f6:e9:a5:11:3b:79:2d:91: d4:85:0e:db:29:98:2c:9a:19:b8:8c:4c:fc:6a:5d: 15:d6:30:dd:e6:ce:c4:5c:ac:d7:07:05:3d:74:bb: a6:b9:1f:2d:c1:8c:5e:16:09:60:a2:fe:15:cc:42: ea:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:DA:D5:F1:21:06:8B:F5:6E:F4:E7:5A:4F:2A:F7:59:2F:80:88:E9 X509v3 Authority Key Identifier: keyid:3E:0D:06:0F:21:4D:F8:E6:49:32:43:03:3E:BD:30:AB:D6:27:ED:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/3E0D060F214DF8E6493243033EBD30ABD627ED36.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0D060F214DF8E6493243033EBD30ABD627ED36.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/323030313a6466323a623230303a3a2f34382d3438203d3e203233363934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:b200::/48 Signature Algorithm: sha256WithRSAEncryption 68:fe:3f:39:11:4f:b5:fe:b7:e6:e8:83:74:50:a5:e8:03:41: 86:93:d2:bd:bb:f7:52:5c:97:bf:a1:c3:dc:ae:e2:23:10:7c: 70:dc:fb:7d:8b:8b:2d:23:31:78:83:c7:76:7f:64:56:0c:86: e1:c5:30:29:84:7c:68:92:84:e6:4a:ea:01:49:b7:58:d8:a8: 76:7a:94:76:1c:2d:22:f3:dd:55:fb:a6:dc:f8:73:e9:d4:99: b1:4f:87:55:3e:77:8e:73:79:db:57:04:2f:4b:6d:67:9d:a4: 08:78:21:9a:a4:b7:49:2c:67:a7:fc:f5:d9:67:34:96:c4:c9: 71:81:93:58:b7:d4:dc:0d:61:91:cf:18:eb:3f:f7:ab:aa:48: cf:2a:13:6b:03:59:90:9c:b2:ea:96:97:c5:74:30:37:9e:8d: 0c:13:a3:48:fb:f2:44:2d:ce:01:ee:ad:03:5c:eb:25:90:28: f4:5d:0a:fe:4b:5a:6d:29:86:ec:d3:e2:03:0e:13:e5:67:ee: b7:6b:09:88:3a:85:75:b7:5c:23:1a:a1:f7:5b:0e:96:7a:28: 28:14:9a:4d:5d:7f:5d:2d:b0:8b:fc:92:96:7a:f8:79:ee:6d: 53:c6:dd:53:51:c7:5a:08:7d:8b:b4:5c:bd:70:6b:a8:f4:06: a4:fa:b3:05 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUANSHaE7R8sKO5HxGgWWK6C7snAYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0UwRDA2MEYyMTRERjhFNjQ5MzI0MzAzM0VCRDMwQUJE NjI3RUQzNjAeFw0yNDA2MDYxMDU1MDFaFw0yNTA2MDUxMTAwMDFaMDMxMTAvBgNV BAMTKEQzREFENUYxMjEwNjhCRjU2RUY0RTc1QTRGMkFGNzU5MkY4MDg4RTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYJoatTohasO6JYn6HL0Mxua7S F3pX4FAaIO8nvX+GlfOWzIonA+oyaS55ILuCl4ne9zf/VAX4BsvpJRXR6s4zrO/e k18INlJx1joIUxO/r9Y8qwZADx+S9xlTXue4YT2FhFaMv9Rct6QbrIIO9s5fC07j 7Y0wE3I5cRq6M8WeDAB7HO6YQVrPr3bDIBQTN8nuxvnqL4KdbQVG/tXTl3evSO29 tum4Jep31u8roABTlBrkzF0vOMmcDkGJACepghDE6uRf9ZBC0If26aURO3ktkdSF DtspmCyaGbiMTPxqXRXWMN3mzsRcrNcHBT10u6a5Hy3BjF4WCWCi/hXMQup/AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU09rV8SEGi/Vu9OdaTyr3WS+AiOkwHwYDVR0j BBgwFoAUPg0GDyFN+OZJMkMDPr0wq9Yn7TYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjRmODUxMS0wN2IzLTRhNjEtYmQwNC0yZTY2NWM5Mjc4ZmMvMC8zRTBEMDYwRjIx NERGOEU2NDkzMjQzMDMzRUJEMzBBQkQ2MjdFRDM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0UwRDA2MEYyMTRERjhFNjQ5MzI0MzAzM0VCRDMwQUJENjI3 RUQzNi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiNGY4NTExLTA3YjMtNGE2MS1i ZDA0LTJlNjY1YzkyNzhmYy8wLzMyMzAzMDMxM2E2NDY2MzIzYTYyMzIzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMzM2MzkzNC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfKy ADANBgkqhkiG9w0BAQsFAAOCAQEAaP4/ORFPtf635uiDdFCl6ANBhpPSvbv3UlyX v6HD3K7iIxB8cNz7fYuLLSMxeIPHdn9kVgyG4cUwKYR8aJKE5krqAUm3WNiodnqU dhwtIvPdVfum3Phz6dSZsU+HVT53jnN521cEL0ttZ52kCHghmqS3SSxnp/z12Wc0 lsTJcYGTWLfU3A1hkc8Y6z/3q6pIzyoTawNZkJyy6paXxXQwN56NDBOjSPvyRC3O Ae6tA1zrJZAo9F0K/ktabSmG7NPiAw4T5Wfut2sJiDqFdbdcIxqh91sOlnooKBSa TV1/XS2wi/ySlnr4ee5tU8bdU1HHWgh9i7RcvXBrqPQGpPqzBQ== -----END CERTIFICATE-----Generated at Tue Mar 11 05:02:24 2025 by rpki-client