$ rpki-client -vvf repo-rpki.idnic.net/repo/9141f884-d5c9-4336-9a5c-777419e56dce/0/323030313a6466303a396530303a3a2f34382d3438203d3e20313332313634.roa File: 323030313a6466303a396530303a3a2f34382d3438203d3e20313332313634.roa (raw, json) Hash identifier: 1Qt8qwh2i4MUTtsEtJwYMVCZJ1mTgJP3oDU6QNeWNqw= Subject key identifier: EB:C5:6A:EF:8C:C9:6D:40:12:3A:D2:07:4F:F4:34:0B:10:BF:94:F4 Certificate issuer: /CN=63FD8DEE5A4438A50FF50B6B9B9D6A3F53F348DC Certificate serial: 0D2B8BFC903FE343B9221C54BEC092B0B2CE1591 Authority key identifier: 63:FD:8D:EE:5A:44:38:A5:0F:F5:0B:6B:9B:9D:6A:3F:53:F3:48:DC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/63FD8DEE5A4438A50FF50B6B9B9D6A3F53F348DC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9141f884-d5c9-4336-9a5c-777419e56dce/0/323030313a6466303a396530303a3a2f34382d3438203d3e20313332313634.roa Signing time: Thu 11 Jan 2024 11:00:00 +0000 ROA not before: Thu 11 Jan 2024 10:55:00 +0000 ROA not after: Thu 09 Jan 2025 11:00:00 +0000 asID: 132164 IP address blocks: 2001:df0:9e00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9141f884-d5c9-4336-9a5c-777419e56dce/0/63FD8DEE5A4438A50FF50B6B9B9D6A3F53F348DC.crl rsync://repo-rpki.idnic.net/repo/9141f884-d5c9-4336-9a5c-777419e56dce/0/63FD8DEE5A4438A50FF50B6B9B9D6A3F53F348DC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/63FD8DEE5A4438A50FF50B6B9B9D6A3F53F348DC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:2b:8b:fc:90:3f:e3:43:b9:22:1c:54:be:c0:92:b0:b2:ce:15:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63FD8DEE5A4438A50FF50B6B9B9D6A3F53F348DC Validity Not Before: Jan 11 10:55:00 2024 GMT Not After : Jan 9 11:00:00 2025 GMT Subject: CN=EBC56AEF8CC96D40123AD2074FF4340B10BF94F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:62:7f:3e:23:1d:26:cb:bf:fc:52:79:39:4e: 86:e5:53:78:43:ce:7e:4c:3f:e5:4e:70:0b:8c:7a: 0b:d1:41:50:b6:83:dd:77:c9:f8:1b:d5:d2:f6:39: 05:d3:e8:b4:b6:75:e2:fc:e5:fa:25:e4:14:27:75: 94:d6:3e:93:50:71:4b:4c:50:cd:c5:7d:08:4b:fc: 94:70:2b:6a:18:52:bb:1f:eb:30:e2:c9:a4:e4:9c: 25:f0:92:1d:3a:d3:da:96:f9:bc:27:39:93:3d:07: 9d:14:eb:b1:0b:5d:6f:c1:25:75:fd:9a:25:3f:fc: 74:8e:07:97:e5:00:07:d3:95:3b:84:65:c0:59:80: d0:78:d8:1b:3f:9f:95:79:96:7d:c0:c5:8d:b4:94: 31:2a:83:f3:9c:36:24:3a:1f:02:ee:a8:62:c5:9a: f1:2e:2d:75:0a:fa:c9:0b:f0:9d:da:95:56:d8:fb: cb:da:88:df:2d:dd:bd:d1:14:f8:db:3d:06:86:2f: e2:84:d0:52:14:79:50:19:d8:2a:90:07:9a:06:c4: 69:94:ff:7b:b5:7b:b3:6e:57:e0:46:6f:8b:6d:4d: b6:0e:c7:10:38:c1:c9:7e:2b:db:89:01:ed:64:8a: af:9f:36:b2:9a:28:cb:92:8d:3b:76:2d:8d:57:6f: f5:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:C5:6A:EF:8C:C9:6D:40:12:3A:D2:07:4F:F4:34:0B:10:BF:94:F4 X509v3 Authority Key Identifier: keyid:63:FD:8D:EE:5A:44:38:A5:0F:F5:0B:6B:9B:9D:6A:3F:53:F3:48:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9141f884-d5c9-4336-9a5c-777419e56dce/0/63FD8DEE5A4438A50FF50B6B9B9D6A3F53F348DC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/63FD8DEE5A4438A50FF50B6B9B9D6A3F53F348DC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9141f884-d5c9-4336-9a5c-777419e56dce/0/323030313a6466303a396530303a3a2f34382d3438203d3e20313332313634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:9e00::/48 Signature Algorithm: sha256WithRSAEncryption 29:21:20:ab:39:a9:60:f2:78:62:2b:c0:a8:25:5d:27:27:d7: 2c:34:35:19:a7:50:20:0d:8f:17:dc:7b:a7:e5:4f:62:21:24: e5:4f:9a:24:0c:8a:93:7a:c4:8a:66:ce:a5:90:d6:96:aa:9f: d4:20:90:b9:f9:9f:6f:60:44:81:37:2b:4c:e9:6c:a9:9a:00: 42:6e:6a:42:c2:11:98:bc:10:39:35:50:13:0a:50:91:e6:c3: 47:d5:73:d9:15:da:54:88:40:b3:d7:1c:8a:d3:45:d2:e9:b3: 02:7e:82:4d:dc:b5:6c:53:b4:15:18:13:da:35:ac:f6:4e:57: fd:2b:e5:ff:bf:db:ad:91:97:40:01:85:f0:f8:fa:93:1a:88: f1:b2:0f:9a:7e:b8:b3:26:f3:0a:fe:7a:9a:ea:71:29:6c:50: fc:d4:6c:04:6d:3a:73:28:50:78:60:8c:22:20:08:24:d8:c4: f3:fc:2a:e1:f9:9c:c7:1b:fb:bc:6c:2d:ce:b1:28:4c:8b:2f: c4:e0:c5:fc:83:e0:3e:5d:73:ac:ba:42:6b:28:1e:c9:85:69: 9d:29:bf:a7:ba:d0:ed:e1:41:2e:6b:d8:a1:8d:2c:9f:e8:e8: d8:8d:7f:e8:b2:84:86:19:19:b2:a2:03:2b:07:69:43:21:7f: e9:ee:a1:65 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUDSuL/JA/40O5IhxUvsCSsLLOFZEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjNGRDhERUU1QTQ0MzhBNTBGRjUwQjZCOUI5RDZBM0Y1 M0YzNDhEQzAeFw0yNDAxMTExMDU1MDBaFw0yNTAxMDkxMTAwMDBaMDMxMTAvBgNV BAMTKEVCQzU2QUVGOENDOTZENDAxMjNBRDIwNzRGRjQzNDBCMTBCRjk0RjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+Yn8+Ix0my7/8Unk5ToblU3hD zn5MP+VOcAuMegvRQVC2g913yfgb1dL2OQXT6LS2deL85fol5BQndZTWPpNQcUtM UM3FfQhL/JRwK2oYUrsf6zDiyaTknCXwkh0609qW+bwnOZM9B50U67ELXW/BJXX9 miU//HSOB5flAAfTlTuEZcBZgNB42Bs/n5V5ln3AxY20lDEqg/OcNiQ6HwLuqGLF mvEuLXUK+skL8J3alVbY+8vaiN8t3b3RFPjbPQaGL+KE0FIUeVAZ2CqQB5oGxGmU /3u1e7NuV+BGb4ttTbYOxxA4wcl+K9uJAe1kiq+fNrKaKMuSjTt2LY1Xb/X5AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU68Vq74zJbUASOtIHT/Q0CxC/lPQwHwYDVR0j BBgwFoAUY/2N7lpEOKUP9Qtrm51qP1PzSNwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MTQxZjg4NC1kNWM5LTQzMzYtOWE1Yy03Nzc0MTllNTZkY2UvMC82M0ZEOERFRTVB NDQzOEE1MEZGNTBCNkI5QjlENkEzRjUzRjM0OERDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjNGRDhERUU1QTQ0MzhBNTBGRjUwQjZCOUI5RDZBM0Y1M0Yz NDhEQy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxNDFmODg0LWQ1YzktNDMzNi05 YTVjLTc3NzQxOWU1NmRjZS8wLzMyMzAzMDMxM2E2NDY2MzAzYTM5NjUzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMyMzEzNjM0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8J4AMA0GCSqGSIb3DQEBCwUAA4IBAQApISCrOalg8nhiK8CoJV0nJ9csNDUZp1Ag DY8X3Hun5U9iISTlT5okDIqTesSKZs6lkNaWqp/UIJC5+Z9vYESBNytM6WypmgBC bmpCwhGYvBA5NVATClCR5sNH1XPZFdpUiECz1xyK00XS6bMCfoJN3LVsU7QVGBPa Naz2Tlf9K+X/v9utkZdAAYXw+PqTGojxsg+afrizJvMK/nqa6nEpbFD81GwEbTpz KFB4YIwiIAgk2MTz/Crh+ZzHG/u8bC3OsShMiy/E4MX8g+A+XXOsukJrKB7JhWmd Kb+nutDt4UEua9ihjSyf6OjYjX/osoSGGRmyogMrB2lDIX/p7qFl -----END CERTIFICATE-----Generated at Mon Nov 25 15:26:45 2024 by rpki-client on console-fra.rpki-client.org