$ rpki-client -vvf repo-rpki.idnic.net/repo/959612a2-4433-42b9-8f4f-b847776acafd/1/323030313a6466343a386534303a3a2f34382d3438203d3e20313533313530.roa File: 323030313a6466343a386534303a3a2f34382d3438203d3e20313533313530.roa (raw, json) Hash identifier: OUo94p/1L8eEsTpC4kjWaPDE8DAFLxalsjCxy/5jn9c= Subject key identifier: CA:A7:3B:1F:51:4B:C9:FA:DF:E1:96:97:E3:63:EF:0B:A5:9D:EA:E3 Certificate issuer: /CN=09E4737CEE36CCCE6819F704F9A924E3B310A5E2 Certificate serial: 120604E4C35F4E846FA5ECB995ED4863D1DD5F01 Authority key identifier: 09:E4:73:7C:EE:36:CC:CE:68:19:F7:04:F9:A9:24:E3:B3:10:A5:E2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09E4737CEE36CCCE6819F704F9A924E3B310A5E2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/959612a2-4433-42b9-8f4f-b847776acafd/1/323030313a6466343a386534303a3a2f34382d3438203d3e20313533313530.roa Signing time: Tue 26 Nov 2024 03:08:23 +0000 ROA not before: Tue 26 Nov 2024 03:03:23 +0000 ROA not after: Tue 25 Nov 2025 03:08:23 +0000 asID: 153150 IP address blocks: 2001:df4:8e40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/959612a2-4433-42b9-8f4f-b847776acafd/1/09E4737CEE36CCCE6819F704F9A924E3B310A5E2.crl rsync://repo-rpki.idnic.net/repo/959612a2-4433-42b9-8f4f-b847776acafd/1/09E4737CEE36CCCE6819F704F9A924E3B310A5E2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09E4737CEE36CCCE6819F704F9A924E3B310A5E2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Feb 2025 13:35:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:06:04:e4:c3:5f:4e:84:6f:a5:ec:b9:95:ed:48:63:d1:dd:5f:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09E4737CEE36CCCE6819F704F9A924E3B310A5E2 Validity Not Before: Nov 26 03:03:23 2024 GMT Not After : Nov 25 03:08:23 2025 GMT Subject: CN=CAA73B1F514BC9FADFE19697E363EF0BA59DEAE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4b:e9:75:f5:21:d7:7a:44:dc:8c:36:3f:0f: ba:f1:43:ec:a9:ec:86:36:fe:eb:9c:69:49:1d:d7: ff:c7:f0:86:61:31:fa:d9:ea:a2:cb:49:f1:41:be: cc:fa:43:ba:19:31:84:ee:c7:fa:20:87:31:9c:19: 13:a2:c4:81:6a:ff:73:4e:04:64:f8:6c:a0:f9:67: d4:91:79:8c:b9:07:83:c5:2e:3f:88:26:c9:dc:8f: 6a:2d:11:db:fd:ed:d6:b0:4c:f3:46:d0:65:f4:11: 5a:28:e7:4f:e7:63:66:ce:5d:ce:2f:62:c0:b3:64: 03:13:32:de:37:73:99:8b:44:8f:2a:ed:07:dc:af: dc:01:b0:c5:13:02:80:1e:78:f5:7c:1e:c4:5b:33: 48:7d:54:ca:28:a8:58:75:5c:ff:56:63:48:96:45: 98:4d:29:82:53:e7:63:67:5f:d7:45:8d:f7:69:9a: cb:bc:bb:80:e9:1c:f6:05:61:3e:0f:66:be:e2:1d: 94:8c:22:71:d5:69:0e:79:e7:a0:5d:b1:e4:e7:d3: 8b:4c:4c:70:b5:dc:15:b5:61:8e:91:08:5a:8a:50: d3:4c:b8:68:f5:72:cb:95:9a:df:db:40:a6:33:6e: c5:6e:30:82:dc:51:fb:a4:8e:52:ca:75:58:26:e5: 7e:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:A7:3B:1F:51:4B:C9:FA:DF:E1:96:97:E3:63:EF:0B:A5:9D:EA:E3 X509v3 Authority Key Identifier: keyid:09:E4:73:7C:EE:36:CC:CE:68:19:F7:04:F9:A9:24:E3:B3:10:A5:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/959612a2-4433-42b9-8f4f-b847776acafd/1/09E4737CEE36CCCE6819F704F9A924E3B310A5E2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09E4737CEE36CCCE6819F704F9A924E3B310A5E2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/959612a2-4433-42b9-8f4f-b847776acafd/1/323030313a6466343a386534303a3a2f34382d3438203d3e20313533313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:8e40::/48 Signature Algorithm: sha256WithRSAEncryption 14:05:73:78:45:f6:0c:92:9d:45:4b:7c:6a:da:bc:f0:35:b5: cd:a3:f5:b8:eb:ac:d4:da:a2:00:f1:59:b7:64:c3:82:7e:b6: 17:e9:16:07:fe:ff:54:a1:fd:f6:ff:19:87:23:d4:6f:4e:91: be:2e:00:f6:3a:ec:1c:63:d3:76:a2:46:00:60:c4:f2:6c:9f: fe:00:55:2a:35:79:1c:91:75:79:97:28:6e:e8:27:43:26:1d: 33:4f:f1:92:95:1b:7b:3a:b3:69:4c:45:48:64:94:66:e3:ba: 8f:d3:3a:dd:21:46:4f:b5:55:70:e6:65:aa:c2:9b:5b:84:98: 7c:c8:5f:0e:fa:bd:ac:cd:8a:ea:39:91:a4:ad:8c:dd:9e:46: ca:97:11:7e:e9:0d:7d:7d:d4:01:e9:6f:44:c6:1f:bd:76:28: f1:f4:ab:58:6d:bb:29:88:b7:fc:c2:e7:3d:3b:45:8a:a0:a9: 3a:25:9f:d2:1a:9f:43:9c:ab:ae:46:98:ca:c0:2e:3a:96:f5: 69:ee:ca:ba:8a:cc:d4:fd:2b:46:eb:61:59:d3:d3:98:65:78: b1:48:ce:03:bf:5d:47:fd:99:3a:78:b7:d7:1c:54:48:eb:8d: cd:75:78:4b:66:3d:a9:75:16:64:b2:0b:2d:af:0d:43:bc:5d: e0:2b:74:5c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUEgYE5MNfToRvpey5le1IY9HdXwEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlFNDczN0NFRTM2Q0NDRTY4MTlGNzA0RjlBOTI0RTNC MzEwQTVFMjAeFw0yNDExMjYwMzAzMjNaFw0yNTExMjUwMzA4MjNaMDMxMTAvBgNV BAMTKENBQTczQjFGNTE0QkM5RkFERkUxOTY5N0UzNjNFRjBCQTU5REVBRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQS+l19SHXekTcjDY/D7rxQ+yp 7IY2/uucaUkd1//H8IZhMfrZ6qLLSfFBvsz6Q7oZMYTux/oghzGcGROixIFq/3NO BGT4bKD5Z9SReYy5B4PFLj+IJsncj2otEdv97dawTPNG0GX0EVoo50/nY2bOXc4v YsCzZAMTMt43c5mLRI8q7Qfcr9wBsMUTAoAeePV8HsRbM0h9VMooqFh1XP9WY0iW RZhNKYJT52NnX9dFjfdpmsu8u4DpHPYFYT4PZr7iHZSMInHVaQ5556BdseTn04tM THC13BW1YY6RCFqKUNNMuGj1csuVmt/bQKYzbsVuMILcUfukjlLKdVgm5X4ZAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUyqc7H1FLyfrf4ZaX42PvC6Wd6uMwHwYDVR0j BBgwFoAUCeRzfO42zM5oGfcE+akk47MQpeIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NTk2MTJhMi00NDMzLTQyYjktOGY0Zi1iODQ3Nzc2YWNhZmQvMS8wOUU0NzM3Q0VF MzZDQ0NFNjgxOUY3MDRGOUE5MjRFM0IzMTBBNUUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlFNDczN0NFRTM2Q0NDRTY4MTlGNzA0RjlBOTI0RTNCMzEw QTVFMi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk1OTYxMmEyLTQ0MzMtNDJiOS04 ZjRmLWI4NDc3NzZhY2FmZC8xLzMyMzAzMDMxM2E2NDY2MzQzYTM4NjUzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzEzNTMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9I5AMA0GCSqGSIb3DQEBCwUAA4IBAQAUBXN4RfYMkp1FS3xq2rzwNbXNo/W466zU 2qIA8Vm3ZMOCfrYX6RYH/v9Uof32/xmHI9RvTpG+LgD2OuwcY9N2okYAYMTybJ/+ AFUqNXkckXV5lyhu6CdDJh0zT/GSlRt7OrNpTEVIZJRm47qP0zrdIUZPtVVw5mWq wptbhJh8yF8O+r2szYrqOZGkrYzdnkbKlxF+6Q19fdQB6W9Exh+9dijx9KtYbbsp iLf8wuc9O0WKoKk6JZ/SGp9DnKuuRpjKwC46lvVp7sq6iszU/StG62FZ09OYZXix SM4Dv11H/Zk6eLfXHFRI643NdXhLZj2pdRZksgstrw1DvF3gK3Rc -----END CERTIFICATE-----Generated at Sat Feb 22 04:41:32 2025 by rpki-client