$ rpki-client -vvf repo-rpki.idnic.net/repo/9c370e6f-f0c7-4f40-8ba4-a01e5d0c74e4/0/323030313a6466353a393630303a3a2f34382d3438203d3e20313335343830.roa File: 323030313a6466353a393630303a3a2f34382d3438203d3e20313335343830.roa (raw, json) Hash identifier: 0bT9qk9/T8bGOoBFx4637lHPQ0bhANOqnE/VLL9dQ84= Subject key identifier: 03:EF:F0:F7:97:F3:FE:04:E2:B9:E0:9E:59:63:0D:5A:A1:1D:8F:88 Certificate issuer: /CN=0FEDA288F7275DEA469AEF4C238DCA9A61A1615C Certificate serial: 7433E37ECCBF9DBC8CD45F3E04BA8CF95DCD1668 Authority key identifier: 0F:ED:A2:88:F7:27:5D:EA:46:9A:EF:4C:23:8D:CA:9A:61:A1:61:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FEDA288F7275DEA469AEF4C238DCA9A61A1615C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9c370e6f-f0c7-4f40-8ba4-a01e5d0c74e4/0/323030313a6466353a393630303a3a2f34382d3438203d3e20313335343830.roa Signing time: Mon 01 Jul 2024 01:04:30 +0000 ROA not before: Mon 01 Jul 2024 00:59:30 +0000 ROA not after: Mon 30 Jun 2025 01:04:30 +0000 asID: 135480 IP address blocks: 2001:df5:9600::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9c370e6f-f0c7-4f40-8ba4-a01e5d0c74e4/0/0FEDA288F7275DEA469AEF4C238DCA9A61A1615C.crl rsync://repo-rpki.idnic.net/repo/9c370e6f-f0c7-4f40-8ba4-a01e5d0c74e4/0/0FEDA288F7275DEA469AEF4C238DCA9A61A1615C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FEDA288F7275DEA469AEF4C238DCA9A61A1615C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:33:e3:7e:cc:bf:9d:bc:8c:d4:5f:3e:04:ba:8c:f9:5d:cd:16:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FEDA288F7275DEA469AEF4C238DCA9A61A1615C Validity Not Before: Jul 1 00:59:30 2024 GMT Not After : Jun 30 01:04:30 2025 GMT Subject: CN=03EFF0F797F3FE04E2B9E09E59630D5AA11D8F88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:69:16:2e:a1:ab:ad:90:23:9a:5e:86:2b:79: 38:02:7a:97:4c:9d:08:dd:9a:4b:5d:6d:12:88:0a: 2e:b9:87:5e:cf:97:cf:5a:6c:6b:f1:75:6b:f4:3a: 2f:7f:d8:74:32:26:9e:7e:10:e3:47:51:a3:73:94: 0f:3d:c4:69:d3:75:12:5a:15:c0:c6:82:38:d7:9d: 26:c9:5f:65:df:2c:36:c4:3a:85:1b:e5:f5:b3:3b: 15:f9:7a:10:b7:47:52:8f:ae:a8:df:e8:67:10:3f: b7:01:cd:5c:65:43:3d:75:e0:4d:75:83:a6:95:f2: 9c:a1:a7:d3:5e:64:b1:75:97:71:23:09:03:0a:7f: 06:a4:b8:85:84:ad:e5:9d:cd:fb:f7:7f:8b:f5:b5: fe:fb:d5:d1:dd:74:a2:3b:71:04:e0:77:bc:ec:ae: 32:d8:11:c0:89:ac:88:3b:09:91:fd:9b:e1:c5:f0: 89:7c:4e:1b:08:ff:8e:52:7b:00:ed:95:48:47:a9: 5d:05:89:76:bc:55:8d:72:35:cd:3b:e7:85:a1:22: 83:29:54:23:68:74:c6:da:12:d7:38:fd:04:13:48: 14:f9:1a:35:e5:dc:e1:bb:4b:21:3e:ba:3e:5c:ce: 6c:d4:95:12:dd:38:43:53:11:bb:2c:d0:ec:8b:9d: 8d:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:EF:F0:F7:97:F3:FE:04:E2:B9:E0:9E:59:63:0D:5A:A1:1D:8F:88 X509v3 Authority Key Identifier: keyid:0F:ED:A2:88:F7:27:5D:EA:46:9A:EF:4C:23:8D:CA:9A:61:A1:61:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9c370e6f-f0c7-4f40-8ba4-a01e5d0c74e4/0/0FEDA288F7275DEA469AEF4C238DCA9A61A1615C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FEDA288F7275DEA469AEF4C238DCA9A61A1615C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9c370e6f-f0c7-4f40-8ba4-a01e5d0c74e4/0/323030313a6466353a393630303a3a2f34382d3438203d3e20313335343830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df5:9600::/48 Signature Algorithm: sha256WithRSAEncryption 7b:93:55:9b:c3:c0:e3:ca:1b:a3:0e:41:13:cf:18:4c:3a:f5: 3c:b0:b5:d3:c2:ba:8c:d2:6c:bf:dc:55:88:59:c3:ce:5b:51: 6c:8c:36:b9:29:50:a7:92:90:b3:4f:71:6d:41:2d:86:37:cc: bf:db:df:b8:a0:26:24:b8:79:13:cf:12:0c:cf:f7:68:58:11: 8a:7c:e4:58:c9:f6:52:56:97:66:8e:ef:7a:1e:4f:9c:78:bd: a3:eb:62:c4:6a:0f:20:f4:04:cc:7b:d1:f7:ac:c3:2a:62:af: a1:69:56:0f:c2:fb:42:48:49:fe:89:ea:5a:c0:e8:83:e6:3b: 23:d7:ec:c4:a6:b4:be:95:ea:1e:74:81:52:e6:59:07:91:31: 96:4f:3d:65:a1:61:2c:45:3c:9d:f5:1b:20:c8:96:fd:a7:58: 24:8d:db:ae:39:80:95:de:52:22:7a:8a:e3:e7:65:14:82:f4: 0c:c9:66:1b:33:3e:a4:cb:87:43:5b:57:ba:68:d2:32:75:7d: 13:38:c0:60:2b:9e:37:9b:86:2e:bb:3d:22:18:6a:9b:5e:97: 28:9c:83:bc:5f:b8:de:0d:fa:80:bb:e8:7e:61:2f:af:68:9f: fe:d9:24:f8:c1:79:69:5c:00:9c:25:aa:db:12:4b:ca:b9:85: e8:26:1f:d4 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUdDPjfsy/nbyM1F8+BLqM+V3NFmgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZFREEyODhGNzI3NURFQTQ2OUFFRjRDMjM4RENBOUE2 MUExNjE1QzAeFw0yNDA3MDEwMDU5MzBaFw0yNTA2MzAwMTA0MzBaMDMxMTAvBgNV BAMTKDAzRUZGMEY3OTdGM0ZFMDRFMkI5RTA5RTU5NjMwRDVBQTExRDhGODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEaRYuoautkCOaXoYreTgCepdM nQjdmktdbRKICi65h17Pl89abGvxdWv0Oi9/2HQyJp5+EONHUaNzlA89xGnTdRJa FcDGgjjXnSbJX2XfLDbEOoUb5fWzOxX5ehC3R1KPrqjf6GcQP7cBzVxlQz114E11 g6aV8pyhp9NeZLF1l3EjCQMKfwakuIWEreWdzfv3f4v1tf771dHddKI7cQTgd7zs rjLYEcCJrIg7CZH9m+HF8Il8ThsI/45SewDtlUhHqV0FiXa8VY1yNc0754WhIoMp VCNodMbaEtc4/QQTSBT5GjXl3OG7SyE+uj5czmzUlRLdOENTEbss0OyLnY2nAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUA+/w95fz/gTiueCeWWMNWqEdj4gwHwYDVR0j BBgwFoAUD+2iiPcnXepGmu9MI43KmmGhYVwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YzM3MGU2Zi1mMGM3LTRmNDAtOGJhNC1hMDFlNWQwYzc0ZTQvMC8wRkVEQTI4OEY3 Mjc1REVBNDY5QUVGNEMyMzhEQ0E5QTYxQTE2MTVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEZFREEyODhGNzI3NURFQTQ2OUFFRjRDMjM4RENBOUE2MUEx NjE1Qy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzljMzcwZTZmLWYwYzctNGY0MC04 YmE0LWEwMWU1ZDBjNzRlNC8wLzMyMzAzMDMxM2E2NDY2MzUzYTM5MzYzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM1MzQzODMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9ZYAMA0GCSqGSIb3DQEBCwUAA4IBAQB7k1Wbw8DjyhujDkETzxhMOvU8sLXTwrqM 0my/3FWIWcPOW1FsjDa5KVCnkpCzT3FtQS2GN8y/29+4oCYkuHkTzxIMz/doWBGK fORYyfZSVpdmju96Hk+ceL2j62LEag8g9ATMe9H3rMMqYq+haVYPwvtCSEn+iepa wOiD5jsj1+zEprS+leoedIFS5lkHkTGWTz1loWEsRTyd9RsgyJb9p1gkjduuOYCV 3lIieorj52UUgvQMyWYbMz6ky4dDW1e6aNIydX0TOMBgK543m4Yuuz0iGGqbXpco nIO8X7jeDfqAu+h+YS+vaJ/+2ST4wXlpXACcJarbEkvKuYXoJh/U -----END CERTIFICATE-----Generated at Thu Nov 21 06:48:40 2024 by rpki-client on console-fra.rpki-client.org