$ rpki-client -vvf repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/323030313a6466363a313330303a3a2f34382d3438203d3e20313338313137.roa File: 323030313a6466363a313330303a3a2f34382d3438203d3e20313338313137.roa (raw, json) Hash identifier: eEx4NWwR1k9vkDQfEfkXnOdl3qvSuzaAej2N1OIEynI= Subject key identifier: B4:D3:08:00:A2:58:AD:F2:F1:81:0F:DD:30:F0:95:8A:41:D9:78:56 Certificate issuer: /CN=989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748 Certificate serial: 2B888D4CE1A1AFB7C6A64153950D9E1A33E77AAC Authority key identifier: 98:9B:87:D4:0F:7C:9F:1B:A5:4A:BC:AE:9B:C7:97:A3:E6:B2:57:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/323030313a6466363a313330303a3a2f34382d3438203d3e20313338313137.roa Signing time: Tue 16 Jul 2024 09:02:41 +0000 ROA not before: Tue 16 Jul 2024 08:57:41 +0000 ROA not after: Tue 15 Jul 2025 09:02:41 +0000 asID: 138117 IP address blocks: 2001:df6:1300::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.crl rsync://repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:08:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:88:8d:4c:e1:a1:af:b7:c6:a6:41:53:95:0d:9e:1a:33:e7:7a:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748 Validity Not Before: Jul 16 08:57:41 2024 GMT Not After : Jul 15 09:02:41 2025 GMT Subject: CN=B4D30800A258ADF2F1810FDD30F0958A41D97856 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:0d:d4:22:c1:ae:1c:93:78:80:bf:e8:32:e6: 18:8c:c1:25:e2:6f:04:42:0e:dd:bf:ee:0a:cf:8b: 4b:b0:d1:74:32:d1:dc:33:9a:a4:e0:72:0d:23:5f: 66:b3:ea:a2:bc:27:20:3e:40:1f:e2:27:21:4d:b4: ee:b5:ee:27:bf:5d:75:a4:b8:a3:52:bf:13:56:69: b9:77:2c:1a:de:13:d3:56:63:3b:69:bd:e7:2f:b5: cb:e0:2a:1f:62:91:eb:79:50:d3:fc:aa:57:5f:f0: 29:50:ce:65:9e:cc:a5:84:37:69:9a:c6:82:e2:6e: 40:0a:e4:66:c8:a4:ff:ad:20:04:cd:e3:7a:63:87: 60:6e:b6:09:e6:c8:ff:95:52:bb:3a:41:19:17:7a: 39:5b:ec:1a:c4:91:04:4b:28:77:15:2f:cb:37:57: 16:3a:e6:5d:5c:e0:6a:67:02:f3:9e:38:e8:4b:56: 77:2c:f3:84:15:3f:ab:0b:6a:35:63:2b:df:96:a8: 98:2b:b3:f1:8e:a5:d3:7c:b7:d6:1c:45:d1:40:1e: bd:c1:d9:f1:5b:e5:e2:93:13:17:93:a4:82:30:de: 51:ba:09:e9:e3:b6:d3:4d:e5:01:9e:ae:7e:41:bf: 33:82:d7:31:d9:1c:f3:a5:67:07:cd:4b:46:08:1d: 6c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:D3:08:00:A2:58:AD:F2:F1:81:0F:DD:30:F0:95:8A:41:D9:78:56 X509v3 Authority Key Identifier: keyid:98:9B:87:D4:0F:7C:9F:1B:A5:4A:BC:AE:9B:C7:97:A3:E6:B2:57:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/323030313a6466363a313330303a3a2f34382d3438203d3e20313338313137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:1300::/48 Signature Algorithm: sha256WithRSAEncryption 57:05:01:2b:f7:58:eb:bc:9c:a5:87:5b:1c:35:f2:cc:2d:d6: 8e:cb:72:30:c0:ac:ef:fb:07:ea:01:f9:91:db:6e:68:0c:ec: 71:c1:23:e9:c9:04:0c:f6:68:9a:e9:13:c3:e0:cb:37:3a:bb: 5a:c2:62:1e:61:ba:24:a3:74:7d:d1:20:5c:7a:74:67:ea:4d: b6:22:a2:c7:07:0c:b7:db:c8:12:76:7f:81:d4:9d:5f:20:10: 5b:fa:a8:21:fe:e4:b4:0d:e3:af:e4:33:c2:87:dc:58:41:a7: c3:6d:9d:69:66:cd:5e:b0:5a:15:99:80:20:3d:e9:84:bc:73: e5:32:97:f1:c4:a6:7d:dc:19:97:4a:67:f7:aa:a6:f9:c9:31: ae:27:8f:7b:ea:69:b4:a4:24:8f:d2:c5:13:e5:9a:c8:fa:ae: 02:b8:84:7f:40:5b:27:e4:a8:9b:63:bd:bb:36:43:7c:e3:4f: 0e:ff:de:4a:1e:af:ca:30:56:b3:8c:3f:1c:d8:a1:59:9c:16: 4b:b0:91:63:bb:07:41:5a:a7:ae:a2:00:c8:67:c8:bb:8e:8b: 92:63:8b:01:00:f4:7a:33:d0:27:1e:49:54:a8:1d:7e:ca:f6: 4c:34:3f:2f:0d:5d:e6:c3:43:00:c3:04:04:da:58:74:19:c3: 35:f6:90:43 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUK4iNTOGhr7fGpkFTlQ2eGjPneqwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTg5Qjg3RDQwRjdDOUYxQkE1NEFCQ0FFOUJDNzk3QTNF NkIyNTc0ODAeFw0yNDA3MTYwODU3NDFaFw0yNTA3MTUwOTAyNDFaMDMxMTAvBgNV BAMTKEI0RDMwODAwQTI1OEFERjJGMTgxMEZERDMwRjA5NThBNDFEOTc4NTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfDdQiwa4ck3iAv+gy5hiMwSXi bwRCDt2/7grPi0uw0XQy0dwzmqTgcg0jX2az6qK8JyA+QB/iJyFNtO617ie/XXWk uKNSvxNWabl3LBreE9NWYztpvecvtcvgKh9iket5UNP8qldf8ClQzmWezKWEN2ma xoLibkAK5GbIpP+tIATN43pjh2ButgnmyP+VUrs6QRkXejlb7BrEkQRLKHcVL8s3 VxY65l1c4GpnAvOeOOhLVncs84QVP6sLajVjK9+WqJgrs/GOpdN8t9YcRdFAHr3B 2fFb5eKTExeTpIIw3lG6CenjttNN5QGern5BvzOC1zHZHPOlZwfNS0YIHWyfAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUtNMIAKJYrfLxgQ/dMPCVikHZeFYwHwYDVR0j BBgwFoAUmJuH1A98nxulSryum8eXo+ayV0gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZTUwNjBiOC1mNTcwLTQyZDYtODZmZi0zM2VhN2ZkZjI1MTUvMC85ODlCODdENDBG N0M5RjFCQTU0QUJDQUU5QkM3OTdBM0U2QjI1NzQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTg5Qjg3RDQwRjdDOUYxQkE1NEFCQ0FFOUJDNzk3QTNFNkIy NTc0OC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzllNTA2MGI4LWY1NzAtNDJkNi04 NmZmLTMzZWE3ZmRmMjUxNS8wLzMyMzAzMDMxM2E2NDY2MzYzYTMxMzMzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzEzMTM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9hMAMA0GCSqGSIb3DQEBCwUAA4IBAQBXBQEr91jrvJylh1scNfLMLdaOy3IwwKzv +wfqAfmR225oDOxxwSPpyQQM9mia6RPD4Ms3OrtawmIeYboko3R90SBcenRn6k22 IqLHBwy328gSdn+B1J1fIBBb+qgh/uS0DeOv5DPCh9xYQafDbZ1pZs1esFoVmYAg PemEvHPlMpfxxKZ93BmXSmf3qqb5yTGuJ4976mm0pCSP0sUT5ZrI+q4CuIR/QFsn 5KibY727NkN8408O/95KHq/KMFazjD8c2KFZnBZLsJFjuwdBWqeuogDIZ8i7jouS Y4sBAPR6M9AnHklUqB1+yvZMND8vDV3mw0MAwwQE2lh0GcM19pBD -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:44 2024 by rpki-client on console-fra.rpki-client.org