$ rpki-client -vvf repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/323030313a6466303a6134303a3a2f34382d3438203d3e20313439333532.roa File: 323030313a6466303a6134303a3a2f34382d3438203d3e20313439333532.roa (raw, json) Hash identifier: NiK6xYZ8vy6OHKp22RF1q3a7wOKlktVGT6ECuqLE4qo= Subject key identifier: 53:77:CF:B8:30:47:C5:19:AB:1C:A2:BD:6A:63:CF:35:E4:65:D9:CD Certificate issuer: /CN=4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623 Certificate serial: 144FEC3671A695A14A0B00B6D5C1BE412937F636 Authority key identifier: 4E:2A:A9:ED:35:DB:0F:27:6A:5F:F0:D4:02:0D:BE:A1:3E:04:C6:23 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/323030313a6466303a6134303a3a2f34382d3438203d3e20313439333532.roa Signing time: Mon 22 Jan 2024 03:00:01 +0000 ROA not before: Mon 22 Jan 2024 02:55:01 +0000 ROA not after: Mon 20 Jan 2025 03:00:01 +0000 asID: 149352 IP address blocks: 2001:df0:a40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.crl rsync://repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:4f:ec:36:71:a6:95:a1:4a:0b:00:b6:d5:c1:be:41:29:37:f6:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623 Validity Not Before: Jan 22 02:55:01 2024 GMT Not After : Jan 20 03:00:01 2025 GMT Subject: CN=5377CFB83047C519AB1CA2BD6A63CF35E465D9CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6e:35:b0:f4:a9:f0:1c:97:f5:18:59:0f:d0: 86:ba:8c:3c:d9:32:16:0d:8f:aa:0a:01:f6:68:21: 6c:2c:17:57:65:57:89:4e:31:50:40:e5:5e:99:3e: ed:d1:36:72:c4:7b:e4:78:71:f6:ce:61:0e:b7:5a: a8:20:b1:1f:26:79:82:80:a8:4b:93:02:82:6d:57: 85:8e:d8:8e:34:ce:56:6e:3c:2a:61:09:d0:a2:c5: 33:3f:65:dc:fb:f9:cc:f2:1a:9a:f0:db:90:f7:87: 25:95:3a:a9:37:45:dc:11:22:a2:6f:1f:a3:23:54: 93:b1:7a:3c:d4:a7:5f:43:19:dd:e9:36:45:27:0e: cd:04:6b:02:94:89:e0:13:d3:c4:bf:38:db:b9:44: 67:86:82:58:be:97:92:48:6e:d0:c0:84:72:ce:d8: ea:13:60:59:ca:3a:6b:11:74:a1:0a:c5:82:ad:c1: b7:fb:d2:57:2c:f9:f3:4b:ba:01:e0:40:96:49:c4: 07:e8:49:3e:4d:d6:1a:6f:90:21:54:74:7a:a6:4b: d4:77:e6:83:1d:5c:64:84:6f:8b:2b:16:7e:ad:0c: b9:ef:da:9a:af:4f:0f:76:69:45:0f:00:ef:16:27: 82:34:f4:f8:c6:f6:3c:a0:f6:76:c9:94:a3:85:86: 45:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:77:CF:B8:30:47:C5:19:AB:1C:A2:BD:6A:63:CF:35:E4:65:D9:CD X509v3 Authority Key Identifier: keyid:4E:2A:A9:ED:35:DB:0F:27:6A:5F:F0:D4:02:0D:BE:A1:3E:04:C6:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/323030313a6466303a6134303a3a2f34382d3438203d3e20313439333532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:a40::/48 Signature Algorithm: sha256WithRSAEncryption 0e:1b:0c:07:b0:c6:4a:cb:50:0e:f7:53:bf:3f:f4:66:7b:2a: 3c:37:91:8b:0e:26:4a:b3:76:0e:41:7e:4a:ba:0d:07:7d:a5: 5d:35:28:52:5c:b5:1d:1c:3c:62:c9:2d:90:da:69:4b:2b:23: c2:3b:d5:72:37:1e:40:a8:8a:72:81:a3:24:0e:af:1e:37:53: b9:e0:7e:b6:6a:72:92:df:07:77:1f:c9:44:f6:14:94:76:61: e4:28:7a:e4:0e:37:f1:48:32:c8:3b:e4:a6:d2:17:1b:0d:36: 37:40:ff:8c:bb:36:b5:9b:86:ac:2b:5f:6b:44:1d:e5:d4:16: 68:0d:87:5a:eb:0e:ae:aa:33:fa:f8:4d:11:7c:b7:23:ef:31: 94:20:b6:29:00:03:75:b2:2f:bd:d7:0f:17:9f:59:d2:62:0a: e0:ed:55:e8:e3:34:2d:77:5d:27:ac:99:72:e5:a7:c6:b5:e6: 5d:04:32:18:37:46:48:fc:47:17:7d:cf:95:bd:d8:f7:20:ea: b3:05:ec:8f:a6:46:2e:35:e4:96:4d:54:7b:b0:e7:bd:c8:f3: a4:0b:dc:f8:4a:f5:f5:c6:32:fa:f4:93:e7:3b:b5:ec:b7:fd: 03:39:ae:9c:92:00:bb:43:05:a7:fd:cc:79:3a:df:52:8a:72: 9d:a9:8f:d2 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUFE/sNnGmlaFKCwC21cG+QSk39jYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEUyQUE5RUQzNURCMEYyNzZBNUZGMEQ0MDIwREJFQTEz RTA0QzYyMzAeFw0yNDAxMjIwMjU1MDFaFw0yNTAxMjAwMzAwMDFaMDMxMTAvBgNV BAMTKDUzNzdDRkI4MzA0N0M1MTlBQjFDQTJCRDZBNjNDRjM1RTQ2NUQ5Q0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1bjWw9KnwHJf1GFkP0Ia6jDzZ MhYNj6oKAfZoIWwsF1dlV4lOMVBA5V6ZPu3RNnLEe+R4cfbOYQ63WqggsR8meYKA qEuTAoJtV4WO2I40zlZuPCphCdCixTM/Zdz7+czyGprw25D3hyWVOqk3RdwRIqJv H6MjVJOxejzUp19DGd3pNkUnDs0EawKUieAT08S/ONu5RGeGgli+l5JIbtDAhHLO 2OoTYFnKOmsRdKEKxYKtwbf70lcs+fNLugHgQJZJxAfoST5N1hpvkCFUdHqmS9R3 5oMdXGSEb4srFn6tDLnv2pqvTw92aUUPAO8WJ4I09PjG9jyg9nbJlKOFhkW/AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUU3fPuDBHxRmrHKK9amPPNeRl2c0wHwYDVR0j BBgwFoAUTiqp7TXbDydqX/DUAg2+oT4ExiMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZWFiMGEwMS04ZWU0LTQ4MjUtODQwZC0xMTJkYWVmMGFjYTgvMC80RTJBQTlFRDM1 REIwRjI3NkE1RkYwRDQwMjBEQkVBMTNFMDRDNjIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEUyQUE5RUQzNURCMEYyNzZBNUZGMEQ0MDIwREJFQTEzRTA0 QzYyMy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzllYWIwYTAxLThlZTQtNDgyNS04 NDBkLTExMmRhZWYwYWNhOC8wLzMyMzAzMDMxM2E2NDY2MzAzYTYxMzQzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzOTMzMzUzMi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfAK QDANBgkqhkiG9w0BAQsFAAOCAQEADhsMB7DGSstQDvdTvz/0ZnsqPDeRiw4mSrN2 DkF+SroNB32lXTUoUly1HRw8YsktkNppSysjwjvVcjceQKiKcoGjJA6vHjdTueB+ tmpykt8Hdx/JRPYUlHZh5Ch65A438UgyyDvkptIXGw02N0D/jLs2tZuGrCtfa0Qd 5dQWaA2HWusOrqoz+vhNEXy3I+8xlCC2KQADdbIvvdcPF59Z0mIK4O1V6OM0LXdd J6yZcuWnxrXmXQQyGDdGSPxHF33Plb3Y9yDqswXsj6ZGLjXklk1Ue7DnvcjzpAvc +Er19cYy+vST5zu17Lf9AzmunJIAu0MFp/3MeTrfUopynamP0g== -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org