$ rpki-client -vvf repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a31303a3a2f34382d3438203d3e203338373539.roa File: 323030313a6436383a31303a3a2f34382d3438203d3e203338373539.roa (raw, json) Hash identifier: euuIBeIdUT8lgSpCE7TrdJvmyGVkzTEq7+WYT3qs0gs= Subject key identifier: 5E:27:27:79:20:1A:57:EA:58:27:69:D1:90:C7:19:D1:CE:30:B8:D5 Certificate issuer: /CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Certificate serial: 2AABFF086567DF521BF0A27CD3E32B6BF144D61D Authority key identifier: 42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a31303a3a2f34382d3438203d3e203338373539.roa Signing time: Thu 18 Jul 2024 10:00:00 +0000 ROA not before: Thu 18 Jul 2024 09:55:00 +0000 ROA not after: Thu 17 Jul 2025 10:00:00 +0000 asID: 38759 IP address blocks: 2001:d68:10::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:36:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:ab:ff:08:65:67:df:52:1b:f0:a2:7c:d3:e3:2b:6b:f1:44:d6:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Validity Not Before: Jul 18 09:55:00 2024 GMT Not After : Jul 17 10:00:00 2025 GMT Subject: CN=5E272779201A57EA582769D190C719D1CE30B8D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a4:0f:e0:3d:bf:12:35:18:e8:3e:3b:1f:f0: 27:af:e2:21:5d:96:cb:b9:6b:2d:b8:08:84:0b:58: 85:05:a5:7c:6e:cb:9c:2b:96:7f:a1:cc:8c:b9:11: fe:bc:ca:7a:8a:c2:03:1f:40:5e:cf:59:fb:66:af: 3b:78:45:64:e0:a8:a9:43:64:7b:24:a6:9b:17:53: 35:c3:ae:56:bc:6f:63:bb:04:78:c9:18:16:b6:ed: a4:6a:44:4f:2f:45:31:ad:02:81:ff:cb:53:6a:4a: 7e:61:36:c7:f5:2d:ae:b9:ee:b7:77:fa:bb:28:61: 3f:cd:45:4b:98:0a:e5:a3:db:de:cc:ad:64:ac:8b: c3:fe:7e:38:db:cb:be:bb:3a:df:2d:58:57:01:18: c1:88:3a:77:2c:47:67:16:00:17:a9:f7:ae:ba:09: b9:43:f5:48:60:8e:d5:b4:5f:10:43:d1:84:d6:b2: 90:a2:f1:17:e3:ce:b9:54:21:1f:3d:9f:50:d7:93: 5c:f5:5a:c4:8b:8a:b7:f0:a5:66:03:28:aa:42:5d: b2:56:06:39:98:d6:e5:71:69:38:e3:7f:98:d4:1a: c1:9f:3a:9f:34:67:ac:93:ef:38:8a:84:22:f7:48: e9:86:8a:6a:e7:e6:cd:d1:53:64:ba:f7:61:f3:2c: d6:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:27:27:79:20:1A:57:EA:58:27:69:D1:90:C7:19:D1:CE:30:B8:D5 X509v3 Authority Key Identifier: keyid:42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a31303a3a2f34382d3438203d3e203338373539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:d68:10::/48 Signature Algorithm: sha256WithRSAEncryption 77:bb:31:6f:1d:6d:29:dc:fa:0a:d9:4d:07:c4:11:08:a8:d7: 04:ce:12:1c:ae:31:e4:67:a9:de:b5:43:f3:09:ec:07:80:76: df:97:49:93:a0:ed:a5:f4:18:00:77:d5:9a:a3:4a:39:8f:00: e6:e8:05:06:77:d7:f2:b3:58:ba:08:5b:ea:68:4a:8c:32:c5: db:24:96:f7:82:cf:31:a5:55:71:f6:f6:81:d4:80:af:34:46: 6e:a0:07:6a:25:53:5e:37:70:17:01:cc:78:57:e2:05:b5:7c: 67:86:c6:86:f1:ba:14:8f:79:c8:ef:0b:9f:b7:97:49:91:60: a3:cb:5e:1f:4f:77:ba:19:a9:4f:bb:c3:35:a5:03:0e:92:b1: 8c:99:87:8f:b6:93:93:f8:05:3b:b5:f5:08:8d:d6:65:20:62: 84:83:89:ef:f9:c7:d3:33:52:96:3a:4a:39:3a:f9:b1:a5:80: f7:d9:85:19:6f:62:74:b7:56:07:9a:e9:f4:a4:b2:56:99:91: c3:72:92:86:56:13:3c:c2:5a:c3:c5:f0:2b:f6:ec:bd:fc:f0: be:2f:40:e1:b7:8e:6b:2e:b3:3b:49:11:f1:e3:3d:60:ed:80: af:2d:46:27:a0:4f:35:56:c8:f9:e6:fe:fe:9c:66:84:f0:91: 0d:6b:cc:a8 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUKqv/CGVn31Ib8KJ80+Mra/FE1h0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFF QzdDQTMwNjAeFw0yNDA3MTgwOTU1MDBaFw0yNTA3MTcxMDAwMDBaMDMxMTAvBgNV BAMTKDVFMjcyNzc5MjAxQTU3RUE1ODI3NjlEMTkwQzcxOUQxQ0UzMEI4RDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVpA/gPb8SNRjoPjsf8Cev4iFd lsu5ay24CIQLWIUFpXxuy5wrln+hzIy5Ef68ynqKwgMfQF7PWftmrzt4RWTgqKlD ZHskppsXUzXDrla8b2O7BHjJGBa27aRqRE8vRTGtAoH/y1NqSn5hNsf1La657rd3 +rsoYT/NRUuYCuWj297MrWSsi8P+fjjby767Ot8tWFcBGMGIOncsR2cWABep9666 CblD9UhgjtW0XxBD0YTWspCi8RfjzrlUIR89n1DXk1z1WsSLirfwpWYDKKpCXbJW BjmY1uVxaTjjf5jUGsGfOp80Z6yT7ziKhCL3SOmGimrn5s3RU2S692HzLNb7AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUXicneSAaV+pYJ2nRkMcZ0c4wuNUwHwYDVR0j BBgwFoAUQgQuZytojDBy/UdDs+fdgex8owYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTJmMjI4Yy1kZjIwLTQ3MjgtOWY5Ni04ZmFhMTM0MDAxN2EvMC80MjA0MkU2NzJC Njg4QzMwNzJGRDQ3NDNCM0U3REQ4MUVDN0NBMzA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFFQzdD QTMwNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExMmYyMjhjLWRmMjAtNDcyOC05 Zjk2LThmYWExMzQwMDE3YS8wLzMyMzAzMDMxM2E2NDM2MzgzYTMxMzAzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzczNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAENaAAQMA0G CSqGSIb3DQEBCwUAA4IBAQB3uzFvHW0p3PoK2U0HxBEIqNcEzhIcrjHkZ6netUPz CewHgHbfl0mToO2l9BgAd9Wao0o5jwDm6AUGd9fys1i6CFvqaEqMMsXbJJb3gs8x pVVx9vaB1ICvNEZuoAdqJVNeN3AXAcx4V+IFtXxnhsaG8boUj3nI7wuft5dJkWCj y14fT3e6GalPu8M1pQMOkrGMmYePtpOT+AU7tfUIjdZlIGKEg4nv+cfTM1KWOko5 OvmxpYD32YUZb2J0t1YHmun0pLJWmZHDcpKGVhM8wlrDxfAr9uy9/PC+L0Dht45r LrM7SRHx4z1g7YCvLUYnoE81Vsj55v7+nGaE8JENa8yo -----END CERTIFICATE-----Generated at Mon Nov 25 09:00:39 2024 by rpki-client on console-fra.rpki-client.org