$ rpki-client -vvf repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a31333a3a2f34382d3438203d3e203338373539.roa File: 323030313a6436383a31333a3a2f34382d3438203d3e203338373539.roa (raw, json) Hash identifier: By1dWAPEg46DXVByabCVytyBi07eAG8jEBvCh+FGMCE= Subject key identifier: 17:41:71:91:7C:14:D0:A5:AE:73:72:86:79:B7:EF:8D:CB:7B:BC:CF Certificate issuer: /CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Certificate serial: 51417A2965F67FFBC0B5680867674D6F057EF94E Authority key identifier: 42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a31333a3a2f34382d3438203d3e203338373539.roa Signing time: Thu 18 Jul 2024 09:00:00 +0000 ROA not before: Thu 18 Jul 2024 08:55:00 +0000 ROA not after: Thu 17 Jul 2025 09:00:00 +0000 asID: 38759 IP address blocks: 2001:d68:13::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:36:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:41:7a:29:65:f6:7f:fb:c0:b5:68:08:67:67:4d:6f:05:7e:f9:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Validity Not Before: Jul 18 08:55:00 2024 GMT Not After : Jul 17 09:00:00 2025 GMT Subject: CN=174171917C14D0A5AE73728679B7EF8DCB7BBCCF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:91:c2:36:6c:02:89:73:53:0b:0c:e0:b3:40: a8:de:1c:09:54:e5:6d:cd:94:19:10:64:8e:4c:28: 48:f5:df:26:b3:b8:c5:23:9e:bf:e2:65:df:9a:1b: c1:d9:94:68:3b:6c:9a:90:1d:9d:48:f5:90:45:05: 81:32:93:3c:12:97:64:13:88:33:65:14:c0:b1:6d: d2:b6:67:f2:54:a1:cb:ee:81:1e:ef:87:40:49:bf: 5a:02:48:2c:a0:ec:fd:45:92:71:2b:ce:e7:65:20: 58:14:34:ea:4c:fd:c2:61:33:f3:b8:ae:02:22:78: 02:45:ad:1c:3b:22:f9:f4:b1:86:0e:4e:78:b4:99: e5:fe:b3:24:aa:cd:0f:a0:ec:34:76:b8:43:7a:7e: b3:e6:7e:3d:b9:5c:37:a7:9e:e2:7a:4d:de:32:83: 87:09:64:cb:fe:90:04:59:61:ec:5c:b0:31:f9:29: 7b:e9:79:11:49:42:79:e5:15:ca:6e:a0:2a:8b:fe: 83:cd:ff:80:a1:fe:e6:6d:30:2a:21:fa:8b:39:d5: 81:55:29:d2:5e:2d:81:e6:6f:96:46:0f:c7:62:83: cb:3a:20:d8:4b:e2:d1:bf:fe:4c:68:37:01:f7:58: 08:3b:e5:f9:74:c0:fa:17:82:84:f3:97:55:22:27: 58:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:41:71:91:7C:14:D0:A5:AE:73:72:86:79:B7:EF:8D:CB:7B:BC:CF X509v3 Authority Key Identifier: keyid:42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a31333a3a2f34382d3438203d3e203338373539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:d68:13::/48 Signature Algorithm: sha256WithRSAEncryption a1:01:94:e8:58:0a:af:f0:4d:2b:0e:79:45:c3:8e:4b:e7:3f: 6e:7e:86:61:e6:a2:5f:3e:2d:06:3c:e6:db:19:eb:92:79:56: 63:68:06:cc:84:73:07:26:cb:ed:d5:0b:57:9b:a5:67:1c:9a: b9:b0:0b:25:26:97:01:00:14:d7:d0:a3:ce:af:33:df:d7:b8: fd:15:a5:79:a6:0c:71:7b:d1:eb:bb:69:64:7e:54:62:17:e9: f8:97:8c:01:3f:3c:23:c9:e1:ef:c0:7a:9d:15:64:41:4a:5b: 4a:57:f5:fa:85:c1:aa:bc:9f:85:6e:e5:74:59:25:30:af:f8: 95:dc:e2:46:4c:f3:27:8d:ab:6b:82:78:a2:5b:89:2d:0d:a8: d4:a2:19:a2:ed:0e:26:fa:69:d3:ab:9d:8c:d7:32:36:18:f1: 19:40:b4:f5:6e:72:20:7a:08:b8:75:d8:85:2f:4f:33:2d:f8: b5:93:02:a2:f2:c1:00:52:b5:a0:4b:7b:9d:83:6e:1a:93:c2: dd:59:84:2c:d1:71:82:f3:ae:12:84:7b:85:35:78:35:69:75: 8e:63:ba:c6:41:53:fa:dc:23:e8:e7:c5:d9:c0:21:a1:df:19: aa:e5:3e:9e:bc:8e:6a:37:f9:cc:7e:28:0f:71:c6:22:02:e3: 4a:49:5d:c1 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUUUF6KWX2f/vAtWgIZ2dNbwV++U4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFF QzdDQTMwNjAeFw0yNDA3MTgwODU1MDBaFw0yNTA3MTcwOTAwMDBaMDMxMTAvBgNV BAMTKDE3NDE3MTkxN0MxNEQwQTVBRTczNzI4Njc5QjdFRjhEQ0I3QkJDQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/kcI2bAKJc1MLDOCzQKjeHAlU 5W3NlBkQZI5MKEj13yazuMUjnr/iZd+aG8HZlGg7bJqQHZ1I9ZBFBYEykzwSl2QT iDNlFMCxbdK2Z/JUocvugR7vh0BJv1oCSCyg7P1FknErzudlIFgUNOpM/cJhM/O4 rgIieAJFrRw7Ivn0sYYOTni0meX+sySqzQ+g7DR2uEN6frPmfj25XDennuJ6Td4y g4cJZMv+kARZYexcsDH5KXvpeRFJQnnlFcpuoCqL/oPN/4Ch/uZtMCoh+os51YFV KdJeLYHmb5ZGD8dig8s6INhL4tG//kxoNwH3WAg75fl0wPoXgoTzl1UiJ1jbAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUF0FxkXwU0KWuc3KGebfvjct7vM8wHwYDVR0j BBgwFoAUQgQuZytojDBy/UdDs+fdgex8owYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTJmMjI4Yy1kZjIwLTQ3MjgtOWY5Ni04ZmFhMTM0MDAxN2EvMC80MjA0MkU2NzJC Njg4QzMwNzJGRDQ3NDNCM0U3REQ4MUVDN0NBMzA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFFQzdD QTMwNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExMmYyMjhjLWRmMjAtNDcyOC05 Zjk2LThmYWExMzQwMDE3YS8wLzMyMzAzMDMxM2E2NDM2MzgzYTMxMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzczNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAENaAATMA0G CSqGSIb3DQEBCwUAA4IBAQChAZToWAqv8E0rDnlFw45L5z9ufoZh5qJfPi0GPObb GeuSeVZjaAbMhHMHJsvt1QtXm6VnHJq5sAslJpcBABTX0KPOrzPf17j9FaV5pgxx e9Hru2lkflRiF+n4l4wBPzwjyeHvwHqdFWRBSltKV/X6hcGqvJ+FbuV0WSUwr/iV 3OJGTPMnjatrgniiW4ktDajUohmi7Q4m+mnTq52M1zI2GPEZQLT1bnIgegi4ddiF L08zLfi1kwKi8sEAUrWgS3udg24ak8LdWYQs0XGC864ShHuFNXg1aXWOY7rGQVP6 3CPo58XZwCGh3xmq5T6evI5qN/nMfigPccYiAuNKSV3B -----END CERTIFICATE-----Generated at Mon Nov 25 09:00:39 2024 by rpki-client on console-fra.rpki-client.org