$ rpki-client -vvf repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a373a3a2f34382d3438203d3e203338373539.roa File: 323030313a6436383a373a3a2f34382d3438203d3e203338373539.roa (raw, json) Hash identifier: xT7ihnYBd4rPeXcE6bxebb3PZ9+Wox5KB2ZBowr8kH4= Subject key identifier: 87:06:1E:05:FA:42:C6:88:99:C9:C0:9A:04:C7:25:25:B7:BF:61:75 Certificate issuer: /CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Certificate serial: 5BBCED1DEF290EE7BA70E8D0A88B068753EF8478 Authority key identifier: 42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a373a3a2f34382d3438203d3e203338373539.roa Signing time: Thu 18 Jul 2024 09:00:00 +0000 ROA not before: Thu 18 Jul 2024 08:55:00 +0000 ROA not after: Thu 17 Jul 2025 09:00:00 +0000 asID: 38759 IP address blocks: 2001:d68:7::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:36:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:bc:ed:1d:ef:29:0e:e7:ba:70:e8:d0:a8:8b:06:87:53:ef:84:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Validity Not Before: Jul 18 08:55:00 2024 GMT Not After : Jul 17 09:00:00 2025 GMT Subject: CN=87061E05FA42C68899C9C09A04C72525B7BF6175 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:25:9b:21:dd:20:b8:14:cd:69:3d:f0:a7:dc: ba:d6:2d:a5:0d:34:9a:dd:8a:fe:8f:4e:4a:ca:06: 4c:89:61:5f:66:e1:26:47:7c:ed:16:ba:de:02:6b: 63:67:cf:0c:60:35:24:c7:c9:80:26:9d:de:15:89: f5:97:b3:93:96:31:46:bb:30:92:52:d9:1f:b4:35: a4:73:ed:24:6f:f7:c6:45:8c:35:e2:63:94:ed:87: 76:41:6b:f6:2b:29:4d:0e:1d:85:91:ca:fa:dc:56: 0c:27:87:de:b2:ef:71:6f:0b:bb:1e:16:77:55:9a: 96:d3:fe:cb:4a:08:a7:1c:d0:3a:e8:68:18:7f:bf: d4:4a:f4:ef:15:69:f3:a8:f5:48:18:35:3c:76:a6: 7c:74:6a:ad:41:32:9a:37:3b:18:36:bc:8c:60:d5: b1:3f:0b:67:10:f3:29:63:37:b4:41:0b:81:25:4a: ae:a7:78:a6:e4:7c:02:ad:a5:2b:7b:af:cf:8c:4f: 26:3d:dd:0d:57:7a:ab:b3:42:1a:53:9c:a4:ce:6e: 47:4a:41:1f:a6:09:b4:15:86:ff:73:cd:c2:30:e3: a3:ae:a9:6a:6b:d6:0a:a1:c0:92:52:6b:d2:d2:bc: 5b:6e:2d:59:fc:fb:8b:03:fd:b4:55:ed:1e:76:c4: 88:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:06:1E:05:FA:42:C6:88:99:C9:C0:9A:04:C7:25:25:B7:BF:61:75 X509v3 Authority Key Identifier: keyid:42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a373a3a2f34382d3438203d3e203338373539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:d68:7::/48 Signature Algorithm: sha256WithRSAEncryption 3e:f8:c8:32:0f:9d:9d:ce:ae:0d:f6:fe:21:74:72:7d:3a:c0: c2:8a:54:3a:85:08:c3:4c:d9:62:2d:d5:0a:92:94:dd:ee:77: 75:3c:9b:e0:9a:c2:28:b2:f7:31:c3:9d:34:82:59:b2:01:48: d5:d5:9c:15:3a:48:3c:73:3f:5b:69:ef:31:2d:f7:05:81:93: 5d:b2:50:23:f1:6c:5a:7c:82:09:fc:dc:82:5c:94:dc:14:a7: 18:eb:f7:df:90:0b:2c:1f:68:b3:0a:83:29:98:00:74:81:c9: ec:52:4c:f1:03:66:67:85:de:e6:c6:08:3b:fd:6c:f7:64:d5: 24:2d:31:17:de:53:f3:30:09:e6:75:fe:25:6a:e0:c8:84:71: bb:c1:be:6c:6e:ae:2b:1c:c0:50:53:f2:52:29:10:cd:29:13: a9:a0:1b:41:d2:ca:a8:62:06:a0:5a:9d:a9:55:5b:76:a2:33: 37:46:0f:81:df:22:9b:58:71:d7:bf:a9:7b:e2:11:60:be:88: 84:1a:1a:30:c1:49:28:a6:ef:2f:06:81:2d:4f:4f:48:99:e3: 76:25:c6:2a:9f:4d:2a:ac:37:8e:3f:5f:bb:5d:8d:d7:2f:33: a7:36:51:02:ea:20:0b:98:4a:b0:d5:cb:41:dc:4f:1f:72:38: 54:6c:04:a1 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUW7ztHe8pDue6cOjQqIsGh1PvhHgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFF QzdDQTMwNjAeFw0yNDA3MTgwODU1MDBaFw0yNTA3MTcwOTAwMDBaMDMxMTAvBgNV BAMTKDg3MDYxRTA1RkE0MkM2ODg5OUM5QzA5QTA0QzcyNTI1QjdCRjYxNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZJZsh3SC4FM1pPfCn3LrWLaUN NJrdiv6PTkrKBkyJYV9m4SZHfO0Wut4Ca2NnzwxgNSTHyYAmnd4VifWXs5OWMUa7 MJJS2R+0NaRz7SRv98ZFjDXiY5Tth3ZBa/YrKU0OHYWRyvrcVgwnh96y73FvC7se FndVmpbT/stKCKcc0DroaBh/v9RK9O8VafOo9UgYNTx2pnx0aq1BMpo3Oxg2vIxg 1bE/C2cQ8yljN7RBC4ElSq6neKbkfAKtpSt7r8+MTyY93Q1XequzQhpTnKTObkdK QR+mCbQVhv9zzcIw46OuqWpr1gqhwJJSa9LSvFtuLVn8+4sD/bRV7R52xIj7AgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUhwYeBfpCxoiZycCaBMclJbe/YXUwHwYDVR0j BBgwFoAUQgQuZytojDBy/UdDs+fdgex8owYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTJmMjI4Yy1kZjIwLTQ3MjgtOWY5Ni04ZmFhMTM0MDAxN2EvMC80MjA0MkU2NzJC Njg4QzMwNzJGRDQ3NDNCM0U3REQ4MUVDN0NBMzA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFFQzdD QTMwNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExMmYyMjhjLWRmMjAtNDcyOC05 Zjk2LThmYWExMzQwMDE3YS8wLzMyMzAzMDMxM2E2NDM2MzgzYTM3M2EzYTJmMzQz ODJkMzQzODIwM2QzZTIwMzMzODM3MzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDWgABzANBgkq hkiG9w0BAQsFAAOCAQEAPvjIMg+dnc6uDfb+IXRyfTrAwopUOoUIw0zZYi3VCpKU 3e53dTyb4JrCKLL3McOdNIJZsgFI1dWcFTpIPHM/W2nvMS33BYGTXbJQI/FsWnyC CfzcglyU3BSnGOv335ALLB9oswqDKZgAdIHJ7FJM8QNmZ4Xe5sYIO/1s92TVJC0x F95T8zAJ5nX+JWrgyIRxu8G+bG6uKxzAUFPyUikQzSkTqaAbQdLKqGIGoFqdqVVb dqIzN0YPgd8im1hx17+pe+IRYL6IhBoaMMFJKKbvLwaBLU9PSJnjdiXGKp9NKqw3 jj9fu12N1y8zpzZRAuogC5hKsNXLQdxPH3I4VGwEoQ== -----END CERTIFICATE-----Generated at Mon Nov 25 09:00:39 2024 by rpki-client on console-fra.rpki-client.org