$ rpki-client -vvf repo-rpki.idnic.net/repo/a5b8e774-1683-456d-bbc0-343225f17f4c/0/323030313a6466323a663130303a3a2f34382d3438203d3e20313336383632.roa File: 323030313a6466323a663130303a3a2f34382d3438203d3e20313336383632.roa (raw, json) Hash identifier: ECBhF+e4+If0A3tMP/p9517WUpUqU+SxVkyIhiuFLnc= Subject key identifier: 54:51:8F:51:50:0B:87:5F:C5:C3:70:D4:5F:D9:25:D7:B3:EE:2F:30 Certificate issuer: /CN=5787AD6659EA8A5E4018876F5F9DBD9AAAF9CA1D Certificate serial: 1F5CD058FDD744E1A7D23488758636C0E2D0C3C6 Authority key identifier: 57:87:AD:66:59:EA:8A:5E:40:18:87:6F:5F:9D:BD:9A:AA:F9:CA:1D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5787AD6659EA8A5E4018876F5F9DBD9AAAF9CA1D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a5b8e774-1683-456d-bbc0-343225f17f4c/0/323030313a6466323a663130303a3a2f34382d3438203d3e20313336383632.roa Signing time: Fri 26 Jul 2024 07:00:00 +0000 ROA not before: Fri 26 Jul 2024 06:55:00 +0000 ROA not after: Fri 25 Jul 2025 07:00:00 +0000 asID: 136862 IP address blocks: 2001:df2:f100::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a5b8e774-1683-456d-bbc0-343225f17f4c/0/5787AD6659EA8A5E4018876F5F9DBD9AAAF9CA1D.crl rsync://repo-rpki.idnic.net/repo/a5b8e774-1683-456d-bbc0-343225f17f4c/0/5787AD6659EA8A5E4018876F5F9DBD9AAAF9CA1D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5787AD6659EA8A5E4018876F5F9DBD9AAAF9CA1D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:5c:d0:58:fd:d7:44:e1:a7:d2:34:88:75:86:36:c0:e2:d0:c3:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5787AD6659EA8A5E4018876F5F9DBD9AAAF9CA1D Validity Not Before: Jul 26 06:55:00 2024 GMT Not After : Jul 25 07:00:00 2025 GMT Subject: CN=54518F51500B875FC5C370D45FD925D7B3EE2F30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:91:47:34:39:05:69:68:61:ba:4d:2d:b3:6c: ca:3a:2c:dc:f0:9b:e9:19:12:2d:2c:58:6e:55:e2: 02:82:7c:50:ab:a5:ac:7c:43:40:74:7b:3d:12:c8: 6d:a3:46:1c:1f:2b:68:20:ca:fa:07:dc:62:b7:40: 8f:c8:4c:7b:63:89:99:9d:6a:bb:fe:bd:75:f9:10: 4b:45:3d:4b:72:b2:ee:b4:6b:49:0f:4d:ba:d3:8c: b3:cc:21:d4:d6:75:91:0b:48:a6:fd:10:6d:d2:97: 6b:06:5d:53:63:a2:54:a6:2c:dc:e7:01:f1:bf:6b: 83:c8:b6:b0:2e:41:d9:c0:49:61:ba:cd:0c:d1:5f: af:0e:18:7a:84:2e:e8:73:c7:09:e6:35:0e:20:ed: 06:cf:15:14:30:10:05:f4:a9:e8:52:b1:0b:a1:3a: 6c:b8:ad:29:ee:9b:e3:a5:68:15:e5:13:5b:19:6f: b4:94:97:db:7b:ed:a8:52:78:52:6f:f0:f4:c2:9d: 31:14:d2:f1:d9:08:30:a0:b5:4c:5b:25:0e:8a:04: 79:08:05:2f:dd:69:00:1f:3b:92:2f:0a:dc:65:b6: 55:90:be:f7:a8:a6:c1:33:1e:19:98:42:12:0d:7c: 48:8b:ce:2d:4c:be:d8:97:82:56:1d:87:12:28:8f: fc:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:51:8F:51:50:0B:87:5F:C5:C3:70:D4:5F:D9:25:D7:B3:EE:2F:30 X509v3 Authority Key Identifier: keyid:57:87:AD:66:59:EA:8A:5E:40:18:87:6F:5F:9D:BD:9A:AA:F9:CA:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a5b8e774-1683-456d-bbc0-343225f17f4c/0/5787AD6659EA8A5E4018876F5F9DBD9AAAF9CA1D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5787AD6659EA8A5E4018876F5F9DBD9AAAF9CA1D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a5b8e774-1683-456d-bbc0-343225f17f4c/0/323030313a6466323a663130303a3a2f34382d3438203d3e20313336383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:f100::/48 Signature Algorithm: sha256WithRSAEncryption 95:d9:39:33:ac:71:d4:0d:80:6c:dc:98:91:ff:da:4e:8c:dd: 46:85:3f:52:5d:f0:21:7d:03:b7:af:ba:b7:c1:6a:14:00:77: 8c:0c:cc:65:fc:3c:0d:be:49:58:c2:06:77:78:e3:ee:2f:bc: 59:9f:44:7e:5f:8f:dd:73:50:90:fe:81:30:27:04:97:3a:fa: 35:c6:ed:42:8c:c4:0e:fe:ec:3d:32:e4:18:b0:20:ee:db:86: 96:f8:b6:60:59:72:dd:c2:89:3c:05:63:4a:a7:60:70:c4:35: b5:31:35:af:c7:1c:9e:4f:bf:7f:40:e4:0c:31:3c:04:13:63: 45:6f:d0:97:1d:c3:36:ca:5b:1b:a8:f2:07:b7:db:c2:55:ef: 66:f1:04:d0:c4:a6:c8:21:34:16:4d:c4:39:a6:67:c6:ec:df: c4:d0:fa:6c:06:95:e2:7f:c5:7f:66:e5:64:8c:55:d3:40:9b: 2f:3d:d8:3e:62:5e:85:dd:ff:46:8f:b4:9d:1e:50:28:25:33: 73:1e:76:ed:4d:b7:99:07:14:14:3b:87:3e:3e:44:02:4c:45: 08:3d:1d:2d:87:1b:58:10:b8:67:89:fc:bc:1a:2a:0e:67:51: 35:dc:a0:f5:24:74:95:44:9a:59:3e:a7:ff:f8:83:54:61:c5: e9:e4:df:93 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUH1zQWP3XROGn0jSIdYY2wOLQw8YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc4N0FENjY1OUVBOEE1RTQwMTg4NzZGNUY5REJEOUFB QUY5Q0ExRDAeFw0yNDA3MjYwNjU1MDBaFw0yNTA3MjUwNzAwMDBaMDMxMTAvBgNV BAMTKDU0NTE4RjUxNTAwQjg3NUZDNUMzNzBENDVGRDkyNUQ3QjNFRTJGMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqkUc0OQVpaGG6TS2zbMo6LNzw m+kZEi0sWG5V4gKCfFCrpax8Q0B0ez0SyG2jRhwfK2ggyvoH3GK3QI/ITHtjiZmd arv+vXX5EEtFPUtysu60a0kPTbrTjLPMIdTWdZELSKb9EG3Sl2sGXVNjolSmLNzn AfG/a4PItrAuQdnASWG6zQzRX68OGHqELuhzxwnmNQ4g7QbPFRQwEAX0qehSsQuh Omy4rSnum+OlaBXlE1sZb7SUl9t77ahSeFJv8PTCnTEU0vHZCDCgtUxbJQ6KBHkI BS/daQAfO5IvCtxltlWQvveopsEzHhmYQhINfEiLzi1MvtiXglYdhxIoj/yfAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUVFGPUVALh1/Fw3DUX9kl17PuLzAwHwYDVR0j BBgwFoAUV4etZlnqil5AGIdvX529mqr5yh0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NWI4ZTc3NC0xNjgzLTQ1NmQtYmJjMC0zNDMyMjVmMTdmNGMvMC81Nzg3QUQ2NjU5 RUE4QTVFNDAxODg3NkY1RjlEQkQ5QUFBRjlDQTFELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTc4N0FENjY1OUVBOEE1RTQwMTg4NzZGNUY5REJEOUFBQUY5 Q0ExRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1YjhlNzc0LTE2ODMtNDU2ZC1i YmMwLTM0MzIyNWYxN2Y0Yy8wLzMyMzAzMDMxM2E2NDY2MzIzYTY2MzEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzgzNjMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8vEAMA0GCSqGSIb3DQEBCwUAA4IBAQCV2TkzrHHUDYBs3JiR/9pOjN1GhT9SXfAh fQO3r7q3wWoUAHeMDMxl/DwNvklYwgZ3eOPuL7xZn0R+X4/dc1CQ/oEwJwSXOvo1 xu1CjMQO/uw9MuQYsCDu24aW+LZgWXLdwok8BWNKp2BwxDW1MTWvxxyeT79/QOQM MTwEE2NFb9CXHcM2ylsbqPIHt9vCVe9m8QTQxKbIITQWTcQ5pmfG7N/E0PpsBpXi f8V/ZuVkjFXTQJsvPdg+Yl6F3f9Gj7SdHlAoJTNzHnbtTbeZBxQUO4c+PkQCTEUI PR0thxtYELhnify8GioOZ1E13KD1JHSVRJpZPqf/+INUYcXp5N+T -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:56 2024 by rpki-client on console-ams.rpki-client.org