$ rpki-client -vvf repo-rpki.idnic.net/repo/a844e1b2-93c6-48ae-96cc-ed83829f5a20/0/323030313a6466333a663738303a3a2f34382d3438203d3e20313431303532.roa File: 323030313a6466333a663738303a3a2f34382d3438203d3e20313431303532.roa (raw, json) Hash identifier: eq1dIyT/hTSGTA8tTWeYbx3bmYqwcmsoUQci0ZdZLPs= Subject key identifier: 33:7D:80:67:25:3B:01:26:85:FB:A1:A2:ED:F9:C3:20:2E:56:37:4A Certificate issuer: /CN=56091C1067601EE93D3C4D25CDA071DC6C463934 Certificate serial: 46CB47563062946699CBA1A32E837C195C08DEC9 Authority key identifier: 56:09:1C:10:67:60:1E:E9:3D:3C:4D:25:CD:A0:71:DC:6C:46:39:34 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/56091C1067601EE93D3C4D25CDA071DC6C463934.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a844e1b2-93c6-48ae-96cc-ed83829f5a20/0/323030313a6466333a663738303a3a2f34382d3438203d3e20313431303532.roa Signing time: Thu 26 Sep 2024 11:00:00 +0000 ROA not before: Thu 26 Sep 2024 10:55:00 +0000 ROA not after: Thu 25 Sep 2025 11:00:00 +0000 asID: 141052 IP address blocks: 2001:df3:f780::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a844e1b2-93c6-48ae-96cc-ed83829f5a20/0/56091C1067601EE93D3C4D25CDA071DC6C463934.crl rsync://repo-rpki.idnic.net/repo/a844e1b2-93c6-48ae-96cc-ed83829f5a20/0/56091C1067601EE93D3C4D25CDA071DC6C463934.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/56091C1067601EE93D3C4D25CDA071DC6C463934.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 13:32:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:cb:47:56:30:62:94:66:99:cb:a1:a3:2e:83:7c:19:5c:08:de:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=56091C1067601EE93D3C4D25CDA071DC6C463934 Validity Not Before: Sep 26 10:55:00 2024 GMT Not After : Sep 25 11:00:00 2025 GMT Subject: CN=337D8067253B012685FBA1A2EDF9C3202E56374A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b7:5d:0c:cd:e6:0f:0b:95:51:12:bd:1c:bb: 34:ee:aa:5c:63:e7:3c:3a:e2:24:3e:b9:54:9d:37: 16:4b:17:68:df:1b:f6:95:fe:75:0c:96:dd:f4:db: d1:b6:ab:58:09:b1:03:76:9f:69:0b:87:aa:ea:9b: d7:f4:9c:99:70:10:9f:fc:84:fa:f6:b8:1c:30:6c: e6:0c:62:b8:64:66:9e:06:ad:29:7b:9f:14:00:ab: 8c:4e:d6:62:5e:53:55:b6:1f:f6:3c:99:d3:01:7b: 81:11:ac:3d:1a:6a:8b:8a:f9:ec:5c:1f:86:da:25: 81:dd:e2:1a:6c:fc:59:d2:5d:5e:d2:7d:5b:6c:99: 5a:3a:fb:80:6e:8a:e8:5c:83:d1:57:5c:f4:55:db: a4:24:08:df:20:f1:0b:40:90:47:f0:f0:dd:fb:ce: 51:4d:39:98:74:9f:71:a8:74:95:f2:68:16:fc:d7: a3:d3:79:c2:aa:d1:f6:e9:68:b8:e3:b6:f5:d7:48: 5a:cd:2b:d0:2d:c5:84:0f:37:c9:c9:ad:9f:fe:be: fd:c9:3a:5a:25:6c:f6:6a:a6:a4:be:6a:05:91:93: cd:de:3e:f6:10:15:d3:69:0a:1d:96:78:ff:01:03: 7f:20:6b:37:1a:cc:d2:f4:de:08:18:63:e0:fe:df: 5c:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:7D:80:67:25:3B:01:26:85:FB:A1:A2:ED:F9:C3:20:2E:56:37:4A X509v3 Authority Key Identifier: keyid:56:09:1C:10:67:60:1E:E9:3D:3C:4D:25:CD:A0:71:DC:6C:46:39:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a844e1b2-93c6-48ae-96cc-ed83829f5a20/0/56091C1067601EE93D3C4D25CDA071DC6C463934.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/56091C1067601EE93D3C4D25CDA071DC6C463934.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a844e1b2-93c6-48ae-96cc-ed83829f5a20/0/323030313a6466333a663738303a3a2f34382d3438203d3e20313431303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:f780::/48 Signature Algorithm: sha256WithRSAEncryption b3:eb:ff:a6:ef:b7:95:bc:fa:a9:4a:30:03:b6:fc:25:06:ec: c7:40:8b:eb:68:5f:cb:c8:cd:f0:02:e3:52:ba:bc:4a:76:7e: cc:27:53:78:63:5b:62:5b:19:b4:66:b9:1f:fb:6c:50:62:0c: 78:84:9f:5e:43:02:49:69:1e:d9:45:eb:d2:a2:53:42:ee:8b: cf:2b:79:31:71:b6:98:4e:15:a5:5d:a1:79:50:8f:7d:4a:53: 82:3c:ea:73:1f:35:10:c2:dc:a1:e4:ae:5e:90:da:fc:e6:f9: 11:7a:74:2a:3f:ad:6f:74:26:db:53:22:15:47:32:86:1e:31: 76:b4:76:d5:5d:be:ec:1f:40:3c:a2:06:42:28:32:a0:ff:b7: 27:c4:a2:c5:4b:7e:4b:b7:a1:b9:72:9f:6a:aa:ec:db:0a:87: c3:4c:45:cc:46:bc:47:38:4c:1c:06:42:1b:60:e9:b1:2c:f6: 36:a6:92:6f:f4:cd:03:12:67:df:e7:a1:97:92:bb:fc:38:4c: 0e:18:0f:79:12:ee:e8:b2:f8:b2:9f:37:4b:4d:48:9a:e8:ec: 1c:0c:d3:cb:24:c7:34:b7:e0:70:12:ff:bc:f9:32:e9:26:8e: 2e:73:cd:a7:c1:26:de:1b:45:6d:81:a5:26:ae:c1:23:8b:b4: 51:46:00:04 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIURstHVjBilGaZy6GjLoN8GVwI3skwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwOTFDMTA2NzYwMUVFOTNEM0M0RDI1Q0RBMDcxREM2 QzQ2MzkzNDAeFw0yNDA5MjYxMDU1MDBaFw0yNTA5MjUxMTAwMDBaMDMxMTAvBgNV BAMTKDMzN0Q4MDY3MjUzQjAxMjY4NUZCQTFBMkVERjlDMzIwMkU1NjM3NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEt10MzeYPC5VREr0cuzTuqlxj 5zw64iQ+uVSdNxZLF2jfG/aV/nUMlt3029G2q1gJsQN2n2kLh6rqm9f0nJlwEJ/8 hPr2uBwwbOYMYrhkZp4GrSl7nxQAq4xO1mJeU1W2H/Y8mdMBe4ERrD0aaouK+exc H4baJYHd4hps/FnSXV7SfVtsmVo6+4Buiuhcg9FXXPRV26QkCN8g8QtAkEfw8N37 zlFNOZh0n3GodJXyaBb816PTecKq0fbpaLjjtvXXSFrNK9AtxYQPN8nJrZ/+vv3J OlolbPZqpqS+agWRk83ePvYQFdNpCh2WeP8BA38gazcazNL03ggYY+D+31xfAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUM32AZyU7ASaF+6Gi7fnDIC5WN0owHwYDVR0j BBgwFoAUVgkcEGdgHuk9PE0lzaBx3GxGOTQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ODQ0ZTFiMi05M2M2LTQ4YWUtOTZjYy1lZDgzODI5ZjVhMjAvMC81NjA5MUMxMDY3 NjAxRUU5M0QzQzREMjVDREEwNzFEQzZDNDYzOTM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwOTFDMTA2NzYwMUVFOTNEM0M0RDI1Q0RBMDcxREM2QzQ2 MzkzNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDRlMWIyLTkzYzYtNDhhZS05 NmNjLWVkODM4MjlmNWEyMC8wLzMyMzAzMDMxM2E2NDY2MzMzYTY2MzczODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMxMzAzNTMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8/eAMA0GCSqGSIb3DQEBCwUAA4IBAQCz6/+m77eVvPqpSjADtvwlBuzHQIvraF/L yM3wAuNSurxKdn7MJ1N4Y1tiWxm0Zrkf+2xQYgx4hJ9eQwJJaR7ZRevSolNC7ovP K3kxcbaYThWlXaF5UI99SlOCPOpzHzUQwtyh5K5ekNr85vkRenQqP61vdCbbUyIV RzKGHjF2tHbVXb7sH0A8ogZCKDKg/7cnxKLFS35Lt6G5cp9qquzbCofDTEXMRrxH OEwcBkIbYOmxLPY2ppJv9M0DEmff56GXkrv8OEwOGA95Eu7osviynzdLTUia6Owc DNPLJMc0t+BwEv+8+TLpJo4uc82nwSbeG0VtgaUmrsEji7RRRgAE -----END CERTIFICATE-----Generated at Mon Apr 21 04:03:07 2025 by rpki-client