$ rpki-client -vvf repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/323030313a6466303a62353a3a2f34382d3438203d3e203436303439.roa File: 323030313a6466303a62353a3a2f34382d3438203d3e203436303439.roa (raw, json) Hash identifier: cvXp0ryiRslGKbI04u3NZ/8isAZXiXHmgeBpSrGft3g= Subject key identifier: D6:89:04:5A:88:02:0A:79:92:E7:A1:31:31:44:AC:2C:82:42:6B:5D Certificate issuer: /CN=F490341241E1B1C7D170AB872CA39A68309B3F3B Certificate serial: 248DA9536FAE924E82BD16F1E5370678CD50FB28 Authority key identifier: F4:90:34:12:41:E1:B1:C7:D1:70:AB:87:2C:A3:9A:68:30:9B:3F:3B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F490341241E1B1C7D170AB872CA39A68309B3F3B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/323030313a6466303a62353a3a2f34382d3438203d3e203436303439.roa Signing time: Mon 01 Jul 2024 01:03:25 +0000 ROA not before: Mon 01 Jul 2024 00:58:25 +0000 ROA not after: Mon 30 Jun 2025 01:03:25 +0000 asID: 46049 IP address blocks: 2001:df0:b5::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/F490341241E1B1C7D170AB872CA39A68309B3F3B.crl rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/F490341241E1B1C7D170AB872CA39A68309B3F3B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F490341241E1B1C7D170AB872CA39A68309B3F3B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:8d:a9:53:6f:ae:92:4e:82:bd:16:f1:e5:37:06:78:cd:50:fb:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F490341241E1B1C7D170AB872CA39A68309B3F3B Validity Not Before: Jul 1 00:58:25 2024 GMT Not After : Jun 30 01:03:25 2025 GMT Subject: CN=D689045A88020A7992E7A1313144AC2C82426B5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:10:1d:5b:06:9f:4a:00:ac:3c:ef:3d:f9:94: 91:b3:90:9f:4b:34:f1:2d:d8:9a:b0:d3:cf:bd:12: 05:49:cd:43:4a:03:f6:ef:77:64:a8:43:9a:c4:1f: 1d:ef:a4:73:fc:12:81:e5:0d:f3:da:d8:90:38:d8: e6:f7:32:6a:46:60:37:e0:72:4c:a4:64:5e:70:32: 91:fa:9a:06:4c:e9:e5:1e:df:59:94:d6:88:75:c0: 34:6d:03:f6:80:90:b5:9c:12:75:8c:8c:ba:1e:a8: e8:50:35:b9:17:00:a2:df:da:e9:7f:44:23:ab:1f: 4b:11:83:5e:00:6d:be:10:ac:80:65:75:7a:f9:f0: c4:91:09:30:c1:7f:b9:a5:24:d6:0e:25:b5:a2:f7: 07:83:07:18:82:fc:ca:41:b3:ce:02:e1:82:78:39: 6e:07:09:7f:a8:d5:5f:6e:ca:01:30:1d:07:f0:90: bd:c9:3b:a9:b4:41:90:c2:fe:99:48:aa:e9:e0:6b: cb:b4:56:97:4a:39:4b:26:49:69:43:b9:44:b2:7a: 9a:5b:58:4c:f1:da:10:72:53:d6:0f:64:e0:17:4f: e4:0f:f9:f5:7b:11:54:28:58:c3:ee:97:20:1e:69: 59:e4:72:da:b9:78:81:6b:ff:6d:da:54:40:eb:a2: de:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:89:04:5A:88:02:0A:79:92:E7:A1:31:31:44:AC:2C:82:42:6B:5D X509v3 Authority Key Identifier: keyid:F4:90:34:12:41:E1:B1:C7:D1:70:AB:87:2C:A3:9A:68:30:9B:3F:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/F490341241E1B1C7D170AB872CA39A68309B3F3B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F490341241E1B1C7D170AB872CA39A68309B3F3B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/323030313a6466303a62353a3a2f34382d3438203d3e203436303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:b5::/48 Signature Algorithm: sha256WithRSAEncryption 46:b4:b2:21:81:0b:8f:0b:df:61:66:dc:8e:80:c2:b5:8b:97: 44:a9:ec:69:83:a3:85:a1:ba:5c:b4:bd:c5:f8:6d:d5:c7:1c: aa:d7:e8:a8:80:db:29:b2:a7:74:e0:27:03:7a:ac:e3:88:29: a7:86:de:fb:3d:4d:84:f1:01:1a:7d:8b:00:3d:a0:63:b2:f9: d4:71:f6:3b:f2:78:e7:17:08:c6:fb:b6:f1:d6:16:0d:40:8b: b5:ef:6f:f2:6e:ab:58:ab:d1:da:69:3a:9a:28:dc:f3:f5:82: a8:33:2b:8e:83:53:37:51:2a:47:91:2e:c1:bb:d8:63:a9:23: 38:45:37:9f:80:cc:ba:99:e7:63:9f:01:6f:44:2c:1b:10:5e: e6:20:2d:51:34:ea:19:5d:97:9c:12:42:78:11:25:14:7d:ab: f4:36:00:db:59:11:51:15:31:0b:2e:92:b1:06:90:5d:04:a1: b3:bc:fb:03:9b:da:b7:9d:cc:6e:6a:1c:91:31:65:b3:7a:d2: c6:33:63:c6:75:cf:23:f9:e6:00:ec:ce:04:62:b3:4a:7f:8f: b5:16:4d:d4:12:3b:38:22:89:5d:10:f9:9b:9e:d3:3c:95:fa: ed:d0:37:58:0d:b0:24:e6:dd:a8:0e:ea:d6:d0:26:e2:1b:42: bf:b3:45:e5 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUJI2pU2+ukk6CvRbx5TcGeM1Q+ygwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjQ5MDM0MTI0MUUxQjFDN0QxNzBBQjg3MkNBMzlBNjgz MDlCM0YzQjAeFw0yNDA3MDEwMDU4MjVaFw0yNTA2MzAwMTAzMjVaMDMxMTAvBgNV BAMTKEQ2ODkwNDVBODgwMjBBNzk5MkU3QTEzMTMxNDRBQzJDODI0MjZCNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbEB1bBp9KAKw87z35lJGzkJ9L NPEt2Jqw08+9EgVJzUNKA/bvd2SoQ5rEHx3vpHP8EoHlDfPa2JA42Ob3MmpGYDfg ckykZF5wMpH6mgZM6eUe31mU1oh1wDRtA/aAkLWcEnWMjLoeqOhQNbkXAKLf2ul/ RCOrH0sRg14Abb4QrIBldXr58MSRCTDBf7mlJNYOJbWi9weDBxiC/MpBs84C4YJ4 OW4HCX+o1V9uygEwHQfwkL3JO6m0QZDC/plIqunga8u0VpdKOUsmSWlDuUSyeppb WEzx2hByU9YPZOAXT+QP+fV7EVQoWMPulyAeaVnkctq5eIFr/23aVEDrot75AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQU1okEWogCCnmS56ExMUSsLIJCa10wHwYDVR0j BBgwFoAU9JA0EkHhscfRcKuHLKOaaDCbPzswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZTg2YjA5Mi01MjdkLTQ4OGYtYTlmNy0yNDc5N2Q5Nzc0Y2IvMC9GNDkwMzQxMjQx RTFCMUM3RDE3MEFCODcyQ0EzOUE2ODMwOUIzRjNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjQ5MDM0MTI0MUUxQjFDN0QxNzBBQjg3MkNBMzlBNjgzMDlC M0YzQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlODZiMDkyLTUyN2QtNDg4Zi1h OWY3LTI0Nzk3ZDk3NzRjYi8wLzMyMzAzMDMxM2E2NDY2MzAzYTYyMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNDM2MzAzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN8AC1MA0G CSqGSIb3DQEBCwUAA4IBAQBGtLIhgQuPC99hZtyOgMK1i5dEqexpg6OFobpctL3F +G3Vxxyq1+iogNspsqd04CcDeqzjiCmnht77PU2E8QEafYsAPaBjsvnUcfY78njn FwjG+7bx1hYNQIu172/ybqtYq9HaaTqaKNzz9YKoMyuOg1M3USpHkS7Bu9hjqSM4 RTefgMy6medjnwFvRCwbEF7mIC1RNOoZXZecEkJ4ESUUfav0NgDbWRFRFTELLpKx BpBdBKGzvPsDm9q3ncxuahyRMWWzetLGM2PGdc8j+eYA7M4EYrNKf4+1Fk3UEjs4 IoldEPmbntM8lfrt0DdYDbAk5t2oDurW0CbiG0K/s0Xl -----END CERTIFICATE-----Generated at Sun Nov 24 08:01:26 2024 by rpki-client on console-fra.rpki-client.org