$ rpki-client -vvf repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/323030313a6466303a663963303a3a2f34382d3438203d3e20313439393037.roa File: 323030313a6466303a663963303a3a2f34382d3438203d3e20313439393037.roa (raw, json) Hash identifier: /A4c0t6Y98cg2lIq++5SQTiV0ECjCxcXz8yePuUy48U= Subject key identifier: 3C:DB:A7:ED:88:71:67:2F:A4:5E:B2:EB:E1:8F:4D:68:2B:95:05:DE Certificate issuer: /CN=0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C Certificate serial: 409C9D148196D07C4FD3A92BB2CBA7B6516A48 Authority key identifier: 0C:E1:E1:11:46:E2:51:D0:CD:52:BD:83:7A:1A:0A:CD:B7:E0:BA:0C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/323030313a6466303a663963303a3a2f34382d3438203d3e20313439393037.roa Signing time: Fri 13 Sep 2024 01:44:36 +0000 ROA not before: Fri 13 Sep 2024 01:39:36 +0000 ROA not after: Fri 12 Sep 2025 01:44:36 +0000 asID: 149907 IP address blocks: 2001:df0:f9c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.crl rsync://repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:9c:9d:14:81:96:d0:7c:4f:d3:a9:2b:b2:cb:a7:b6:51:6a:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C Validity Not Before: Sep 13 01:39:36 2024 GMT Not After : Sep 12 01:44:36 2025 GMT Subject: CN=3CDBA7ED8871672FA45EB2EBE18F4D682B9505DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:23:74:84:1d:6f:7c:d9:2d:0e:4a:08:95:90: 47:7b:e2:57:a2:5f:4a:9f:a5:d4:44:d1:1e:d2:73: 80:4f:b5:8a:03:88:79:58:87:ff:32:0e:86:9a:a2: cc:8c:30:e4:30:ec:dd:52:00:9a:2c:de:7a:64:fd: 9e:6a:b4:9f:bd:39:e1:03:6d:44:57:06:c8:bb:47: c3:85:29:62:7f:e5:6a:68:33:18:cd:db:be:1e:d7: 2d:19:dc:9e:eb:ca:3f:aa:3c:bc:96:9a:72:56:bb: e5:c5:0b:a0:0e:15:d3:6e:74:46:cc:31:4b:de:67: f4:3c:2b:f2:59:19:dc:34:51:1d:ff:f5:0f:b8:46: 0b:14:d6:f6:bb:5e:85:6d:c6:a9:fe:de:4f:5c:80: fc:e4:b2:24:28:14:d1:c1:20:64:4b:45:9d:79:e3: c1:60:df:eb:27:61:2a:14:39:8a:cd:f0:80:62:bb: a1:2c:df:c2:78:1c:8d:8b:93:19:20:7a:40:e4:5a: 32:c6:a7:3a:4b:b2:25:3d:b0:53:33:c2:e9:5d:70: 0c:72:bd:9c:06:2d:3c:ad:f0:65:d8:fe:cc:86:2c: 74:46:6e:9d:3e:e3:b0:ac:ce:c2:76:d8:5f:c4:43: cd:e5:e0:be:bf:28:a8:34:74:0d:09:85:99:a9:f4: b5:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:DB:A7:ED:88:71:67:2F:A4:5E:B2:EB:E1:8F:4D:68:2B:95:05:DE X509v3 Authority Key Identifier: keyid:0C:E1:E1:11:46:E2:51:D0:CD:52:BD:83:7A:1A:0A:CD:B7:E0:BA:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/323030313a6466303a663963303a3a2f34382d3438203d3e20313439393037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:f9c0::/48 Signature Algorithm: sha256WithRSAEncryption 2a:a4:f7:6d:ea:03:b8:23:29:6f:cd:23:d5:dc:92:02:f7:95: ae:ae:40:8a:48:7c:af:bb:7f:0d:1e:89:6a:c7:f2:f1:23:f5: fb:6b:0d:29:66:ec:c0:27:11:13:a8:97:c4:58:a6:bf:51:96: 52:05:67:d9:ad:b6:31:31:a0:51:40:30:26:b3:7f:f5:24:e2: 91:68:51:d1:72:ad:38:a7:f0:23:bb:0d:34:aa:21:20:68:42: ab:75:2a:81:4a:1d:4a:5e:5b:27:d2:ea:a8:d9:ef:22:9e:18: 1d:6f:ef:c6:98:63:80:a4:5f:05:65:00:68:42:35:b5:29:3b: c7:bc:6d:ad:a2:82:e3:fb:d6:76:0b:b7:39:12:61:39:0d:2e: f1:62:3e:35:02:90:a1:54:78:67:71:1b:dc:89:8f:dc:41:2d: 91:f6:17:c6:29:2d:45:89:e4:e2:8f:f0:9d:50:a2:c1:8f:7b: 9e:f9:b4:e2:50:a0:a8:b0:3a:86:92:e0:70:0f:cf:9f:a7:28: 6e:84:5d:06:da:84:a2:8f:7e:a8:15:62:77:d2:3f:6f:28:77: 5f:31:9f:3e:65:f7:40:09:9a:6e:5d:b6:56:7e:91:09:e1:7e: 04:b1:6e:8a:8f:24:09:f3:f0:2f:84:d6:3c:d9:9c:7c:32:13: 28:99:2d:d4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgITQJydFIGW0HxP06krssuntlFqSDANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEygwQ0UxRTExMTQ2RTI1MUQwQ0Q1MkJEODM3QTFBMEFDREI3 RTBCQTBDMB4XDTI0MDkxMzAxMzkzNloXDTI1MDkxMjAxNDQzNlowMzExMC8GA1UE AxMoM0NEQkE3RUQ4ODcxNjcyRkE0NUVCMkVCRTE4RjRENjgyQjk1MDVERTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK0jdIQdb3zZLQ5KCJWQR3viV6Jf Sp+l1ETRHtJzgE+1igOIeViH/zIOhpqizIww5DDs3VIAmizeemT9nmq0n7054QNt RFcGyLtHw4UpYn/lamgzGM3bvh7XLRncnuvKP6o8vJaacla75cULoA4V0250Rswx S95n9Dwr8lkZ3DRRHf/1D7hGCxTW9rtehW3Gqf7eT1yA/OSyJCgU0cEgZEtFnXnj wWDf6ydhKhQ5is3wgGK7oSzfwngcjYuTGSB6QORaMsanOkuyJT2wUzPC6V1wDHK9 nAYtPK3wZdj+zIYsdEZunT7jsKzOwnbYX8RDzeXgvr8oqDR0DQmFman0tdsCAwEA AaOCAj0wggI5MB0GA1UdDgQWBBQ826ftiHFnL6Resuvhj01oK5UF3jAfBgNVHSME GDAWgBQM4eERRuJR0M1SvYN6GgrNt+C6DDAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Iw NTE2YTdhLTQxOTUtNDRiMy1hMjRlLWNmOGVkNTc4ZDc5MS8wLzBDRTFFMTExNDZF MjUxRDBDRDUyQkQ4MzdBMUEwQUNEQjdFMEJBMEMuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMi8wQ0UxRTExMTQ2RTI1MUQwQ0Q1MkJEODM3QTFBMEFDREI3RTBC QTBDLmNlcjCBqgYIKwYBBQUHAQsEgZ0wgZowgZcGCCsGAQUFBzALhoGKcnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjA1MTZhN2EtNDE5NS00NGIzLWEy NGUtY2Y4ZWQ1NzhkNzkxLzAvMzIzMDMwMzEzYTY0NjYzMDNhNjYzOTYzMzAzYTNh MmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM0MzkzOTMwMzcucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ3w +cAwDQYJKoZIhvcNAQELBQADggEBACqk923qA7gjKW/NI9XckgL3la6uQIpIfK+7 fw0eiWrH8vEj9ftrDSlm7MAnEROol8RYpr9RllIFZ9mttjExoFFAMCazf/Uk4pFo UdFyrTin8CO7DTSqISBoQqt1KoFKHUpeWyfS6qjZ7yKeGB1v78aYY4CkXwVlAGhC NbUpO8e8ba2iguP71nYLtzkSYTkNLvFiPjUCkKFUeGdxG9yJj9xBLZH2F8YpLUWJ 5OKP8J1QosGPe575tOJQoKiwOoaS4HAPz5+nKG6EXQbahKKPfqgVYnfSP28od18x nz5l90AJmm5dtlZ+kQnhfgSxboqPJAnz8C+E1jzZnHwyEyiZLdQ= -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:57 2024 by rpki-client on console-fra.rpki-client.org