$ rpki-client -vvf repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/323030313a6466323a356130303a3a2f34382d3438203d3e20313335343434.roa File: 323030313a6466323a356130303a3a2f34382d3438203d3e20313335343434.roa (raw, json) Hash identifier: CwXU9VaKpcKaIL0+cwM5Fjr5bkAAawnd7hCNC9U00Bg= Subject key identifier: 27:63:2B:E2:35:DA:12:EA:C7:61:AA:37:4B:E0:20:CE:60:2D:33:26 Certificate issuer: /CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Certificate serial: 51DF0A195F1F9F0B1C174860ABFF89D5F7A4E9D9 Authority key identifier: D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/323030313a6466323a356130303a3a2f34382d3438203d3e20313335343434.roa Signing time: Mon 23 Sep 2024 21:00:00 +0000 ROA not before: Mon 23 Sep 2024 20:55:00 +0000 ROA not after: Mon 22 Sep 2025 21:00:00 +0000 asID: 135444 IP address blocks: 2001:df2:5a00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Mar 2025 17:24:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:df:0a:19:5f:1f:9f:0b:1c:17:48:60:ab:ff:89:d5:f7:a4:e9:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Validity Not Before: Sep 23 20:55:00 2024 GMT Not After : Sep 22 21:00:00 2025 GMT Subject: CN=27632BE235DA12EAC761AA374BE020CE602D3326 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4a:3f:fc:e8:e6:94:46:a8:91:1b:82:90:b0: 0f:19:73:b8:5e:90:36:a0:b2:2a:8c:a7:b2:9f:06: b4:84:ae:b4:0e:5c:3d:3d:26:de:f6:23:11:73:ac: ee:4d:b2:a5:f9:3d:66:31:3b:ba:d4:71:cf:ad:aa: 68:9d:b3:ab:87:ca:94:fb:6c:23:27:ea:88:d6:e0: a4:50:3a:13:7a:66:fc:30:f0:6c:5c:f2:ba:7f:db: 53:4e:6e:2d:6f:88:5d:66:f6:53:14:6e:13:02:d3: 2c:23:04:9e:65:76:1d:f1:44:68:b3:43:be:9e:e3: cc:80:77:4d:82:49:39:8f:e1:a5:a3:9f:b5:fd:b9: 28:95:6e:ed:8b:9b:63:64:ef:f0:c0:df:74:0a:cf: 00:31:68:78:be:89:fd:b3:7c:ed:1c:12:e3:bf:08: b7:0a:2a:56:7d:3d:10:c3:62:62:3a:e0:aa:11:47: fc:4e:61:89:7c:fc:aa:40:2a:8a:a1:f7:9d:d7:17: 60:a0:5e:8b:93:3a:0d:7f:bd:2d:0f:bb:a0:dd:43: 0c:8a:f2:8c:cf:e6:c0:3b:ee:5c:42:07:53:8d:58: 00:6a:fa:fa:0d:16:99:8c:93:07:27:2b:63:fa:25: d3:ad:a9:70:1d:79:7f:f4:9d:83:6b:88:2e:0b:b8: 89:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:63:2B:E2:35:DA:12:EA:C7:61:AA:37:4B:E0:20:CE:60:2D:33:26 X509v3 Authority Key Identifier: keyid:D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/323030313a6466323a356130303a3a2f34382d3438203d3e20313335343434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:5a00::/48 Signature Algorithm: sha256WithRSAEncryption 17:2d:9e:cc:ae:1d:89:bc:08:d4:1f:d3:0a:e3:bf:85:96:b4: 54:de:ad:4f:8e:9b:33:bf:c2:8a:37:e6:f5:5f:ff:8d:42:5c: 2f:78:ff:e6:67:b0:30:ee:bf:0b:e3:48:10:e6:16:9f:e6:0a: a2:62:32:c3:9c:6b:28:26:b6:92:7f:64:fc:09:8a:a1:47:ef: 4e:cf:cb:3f:7c:cb:e8:a0:aa:ac:f3:97:b4:18:05:8a:0e:27: 51:bd:ca:a3:25:f0:9a:c2:8d:93:d8:da:6a:66:7c:a5:a1:1b: 9c:db:89:d7:a7:fe:20:30:83:d1:6b:17:63:9c:4e:47:a2:a0: 7c:f1:7b:dd:63:c6:16:8b:88:51:21:59:08:2c:6b:ec:d7:52: 81:18:4a:00:5d:71:d7:10:cf:eb:c1:0c:eb:57:cd:be:37:b9: c3:db:ee:6c:ef:ba:01:f7:b7:3d:06:7e:ab:17:53:17:72:f3: 4e:38:15:17:75:29:c6:50:20:d1:a1:26:01:19:dd:90:2a:fa: 37:ea:85:e7:4f:9e:93:35:b2:d2:b9:b8:01:4c:89:d3:0d:9e: 08:bc:40:1f:e5:4b:f5:c8:01:fe:04:30:c7:b3:e4:4f:0d:02: 58:e0:60:ab:03:86:18:b3:7b:19:22:b1:93:8e:e6:44:b3:3b: 07:9a:f8:04 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUUd8KGV8fnwscF0hgq/+J1fek6dkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4 NkNGNTgyRjAeFw0yNDA5MjMyMDU1MDBaFw0yNTA5MjIyMTAwMDBaMDMxMTAvBgNV BAMTKDI3NjMyQkUyMzVEQTEyRUFDNzYxQUEzNzRCRTAyMENFNjAyRDMzMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoSj/86OaURqiRG4KQsA8Zc7he kDagsiqMp7KfBrSErrQOXD09Jt72IxFzrO5NsqX5PWYxO7rUcc+tqmids6uHypT7 bCMn6ojW4KRQOhN6Zvww8Gxc8rp/21NObi1viF1m9lMUbhMC0ywjBJ5ldh3xRGiz Q76e48yAd02CSTmP4aWjn7X9uSiVbu2Lm2Nk7/DA33QKzwAxaHi+if2zfO0cEuO/ CLcKKlZ9PRDDYmI64KoRR/xOYYl8/KpAKoqh953XF2CgXouTOg1/vS0Pu6DdQwyK 8ozP5sA77lxCB1ONWABq+voNFpmMkwcnK2P6JdOtqXAdeX/0nYNriC4LuIltAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUJ2Mr4jXaEurHYao3S+AgzmAtMyYwHwYDVR0j BBgwFoAU2c1AR0vdDAcHdmztuvC2oYbPWC8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MWE3N2FkZC1hNDlhLTRjOGYtYTczNS1lZjk2YzMzYWIyOWYvMC9EOUNENDA0NzRC REQwQzA3MDc3NjZDRURCQUYwQjZBMTg2Q0Y1ODJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4NkNG NTgyRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IxYTc3YWRkLWE0OWEtNGM4Zi1h NzM1LWVmOTZjMzNhYjI5Zi8wLzMyMzAzMDMxM2E2NDY2MzIzYTM1NjEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM1MzQzNDM0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8loAMA0GCSqGSIb3DQEBCwUAA4IBAQAXLZ7Mrh2JvAjUH9MK47+FlrRU3q1Pjpsz v8KKN+b1X/+NQlwveP/mZ7Aw7r8L40gQ5haf5gqiYjLDnGsoJraSf2T8CYqhR+9O z8s/fMvooKqs85e0GAWKDidRvcqjJfCawo2T2NpqZnyloRuc24nXp/4gMIPRaxdj nE5HoqB88XvdY8YWi4hRIVkILGvs11KBGEoAXXHXEM/rwQzrV82+N7nD2+5s77oB 97c9Bn6rF1MXcvNOOBUXdSnGUCDRoSYBGd2QKvo36oXnT56TNbLSubgBTInTDZ4I vEAf5Uv1yAH+BDDHs+RPDQJY4GCrA4YYs3sZIrGTjuZEszsHmvgE -----END CERTIFICATE-----Generated at Tue Mar 11 05:04:24 2025 by rpki-client