$ rpki-client -vvf repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/323030313a6466333a623938303a3a2f34382d3438203d3e203137353338.roa File: 323030313a6466333a623938303a3a2f34382d3438203d3e203137353338.roa (raw, json) Hash identifier: 13BZZGez00+LUIyTx+ZwpCt/BEy8rtR8zU/43gX10+4= Subject key identifier: 5D:F9:BF:1A:74:CE:12:C3:CF:67:DB:E6:91:DE:44:AE:CA:C5:A8:6A Certificate issuer: /CN=95D9136845FAFA0795735D4A9B0FF9F746461AB3 Certificate serial: 2239DF78E6502A703D1DBBE073A184A5F342D596 Authority key identifier: 95:D9:13:68:45:FA:FA:07:95:73:5D:4A:9B:0F:F9:F7:46:46:1A:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95D9136845FAFA0795735D4A9B0FF9F746461AB3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/323030313a6466333a623938303a3a2f34382d3438203d3e203137353338.roa Signing time: Mon 01 Jul 2024 01:05:15 +0000 ROA not before: Mon 01 Jul 2024 01:00:15 +0000 ROA not after: Mon 30 Jun 2025 01:05:15 +0000 asID: 17538 IP address blocks: 2001:df3:b980::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/95D9136845FAFA0795735D4A9B0FF9F746461AB3.crl rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/95D9136845FAFA0795735D4A9B0FF9F746461AB3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95D9136845FAFA0795735D4A9B0FF9F746461AB3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Mar 2025 15:36:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:39:df:78:e6:50:2a:70:3d:1d:bb:e0:73:a1:84:a5:f3:42:d5:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95D9136845FAFA0795735D4A9B0FF9F746461AB3 Validity Not Before: Jul 1 01:00:15 2024 GMT Not After : Jun 30 01:05:15 2025 GMT Subject: CN=5DF9BF1A74CE12C3CF67DBE691DE44AECAC5A86A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:22:9f:cc:15:4d:58:e7:93:3a:12:05:5a:3d: 91:99:00:ef:9e:15:c8:a4:b4:35:eb:e5:ea:94:cb: 6d:75:17:58:6e:4d:e0:ea:97:b4:b9:63:22:5d:1f: fd:d4:75:f8:a2:46:fc:42:0d:80:b3:27:50:d4:e0: 5f:c3:cb:f8:aa:a4:50:3d:be:a6:74:c1:23:85:24: f5:0e:ed:45:cf:8e:d2:47:2e:0c:fd:6c:62:91:25: 6a:3f:71:e8:0a:5d:3a:c3:69:f0:41:6a:03:99:36: 27:ff:f1:12:f8:89:63:3a:8b:b3:6b:2f:f5:46:27: e7:cf:b9:97:57:74:4c:2b:00:2f:ec:ba:ea:58:56: 4d:5e:5c:61:b8:2d:52:f4:bc:28:f3:ba:ed:ce:d2: 64:a5:d0:c2:a8:42:c7:c8:2b:e5:30:0f:ba:c9:c7: d9:68:2e:3b:50:c9:15:f8:d7:0a:07:d6:71:86:fb: e4:2f:69:2d:75:6f:16:45:8d:c6:b9:4c:68:22:02: c9:7a:55:2d:b6:5e:2c:97:f2:a3:97:7e:6f:07:21: 96:69:4b:41:73:76:d8:1c:6e:04:f1:5d:d1:9e:37: e6:4f:51:11:5b:30:a8:4c:e3:f3:17:6b:8a:08:b1: a7:da:0a:88:86:c0:54:ed:28:25:08:f2:c4:cc:f6: 24:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:F9:BF:1A:74:CE:12:C3:CF:67:DB:E6:91:DE:44:AE:CA:C5:A8:6A X509v3 Authority Key Identifier: keyid:95:D9:13:68:45:FA:FA:07:95:73:5D:4A:9B:0F:F9:F7:46:46:1A:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/95D9136845FAFA0795735D4A9B0FF9F746461AB3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95D9136845FAFA0795735D4A9B0FF9F746461AB3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/323030313a6466333a623938303a3a2f34382d3438203d3e203137353338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:b980::/48 Signature Algorithm: sha256WithRSAEncryption 1b:35:10:67:a7:38:13:82:97:92:25:7a:87:41:37:77:6f:2e: 5c:ef:6a:ae:27:c9:7f:59:e6:26:8a:a9:24:26:5d:bd:60:80: e8:0f:c6:da:1b:3f:c4:ca:95:7c:70:c8:08:ef:35:65:a3:c3: 1d:49:32:fe:1f:58:59:bb:2e:c8:67:32:f5:77:ed:83:84:e8: 4a:58:b4:44:05:cc:73:64:eb:ad:5e:e7:a3:c2:47:d4:4c:60: 5d:84:99:ba:c7:ca:56:fc:07:ad:06:60:c1:a2:84:48:2a:4b: 60:e8:9f:b3:c3:e5:a9:09:55:cd:83:7f:a9:ac:83:83:99:5b: f8:c4:6a:26:8c:3d:98:19:c3:cb:01:6c:ac:ad:8f:98:4c:d4: ed:62:78:f1:c4:f7:34:7d:3e:fc:af:9e:f3:ea:15:10:b2:5c: 0f:dd:f7:4f:b1:67:b7:b9:56:12:f4:93:b0:7a:57:16:75:61: ab:4c:16:be:df:7e:5e:20:ad:cb:d2:18:88:80:d0:3d:19:3d: 12:00:ca:ce:25:55:f0:f5:87:60:70:79:5d:aa:79:b0:23:b4: 52:0a:3d:49:ec:ff:d2:e8:2b:4c:07:1e:e7:e3:aa:29:8a:aa: b5:24:e5:91:7e:81:e4:4d:50:e4:99:92:55:c9:cc:c4:55:d6: b4:9e:3f:27 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUIjnfeOZQKnA9Hbvgc6GEpfNC1ZYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVEOTEzNjg0NUZBRkEwNzk1NzM1RDRBOUIwRkY5Rjc0 NjQ2MUFCMzAeFw0yNDA3MDEwMTAwMTVaFw0yNTA2MzAwMTA1MTVaMDMxMTAvBgNV BAMTKDVERjlCRjFBNzRDRTEyQzNDRjY3REJFNjkxREU0NEFFQ0FDNUE4NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLIp/MFU1Y55M6EgVaPZGZAO+e FciktDXr5eqUy211F1huTeDql7S5YyJdH/3UdfiiRvxCDYCzJ1DU4F/Dy/iqpFA9 vqZ0wSOFJPUO7UXPjtJHLgz9bGKRJWo/cegKXTrDafBBagOZNif/8RL4iWM6i7Nr L/VGJ+fPuZdXdEwrAC/suupYVk1eXGG4LVL0vCjzuu3O0mSl0MKoQsfIK+UwD7rJ x9loLjtQyRX41woH1nGG++QvaS11bxZFjca5TGgiAsl6VS22XiyX8qOXfm8HIZZp S0FzdtgcbgTxXdGeN+ZPURFbMKhM4/MXa4oIsafaCoiGwFTtKCUI8sTM9iQ1AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUXfm/GnTOEsPPZ9vmkd5ErsrFqGowHwYDVR0j BBgwFoAUldkTaEX6+geVc11Kmw/590ZGGrMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i Mzc4NWU2NS01MWUyLTRiMWItODJmOS1lNzUzYWQ0YjI0MGYvMC85NUQ5MTM2ODQ1 RkFGQTA3OTU3MzVENEE5QjBGRjlGNzQ2NDYxQUIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVEOTEzNjg0NUZBRkEwNzk1NzM1RDRBOUIwRkY5Rjc0NjQ2 MUFCMy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzNzg1ZTY1LTUxZTItNGIxYi04 MmY5LWU3NTNhZDRiMjQwZi8wLzMyMzAzMDMxM2E2NDY2MzMzYTYyMzkzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNzM1MzMzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfO5 gDANBgkqhkiG9w0BAQsFAAOCAQEAGzUQZ6c4E4KXkiV6h0E3d28uXO9qrifJf1nm JoqpJCZdvWCA6A/G2hs/xMqVfHDICO81ZaPDHUky/h9YWbsuyGcy9Xftg4ToSli0 RAXMc2TrrV7no8JH1ExgXYSZusfKVvwHrQZgwaKESCpLYOifs8PlqQlVzYN/qayD g5lb+MRqJow9mBnDywFsrK2PmEzU7WJ48cT3NH0+/K+e8+oVELJcD933T7Fnt7lW EvSTsHpXFnVhq0wWvt9+XiCty9IYiIDQPRk9EgDKziVV8PWHYHB5Xap5sCO0Ugo9 Sez/0ugrTAce5+OqKYqqtSTlkX6B5E1Q5JmSVcnMxFXWtJ4/Jw== -----END CERTIFICATE-----Generated at Tue Mar 11 05:01:52 2025 by rpki-client