$ rpki-client -vvf repo-rpki.idnic.net/repo/b57f1f43-ce7e-4970-aad0-782b019bd03e/0/323030313a6466333a346234303a3a2f34382d3438203d3e20313531393932.roa File: 323030313a6466333a346234303a3a2f34382d3438203d3e20313531393932.roa (raw, json) Hash identifier: HGxSfnzBd2iVo1LQ60/VqdqxnwTeZjj60iyXe+FSbdc= Subject key identifier: 8C:25:C9:DA:C5:69:39:1B:4E:46:4E:A8:9D:E4:BC:0D:D0:99:50:CB Certificate issuer: /CN=307A408E2AA82268DAD36E6F145D64C8061A7B1C Certificate serial: 39AB77B5BD30C7161C3197DC89947FE9528A6E5F Authority key identifier: 30:7A:40:8E:2A:A8:22:68:DA:D3:6E:6F:14:5D:64:C8:06:1A:7B:1C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/307A408E2AA82268DAD36E6F145D64C8061A7B1C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b57f1f43-ce7e-4970-aad0-782b019bd03e/0/323030313a6466333a346234303a3a2f34382d3438203d3e20313531393932.roa Signing time: Mon 29 Jul 2024 09:17:21 +0000 ROA not before: Mon 29 Jul 2024 09:12:21 +0000 ROA not after: Mon 28 Jul 2025 09:17:21 +0000 asID: 151992 IP address blocks: 2001:df3:4b40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b57f1f43-ce7e-4970-aad0-782b019bd03e/0/307A408E2AA82268DAD36E6F145D64C8061A7B1C.crl rsync://repo-rpki.idnic.net/repo/b57f1f43-ce7e-4970-aad0-782b019bd03e/0/307A408E2AA82268DAD36E6F145D64C8061A7B1C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/307A408E2AA82268DAD36E6F145D64C8061A7B1C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 17:58:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:ab:77:b5:bd:30:c7:16:1c:31:97:dc:89:94:7f:e9:52:8a:6e:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=307A408E2AA82268DAD36E6F145D64C8061A7B1C Validity Not Before: Jul 29 09:12:21 2024 GMT Not After : Jul 28 09:17:21 2025 GMT Subject: CN=8C25C9DAC569391B4E464EA89DE4BC0DD09950CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8f:4b:ca:ca:29:85:68:98:99:21:d5:9b:89: 09:00:4c:05:00:a3:42:c5:2a:aa:04:13:5f:5e:fc: 77:5c:1a:4f:8b:f3:8e:4a:32:39:69:70:02:3c:32: 1c:38:70:0f:2b:a1:65:ab:1d:f4:74:d2:8a:b1:5f: d4:e8:40:70:c1:93:35:14:5c:b5:c2:54:25:bd:8a: 79:84:9e:b7:f9:27:c6:14:fe:47:0b:5c:7b:d3:2b: 75:3e:33:fb:54:7d:7c:fb:2c:31:86:50:6a:30:75: ce:88:16:03:ec:a2:45:c8:f4:6c:2a:29:17:8d:3d: c7:a2:b0:72:6a:b3:21:ae:09:72:18:1e:f2:ea:c7: 72:e4:99:17:76:2f:69:d9:3f:45:85:b9:b7:bd:39: ee:14:99:35:7b:80:13:a9:96:e6:50:50:2c:14:b4: b8:0f:d7:8d:e3:b3:e6:bb:91:80:45:38:eb:5f:af: b4:35:c5:a9:8e:fd:32:5e:ea:2e:36:4c:8c:ac:b7: f3:1f:56:0b:ef:32:78:ed:5c:1c:52:ce:16:82:a3: c2:81:36:56:f3:51:d2:af:39:8c:a6:ff:53:d5:ad: 01:d8:5f:ff:3c:ef:1b:42:ef:f8:1d:dd:4a:8a:c2: 9b:90:e3:41:cd:60:d7:db:e7:35:b0:e2:54:2a:1d: 96:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:25:C9:DA:C5:69:39:1B:4E:46:4E:A8:9D:E4:BC:0D:D0:99:50:CB X509v3 Authority Key Identifier: keyid:30:7A:40:8E:2A:A8:22:68:DA:D3:6E:6F:14:5D:64:C8:06:1A:7B:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b57f1f43-ce7e-4970-aad0-782b019bd03e/0/307A408E2AA82268DAD36E6F145D64C8061A7B1C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/307A408E2AA82268DAD36E6F145D64C8061A7B1C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b57f1f43-ce7e-4970-aad0-782b019bd03e/0/323030313a6466333a346234303a3a2f34382d3438203d3e20313531393932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:4b40::/48 Signature Algorithm: sha256WithRSAEncryption 04:c2:a4:5d:df:bb:ca:97:9d:7c:1f:85:71:9c:39:9e:06:80: f9:a4:13:cf:eb:2b:f0:26:e8:ab:6e:75:59:f3:10:08:f3:f8: a7:9f:3f:f5:db:50:45:69:f9:11:52:a2:28:00:d7:47:91:cc: 1f:d1:22:49:42:72:c6:f4:94:df:53:54:99:51:51:c6:53:57: 79:02:4a:e1:cf:c8:86:87:21:76:56:b3:da:ba:3c:21:a9:6f: 86:83:6e:6d:ab:d8:fa:85:05:ce:38:24:2f:27:4c:93:29:00: 96:ae:ac:d1:ea:d7:7b:70:4d:3c:87:c3:f2:aa:75:02:1b:f2: 40:ab:b5:c1:7c:38:75:6e:f2:8d:c0:c4:15:9b:37:62:6d:cb: d1:7c:52:5a:15:6f:31:0c:11:5e:cf:65:be:bf:cc:1a:d7:4b: a5:31:e0:90:95:fd:d0:c0:7a:e9:6a:a5:1c:d7:17:ee:c8:35: 14:33:7e:94:a4:9c:05:52:19:97:9e:83:a6:83:7c:6a:94:db: 46:d2:69:14:de:93:70:3b:9a:95:9a:ce:14:6d:c4:09:bc:49: d4:f7:15:ac:8a:30:25:29:e7:0b:86:60:6e:02:3d:97:d7:d1: c0:d5:ed:c1:c3:37:c3:18:7a:e3:4b:be:9f:35:fc:f3:a3:62: 6e:9c:0c:24 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUOat3tb0wxxYcMZfciZR/6VKKbl8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzA3QTQwOEUyQUE4MjI2OERBRDM2RTZGMTQ1RDY0Qzgw NjFBN0IxQzAeFw0yNDA3MjkwOTEyMjFaFw0yNTA3MjgwOTE3MjFaMDMxMTAvBgNV BAMTKDhDMjVDOURBQzU2OTM5MUI0RTQ2NEVBODlERTRCQzBERDA5OTUwQ0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyj0vKyimFaJiZIdWbiQkATAUA o0LFKqoEE19e/HdcGk+L845KMjlpcAI8Mhw4cA8roWWrHfR00oqxX9ToQHDBkzUU XLXCVCW9inmEnrf5J8YU/kcLXHvTK3U+M/tUfXz7LDGGUGowdc6IFgPsokXI9Gwq KReNPceisHJqsyGuCXIYHvLqx3LkmRd2L2nZP0WFube9Oe4UmTV7gBOpluZQUCwU tLgP143js+a7kYBFOOtfr7Q1xamO/TJe6i42TIyst/MfVgvvMnjtXBxSzhaCo8KB NlbzUdKvOYym/1PVrQHYX/887xtC7/gd3UqKwpuQ40HNYNfb5zWw4lQqHZYzAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUjCXJ2sVpORtORk6oneS8DdCZUMswHwYDVR0j BBgwFoAUMHpAjiqoImja025vFF1kyAYaexwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTdmMWY0My1jZTdlLTQ5NzAtYWFkMC03ODJiMDE5YmQwM2UvMC8zMDdBNDA4RTJB QTgyMjY4REFEMzZFNkYxNDVENjRDODA2MUE3QjFDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzA3QTQwOEUyQUE4MjI2OERBRDM2RTZGMTQ1RDY0QzgwNjFB N0IxQy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1N2YxZjQzLWNlN2UtNDk3MC1h YWQwLTc4MmIwMTliZDAzZS8wLzMyMzAzMDMxM2E2NDY2MzMzYTM0NjIzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMxMzkzOTMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 80tAMA0GCSqGSIb3DQEBCwUAA4IBAQAEwqRd37vKl518H4VxnDmeBoD5pBPP6yvw JuirbnVZ8xAI8/innz/121BFafkRUqIoANdHkcwf0SJJQnLG9JTfU1SZUVHGU1d5 Akrhz8iGhyF2VrPaujwhqW+Gg25tq9j6hQXOOCQvJ0yTKQCWrqzR6td7cE08h8Py qnUCG/JAq7XBfDh1bvKNwMQVmzdibcvRfFJaFW8xDBFez2W+v8wa10ulMeCQlf3Q wHrpaqUc1xfuyDUUM36UpJwFUhmXnoOmg3xqlNtG0mkU3pNwO5qVms4UbcQJvEnU 9xWsijAlKecLhmBuAj2X19HA1e3BwzfDGHrjS76fNfzzo2JunAwk -----END CERTIFICATE-----Generated at Wed Nov 27 18:35:17 2024 by rpki-client on console-fra.rpki-client.org