$ rpki-client -vvf repo-rpki.idnic.net/repo/b7e26c83-5ed2-4c8b-8a03-6cb00d1ed338/0/323030313a6466363a616630303a3a2f34382d3438203d3e20313338303836.roa File: 323030313a6466363a616630303a3a2f34382d3438203d3e20313338303836.roa (raw, json) Hash identifier: Kg+qUGiJOCWlU9CEF9sF6UHMuGBLyiUY1zk9iK+p//c= Subject key identifier: 0D:A2:93:72:F7:FA:F1:50:AD:9B:4E:49:2F:9E:5A:89:8C:67:F7:5F Certificate issuer: /CN=408585C1D62A4F618C0424E9BEDC3B91411C2276 Certificate serial: 6401BBE7DC280745D049359000DCB80121534678 Authority key identifier: 40:85:85:C1:D6:2A:4F:61:8C:04:24:E9:BE:DC:3B:91:41:1C:22:76 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/408585C1D62A4F618C0424E9BEDC3B91411C2276.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b7e26c83-5ed2-4c8b-8a03-6cb00d1ed338/0/323030313a6466363a616630303a3a2f34382d3438203d3e20313338303836.roa Signing time: Wed 03 Jul 2024 02:20:34 +0000 ROA not before: Wed 03 Jul 2024 02:15:34 +0000 ROA not after: Wed 02 Jul 2025 02:20:34 +0000 asID: 138086 IP address blocks: 2001:df6:af00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b7e26c83-5ed2-4c8b-8a03-6cb00d1ed338/0/408585C1D62A4F618C0424E9BEDC3B91411C2276.crl rsync://repo-rpki.idnic.net/repo/b7e26c83-5ed2-4c8b-8a03-6cb00d1ed338/0/408585C1D62A4F618C0424E9BEDC3B91411C2276.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/408585C1D62A4F618C0424E9BEDC3B91411C2276.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 20:17:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:01:bb:e7:dc:28:07:45:d0:49:35:90:00:dc:b8:01:21:53:46:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408585C1D62A4F618C0424E9BEDC3B91411C2276 Validity Not Before: Jul 3 02:15:34 2024 GMT Not After : Jul 2 02:20:34 2025 GMT Subject: CN=0DA29372F7FAF150AD9B4E492F9E5A898C67F75F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:86:a7:20:9b:57:92:51:d7:f0:2e:52:ce:c4: 0b:f6:89:a9:7f:ae:06:81:62:d7:66:b1:af:65:44: 9b:24:30:23:1a:dd:45:eb:59:39:7d:ef:43:be:73: e6:cc:be:50:92:66:f3:30:d1:e8:b2:5c:4c:db:22: df:09:8f:f2:f3:b5:ee:f7:6a:28:c8:4d:c9:7b:36: 4b:b2:61:36:3b:6a:6a:71:45:ce:15:f2:1f:fc:42: ee:2f:5a:20:7c:2e:ce:93:3c:98:b2:a8:67:ba:17: 67:47:72:58:e3:61:65:fe:36:89:2c:67:fa:fc:8c: d1:5b:ad:79:80:41:a7:da:a5:3f:7b:40:35:47:64: e1:7f:c6:8c:b4:54:10:18:63:85:15:7a:03:33:9f: a2:09:c5:d7:f3:1a:79:78:ee:d6:1f:59:e0:eb:1a: 8d:0d:9f:c0:01:52:a4:09:51:ea:38:c2:c1:44:3d: de:d3:6e:82:60:a6:5d:07:07:f7:5b:5a:91:a7:35: 92:78:ef:88:61:29:1e:33:c8:7c:b1:cc:fb:a4:31: e1:da:3b:18:d4:a3:af:f2:75:72:54:1e:66:01:e2: 48:35:e2:64:1b:a9:55:eb:fd:9d:16:2b:3d:97:c7: 78:fa:87:6a:ac:39:b2:03:77:5d:c2:45:12:b9:4b: 67:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:A2:93:72:F7:FA:F1:50:AD:9B:4E:49:2F:9E:5A:89:8C:67:F7:5F X509v3 Authority Key Identifier: keyid:40:85:85:C1:D6:2A:4F:61:8C:04:24:E9:BE:DC:3B:91:41:1C:22:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b7e26c83-5ed2-4c8b-8a03-6cb00d1ed338/0/408585C1D62A4F618C0424E9BEDC3B91411C2276.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/408585C1D62A4F618C0424E9BEDC3B91411C2276.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b7e26c83-5ed2-4c8b-8a03-6cb00d1ed338/0/323030313a6466363a616630303a3a2f34382d3438203d3e20313338303836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:af00::/48 Signature Algorithm: sha256WithRSAEncryption a8:a9:d4:51:f0:aa:42:cf:cc:18:4b:31:f9:38:35:e9:0f:f8: 15:e9:91:9b:9b:27:61:97:4a:24:d3:05:88:f2:44:f3:b4:a1: e7:38:5f:50:fd:b3:77:4a:21:7b:07:ea:32:9d:e0:23:48:dd: df:34:23:55:32:c6:24:33:f2:68:32:83:62:80:30:aa:d4:44: f6:6d:e0:25:25:c1:e0:c7:f3:c5:56:58:3e:a1:d8:98:b9:6f: 90:e7:43:5e:4b:0b:cb:6d:ee:09:57:ad:58:0e:d0:b6:84:aa: c2:e8:38:26:83:4a:39:b9:3d:b9:d7:28:11:d9:aa:b2:56:c9: 1d:16:81:c6:be:77:d5:01:20:51:28:e5:b6:9f:b6:59:e1:8e: 13:72:f5:c9:ad:e8:5c:e7:a2:37:dc:43:80:a5:04:1a:a1:f0: 3c:85:cb:e1:b6:7b:39:be:6a:83:ce:be:7b:30:1b:10:56:11: 3f:3c:9b:f9:49:44:a8:3e:74:f8:05:d2:dc:4c:e6:09:b5:d8: 4d:91:37:57:be:e0:58:24:d0:19:40:3c:5d:6a:41:af:59:9d: 2a:d5:5d:25:d5:8b:af:c9:78:cb:8c:7c:2b:f4:33:54:37:c1: 33:16:30:8f:25:a2:e2:80:a2:8d:8b:1f:ca:57:ee:49:d2:f9: d3:bc:03:8f -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUZAG759woB0XQSTWQANy4ASFTRngwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4NTg1QzFENjJBNEY2MThDMDQyNEU5QkVEQzNCOTE0 MTFDMjI3NjAeFw0yNDA3MDMwMjE1MzRaFw0yNTA3MDIwMjIwMzRaMDMxMTAvBgNV BAMTKDBEQTI5MzcyRjdGQUYxNTBBRDlCNEU0OTJGOUU1QTg5OEM2N0Y3NUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjhqcgm1eSUdfwLlLOxAv2ial/ rgaBYtdmsa9lRJskMCMa3UXrWTl970O+c+bMvlCSZvMw0eiyXEzbIt8Jj/Lzte73 aijITcl7NkuyYTY7ampxRc4V8h/8Qu4vWiB8Ls6TPJiyqGe6F2dHcljjYWX+Noks Z/r8jNFbrXmAQafapT97QDVHZOF/xoy0VBAYY4UVegMzn6IJxdfzGnl47tYfWeDr Go0Nn8ABUqQJUeo4wsFEPd7TboJgpl0HB/dbWpGnNZJ474hhKR4zyHyxzPukMeHa OxjUo6/ydXJUHmYB4kg14mQbqVXr/Z0WKz2Xx3j6h2qsObIDd13CRRK5S2dBAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUDaKTcvf68VCtm05JL55aiYxn918wHwYDVR0j BBgwFoAUQIWFwdYqT2GMBCTpvtw7kUEcInYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i N2UyNmM4My01ZWQyLTRjOGItOGEwMy02Y2IwMGQxZWQzMzgvMC80MDg1ODVDMUQ2 MkE0RjYxOEMwNDI0RTlCRURDM0I5MTQxMUMyMjc2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDA4NTg1QzFENjJBNEY2MThDMDQyNEU5QkVEQzNCOTE0MTFD MjI3Ni5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I3ZTI2YzgzLTVlZDItNGM4Yi04 YTAzLTZjYjAwZDFlZDMzOC8wLzMyMzAzMDMxM2E2NDY2MzYzYTYxNjYzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzAzODM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9q8AMA0GCSqGSIb3DQEBCwUAA4IBAQCoqdRR8KpCz8wYSzH5ODXpD/gV6ZGbmydh l0ok0wWI8kTztKHnOF9Q/bN3SiF7B+oyneAjSN3fNCNVMsYkM/JoMoNigDCq1ET2 beAlJcHgx/PFVlg+odiYuW+Q50NeSwvLbe4JV61YDtC2hKrC6Dgmg0o5uT251ygR 2aqyVskdFoHGvnfVASBRKOW2n7ZZ4Y4TcvXJrehc56I33EOApQQaofA8hcvhtns5 vmqDzr57MBsQVhE/PJv5SUSoPnT4BdLcTOYJtdhNkTdXvuBYJNAZQDxdakGvWZ0q 1V0l1YuvyXjLjHwr9DNUN8EzFjCPJaLigKKNix/KV+5J0vnTvAOP -----END CERTIFICATE-----Generated at Mon Nov 25 13:02:02 2024 by rpki-client on console-fra.rpki-client.org