$ rpki-client -vvf repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/323030313a6466303a336538303a3a2f34382d3438203d3e20313338383531.roa File: 323030313a6466303a336538303a3a2f34382d3438203d3e20313338383531.roa (raw, json) Hash identifier: cLVCVvcvprgwkkF82bMcfbs0h+bsaPJp7VIWMvcz0os= Subject key identifier: 38:5B:79:C0:AC:4B:09:E0:49:3B:45:F3:E4:E6:E6:6F:6C:39:0F:71 Certificate issuer: /CN=586FE8D27FF4D6BD4FA839FC58844A4B03D535DF Certificate serial: 46811FB66E52E919834994061B51BA4E238BD62F Authority key identifier: 58:6F:E8:D2:7F:F4:D6:BD:4F:A8:39:FC:58:84:4A:4B:03:D5:35:DF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/323030313a6466303a336538303a3a2f34382d3438203d3e20313338383531.roa Signing time: Fri 09 Aug 2024 07:02:21 +0000 ROA not before: Fri 09 Aug 2024 06:57:21 +0000 ROA not after: Fri 08 Aug 2025 07:02:21 +0000 asID: 138851 IP address blocks: 2001:df0:3e80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.crl rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 16:52:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:81:1f:b6:6e:52:e9:19:83:49:94:06:1b:51:ba:4e:23:8b:d6:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=586FE8D27FF4D6BD4FA839FC58844A4B03D535DF Validity Not Before: Aug 9 06:57:21 2024 GMT Not After : Aug 8 07:02:21 2025 GMT Subject: CN=385B79C0AC4B09E0493B45F3E4E6E66F6C390F71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:56:17:bf:12:6d:a5:e3:d5:90:0d:7c:94:14: fe:b2:f1:89:57:b4:5b:77:3a:32:66:91:80:f4:71: 1a:7b:a7:0d:5a:0e:99:bd:8c:56:e3:fe:b4:0f:af: a8:ef:f1:00:c6:6f:f8:3e:b3:e8:c7:a9:ab:8a:ed: 3d:4d:97:40:33:a1:bc:03:f0:10:43:ad:96:a1:51: 48:61:c8:9c:bd:e4:91:df:a1:4d:2e:f8:ac:06:22: 53:74:a0:d9:54:cd:25:d1:6f:de:f8:cb:03:d3:5d: ff:9d:ae:a0:51:8e:42:0c:fa:52:c6:c7:2f:57:5a: 81:37:c9:01:1a:0c:6d:c5:34:87:64:23:a3:f1:1d: c2:4e:2d:99:a2:ac:93:2c:3b:23:64:d6:12:18:62: 95:3a:5f:f7:e0:5e:8a:47:3f:52:9b:66:d4:28:e8: ec:69:0c:ba:ba:1e:af:1a:1b:17:30:28:d4:0c:c0: 33:fc:25:bf:32:d7:26:a8:cb:c7:28:e5:11:5d:82: 69:01:47:f4:31:53:d6:e6:77:61:03:ad:5c:78:8c: ff:d3:06:7c:5a:1b:da:fe:b3:77:42:05:92:04:1a: a5:7e:5b:8c:ce:fc:cf:04:45:a6:7e:22:37:cb:9e: 25:70:b8:c0:5d:2b:00:07:03:14:5a:f7:7b:a9:f3: 46:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:5B:79:C0:AC:4B:09:E0:49:3B:45:F3:E4:E6:E6:6F:6C:39:0F:71 X509v3 Authority Key Identifier: keyid:58:6F:E8:D2:7F:F4:D6:BD:4F:A8:39:FC:58:84:4A:4B:03:D5:35:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/323030313a6466303a336538303a3a2f34382d3438203d3e20313338383531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:3e80::/48 Signature Algorithm: sha256WithRSAEncryption 39:15:8a:31:3d:ae:59:ff:3c:cb:7a:ad:6d:1a:bf:6b:b2:8b: 12:fc:22:f4:86:15:c8:df:11:d7:c5:1c:00:41:73:2e:65:ea: 52:2b:8a:26:17:b7:58:7d:92:6d:65:b6:c4:f4:3e:e3:1e:a6: 3f:03:ed:03:e7:0f:51:ec:4f:a7:69:84:67:58:86:29:62:54: 4e:36:4b:c5:dd:78:40:6e:64:4f:67:1f:c4:7c:d0:7b:ef:38: 0d:e6:06:2e:44:24:6a:b9:b9:df:33:d0:f9:c6:3d:cd:58:8f: d1:d0:89:3a:60:6f:81:c3:a8:38:c3:50:6a:9a:96:71:68:6d: 06:fd:60:c3:d8:33:8c:c6:15:72:1c:38:b3:cd:55:a3:6e:1e: 45:d5:44:e1:94:d7:ee:96:e7:b2:e3:13:1f:a3:b7:30:1d:dc: 0a:b9:00:50:93:d4:80:19:de:50:94:98:93:cb:7c:35:fc:bb: 1c:8c:9f:46:ba:80:8f:6a:ce:09:0d:0e:3e:89:3a:26:6b:e7: 81:e9:97:97:07:09:ce:f8:12:8b:18:32:6e:e1:59:d7:aa:fa: e7:f1:b3:4b:f3:11:0d:1e:e0:71:bc:f9:06:68:47:53:be:96: 53:c6:d1:b4:c7:65:d7:40:66:17:19:1e:c1:b7:a4:4a:86:02: 41:c7:e7:70 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIURoEftm5S6RmDSZQGG1G6TiOL1i8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTg2RkU4RDI3RkY0RDZCRDRGQTgzOUZDNTg4NDRBNEIw M0Q1MzVERjAeFw0yNDA4MDkwNjU3MjFaFw0yNTA4MDgwNzAyMjFaMDMxMTAvBgNV BAMTKDM4NUI3OUMwQUM0QjA5RTA0OTNCNDVGM0U0RTZFNjZGNkMzOTBGNzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAVhe/Em2l49WQDXyUFP6y8YlX tFt3OjJmkYD0cRp7pw1aDpm9jFbj/rQPr6jv8QDGb/g+s+jHqauK7T1Nl0AzobwD 8BBDrZahUUhhyJy95JHfoU0u+KwGIlN0oNlUzSXRb974ywPTXf+drqBRjkIM+lLG xy9XWoE3yQEaDG3FNIdkI6PxHcJOLZmirJMsOyNk1hIYYpU6X/fgXopHP1KbZtQo 6OxpDLq6Hq8aGxcwKNQMwDP8Jb8y1yaoy8co5RFdgmkBR/QxU9bmd2EDrVx4jP/T BnxaG9r+s3dCBZIEGqV+W4zO/M8ERaZ+IjfLniVwuMBdKwAHAxRa93up80Y/AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUOFt5wKxLCeBJO0Xz5Obmb2w5D3EwHwYDVR0j BBgwFoAUWG/o0n/01r1PqDn8WIRKSwPVNd8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YzA3MmRiNy0wMTI3LTQ1NjQtOGQyMC1iY2VkNTI1YTE0YjgvMC81ODZGRThEMjdG RjRENkJENEZBODM5RkM1ODg0NEE0QjAzRDUzNURGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTg2RkU4RDI3RkY0RDZCRDRGQTgzOUZDNTg4NDRBNEIwM0Q1 MzVERi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JjMDcyZGI3LTAxMjctNDU2NC04 ZDIwLWJjZWQ1MjVhMTRiOC8wLzMyMzAzMDMxM2E2NDY2MzAzYTMzNjUzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzgzNTMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8D6AMA0GCSqGSIb3DQEBCwUAA4IBAQA5FYoxPa5Z/zzLeq1tGr9rsosS/CL0hhXI 3xHXxRwAQXMuZepSK4omF7dYfZJtZbbE9D7jHqY/A+0D5w9R7E+naYRnWIYpYlRO NkvF3XhAbmRPZx/EfNB77zgN5gYuRCRqubnfM9D5xj3NWI/R0Ik6YG+Bw6g4w1Bq mpZxaG0G/WDD2DOMxhVyHDizzVWjbh5F1UThlNfuluey4xMfo7cwHdwKuQBQk9SA Gd5QlJiTy3w1/LscjJ9GuoCPas4JDQ4+iToma+eB6ZeXBwnO+BKLGDJu4VnXqvrn 8bNL8xENHuBxvPkGaEdTvpZTxtG0x2XXQGYXGR7Bt6RKhgJBx+dw -----END CERTIFICATE-----Generated at Fri Nov 22 15:22:20 2024 by rpki-client on console-fra.rpki-client.org