$ rpki-client -vvf repo-rpki.idnic.net/repo/c00ae0f1-b8c0-452f-8e89-1dfc3f594d4c/0/323030313a6466343a6630303a3a2f34382d3438203d3e203535363931.roa File: 323030313a6466343a6630303a3a2f34382d3438203d3e203535363931.roa (raw, json) Hash identifier: inTtE/2z3zxOo2M8puwuxje9wrX7I3TQwEI651FTI7w= Subject key identifier: 17:5A:32:26:5B:52:F1:AD:F1:74:04:E1:98:18:D6:ED:5F:EB:28:2F Certificate issuer: /CN=CE826E79683ED6E5CE61FEA244B6B79133E98EE3 Certificate serial: 140921974D046AD4C84D82BA30F26B488A365CE8 Authority key identifier: CE:82:6E:79:68:3E:D6:E5:CE:61:FE:A2:44:B6:B7:91:33:E9:8E:E3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE826E79683ED6E5CE61FEA244B6B79133E98EE3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c00ae0f1-b8c0-452f-8e89-1dfc3f594d4c/0/323030313a6466343a6630303a3a2f34382d3438203d3e203535363931.roa Signing time: Mon 01 Jul 2024 01:04:39 +0000 ROA not before: Mon 01 Jul 2024 00:59:39 +0000 ROA not after: Mon 30 Jun 2025 01:04:39 +0000 asID: 55691 IP address blocks: 2001:df4:f00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c00ae0f1-b8c0-452f-8e89-1dfc3f594d4c/0/CE826E79683ED6E5CE61FEA244B6B79133E98EE3.crl rsync://repo-rpki.idnic.net/repo/c00ae0f1-b8c0-452f-8e89-1dfc3f594d4c/0/CE826E79683ED6E5CE61FEA244B6B79133E98EE3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE826E79683ED6E5CE61FEA244B6B79133E98EE3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 12:32:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:09:21:97:4d:04:6a:d4:c8:4d:82:ba:30:f2:6b:48:8a:36:5c:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE826E79683ED6E5CE61FEA244B6B79133E98EE3 Validity Not Before: Jul 1 00:59:39 2024 GMT Not After : Jun 30 01:04:39 2025 GMT Subject: CN=175A32265B52F1ADF17404E19818D6ED5FEB282F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:5f:96:a3:3a:d4:19:f4:58:e7:d0:ed:83:75: 9a:38:72:a9:ba:81:98:22:11:3b:dc:6b:dd:0d:73: 5e:aa:48:33:79:ae:fa:b4:7b:0b:8e:d2:48:3e:89: 9d:6c:64:8f:69:e8:73:7b:18:61:fb:32:d4:dd:03: 60:ee:5e:15:e4:e5:8d:dd:dc:09:1c:fc:83:de:b6: d9:df:a0:db:d9:cd:8c:69:e8:b1:1d:fb:d0:7c:c9: ad:e1:84:94:56:87:83:db:99:14:44:66:aa:e7:70: 2a:ac:da:d1:3d:19:a7:f7:65:e4:94:9e:ac:f8:18: b5:4d:98:fb:fe:f1:c4:53:64:aa:ba:68:05:97:4d: 63:0c:0b:43:16:b8:84:a6:03:b5:02:65:70:55:50: dc:b5:73:85:b3:a7:ba:51:25:cf:5e:76:bf:6c:78: 16:5b:aa:af:9d:19:cc:1f:6f:2c:a4:4b:51:ce:d0: 49:0b:5e:e4:4c:2e:fa:04:69:43:f1:4d:fd:b8:88: f6:f1:a8:c4:13:e9:22:13:0d:59:be:43:d8:93:8e: 50:19:8f:68:da:a5:c6:85:49:77:3c:80:58:52:ce: 42:30:31:d3:ef:1e:fc:0b:ce:df:a5:5c:e0:76:67: f5:6f:30:70:60:b1:69:4d:a1:fc:e2:3c:8d:62:25: 5b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:5A:32:26:5B:52:F1:AD:F1:74:04:E1:98:18:D6:ED:5F:EB:28:2F X509v3 Authority Key Identifier: keyid:CE:82:6E:79:68:3E:D6:E5:CE:61:FE:A2:44:B6:B7:91:33:E9:8E:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c00ae0f1-b8c0-452f-8e89-1dfc3f594d4c/0/CE826E79683ED6E5CE61FEA244B6B79133E98EE3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE826E79683ED6E5CE61FEA244B6B79133E98EE3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c00ae0f1-b8c0-452f-8e89-1dfc3f594d4c/0/323030313a6466343a6630303a3a2f34382d3438203d3e203535363931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:f00::/48 Signature Algorithm: sha256WithRSAEncryption 40:90:6c:84:0e:f5:b0:93:9b:50:99:20:4c:af:01:09:72:01: 10:0b:8d:e7:e1:5e:22:43:d4:ce:4c:c9:98:ba:f5:35:82:b6: 95:fd:d5:c4:1f:45:d1:b0:78:66:75:b3:e4:f8:71:a6:48:d8: d2:6e:89:da:f3:65:de:1b:44:78:78:a0:9c:00:53:11:62:7f: e5:0d:3c:29:d3:5e:b2:cd:5a:e6:3d:7c:cc:31:12:c1:a8:df: d5:04:6e:53:cc:63:d4:87:7b:d7:cb:33:df:b4:09:91:30:f6: e7:b0:24:63:2d:d5:cf:88:78:56:fb:c7:9d:9d:71:4f:4d:7a: 81:7f:d3:83:18:18:80:91:b3:a7:d0:eb:98:c5:f7:cc:4d:03: 36:f0:f8:ee:a4:72:cf:91:08:38:00:17:c7:fa:c4:8a:dc:fd: 42:9b:d9:3c:29:70:cd:40:5e:df:b5:f0:0e:47:cc:34:29:83: bf:28:4c:45:ce:06:ad:20:17:5d:58:2a:7f:fe:30:5c:c7:31: 1e:9b:5b:c3:6b:91:27:de:c6:f7:32:a4:ca:fc:4c:86:a6:21: 8f:0c:c2:86:63:e5:56:dc:2a:a3:15:57:2b:86:9f:60:94:8a: 29:88:a1:66:a9:3d:ca:58:21:ef:b1:ff:6d:f7:6b:bb:20:cb: f5:e5:14:e0 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUFAkhl00EatTITYK6MPJrSIo2XOgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0U4MjZFNzk2ODNFRDZFNUNFNjFGRUEyNDRCNkI3OTEz M0U5OEVFMzAeFw0yNDA3MDEwMDU5MzlaFw0yNTA2MzAwMTA0MzlaMDMxMTAvBgNV BAMTKDE3NUEzMjI2NUI1MkYxQURGMTc0MDRFMTk4MThENkVENUZFQjI4MkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZX5ajOtQZ9Fjn0O2DdZo4cqm6 gZgiETvca90Nc16qSDN5rvq0ewuO0kg+iZ1sZI9p6HN7GGH7MtTdA2DuXhXk5Y3d 3Akc/IPettnfoNvZzYxp6LEd+9B8ya3hhJRWh4PbmRREZqrncCqs2tE9Gaf3ZeSU nqz4GLVNmPv+8cRTZKq6aAWXTWMMC0MWuISmA7UCZXBVUNy1c4Wzp7pRJc9edr9s eBZbqq+dGcwfbyykS1HO0EkLXuRMLvoEaUPxTf24iPbxqMQT6SITDVm+Q9iTjlAZ j2japcaFSXc8gFhSzkIwMdPvHvwLzt+lXOB2Z/VvMHBgsWlNofziPI1iJVslAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUF1oyJltS8a3xdAThmBjW7V/rKC8wHwYDVR0j BBgwFoAUzoJueWg+1uXOYf6iRLa3kTPpjuMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MDBhZTBmMS1iOGMwLTQ1MmYtOGU4OS0xZGZjM2Y1OTRkNGMvMC9DRTgyNkU3OTY4 M0VENkU1Q0U2MUZFQTI0NEI2Qjc5MTMzRTk4RUUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0U4MjZFNzk2ODNFRDZFNUNFNjFGRUEyNDRCNkI3OTEzM0U5 OEVFMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MwMGFlMGYxLWI4YzAtNDUyZi04 ZTg5LTFkZmMzZjU5NGQ0Yy8wLzMyMzAzMDMxM2E2NDY2MzQzYTY2MzAzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNjM5MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ30DwAw DQYJKoZIhvcNAQELBQADggEBAECQbIQO9bCTm1CZIEyvAQlyARALjefhXiJD1M5M yZi69TWCtpX91cQfRdGweGZ1s+T4caZI2NJuidrzZd4bRHh4oJwAUxFif+UNPCnT XrLNWuY9fMwxEsGo39UEblPMY9SHe9fLM9+0CZEw9uewJGMt1c+IeFb7x52dcU9N eoF/04MYGICRs6fQ65jF98xNAzbw+O6kcs+RCDgAF8f6xIrc/UKb2TwpcM1AXt+1 8A5HzDQpg78oTEXOBq0gF11YKn/+MFzHMR6bW8NrkSfexvcypMr8TIamIY8MwoZj 5VbcKqMVVyuGn2CUiimIoWapPcpYIe+x/233a7sgy/XlFOA= -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:44 2024 by rpki-client on console-fra.rpki-client.org