$ rpki-client -vvf repo-rpki.idnic.net/repo/c2be4f18-ceed-4f23-a0a4-e24e04d320d3/0/323030313a6466373a663130303a3a2f34382d3438203d3e20313338383731.roa File: 323030313a6466373a663130303a3a2f34382d3438203d3e20313338383731.roa (raw, json) Hash identifier: SMUXRvtfNi7m6TWntr0XsrZd7UmYMQGRBW++4EJYnOk= Subject key identifier: F9:1B:07:9E:B8:DE:B7:63:4F:D9:52:86:A4:0A:BE:AA:9F:D9:E0:4B Certificate issuer: /CN=9AD8AEF8362DD03EACC7B7DEE20F5D3F6DFF5D49 Certificate serial: 19334557D51A0361FC01A28266FAF9BDBB764FC3 Authority key identifier: 9A:D8:AE:F8:36:2D:D0:3E:AC:C7:B7:DE:E2:0F:5D:3F:6D:FF:5D:49 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9AD8AEF8362DD03EACC7B7DEE20F5D3F6DFF5D49.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2be4f18-ceed-4f23-a0a4-e24e04d320d3/0/323030313a6466373a663130303a3a2f34382d3438203d3e20313338383731.roa Signing time: Sat 02 Nov 2024 02:00:00 +0000 ROA not before: Sat 02 Nov 2024 01:55:00 +0000 ROA not after: Sat 01 Nov 2025 02:00:00 +0000 asID: 138871 IP address blocks: 2001:df7:f100::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2be4f18-ceed-4f23-a0a4-e24e04d320d3/0/9AD8AEF8362DD03EACC7B7DEE20F5D3F6DFF5D49.crl rsync://repo-rpki.idnic.net/repo/c2be4f18-ceed-4f23-a0a4-e24e04d320d3/0/9AD8AEF8362DD03EACC7B7DEE20F5D3F6DFF5D49.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9AD8AEF8362DD03EACC7B7DEE20F5D3F6DFF5D49.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 23:33:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:33:45:57:d5:1a:03:61:fc:01:a2:82:66:fa:f9:bd:bb:76:4f:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9AD8AEF8362DD03EACC7B7DEE20F5D3F6DFF5D49 Validity Not Before: Nov 2 01:55:00 2024 GMT Not After : Nov 1 02:00:00 2025 GMT Subject: CN=F91B079EB8DEB7634FD95286A40ABEAA9FD9E04B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e2:94:c1:7c:7a:ca:b5:03:c8:83:95:3d:d4: 20:d6:c7:78:b8:35:36:a8:bc:69:57:fe:ad:bb:68: 72:b8:ed:ff:aa:f1:8b:34:fd:f4:bb:1d:cc:05:8e: 27:4c:0c:c1:56:cf:68:6b:4c:4c:50:9f:26:20:97: fc:8e:b5:00:7b:b0:4a:3b:63:08:17:67:6c:5b:ee: 74:87:3b:51:82:5b:99:dc:2e:dd:1a:f0:bf:02:08: a3:93:3e:a1:b3:a3:03:c4:72:45:3b:d3:fb:33:19: 3a:d0:71:24:7b:c1:fd:f1:84:de:f4:c7:a4:33:ef: 07:ac:af:48:4a:64:dc:8f:e8:69:e9:31:51:15:7b: f8:ec:ef:7f:bd:3f:62:1d:a3:fe:50:32:6a:97:80: 8d:b5:ed:61:f9:d1:77:4f:c4:b3:fc:19:b8:93:32: f0:eb:7f:78:d1:cf:44:5e:09:3f:67:9a:35:bb:13: d0:74:83:54:fe:38:5c:50:33:d7:56:85:45:ec:16: 3f:21:13:c9:54:8a:c5:9b:be:f3:3a:94:97:2e:d3: 45:25:79:59:a4:cb:ea:36:a3:37:19:71:99:26:11: 82:b6:e4:30:fe:a5:8e:fc:a1:fb:4b:e8:64:5d:63: a6:09:1a:70:43:2a:bb:7a:50:bd:08:28:e5:2d:00: a4:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:1B:07:9E:B8:DE:B7:63:4F:D9:52:86:A4:0A:BE:AA:9F:D9:E0:4B X509v3 Authority Key Identifier: keyid:9A:D8:AE:F8:36:2D:D0:3E:AC:C7:B7:DE:E2:0F:5D:3F:6D:FF:5D:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2be4f18-ceed-4f23-a0a4-e24e04d320d3/0/9AD8AEF8362DD03EACC7B7DEE20F5D3F6DFF5D49.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9AD8AEF8362DD03EACC7B7DEE20F5D3F6DFF5D49.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2be4f18-ceed-4f23-a0a4-e24e04d320d3/0/323030313a6466373a663130303a3a2f34382d3438203d3e20313338383731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:f100::/48 Signature Algorithm: sha256WithRSAEncryption 5c:17:87:6f:c6:18:5f:ac:0e:53:8a:03:f2:5c:cb:e9:76:73: 26:79:da:90:16:8a:98:20:32:e6:fa:b7:cf:48:a7:b5:44:9a: 5b:aa:ad:f0:c4:c0:2a:a7:ed:1e:bc:83:ab:ed:3e:af:0e:2d: 02:0c:9a:93:c5:20:15:88:5d:c8:05:be:08:da:ff:1a:b3:10: e5:47:d3:b2:c7:cb:78:2f:3d:e2:92:cd:db:3d:3e:5a:ba:3d: 12:27:2e:b0:42:c7:f6:6a:94:25:99:f5:51:9c:7a:fc:53:a1: 9e:70:8f:56:fb:b2:e0:42:15:c1:19:a4:fc:9f:1d:59:f7:1c: c1:56:81:20:30:70:8d:3a:e5:56:ea:e1:81:dc:92:1c:24:4b: a4:22:38:c1:5b:70:8d:c9:f0:a4:0c:7c:f2:8b:9f:e0:63:a1: cd:ad:9b:14:7e:04:c9:52:e6:16:15:24:d1:b2:05:84:f3:53: ca:37:39:a0:34:e9:cc:a3:af:58:93:d7:be:09:71:10:f9:6f: 45:03:f4:76:ee:de:9a:d9:65:82:b1:1d:da:e0:3b:b5:ac:03: c8:ed:fb:c1:b8:65:2f:e2:b0:d2:a7:dd:1b:83:0e:6d:2c:ab: 7f:76:80:4a:69:3d:d5:c0:a4:9a:ef:8b:1c:41:af:11:0c:d2: 0a:fd:48:e0 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUGTNFV9UaA2H8AaKCZvr5vbt2T8MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUFEOEFFRjgzNjJERDAzRUFDQzdCN0RFRTIwRjVEM0Y2 REZGNUQ0OTAeFw0yNDExMDIwMTU1MDBaFw0yNTExMDEwMjAwMDBaMDMxMTAvBgNV BAMTKEY5MUIwNzlFQjhERUI3NjM0RkQ5NTI4NkE0MEFCRUFBOUZEOUUwNEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr4pTBfHrKtQPIg5U91CDWx3i4 NTaovGlX/q27aHK47f+q8Ys0/fS7HcwFjidMDMFWz2hrTExQnyYgl/yOtQB7sEo7 YwgXZ2xb7nSHO1GCW5ncLt0a8L8CCKOTPqGzowPEckU70/szGTrQcSR7wf3xhN70 x6Qz7wesr0hKZNyP6GnpMVEVe/js73+9P2Ido/5QMmqXgI217WH50XdPxLP8GbiT MvDrf3jRz0ReCT9nmjW7E9B0g1T+OFxQM9dWhUXsFj8hE8lUisWbvvM6lJcu00Ul eVmky+o2ozcZcZkmEYK25DD+pY78oftL6GRdY6YJGnBDKrt6UL0IKOUtAKRtAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU+RsHnrjet2NP2VKGpAq+qp/Z4EswHwYDVR0j BBgwFoAUmtiu+DYt0D6sx7fe4g9dP23/XUkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MmJlNGYxOC1jZWVkLTRmMjMtYTBhNC1lMjRlMDRkMzIwZDMvMC85QUQ4QUVGODM2 MkREMDNFQUNDN0I3REVFMjBGNUQzRjZERkY1RDQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUFEOEFFRjgzNjJERDAzRUFDQzdCN0RFRTIwRjVEM0Y2REZG NUQ0OS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyYmU0ZjE4LWNlZWQtNGYyMy1h MGE0LWUyNGUwNGQzMjBkMy8wLzMyMzAzMDMxM2E2NDY2MzczYTY2MzEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzgzNzMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9/EAMA0GCSqGSIb3DQEBCwUAA4IBAQBcF4dvxhhfrA5TigPyXMvpdnMmedqQFoqY IDLm+rfPSKe1RJpbqq3wxMAqp+0evIOr7T6vDi0CDJqTxSAViF3IBb4I2v8asxDl R9Oyx8t4Lz3iks3bPT5auj0SJy6wQsf2apQlmfVRnHr8U6GecI9W+7LgQhXBGaT8 nx1Z9xzBVoEgMHCNOuVW6uGB3JIcJEukIjjBW3CNyfCkDHzyi5/gY6HNrZsUfgTJ UuYWFSTRsgWE81PKNzmgNOnMo69Yk9e+CXEQ+W9FA/R27t6a2WWCsR3a4Du1rAPI 7fvBuGUv4rDSp90bgw5tLKt/doBKaT3VwKSa74scQa8RDNIK/Ujg -----END CERTIFICATE-----Generated at Thu Nov 21 22:33:06 2024 by rpki-client on console-fra.rpki-client.org