$ rpki-client -vvf repo-rpki.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/323030313a6466323a356434303a3a2f34382d3438203d3e20313530393832.roa File: 323030313a6466323a356434303a3a2f34382d3438203d3e20313530393832.roa (raw, json) Hash identifier: Rzi0BEVjZtZkf4s0pLuUPgS4bw6xcU7XoRNpijSYdmY= Subject key identifier: 7F:C9:44:5C:5C:90:CD:C4:85:A9:D0:4E:15:54:94:ED:F7:93:E5:77 Certificate issuer: /CN=D456F5EAD8D734455DAEF896A9055409FF4A078F Certificate serial: 3A45C45EBD78FC675763E07A9A1B0F57B2C5FE71 Authority key identifier: D4:56:F5:EA:D8:D7:34:45:5D:AE:F8:96:A9:05:54:09:FF:4A:07:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D456F5EAD8D734455DAEF896A9055409FF4A078F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/323030313a6466323a356434303a3a2f34382d3438203d3e20313530393832.roa Signing time: Fri 19 Apr 2024 07:00:00 +0000 ROA not before: Fri 19 Apr 2024 06:55:00 +0000 ROA not after: Fri 18 Apr 2025 07:00:00 +0000 asID: 150982 IP address blocks: 2001:df2:5d40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/D456F5EAD8D734455DAEF896A9055409FF4A078F.crl rsync://repo-rpki.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/D456F5EAD8D734455DAEF896A9055409FF4A078F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D456F5EAD8D734455DAEF896A9055409FF4A078F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:45:c4:5e:bd:78:fc:67:57:63:e0:7a:9a:1b:0f:57:b2:c5:fe:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D456F5EAD8D734455DAEF896A9055409FF4A078F Validity Not Before: Apr 19 06:55:00 2024 GMT Not After : Apr 18 07:00:00 2025 GMT Subject: CN=7FC9445C5C90CDC485A9D04E155494EDF793E577 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:39:b9:d4:55:a8:fa:22:4a:8d:ca:b2:4d:e4: 7d:f2:86:1f:e5:1c:8d:db:fa:f3:ef:60:be:38:cd: 24:ef:e9:16:a0:8e:5a:49:19:14:c1:5c:df:10:61: 1c:49:01:ae:bf:60:e5:03:04:e2:2d:da:04:1b:ad: da:44:97:da:dc:5d:8b:7b:29:57:95:aa:f9:29:b0: d8:76:e1:8c:1a:37:71:fb:45:2a:0b:82:6b:06:6b: e2:f8:d9:b4:54:be:15:78:47:39:15:de:9e:af:56: af:07:57:4b:9d:cc:85:a3:bc:8a:c6:15:5c:47:aa: 40:f4:a3:93:3d:df:71:b2:69:02:58:5e:6d:f9:00: 03:a8:14:f8:6c:4a:05:66:4a:df:52:29:fb:ea:e6: 60:ac:87:73:2b:13:aa:08:3f:61:9e:ad:fc:f3:39: 85:22:c1:d1:44:81:f1:81:6f:55:84:fa:d4:9e:02: fa:8a:b1:27:4a:4e:ca:4a:f8:a5:19:ef:66:23:df: 51:5f:aa:f1:b8:72:29:72:a3:da:52:08:b8:b9:38: 1d:bc:b5:d3:2c:1b:e1:cb:23:ca:42:ca:71:c2:8c: 8e:e6:17:58:04:40:c4:66:2c:20:bf:31:cc:2c:c7: f2:71:64:fc:6d:d4:2e:0f:21:bb:e7:b8:95:10:46: f4:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:C9:44:5C:5C:90:CD:C4:85:A9:D0:4E:15:54:94:ED:F7:93:E5:77 X509v3 Authority Key Identifier: keyid:D4:56:F5:EA:D8:D7:34:45:5D:AE:F8:96:A9:05:54:09:FF:4A:07:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/D456F5EAD8D734455DAEF896A9055409FF4A078F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D456F5EAD8D734455DAEF896A9055409FF4A078F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/323030313a6466323a356434303a3a2f34382d3438203d3e20313530393832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:5d40::/48 Signature Algorithm: sha256WithRSAEncryption 3f:c6:98:fd:e6:a4:09:ba:8a:38:bd:70:e4:46:4c:60:b3:be: fc:da:ac:01:14:75:6f:15:e9:7a:5f:ba:81:b7:4c:53:12:fa: f0:b1:94:71:2c:7c:ed:10:c3:b2:67:6e:c4:17:60:46:32:7e: 47:0a:39:b4:d5:55:42:ad:e2:2c:d3:c7:a0:67:e4:3a:dd:7e: 1b:1a:a8:44:31:e2:6b:2f:e9:25:b6:89:13:c3:cd:ee:b6:4f: a4:3c:60:7e:56:74:dc:95:c7:42:51:e1:95:ce:05:09:96:8e: a9:07:06:5b:2e:50:b2:06:48:f4:35:21:0a:29:b9:ac:61:48: d5:9c:33:25:03:fd:54:cc:b9:03:b2:16:ff:22:65:f7:e4:aa: 6b:78:57:90:11:2e:f5:65:f6:57:3f:9d:59:6b:47:13:ee:3d: 80:0e:7a:ad:a4:04:bd:a9:ad:ed:c4:c5:1a:13:f0:ae:6d:56: 3a:86:4b:05:e1:45:74:a7:96:9a:03:33:20:66:91:46:14:aa: 1f:20:4f:ce:c8:bd:00:c4:f5:c1:9c:6b:0f:f5:60:dd:b4:58: 26:62:ab:08:66:bf:02:21:1a:3d:8b:9f:c6:d7:78:3a:58:ec: 79:bc:a7:58:21:ab:73:38:fa:c3:5f:e5:6b:c2:f2:0a:3f:b8: ea:56:50:39 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUOkXEXr14/GdXY+B6mhsPV7LF/nEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQ1NkY1RUFEOEQ3MzQ0NTVEQUVGODk2QTkwNTU0MDlG RjRBMDc4RjAeFw0yNDA0MTkwNjU1MDBaFw0yNTA0MTgwNzAwMDBaMDMxMTAvBgNV BAMTKDdGQzk0NDVDNUM5MENEQzQ4NUE5RDA0RTE1NTQ5NEVERjc5M0U1NzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdObnUVaj6IkqNyrJN5H3yhh/l HI3b+vPvYL44zSTv6RagjlpJGRTBXN8QYRxJAa6/YOUDBOIt2gQbrdpEl9rcXYt7 KVeVqvkpsNh24YwaN3H7RSoLgmsGa+L42bRUvhV4RzkV3p6vVq8HV0udzIWjvIrG FVxHqkD0o5M933GyaQJYXm35AAOoFPhsSgVmSt9SKfvq5mCsh3MrE6oIP2Gerfzz OYUiwdFEgfGBb1WE+tSeAvqKsSdKTspK+KUZ72Yj31FfqvG4cilyo9pSCLi5OB28 tdMsG+HLI8pCynHCjI7mF1gEQMRmLCC/Mcwsx/JxZPxt1C4PIbvnuJUQRvR/AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUf8lEXFyQzcSFqdBOFVSU7feT5XcwHwYDVR0j BBgwFoAU1Fb16tjXNEVdrviWqQVUCf9KB48wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NmJlYzhlOS02NTY4LTQ3OGQtYmQyNi1mNmU3Nzc4NzU1MTEvMC9ENDU2RjVFQUQ4 RDczNDQ1NURBRUY4OTZBOTA1NTQwOUZGNEEwNzhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDQ1NkY1RUFEOEQ3MzQ0NTVEQUVGODk2QTkwNTU0MDlGRjRB MDc4Ri5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2YmVjOGU5LTY1NjgtNDc4ZC1i ZDI2LWY2ZTc3Nzg3NTUxMS8wLzMyMzAzMDMxM2E2NDY2MzIzYTM1NjQzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMwMzkzODMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8l1AMA0GCSqGSIb3DQEBCwUAA4IBAQA/xpj95qQJuoo4vXDkRkxgs7782qwBFHVv Fel6X7qBt0xTEvrwsZRxLHztEMOyZ27EF2BGMn5HCjm01VVCreIs08egZ+Q63X4b GqhEMeJrL+kltokTw83utk+kPGB+VnTclcdCUeGVzgUJlo6pBwZbLlCyBkj0NSEK KbmsYUjVnDMlA/1UzLkDshb/ImX35KpreFeQES71ZfZXP51Za0cT7j2ADnqtpAS9 qa3txMUaE/CubVY6hksF4UV0p5aaAzMgZpFGFKofIE/OyL0AxPXBnGsP9WDdtFgm YqsIZr8CIRo9i5/G13g6WOx5vKdYIatzOPrDX+VrwvIKP7jqVlA5 -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org