$ rpki-client -vvf repo-rpki.idnic.net/repo/ca0b4f15-7720-4f2a-8343-8e37fae87a54/0/323030313a6466323a393130303a3a2f34382d3438203d3e20313336383433.roa File: 323030313a6466323a393130303a3a2f34382d3438203d3e20313336383433.roa (raw, json) Hash identifier: lb+K+WTWt6br4aXEPHp1eJt2rMKTqZMuVAejfy0YULU= Subject key identifier: 18:D5:EE:5A:85:1B:26:AD:3D:22:EA:DF:4F:DF:57:51:D1:03:E0:25 Certificate issuer: /CN=99CD13E1449FA448ABF9FC6A74D3B1313DDFABCF Certificate serial: 43B6AE765ED8E0A5B98DD4447B4AC03BA9D86C42 Authority key identifier: 99:CD:13:E1:44:9F:A4:48:AB:F9:FC:6A:74:D3:B1:31:3D:DF:AB:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/99CD13E1449FA448ABF9FC6A74D3B1313DDFABCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ca0b4f15-7720-4f2a-8343-8e37fae87a54/0/323030313a6466323a393130303a3a2f34382d3438203d3e20313336383433.roa Signing time: Mon 01 Jul 2024 01:05:56 +0000 ROA not before: Mon 01 Jul 2024 01:00:56 +0000 ROA not after: Mon 30 Jun 2025 01:05:56 +0000 asID: 136843 IP address blocks: 2001:df2:9100::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ca0b4f15-7720-4f2a-8343-8e37fae87a54/0/99CD13E1449FA448ABF9FC6A74D3B1313DDFABCF.crl rsync://repo-rpki.idnic.net/repo/ca0b4f15-7720-4f2a-8343-8e37fae87a54/0/99CD13E1449FA448ABF9FC6A74D3B1313DDFABCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/99CD13E1449FA448ABF9FC6A74D3B1313DDFABCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:b6:ae:76:5e:d8:e0:a5:b9:8d:d4:44:7b:4a:c0:3b:a9:d8:6c:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99CD13E1449FA448ABF9FC6A74D3B1313DDFABCF Validity Not Before: Jul 1 01:00:56 2024 GMT Not After : Jun 30 01:05:56 2025 GMT Subject: CN=18D5EE5A851B26AD3D22EADF4FDF5751D103E025 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:9e:cd:57:91:94:d5:af:78:fb:86:f8:de:c7: a8:5f:a3:ed:67:8e:24:5f:03:6f:98:26:fd:0e:01: 70:39:f4:61:b1:41:42:c7:13:92:7c:48:b0:d5:60: 34:fb:42:41:ca:a7:a9:4b:5c:18:86:68:28:19:00: cb:85:c5:50:92:c7:31:9c:96:ca:82:b1:51:f2:f4: 97:95:8a:bd:9f:18:c6:27:22:89:31:22:d4:e1:6c: 3c:b9:c5:3d:62:bb:5b:e5:9b:8d:49:da:d9:3e:bb: 90:dc:f1:24:62:95:63:ed:a8:eb:70:e3:a5:96:67: 81:02:4c:6b:5c:98:e2:77:80:35:92:64:0f:e2:c3: 7d:0a:b6:ae:c4:c1:a1:a8:3d:33:8a:2a:c7:ff:3d: 37:5a:30:2b:f8:c3:12:3f:f2:d3:2d:52:69:a3:3b: 47:29:12:cc:c6:db:cb:ae:f7:d3:36:9d:b5:25:0a: 19:75:6b:8a:a4:62:f3:9d:06:37:d6:36:c5:f9:24: e2:6a:b9:ea:6c:3c:8a:49:f1:d0:28:dc:47:e4:e4: 66:3d:72:ab:e9:b1:9a:2d:49:5e:f5:fa:0d:2d:c9: cc:10:11:e0:ee:fc:dc:33:b1:72:91:8a:a4:85:40: a6:f0:a5:aa:6d:d8:61:02:17:70:e9:18:b1:fa:ff: d3:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:D5:EE:5A:85:1B:26:AD:3D:22:EA:DF:4F:DF:57:51:D1:03:E0:25 X509v3 Authority Key Identifier: keyid:99:CD:13:E1:44:9F:A4:48:AB:F9:FC:6A:74:D3:B1:31:3D:DF:AB:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ca0b4f15-7720-4f2a-8343-8e37fae87a54/0/99CD13E1449FA448ABF9FC6A74D3B1313DDFABCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/99CD13E1449FA448ABF9FC6A74D3B1313DDFABCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ca0b4f15-7720-4f2a-8343-8e37fae87a54/0/323030313a6466323a393130303a3a2f34382d3438203d3e20313336383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:9100::/48 Signature Algorithm: sha256WithRSAEncryption 04:c8:07:be:c5:0b:0a:44:ee:23:6d:42:e1:c8:59:e3:b5:18: 4a:6f:20:c0:3e:46:be:81:fa:f3:1a:6e:41:0d:ca:26:92:bb: 35:c2:8e:9c:fb:c6:df:ab:ec:57:bc:74:ce:48:68:95:1f:2a: 7e:18:2b:71:47:ab:4f:77:91:86:ef:18:6c:c9:d5:f9:91:34: 23:71:7d:78:50:21:93:42:81:50:6f:4f:07:ec:0f:67:6c:39: c0:a9:68:48:8c:0d:52:74:e6:c4:7a:af:63:52:45:8a:fc:1c: 53:30:33:6a:b2:d4:11:2b:ec:47:62:8f:b6:e1:74:10:6c:6d: 20:90:41:ef:e2:c9:74:82:b5:12:38:ca:79:a5:30:49:e3:cc: c6:2c:ff:92:1b:09:11:e7:ff:92:38:a9:5c:4d:cb:10:81:7d: 92:59:a7:44:6a:37:1a:e9:bf:96:94:77:6c:af:88:c0:8e:2c: 16:e6:48:be:8b:0a:b8:da:b7:b1:f0:68:1c:e0:0e:c0:05:6e: c0:37:08:e0:fb:bb:64:85:d8:ec:a4:7a:56:49:fd:21:d6:61: 36:89:40:97:dd:df:d6:f4:8c:99:bf:58:ad:2b:e3:df:d3:96: 59:2f:d7:ce:67:6b:f5:27:9e:a7:59:74:ff:a2:68:d3:0e:ca: 78:54:ca:66 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUQ7audl7Y4KW5jdREe0rAO6nYbEIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTlDRDEzRTE0NDlGQTQ0OEFCRjlGQzZBNzREM0IxMzEz RERGQUJDRjAeFw0yNDA3MDEwMTAwNTZaFw0yNTA2MzAwMTA1NTZaMDMxMTAvBgNV BAMTKDE4RDVFRTVBODUxQjI2QUQzRDIyRUFERjRGREY1NzUxRDEwM0UwMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnns1XkZTVr3j7hvjex6hfo+1n jiRfA2+YJv0OAXA59GGxQULHE5J8SLDVYDT7QkHKp6lLXBiGaCgZAMuFxVCSxzGc lsqCsVHy9JeVir2fGMYnIokxItThbDy5xT1iu1vlm41J2tk+u5Dc8SRilWPtqOtw 46WWZ4ECTGtcmOJ3gDWSZA/iw30Ktq7EwaGoPTOKKsf/PTdaMCv4wxI/8tMtUmmj O0cpEszG28uu99M2nbUlChl1a4qkYvOdBjfWNsX5JOJquepsPIpJ8dAo3Efk5GY9 cqvpsZotSV71+g0tycwQEeDu/NwzsXKRiqSFQKbwpapt2GECF3DpGLH6/9O/AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUGNXuWoUbJq09IurfT99XUdED4CUwHwYDVR0j BBgwFoAUmc0T4USfpEir+fxqdNOxMT3fq88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YTBiNGYxNS03NzIwLTRmMmEtODM0My04ZTM3ZmFlODdhNTQvMC85OUNEMTNFMTQ0 OUZBNDQ4QUJGOUZDNkE3NEQzQjEzMTNEREZBQkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTlDRDEzRTE0NDlGQTQ0OEFCRjlGQzZBNzREM0IxMzEzRERG QUJDRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhMGI0ZjE1LTc3MjAtNGYyYS04 MzQzLThlMzdmYWU4N2E1NC8wLzMyMzAzMDMxM2E2NDY2MzIzYTM5MzEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzgzNDMzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8pEAMA0GCSqGSIb3DQEBCwUAA4IBAQAEyAe+xQsKRO4jbULhyFnjtRhKbyDAPka+ gfrzGm5BDcomkrs1wo6c+8bfq+xXvHTOSGiVHyp+GCtxR6tPd5GG7xhsydX5kTQj cX14UCGTQoFQb08H7A9nbDnAqWhIjA1SdObEeq9jUkWK/BxTMDNqstQRK+xHYo+2 4XQQbG0gkEHv4sl0grUSOMp5pTBJ48zGLP+SGwkR5/+SOKlcTcsQgX2SWadEajca 6b+WlHdsr4jAjiwW5ki+iwq42rex8Ggc4A7ABW7ANwjg+7tkhdjspHpWSf0h1mE2 iUCX3d/W9IyZv1itK+Pf05ZZL9fOZ2v1J56nWXT/omjTDsp4VMpm -----END CERTIFICATE-----Generated at Mon Nov 25 19:46:15 2024 by rpki-client on console-fra.rpki-client.org