$ rpki-client -vvf repo-rpki.idnic.net/repo/cafcbfbb-ba3f-4d53-a04f-14d6f4be0cb1/1/323030313a6466343a363463303a3a2f34382d3438203d3e20313533313430.roa File: 323030313a6466343a363463303a3a2f34382d3438203d3e20313533313430.roa (raw, json) Hash identifier: yyzmdDb8FTjdC+THNvwdhgAOOXsuzFTHgJxxHYpFD6k= Subject key identifier: AF:82:56:10:DE:C3:7C:AE:8A:56:74:11:6B:BC:DC:B2:33:DF:D2:3E Certificate issuer: /CN=B92F0FB3E141D52ED2A71FA483ED3C6D723F60E2 Certificate serial: 3E1E046E9CB23D20FCFB70C74882EE97338EBE7F Authority key identifier: B9:2F:0F:B3:E1:41:D5:2E:D2:A7:1F:A4:83:ED:3C:6D:72:3F:60:E2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B92F0FB3E141D52ED2A71FA483ED3C6D723F60E2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cafcbfbb-ba3f-4d53-a04f-14d6f4be0cb1/1/323030313a6466343a363463303a3a2f34382d3438203d3e20313533313430.roa Signing time: Fri 20 Dec 2024 02:49:51 +0000 ROA not before: Fri 20 Dec 2024 02:44:51 +0000 ROA not after: Fri 19 Dec 2025 02:49:51 +0000 asID: 153140 IP address blocks: 2001:df4:64c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cafcbfbb-ba3f-4d53-a04f-14d6f4be0cb1/1/B92F0FB3E141D52ED2A71FA483ED3C6D723F60E2.crl rsync://repo-rpki.idnic.net/repo/cafcbfbb-ba3f-4d53-a04f-14d6f4be0cb1/1/B92F0FB3E141D52ED2A71FA483ED3C6D723F60E2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B92F0FB3E141D52ED2A71FA483ED3C6D723F60E2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Feb 2025 08:53:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:1e:04:6e:9c:b2:3d:20:fc:fb:70:c7:48:82:ee:97:33:8e:be:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B92F0FB3E141D52ED2A71FA483ED3C6D723F60E2 Validity Not Before: Dec 20 02:44:51 2024 GMT Not After : Dec 19 02:49:51 2025 GMT Subject: CN=AF825610DEC37CAE8A5674116BBCDCB233DFD23E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:1b:47:23:5f:cc:08:03:40:bb:9a:ae:77:ca: 18:c9:55:14:0c:2b:81:2b:d6:eb:10:e7:9b:6c:b0: e3:5b:ac:6f:53:b2:36:e0:04:43:20:91:91:b3:fc: 73:98:ec:be:c0:50:ac:a6:b5:6e:d2:40:bf:a7:1d: f6:6c:bb:10:52:cd:7e:30:39:31:16:18:dd:e4:5d: cb:2f:e3:aa:5e:e3:ff:fd:fe:eb:ba:d6:70:da:9c: 64:54:1a:b1:1e:cc:bf:4e:38:3c:16:9e:5d:2b:6d: fa:12:ab:10:87:a9:cf:28:9f:5e:8b:e3:45:b9:cc: b5:d9:6a:cc:7b:34:94:59:76:f8:8e:77:55:7a:3e: b2:e6:b8:57:2c:73:24:c8:60:8a:1e:c6:d7:b9:12: 7f:43:ae:a8:a7:20:ac:5b:44:81:2d:9e:6a:c0:3b: b3:84:cd:0e:52:09:88:48:69:07:4b:9f:96:8c:0b: 87:8b:6a:46:da:57:97:91:f1:e6:f5:d6:cd:24:ee: ce:26:09:62:16:46:48:a5:d3:49:bb:68:e9:92:67: 3f:be:68:6a:f2:a6:f2:ba:c7:88:86:55:0e:ac:bd: 15:e1:35:b3:8a:96:b1:a9:a2:28:4f:8b:47:88:42: 1d:30:2c:ec:95:87:4f:64:30:df:39:9f:8b:4d:47: 2b:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:82:56:10:DE:C3:7C:AE:8A:56:74:11:6B:BC:DC:B2:33:DF:D2:3E X509v3 Authority Key Identifier: keyid:B9:2F:0F:B3:E1:41:D5:2E:D2:A7:1F:A4:83:ED:3C:6D:72:3F:60:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cafcbfbb-ba3f-4d53-a04f-14d6f4be0cb1/1/B92F0FB3E141D52ED2A71FA483ED3C6D723F60E2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B92F0FB3E141D52ED2A71FA483ED3C6D723F60E2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cafcbfbb-ba3f-4d53-a04f-14d6f4be0cb1/1/323030313a6466343a363463303a3a2f34382d3438203d3e20313533313430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:64c0::/48 Signature Algorithm: sha256WithRSAEncryption bc:e8:66:0c:2c:d7:be:a3:ee:dd:14:79:1a:4c:a1:86:8f:ee: c7:c0:4f:5f:f2:59:8a:74:a6:0f:e5:1e:13:1c:ef:58:76:85: a3:d9:bc:99:02:f5:d5:7c:2c:dc:e5:4d:a8:be:ae:de:d6:8c: 4d:c4:50:43:44:02:ee:61:d4:da:27:31:d7:18:c7:78:0a:0e: 10:2a:7c:6f:48:93:d0:e4:f9:c9:1d:09:24:57:08:20:4d:e8: 8e:c2:5b:81:c5:88:5b:1c:c1:f6:84:db:c7:21:92:32:fc:2e: ec:af:2d:95:a6:14:13:eb:35:83:98:fa:92:48:9b:46:d2:a6: 16:75:a9:ce:34:f5:85:b6:8f:e6:bb:0a:ea:b2:c1:57:f4:b8: 31:89:ab:39:fa:f0:58:23:19:a0:5a:b3:47:ac:d4:1b:4b:f7: be:70:c1:ed:79:9f:ae:9c:bb:f8:8b:09:c2:9a:93:f3:c1:5b: d9:55:7a:db:4d:1f:32:e0:09:18:69:b1:cb:5d:8d:0d:51:37: ee:b8:9d:37:28:46:57:40:d3:ca:1e:be:62:93:0f:dd:db:93: 9b:e3:d2:7c:57:57:69:e0:c8:62:47:ec:50:eb:5a:95:37:a3: 90:5d:0f:7f:46:d1:89:c8:dc:9c:35:ba:42:99:ac:e0:ed:b6: 22:f8:49:06 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUPh4EbpyyPSD8+3DHSILulzOOvn8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjkyRjBGQjNFMTQxRDUyRUQyQTcxRkE0ODNFRDNDNkQ3 MjNGNjBFMjAeFw0yNDEyMjAwMjQ0NTFaFw0yNTEyMTkwMjQ5NTFaMDMxMTAvBgNV BAMTKEFGODI1NjEwREVDMzdDQUU4QTU2NzQxMTZCQkNEQ0IyMzNERkQyM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaG0cjX8wIA0C7mq53yhjJVRQM K4Er1usQ55tssONbrG9TsjbgBEMgkZGz/HOY7L7AUKymtW7SQL+nHfZsuxBSzX4w OTEWGN3kXcsv46pe4//9/uu61nDanGRUGrEezL9OODwWnl0rbfoSqxCHqc8on16L 40W5zLXZasx7NJRZdviOd1V6PrLmuFcscyTIYIoexte5En9DrqinIKxbRIEtnmrA O7OEzQ5SCYhIaQdLn5aMC4eLakbaV5eR8eb11s0k7s4mCWIWRkil00m7aOmSZz++ aGrypvK6x4iGVQ6svRXhNbOKlrGpoihPi0eIQh0wLOyVh09kMN85n4tNRyurAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUr4JWEN7DfK6KVnQRa7zcsjPf0j4wHwYDVR0j BBgwFoAUuS8Ps+FB1S7Spx+kg+08bXI/YOIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YWZjYmZiYi1iYTNmLTRkNTMtYTA0Zi0xNGQ2ZjRiZTBjYjEvMS9COTJGMEZCM0Ux NDFENTJFRDJBNzFGQTQ4M0VEM0M2RDcyM0Y2MEUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjkyRjBGQjNFMTQxRDUyRUQyQTcxRkE0ODNFRDNDNkQ3MjNG NjBFMi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhZmNiZmJiLWJhM2YtNGQ1My1h MDRmLTE0ZDZmNGJlMGNiMS8xLzMyMzAzMDMxM2E2NDY2MzQzYTM2MzQ2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzEzNDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9GTAMA0GCSqGSIb3DQEBCwUAA4IBAQC86GYMLNe+o+7dFHkaTKGGj+7HwE9f8lmK dKYP5R4THO9YdoWj2byZAvXVfCzc5U2ovq7e1oxNxFBDRALuYdTaJzHXGMd4Cg4Q KnxvSJPQ5PnJHQkkVwggTeiOwluBxYhbHMH2hNvHIZIy/C7sry2VphQT6zWDmPqS SJtG0qYWdanONPWFto/muwrqssFX9Lgxias5+vBYIxmgWrNHrNQbS/e+cMHteZ+u nLv4iwnCmpPzwVvZVXrbTR8y4AkYabHLXY0NUTfuuJ03KEZXQNPKHr5ikw/d25Ob 49J8V1dp4MhiR+xQ61qVN6OQXQ9/RtGJyNycNbpCmazg7bYi+EkG -----END CERTIFICATE-----Generated at Sat Feb 22 04:29:10 2025 by rpki-client