$ rpki-client -vvf repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/323030313a6466363a636330303a3a2f34382d3438203d3e203535363833.roa File: 323030313a6466363a636330303a3a2f34382d3438203d3e203535363833.roa (raw, json) Hash identifier: Nis2CwI3ez8v1WSHl89eT2Oh6FaKWW6bg0hXnRqd+og= Subject key identifier: AA:15:E5:1C:FE:7D:47:75:75:AE:6A:EC:46:A6:47:65:FD:58:37:9C Certificate issuer: /CN=3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28 Certificate serial: 769949D2DF0ECCD6E2EB7C7191AF1E9CA6D7CC9C Authority key identifier: 35:66:B6:CF:00:D7:B0:B6:73:F8:B5:26:C5:6A:EB:DC:B5:AD:BD:28 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/323030313a6466363a636330303a3a2f34382d3438203d3e203535363833.roa Signing time: Mon 01 Jul 2024 01:04:13 +0000 ROA not before: Mon 01 Jul 2024 00:59:13 +0000 ROA not after: Mon 30 Jun 2025 01:04:13 +0000 asID: 55683 IP address blocks: 2001:df6:cc00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.crl rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:99:49:d2:df:0e:cc:d6:e2:eb:7c:71:91:af:1e:9c:a6:d7:cc:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28 Validity Not Before: Jul 1 00:59:13 2024 GMT Not After : Jun 30 01:04:13 2025 GMT Subject: CN=AA15E51CFE7D477575AE6AEC46A64765FD58379C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:5e:bd:50:8b:fd:75:96:bb:3a:a7:c9:03:cf: 32:4c:bf:5a:7b:16:44:c5:5f:05:1b:19:91:84:39: 8f:9c:26:d1:c3:1c:ce:ac:5f:d4:07:3f:a9:32:04: aa:cf:53:36:39:18:12:37:0d:4f:63:cb:a5:ad:69: 1a:0d:ed:d7:ac:e4:72:66:44:11:89:b8:03:9b:a8: 8e:71:6d:f7:db:db:62:ce:7e:44:78:d3:d6:bf:d7: ea:e2:1c:8a:12:ce:39:04:3b:38:6a:28:b3:b5:53: 15:23:c0:da:ee:69:b0:be:1a:bb:b3:6a:34:95:af: 0a:f3:82:d8:d6:32:44:3d:61:50:84:e0:29:9e:cc: 5c:c3:f7:3f:24:da:b0:8e:f3:b6:26:28:33:b1:9b: 01:19:35:ce:b6:57:b9:92:ee:fd:ee:91:14:37:db: 6f:cc:ff:43:42:c2:d3:75:9e:2c:14:ff:e9:41:b5: 5a:7f:32:7a:a6:23:cb:e9:e2:b0:52:7c:46:7d:c5: 88:c9:34:eb:4b:53:c8:f3:e5:7a:16:a9:5a:51:4f: 61:cb:80:60:63:07:6b:2d:24:e3:f7:22:c2:bc:34: 70:51:ef:24:af:4a:ee:3c:15:03:49:d6:4a:22:a9: 0b:d6:a9:72:c2:54:44:37:b1:b8:28:86:19:9a:06: 3c:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:15:E5:1C:FE:7D:47:75:75:AE:6A:EC:46:A6:47:65:FD:58:37:9C X509v3 Authority Key Identifier: keyid:35:66:B6:CF:00:D7:B0:B6:73:F8:B5:26:C5:6A:EB:DC:B5:AD:BD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/323030313a6466363a636330303a3a2f34382d3438203d3e203535363833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:cc00::/48 Signature Algorithm: sha256WithRSAEncryption 7c:c7:42:6a:da:0e:ee:1f:37:73:e8:0e:11:a1:fc:37:f1:db: 2b:97:58:cb:36:38:19:db:b5:a3:b9:a3:f6:9e:2d:b7:68:52: a2:bd:bc:e4:2c:1b:3c:4e:ac:50:eb:1a:c1:5f:1b:06:29:e6: ff:df:0e:7a:cb:13:6d:2f:37:28:82:fc:a0:53:b5:b8:5c:81: 97:f1:6b:d9:d0:bd:96:e3:50:1c:2e:fa:61:7a:17:8a:37:19: ed:64:66:72:60:8e:a2:cd:50:e0:63:00:4e:0e:9d:73:83:21: 3e:d4:02:3f:cb:10:5b:3e:8f:7f:05:ea:6c:b1:49:94:74:f6: 93:62:9c:06:b5:45:8c:ab:33:61:48:25:bc:c0:e7:e6:6f:22: 3a:c8:39:df:28:18:b9:03:a4:ab:cf:3e:5d:02:f8:a7:6c:e5: cc:0d:55:79:89:59:8e:5e:16:85:7f:43:b4:d7:b5:bd:f3:e6: d2:e0:41:d1:15:da:f4:68:0c:ec:e3:59:a9:6c:22:e4:c2:79: c8:46:7c:d8:26:4d:59:e2:02:ff:63:50:19:45:7e:1b:be:8d: 33:58:97:cf:8c:8e:5c:1a:57:38:8d:61:b5:50:b4:e1:ef:2f: 8d:a9:1f:6e:00:44:e9:c7:34:f9:17:37:bc:d2:a7:0d:c4:64: bc:3c:af:0a -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUdplJ0t8OzNbi63xxka8enKbXzJwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzU2NkI2Q0YwMEQ3QjBCNjczRjhCNTI2QzU2QUVCRENC NUFEQkQyODAeFw0yNDA3MDEwMDU5MTNaFw0yNTA2MzAwMTA0MTNaMDMxMTAvBgNV BAMTKEFBMTVFNTFDRkU3RDQ3NzU3NUFFNkFFQzQ2QTY0NzY1RkQ1ODM3OUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHXr1Qi/11lrs6p8kDzzJMv1p7 FkTFXwUbGZGEOY+cJtHDHM6sX9QHP6kyBKrPUzY5GBI3DU9jy6WtaRoN7des5HJm RBGJuAObqI5xbffb22LOfkR409a/1+riHIoSzjkEOzhqKLO1UxUjwNruabC+Gruz ajSVrwrzgtjWMkQ9YVCE4CmezFzD9z8k2rCO87YmKDOxmwEZNc62V7mS7v3ukRQ3 22/M/0NCwtN1niwU/+lBtVp/MnqmI8vp4rBSfEZ9xYjJNOtLU8jz5XoWqVpRT2HL gGBjB2stJOP3IsK8NHBR7ySvSu48FQNJ1koiqQvWqXLCVEQ3sbgohhmaBjwzAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUqhXlHP59R3V1rmrsRqZHZf1YN5wwHwYDVR0j BBgwFoAUNWa2zwDXsLZz+LUmxWrr3LWtvSgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k M2I4YWU5Ny02ODE4LTQ4YTktYWJlNC1lZGI5NjA0OWYzYzgvMC8zNTY2QjZDRjAw RDdCMEI2NzNGOEI1MjZDNTZBRUJEQ0I1QURCRDI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzU2NkI2Q0YwMEQ3QjBCNjczRjhCNTI2QzU2QUVCRENCNUFE QkQyOC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzYjhhZTk3LTY4MTgtNDhhOS1h YmU0LWVkYjk2MDQ5ZjNjOC8wLzMyMzAzMDMxM2E2NDY2MzYzYTYzNjMzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzNTM2MzgzMy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfbM ADANBgkqhkiG9w0BAQsFAAOCAQEAfMdCatoO7h83c+gOEaH8N/HbK5dYyzY4Gdu1 o7mj9p4tt2hSor285CwbPE6sUOsawV8bBinm/98OessTbS83KIL8oFO1uFyBl/Fr 2dC9luNQHC76YXoXijcZ7WRmcmCOos1Q4GMATg6dc4MhPtQCP8sQWz6PfwXqbLFJ lHT2k2KcBrVFjKszYUglvMDn5m8iOsg53ygYuQOkq88+XQL4p2zlzA1VeYlZjl4W hX9DtNe1vfPm0uBB0RXa9GgM7ONZqWwi5MJ5yEZ82CZNWeIC/2NQGUV+G76NM1iX z4yOXBpXOI1htVC04e8vjakfbgBE6cc0+Rc3vNKnDcRkvDyvCg== -----END CERTIFICATE-----Generated at Mon Nov 25 04:52:35 2024 by rpki-client on console-fra.rpki-client.org