$ rpki-client -vvf repo-rpki.idnic.net/repo/d67fb837-1b2f-4c4e-b999-6e990ddc1499/0/323030313a6466313a353638303a3a2f34382d3438203d3e20313339333738.roa File: 323030313a6466313a353638303a3a2f34382d3438203d3e20313339333738.roa (raw, json) Hash identifier: 1z9zQXbiXOJ+gRqWINPLLxlihaf6MQrGXd1QApL6EDo= Subject key identifier: B5:D7:5A:7F:14:8B:DF:C0:AC:6B:50:57:76:D9:10:29:5E:39:55:A6 Certificate issuer: /CN=C5CA2999FE7612F56CCCB7441743B05181458ED0 Certificate serial: 1373EF90FC17BFD9F6844E9AA0AA9906D45F4173 Authority key identifier: C5:CA:29:99:FE:76:12:F5:6C:CC:B7:44:17:43:B0:51:81:45:8E:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C5CA2999FE7612F56CCCB7441743B05181458ED0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d67fb837-1b2f-4c4e-b999-6e990ddc1499/0/323030313a6466313a353638303a3a2f34382d3438203d3e20313339333738.roa Signing time: Mon 01 Jul 2024 01:04:40 +0000 ROA not before: Mon 01 Jul 2024 00:59:40 +0000 ROA not after: Mon 30 Jun 2025 01:04:40 +0000 asID: 139378 IP address blocks: 2001:df1:5680::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d67fb837-1b2f-4c4e-b999-6e990ddc1499/0/C5CA2999FE7612F56CCCB7441743B05181458ED0.crl rsync://repo-rpki.idnic.net/repo/d67fb837-1b2f-4c4e-b999-6e990ddc1499/0/C5CA2999FE7612F56CCCB7441743B05181458ED0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C5CA2999FE7612F56CCCB7441743B05181458ED0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:73:ef:90:fc:17:bf:d9:f6:84:4e:9a:a0:aa:99:06:d4:5f:41:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C5CA2999FE7612F56CCCB7441743B05181458ED0 Validity Not Before: Jul 1 00:59:40 2024 GMT Not After : Jun 30 01:04:40 2025 GMT Subject: CN=B5D75A7F148BDFC0AC6B505776D910295E3955A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:2e:b2:73:c2:3a:10:d2:73:b3:82:a6:bf:75: b2:27:1e:16:48:15:19:16:39:ba:81:09:30:25:fc: 79:4c:6c:11:03:a2:02:28:fa:f6:ba:d3:a0:c7:b9: 44:82:6e:e3:14:b1:ba:11:50:27:68:ad:1d:44:58: a5:5f:0e:0f:e7:b8:4f:68:8a:fa:d4:e1:35:13:77: f4:2d:ef:43:65:d0:b7:30:0c:1b:f9:af:6e:84:3a: e4:49:e1:2a:8c:be:2f:fd:75:a2:17:29:7e:78:74: ab:94:f1:99:18:58:d9:3b:13:88:57:ad:95:18:9b: 16:50:77:d9:af:49:b3:a0:6c:ea:5c:d1:50:5b:d0: 6f:8b:b0:f9:e9:7a:1d:35:88:8a:a2:92:d7:d5:b3: 64:26:be:b2:d7:a4:f0:6c:c5:ce:3c:f4:e5:11:a0: c0:55:f6:59:2e:34:d6:73:ee:34:55:8d:29:6d:5e: d3:e9:f6:c1:bc:1f:f0:4a:e2:9f:2d:d4:a4:57:b5: aa:6c:82:09:dc:9b:70:0a:42:5d:99:23:d5:fd:c5: 89:6b:03:1a:ee:66:7e:1b:24:3a:01:35:7b:8e:59: 53:c1:6e:62:e4:31:ef:df:88:26:22:f7:ac:54:2c: 23:1a:f0:4e:69:d1:85:b8:e0:59:6a:04:d8:34:df: 75:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:D7:5A:7F:14:8B:DF:C0:AC:6B:50:57:76:D9:10:29:5E:39:55:A6 X509v3 Authority Key Identifier: keyid:C5:CA:29:99:FE:76:12:F5:6C:CC:B7:44:17:43:B0:51:81:45:8E:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d67fb837-1b2f-4c4e-b999-6e990ddc1499/0/C5CA2999FE7612F56CCCB7441743B05181458ED0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C5CA2999FE7612F56CCCB7441743B05181458ED0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d67fb837-1b2f-4c4e-b999-6e990ddc1499/0/323030313a6466313a353638303a3a2f34382d3438203d3e20313339333738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:5680::/48 Signature Algorithm: sha256WithRSAEncryption a0:b5:1e:8f:e3:83:3b:f8:64:b5:7a:d3:2f:06:b6:5c:77:02: 42:81:bd:70:ab:30:6e:ba:8c:a9:be:77:73:dc:98:ae:93:b2: 73:c0:a7:c9:1c:a9:03:6a:b5:42:fd:97:af:8b:a7:7b:23:49: 53:f9:2c:91:c8:1e:f5:7b:13:c0:42:7b:1b:e5:24:07:a6:4f: 86:c9:f9:e6:e6:6d:2a:8c:70:cc:99:b3:2c:e0:0a:15:64:db: 3c:a3:11:39:85:d0:31:5f:1d:b8:77:92:07:d8:4a:7a:f4:60: 1f:a8:5b:28:3b:4f:d7:34:6b:50:c4:ad:d9:fc:96:77:93:30: b1:3f:e3:c4:21:5b:59:dc:f4:6d:32:fb:36:45:d4:b6:13:f2: 43:9c:34:1c:b4:c4:7e:f2:68:c4:59:9b:be:03:81:24:d3:8b: 04:38:88:26:83:7a:29:40:55:1d:0b:a7:4b:ed:4d:8e:5a:ba: 1b:da:8e:7f:a3:cf:2e:c1:f3:3c:dc:28:e8:67:c8:ad:64:26: 88:66:82:7d:c2:9b:42:8f:f4:e9:bb:0d:cf:ee:dd:0e:b5:86: dd:03:a0:b3:6b:01:5f:a7:36:29:6b:25:b4:63:c2:39:ac:46: 0d:de:6d:11:1c:a8:06:25:a4:9c:9a:1e:da:0b:a9:fd:45:af: ef:51:84:2d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUE3PvkPwXv9n2hE6aoKqZBtRfQXMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzVDQTI5OTlGRTc2MTJGNTZDQ0NCNzQ0MTc0M0IwNTE4 MTQ1OEVEMDAeFw0yNDA3MDEwMDU5NDBaFw0yNTA2MzAwMTA0NDBaMDMxMTAvBgNV BAMTKEI1RDc1QTdGMTQ4QkRGQzBBQzZCNTA1Nzc2RDkxMDI5NUUzOTU1QTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBLrJzwjoQ0nOzgqa/dbInHhZI FRkWObqBCTAl/HlMbBEDogIo+va606DHuUSCbuMUsboRUCdorR1EWKVfDg/nuE9o ivrU4TUTd/Qt70Nl0LcwDBv5r26EOuRJ4SqMvi/9daIXKX54dKuU8ZkYWNk7E4hX rZUYmxZQd9mvSbOgbOpc0VBb0G+LsPnpeh01iIqiktfVs2QmvrLXpPBsxc489OUR oMBV9lkuNNZz7jRVjSltXtPp9sG8H/BK4p8t1KRXtapsggncm3AKQl2ZI9X9xYlr AxruZn4bJDoBNXuOWVPBbmLkMe/fiCYi96xULCMa8E5p0YW44FlqBNg033V/AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUtddafxSL38Csa1BXdtkQKV45VaYwHwYDVR0j BBgwFoAUxcopmf52EvVszLdEF0OwUYFFjtAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NjdmYjgzNy0xYjJmLTRjNGUtYjk5OS02ZTk5MGRkYzE0OTkvMC9DNUNBMjk5OUZF NzYxMkY1NkNDQ0I3NDQxNzQzQjA1MTgxNDU4RUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzVDQTI5OTlGRTc2MTJGNTZDQ0NCNzQ0MTc0M0IwNTE4MTQ1 OEVEMC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q2N2ZiODM3LTFiMmYtNGM0ZS1i OTk5LTZlOTkwZGRjMTQ5OS8wLzMyMzAzMDMxM2E2NDY2MzEzYTM1MzYzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzMzNzM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8VaAMA0GCSqGSIb3DQEBCwUAA4IBAQCgtR6P44M7+GS1etMvBrZcdwJCgb1wqzBu uoypvndz3Jiuk7JzwKfJHKkDarVC/Zevi6d7I0lT+SyRyB71exPAQnsb5SQHpk+G yfnm5m0qjHDMmbMs4AoVZNs8oxE5hdAxXx24d5IH2Ep69GAfqFsoO0/XNGtQxK3Z /JZ3kzCxP+PEIVtZ3PRtMvs2RdS2E/JDnDQctMR+8mjEWZu+A4Ek04sEOIgmg3op QFUdC6dL7U2OWrob2o5/o88uwfM83CjoZ8itZCaIZoJ9wptCj/Tpuw3P7t0OtYbd A6CzawFfpzYpayW0Y8I5rEYN3m0RHKgGJaScmh7aC6n9Ra/vUYQt -----END CERTIFICATE-----Generated at Sun Nov 24 14:55:03 2024 by rpki-client on console-fra.rpki-client.org