$ rpki-client -vvf repo-rpki.idnic.net/repo/dc0201e3-875d-49c4-8e14-99994936d491/0/323030313a6466303a323363303a3a2f34382d3438203d3e20313437313235.roa File: 323030313a6466303a323363303a3a2f34382d3438203d3e20313437313235.roa (raw, json) Hash identifier: cdNwI4+yNgJqJT5/jVDzUTVdyDgbKctLin9GOuO6hd8= Subject key identifier: 6D:C7:A6:83:32:74:5B:10:97:AB:77:B3:65:24:7C:0E:B2:4A:2A:92 Certificate issuer: /CN=E31CBDE5C6F33DAE3CA97A011EA4F4E639FB4FF6 Certificate serial: 207917E16C1F20C36E3EDE6E81A887411FBC65CB Authority key identifier: E3:1C:BD:E5:C6:F3:3D:AE:3C:A9:7A:01:1E:A4:F4:E6:39:FB:4F:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E31CBDE5C6F33DAE3CA97A011EA4F4E639FB4FF6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dc0201e3-875d-49c4-8e14-99994936d491/0/323030313a6466303a323363303a3a2f34382d3438203d3e20313437313235.roa Signing time: Sun 20 Oct 2024 09:00:02 +0000 ROA not before: Sun 20 Oct 2024 08:55:02 +0000 ROA not after: Sun 19 Oct 2025 09:00:02 +0000 asID: 147125 IP address blocks: 2001:df0:23c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dc0201e3-875d-49c4-8e14-99994936d491/0/E31CBDE5C6F33DAE3CA97A011EA4F4E639FB4FF6.crl rsync://repo-rpki.idnic.net/repo/dc0201e3-875d-49c4-8e14-99994936d491/0/E31CBDE5C6F33DAE3CA97A011EA4F4E639FB4FF6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E31CBDE5C6F33DAE3CA97A011EA4F4E639FB4FF6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:79:17:e1:6c:1f:20:c3:6e:3e:de:6e:81:a8:87:41:1f:bc:65:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E31CBDE5C6F33DAE3CA97A011EA4F4E639FB4FF6 Validity Not Before: Oct 20 08:55:02 2024 GMT Not After : Oct 19 09:00:02 2025 GMT Subject: CN=6DC7A68332745B1097AB77B365247C0EB24A2A92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:bf:f6:cd:af:75:82:51:c5:96:23:af:2e:71: bd:43:02:a8:8e:58:9f:9b:75:a1:2a:a1:e5:58:8f: af:6b:1f:78:08:99:70:43:8c:6f:75:77:cf:7f:47: 65:90:93:10:18:96:7d:83:b7:2c:df:25:1f:11:9b: 4c:31:0c:76:15:cd:9a:74:00:92:7f:66:c8:0f:43: c7:ef:f2:94:19:48:c9:6e:c9:eb:06:a1:24:9c:b4: cd:0c:92:ae:ca:e8:db:56:2b:56:e1:93:d8:dc:5e: 1e:23:0c:84:b8:1f:12:28:42:0f:44:b0:7c:b2:ff: a9:1a:22:d7:38:e2:1c:b2:78:3c:cf:f3:8a:3d:37: 22:46:39:e6:a6:17:7c:c7:4e:05:6b:07:51:a7:1b: b8:23:64:67:07:37:8c:4d:df:f6:f2:d9:a3:ac:71: 29:5b:23:dd:34:56:f8:80:50:cd:08:3c:8b:ed:eb: 04:e4:60:10:28:43:29:76:ad:86:0d:ef:85:f0:26: af:c4:f8:76:a1:11:5f:3a:86:1f:1f:1a:75:aa:b0: 66:14:6c:6c:66:89:20:2c:44:0a:b7:f0:0a:ef:a2: 68:a3:63:5d:28:cc:85:0d:29:2a:62:bf:65:fc:03: 34:81:e7:1f:49:c3:6f:ad:3d:e7:1c:28:cc:c9:72: 1a:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:C7:A6:83:32:74:5B:10:97:AB:77:B3:65:24:7C:0E:B2:4A:2A:92 X509v3 Authority Key Identifier: keyid:E3:1C:BD:E5:C6:F3:3D:AE:3C:A9:7A:01:1E:A4:F4:E6:39:FB:4F:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dc0201e3-875d-49c4-8e14-99994936d491/0/E31CBDE5C6F33DAE3CA97A011EA4F4E639FB4FF6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E31CBDE5C6F33DAE3CA97A011EA4F4E639FB4FF6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dc0201e3-875d-49c4-8e14-99994936d491/0/323030313a6466303a323363303a3a2f34382d3438203d3e20313437313235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:23c0::/48 Signature Algorithm: sha256WithRSAEncryption 5b:b0:7a:cc:a0:44:2a:3f:df:e5:19:5b:62:d2:fb:d3:df:c6: c1:a6:09:86:12:a8:77:0e:df:e4:b2:05:f8:06:22:b2:60:c4: 72:e9:1c:f5:40:cd:ac:55:56:f2:b0:01:e2:b0:cc:87:38:75: d0:fb:fd:ff:1e:51:a2:38:9b:4d:5c:65:d4:d1:b5:0b:ca:4b: 56:17:12:4f:4f:bc:5f:c3:ad:68:29:c3:2f:72:57:ac:75:d6: bb:09:30:1c:3f:a2:57:7c:86:80:d1:4d:ca:4c:ef:15:03:c8: ec:2b:5b:be:d1:c7:32:c9:9f:46:8d:fe:5e:0e:42:a9:b0:a5: 6a:84:f4:fc:77:b0:58:9e:2c:ed:e0:5b:2a:a0:9d:41:6e:d3: 87:57:5a:65:f5:49:23:e4:d6:94:54:ed:0e:75:d1:a9:40:5d: 47:12:9e:b1:2c:d9:3b:f2:24:4a:50:01:2a:41:a9:27:fe:30: 37:e5:a5:a5:32:9d:19:e0:39:15:0d:a7:2b:6d:09:c4:88:31: f4:43:6c:c2:00:64:90:6e:ca:29:4b:bd:89:70:24:4c:51:9e: 14:65:11:8d:bb:c2:8b:ea:85:73:6f:ec:b8:3c:c1:8d:4f:47: f3:9e:ed:48:e7:b3:f2:b8:ca:51:76:6b:9d:30:b5:79:b3:88: c7:f6:06:06 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUIHkX4WwfIMNuPt5ugaiHQR+8ZcswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTMxQ0JERTVDNkYzM0RBRTNDQTk3QTAxMUVBNEY0RTYz OUZCNEZGNjAeFw0yNDEwMjAwODU1MDJaFw0yNTEwMTkwOTAwMDJaMDMxMTAvBgNV BAMTKDZEQzdBNjgzMzI3NDVCMTA5N0FCNzdCMzY1MjQ3QzBFQjI0QTJBOTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJv/bNr3WCUcWWI68ucb1DAqiO WJ+bdaEqoeVYj69rH3gImXBDjG91d89/R2WQkxAYln2DtyzfJR8Rm0wxDHYVzZp0 AJJ/ZsgPQ8fv8pQZSMluyesGoSSctM0Mkq7K6NtWK1bhk9jcXh4jDIS4HxIoQg9E sHyy/6kaItc44hyyeDzP84o9NyJGOeamF3zHTgVrB1GnG7gjZGcHN4xN3/by2aOs cSlbI900VviAUM0IPIvt6wTkYBAoQyl2rYYN74XwJq/E+HahEV86hh8fGnWqsGYU bGxmiSAsRAq38ArvomijY10ozIUNKSpiv2X8AzSB5x9Jw2+tPeccKMzJchq3AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUbcemgzJ0WxCXq3ezZSR8DrJKKpIwHwYDVR0j BBgwFoAU4xy95cbzPa48qXoBHqT05jn7T/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YzAyMDFlMy04NzVkLTQ5YzQtOGUxNC05OTk5NDkzNmQ0OTEvMC9FMzFDQkRFNUM2 RjMzREFFM0NBOTdBMDExRUE0RjRFNjM5RkI0RkY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTMxQ0JERTVDNkYzM0RBRTNDQTk3QTAxMUVBNEY0RTYzOUZC NEZGNi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RjMDIwMWUzLTg3NWQtNDljNC04 ZTE0LTk5OTk0OTM2ZDQ5MS8wLzMyMzAzMDMxM2E2NDY2MzAzYTMyMzM2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDM3MzEzMjM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8CPAMA0GCSqGSIb3DQEBCwUAA4IBAQBbsHrMoEQqP9/lGVti0vvT38bBpgmGEqh3 Dt/ksgX4BiKyYMRy6Rz1QM2sVVbysAHisMyHOHXQ+/3/HlGiOJtNXGXU0bULyktW FxJPT7xfw61oKcMvclesdda7CTAcP6JXfIaA0U3KTO8VA8jsK1u+0ccyyZ9Gjf5e DkKpsKVqhPT8d7BYnizt4FsqoJ1BbtOHV1pl9Ukj5NaUVO0OddGpQF1HEp6xLNk7 8iRKUAEqQakn/jA35aWlMp0Z4DkVDacrbQnEiDH0Q2zCAGSQbsopS72JcCRMUZ4U ZRGNu8KL6oVzb+y4PMGNT0fznu1I57PyuMpRdmudMLV5s4jH9gYG -----END CERTIFICATE-----Generated at Wed Nov 20 20:04:31 2024 by rpki-client on console-fra.rpki-client.org