$ rpki-client -vvf repo-rpki.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/323030313a6466323a336130303a3a2f34382d3438203d3e20313337333432.roa File: 323030313a6466323a336130303a3a2f34382d3438203d3e20313337333432.roa (raw, json) Hash identifier: H/ox6OsaCzhg0WLRWLlKQUCFCkVe5McPk/cy7mSo53w= Subject key identifier: 7A:10:3C:F8:DA:99:46:11:4B:0D:43:FA:9F:6E:9D:87:50:DC:4E:0B Certificate issuer: /CN=EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26 Certificate serial: 1796F0ADA1D612AB7265429E086CEDAAF83E2C79 Authority key identifier: EF:D2:09:19:B9:6F:4E:34:FA:9E:4A:0C:CC:23:47:A4:BC:D9:EA:26 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/323030313a6466323a336130303a3a2f34382d3438203d3e20313337333432.roa Signing time: Thu 09 May 2024 09:00:01 +0000 ROA not before: Thu 09 May 2024 08:55:01 +0000 ROA not after: Thu 08 May 2025 09:00:01 +0000 asID: 137342 IP address blocks: 2001:df2:3a00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26.crl rsync://repo-rpki.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:96:f0:ad:a1:d6:12:ab:72:65:42:9e:08:6c:ed:aa:f8:3e:2c:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26 Validity Not Before: May 9 08:55:01 2024 GMT Not After : May 8 09:00:01 2025 GMT Subject: CN=7A103CF8DA9946114B0D43FA9F6E9D8750DC4E0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b5:ce:90:83:11:db:d3:d0:76:58:28:56:c0: 67:c0:f0:2d:78:b8:ec:b3:2e:c4:a1:3a:33:29:d2: fc:08:12:c2:0c:e9:25:16:fb:2a:3e:6d:b0:a9:3d: 9a:22:30:b0:3a:39:d8:8e:39:f4:39:f5:f1:3c:5f: 5e:30:dc:1a:ca:22:92:ba:7a:79:1c:66:48:d0:16: 05:d8:58:df:9a:8a:47:33:6e:66:4f:93:87:dd:d0: 5d:34:0e:40:1b:cd:6d:71:a2:31:57:9b:aa:a6:21: 66:32:61:ca:66:c0:66:90:c1:34:d8:f5:1d:df:8c: 19:ce:20:db:d4:94:3d:25:f5:ca:6d:41:0a:25:9e: b8:71:15:4a:d3:64:99:a8:c0:2a:02:5e:48:69:c0: e3:77:08:ed:9e:df:96:08:e2:86:18:f0:db:40:16: 04:1f:97:49:34:5f:33:d4:fd:f7:52:98:b3:89:7f: 81:7f:db:2b:97:01:77:5d:95:78:70:bf:2f:a2:a9: 84:39:05:2d:ac:61:fe:47:ec:fe:d3:42:44:8d:c6: c4:88:fc:f6:f3:2a:bc:fc:d3:ba:90:9c:62:c4:38: 85:2f:27:0b:fb:da:2b:67:b6:2a:e0:55:2b:b7:4f: 92:ed:97:df:6e:cc:ef:7a:ee:40:e8:ad:d9:19:dc: 96:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:10:3C:F8:DA:99:46:11:4B:0D:43:FA:9F:6E:9D:87:50:DC:4E:0B X509v3 Authority Key Identifier: keyid:EF:D2:09:19:B9:6F:4E:34:FA:9E:4A:0C:CC:23:47:A4:BC:D9:EA:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/323030313a6466323a336130303a3a2f34382d3438203d3e20313337333432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:3a00::/48 Signature Algorithm: sha256WithRSAEncryption 94:25:86:6c:d7:01:2a:4a:3b:1e:d2:53:cc:e0:d6:76:a7:cd: fc:00:35:03:dd:ed:4d:03:3c:60:3f:16:22:cb:9b:1c:83:32: d1:b7:cf:d5:9b:b1:5e:e0:40:7a:43:a8:fa:7b:67:05:48:b0: 88:72:9e:f2:30:a1:fe:70:b2:ea:c3:f3:cb:17:eb:b4:69:59: 74:e3:ed:b6:01:b5:b6:03:2e:df:ac:7d:24:d5:1f:02:f2:0f: 34:7c:41:57:af:63:8b:cc:cd:23:9b:da:5a:2a:bc:5e:20:50: 80:c0:89:0c:f3:ef:72:75:58:0a:9c:46:fb:9f:f3:7f:ef:34: 27:41:ae:ae:75:8d:b0:a2:0e:c4:0e:99:d9:85:b6:32:3d:ae: 84:74:74:8c:b1:1c:25:6e:06:1c:74:eb:f1:c5:d8:c3:3d:4f: 64:14:61:b8:04:e4:fb:de:ea:a9:8f:e2:d3:c2:cf:50:65:78: e8:9b:67:64:fb:93:17:8d:e9:e4:4d:c9:8f:4a:0b:16:80:19: 9b:2a:22:4f:ee:52:47:a8:3f:eb:d0:fd:fc:13:17:d4:8d:c3: 44:e7:9e:11:00:1d:f0:9e:11:2b:11:3c:e8:ab:07:09:48:96: 46:3e:a1:94:76:d8:7b:01:f5:29:8d:85:99:3b:82:9d:1d:ce: fa:a2:1b:7e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUF5bwraHWEqtyZUKeCGztqvg+LHkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUZEMjA5MTlCOTZGNEUzNEZBOUU0QTBDQ0MyMzQ3QTRC Q0Q5RUEyNjAeFw0yNDA1MDkwODU1MDFaFw0yNTA1MDgwOTAwMDFaMDMxMTAvBgNV BAMTKDdBMTAzQ0Y4REE5OTQ2MTE0QjBENDNGQTlGNkU5RDg3NTBEQzRFMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDStc6QgxHb09B2WChWwGfA8C14 uOyzLsShOjMp0vwIEsIM6SUW+yo+bbCpPZoiMLA6OdiOOfQ59fE8X14w3BrKIpK6 enkcZkjQFgXYWN+aikczbmZPk4fd0F00DkAbzW1xojFXm6qmIWYyYcpmwGaQwTTY 9R3fjBnOINvUlD0l9cptQQolnrhxFUrTZJmowCoCXkhpwON3CO2e35YI4oYY8NtA FgQfl0k0XzPU/fdSmLOJf4F/2yuXAXddlXhwvy+iqYQ5BS2sYf5H7P7TQkSNxsSI /PbzKrz807qQnGLEOIUvJwv72itntirgVSu3T5Ltl99uzO967kDordkZ3JZ7AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUehA8+NqZRhFLDUP6n26dh1DcTgswHwYDVR0j BBgwFoAU79IJGblvTjT6nkoMzCNHpLzZ6iYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MWM0ODc1Ni1iNjYyLTQ2OGEtOTA2ZC02Y2Q0NjFjYjZlNDIvMC9FRkQyMDkxOUI5 NkY0RTM0RkE5RTRBMENDQzIzNDdBNEJDRDlFQTI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUZEMjA5MTlCOTZGNEUzNEZBOUU0QTBDQ0MyMzQ3QTRCQ0Q5 RUEyNi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UxYzQ4NzU2LWI2NjItNDY4YS05 MDZkLTZjZDQ2MWNiNmU0Mi8wLzMyMzAzMDMxM2E2NDY2MzIzYTMzNjEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM3MzMzNDMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8joAMA0GCSqGSIb3DQEBCwUAA4IBAQCUJYZs1wEqSjse0lPM4NZ2p838ADUD3e1N AzxgPxYiy5scgzLRt8/Vm7Fe4EB6Q6j6e2cFSLCIcp7yMKH+cLLqw/PLF+u0aVl0 4+22AbW2Ay7frH0k1R8C8g80fEFXr2OLzM0jm9paKrxeIFCAwIkM8+9ydVgKnEb7 n/N/7zQnQa6udY2wog7EDpnZhbYyPa6EdHSMsRwlbgYcdOvxxdjDPU9kFGG4BOT7 3uqpj+LTws9QZXjom2dk+5MXjenkTcmPSgsWgBmbKiJP7lJHqD/r0P38ExfUjcNE 554RAB3wnhErETzoqwcJSJZGPqGUdth7AfUpjYWZO4KdHc76oht+ -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:21 2024 by rpki-client on console-fra.rpki-client.org