$ rpki-client -vvf repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/323030313a6466303a63623a3a2f34382d3438203d3e203435373836.roa File: 323030313a6466303a63623a3a2f34382d3438203d3e203435373836.roa (raw, json) Hash identifier: n62tsL2z93EkvJ5FJ6Ucd+CAqKUW8/RP9Dy3KqIDqZs= Subject key identifier: 5F:1E:9A:39:E9:EB:BD:2F:DE:86:82:24:30:74:A7:6F:41:3F:68:D8 Certificate issuer: /CN=BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B Certificate serial: 143BCC422AA39F30E2CDED656357FC1EE7AA77ED Authority key identifier: BF:07:6E:A2:4A:68:CF:15:2C:32:3C:7A:3D:FD:3F:92:AF:E8:AA:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/323030313a6466303a63623a3a2f34382d3438203d3e203435373836.roa Signing time: Mon 01 Jul 2024 01:04:01 +0000 ROA not before: Mon 01 Jul 2024 00:59:01 +0000 ROA not after: Mon 30 Jun 2025 01:04:01 +0000 asID: 45786 IP address blocks: 2001:df0:cb::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.crl rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 17 Mar 2025 10:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:3b:cc:42:2a:a3:9f:30:e2:cd:ed:65:63:57:fc:1e:e7:aa:77:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B Validity Not Before: Jul 1 00:59:01 2024 GMT Not After : Jun 30 01:04:01 2025 GMT Subject: CN=5F1E9A39E9EBBD2FDE8682243074A76F413F68D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:7d:6c:c5:50:a0:a9:fa:82:10:90:c4:60:f5: 88:34:2e:e8:12:e9:c3:00:d6:92:b1:3a:d4:6b:76: 86:2b:bb:f5:08:e1:fc:2d:d8:8c:98:29:ca:44:8d: 53:ab:5c:53:3b:62:95:7d:71:ab:a4:20:9a:da:ad: 62:d1:44:f8:5d:0e:a6:f8:0f:de:86:f5:3c:15:c5: 23:0c:63:46:4b:92:95:c2:59:02:36:0b:c8:ec:56: cf:59:e6:8d:51:de:3b:27:ca:95:e0:0a:95:f7:a3: cb:ab:f4:7b:2c:13:71:a2:d3:b0:5f:70:a6:5c:0b: f4:3b:1e:16:a0:dd:ff:fb:8d:4b:4a:95:61:b5:89: 01:d3:db:e6:b9:b0:7c:19:ad:87:44:77:6f:a2:4d: a4:35:1d:a2:27:6c:d4:6c:1b:15:f4:e8:55:2d:e6: c6:cd:81:e2:ec:0c:29:ce:d0:3b:bf:09:72:18:1c: e7:4d:1d:1d:0a:1f:80:63:5b:bf:92:ae:26:ac:7b: 92:41:06:15:51:3f:e6:a2:c1:47:af:f7:de:08:3a: 4c:b8:08:4a:fc:02:aa:b0:bc:ed:8d:31:60:27:10: 77:3c:49:5d:df:0e:11:6e:9f:d5:05:cb:4f:48:ec: 3a:b9:e8:8d:ed:95:c1:67:92:3f:be:25:fb:6c:41: 9b:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:1E:9A:39:E9:EB:BD:2F:DE:86:82:24:30:74:A7:6F:41:3F:68:D8 X509v3 Authority Key Identifier: keyid:BF:07:6E:A2:4A:68:CF:15:2C:32:3C:7A:3D:FD:3F:92:AF:E8:AA:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/323030313a6466303a63623a3a2f34382d3438203d3e203435373836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:cb::/48 Signature Algorithm: sha256WithRSAEncryption 4c:d0:7d:f7:01:2f:45:34:ac:ec:0d:9c:75:26:a4:fd:3b:79: bc:ae:d6:9a:7d:c3:af:e2:9b:68:95:23:e0:d7:41:ce:9a:c2: c4:31:01:3a:f5:2b:ed:dd:8a:ed:a2:52:d5:91:9c:44:9c:72: f2:8d:01:95:fd:90:b3:15:77:cc:a3:78:5a:3c:cc:4d:98:bb: e1:36:b9:f6:fb:a4:20:67:1d:2b:0c:9c:35:31:bb:98:94:08: 4c:b7:a8:18:d7:72:5b:9d:f8:94:d1:21:35:84:37:88:35:e3: 82:6b:86:ef:9b:37:7b:8b:7e:7f:f1:3f:ad:c0:61:b4:4f:02: 10:4e:5d:d1:ef:bc:57:aa:b1:f0:f8:96:2f:c6:2f:d4:8d:ef: 52:92:2e:56:f9:23:63:ed:07:92:2e:7d:8c:73:54:b5:24:39: 8a:69:c0:23:5d:71:76:9b:a0:51:39:72:87:c6:5e:aa:f0:53: 99:20:8e:b2:c6:3c:5b:ad:01:2f:d8:f3:0a:2c:ca:3b:9d:ba: 61:9f:78:66:a0:41:0c:03:d3:5d:ae:b9:50:fc:fc:97:84:63: 45:27:14:f7:7f:9d:9f:35:7e:db:76:30:97:d7:58:74:85:cb: de:55:17:fe:a5:1f:a9:4a:7d:5b:b3:82:2f:2b:fb:8a:7f:cb: 7f:9c:da:0a -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUFDvMQiqjnzDize1lY1f8Hueqd+0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkYwNzZFQTI0QTY4Q0YxNTJDMzIzQzdBM0RGRDNGOTJB RkU4QUEyQjAeFw0yNDA3MDEwMDU5MDFaFw0yNTA2MzAwMTA0MDFaMDMxMTAvBgNV BAMTKDVGMUU5QTM5RTlFQkJEMkZERTg2ODIyNDMwNzRBNzZGNDEzRjY4RDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwfWzFUKCp+oIQkMRg9Yg0LugS 6cMA1pKxOtRrdoYru/UI4fwt2IyYKcpEjVOrXFM7YpV9caukIJrarWLRRPhdDqb4 D96G9TwVxSMMY0ZLkpXCWQI2C8jsVs9Z5o1R3jsnypXgCpX3o8ur9HssE3Gi07Bf cKZcC/Q7Hhag3f/7jUtKlWG1iQHT2+a5sHwZrYdEd2+iTaQ1HaInbNRsGxX06FUt 5sbNgeLsDCnO0Du/CXIYHOdNHR0KH4BjW7+Sriase5JBBhVRP+aiwUev994IOky4 CEr8AqqwvO2NMWAnEHc8SV3fDhFun9UFy09I7Dq56I3tlcFnkj++JftsQZvxAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUXx6aOenrvS/ehoIkMHSnb0E/aNgwHwYDVR0j BBgwFoAUvwduokpozxUsMjx6Pf0/kq/oqiswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTBkYTQ0Ny1hMTM4LTQ2MjUtYTQyMC1hNzExYWMyNDM1MTkvMC9CRjA3NkVBMjRB NjhDRjE1MkMzMjNDN0EzREZEM0Y5MkFGRThBQTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkYwNzZFQTI0QTY4Q0YxNTJDMzIzQzdBM0RGRDNGOTJBRkU4 QUEyQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1MGRhNDQ3LWExMzgtNDYyNS1h NDIwLWE3MTFhYzI0MzUxOS8wLzMyMzAzMDMxM2E2NDY2MzAzYTYzNjIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNDM1MzczODM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN8ADLMA0G CSqGSIb3DQEBCwUAA4IBAQBM0H33AS9FNKzsDZx1JqT9O3m8rtaafcOv4ptolSPg 10HOmsLEMQE69Svt3YrtolLVkZxEnHLyjQGV/ZCzFXfMo3haPMxNmLvhNrn2+6Qg Zx0rDJw1MbuYlAhMt6gY13JbnfiU0SE1hDeINeOCa4bvmzd7i35/8T+twGG0TwIQ Tl3R77xXqrHw+JYvxi/Uje9Ski5W+SNj7QeSLn2Mc1S1JDmKacAjXXF2m6BROXKH xl6q8FOZII6yxjxbrQEv2PMKLMo7nbphn3hmoEEMA9NdrrlQ/PyXhGNFJxT3f52f NX7bdjCX11h0hcveVRf+pR+pSn1bs4IvK/uKf8t/nNoK -----END CERTIFICATE-----Generated at Sat Mar 15 05:49:13 2025 by rpki-client