$ rpki-client -vvf repo-rpki.idnic.net/repo/e517fe98-8f58-497f-be57-8665a7a04bb0/0/323030313a6466303a663534303a3a2f34382d3438203d3e20313431363231.roa File: 323030313a6466303a663534303a3a2f34382d3438203d3e20313431363231.roa (raw, json) Hash identifier: +zMNXve3byNpT+wVehBbgr8v8+pHPwDEjM4xfLf/Kqc= Subject key identifier: 58:22:3C:C4:FC:70:CA:FD:48:3D:F0:BF:D6:8B:5F:41:49:61:C2:A0 Certificate issuer: /CN=77776250E47CDCAE9263AB4AF8FA40A1391792EA Certificate serial: 77B971A78F00B0723B7B3AB71079E6CFA4706228 Authority key identifier: 77:77:62:50:E4:7C:DC:AE:92:63:AB:4A:F8:FA:40:A1:39:17:92:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/77776250E47CDCAE9263AB4AF8FA40A1391792EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e517fe98-8f58-497f-be57-8665a7a04bb0/0/323030313a6466303a663534303a3a2f34382d3438203d3e20313431363231.roa Signing time: Tue 09 Jul 2024 10:00:00 +0000 ROA not before: Tue 09 Jul 2024 09:55:00 +0000 ROA not after: Tue 08 Jul 2025 10:00:00 +0000 asID: 141621 IP address blocks: 2001:df0:f540::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e517fe98-8f58-497f-be57-8665a7a04bb0/0/77776250E47CDCAE9263AB4AF8FA40A1391792EA.crl rsync://repo-rpki.idnic.net/repo/e517fe98-8f58-497f-be57-8665a7a04bb0/0/77776250E47CDCAE9263AB4AF8FA40A1391792EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/77776250E47CDCAE9263AB4AF8FA40A1391792EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Mar 2025 10:12:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:b9:71:a7:8f:00:b0:72:3b:7b:3a:b7:10:79:e6:cf:a4:70:62:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=77776250E47CDCAE9263AB4AF8FA40A1391792EA Validity Not Before: Jul 9 09:55:00 2024 GMT Not After : Jul 8 10:00:00 2025 GMT Subject: CN=58223CC4FC70CAFD483DF0BFD68B5F414961C2A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:f9:95:17:1b:93:29:c5:71:92:06:3a:4b:a8: 52:ab:e5:81:70:41:dd:67:7d:28:23:39:63:0f:b5: 9b:3c:96:97:c6:3d:31:36:b6:5a:f2:d1:3e:56:7c: 4f:2d:a6:ff:2a:2c:a9:e1:fd:f7:d3:d1:0e:7f:6e: 00:4d:90:0e:68:3b:3a:3a:69:e0:34:f2:ab:1a:dc: 94:a8:81:7f:25:d8:1c:ed:af:2b:50:af:b4:ce:c0: c1:56:7e:74:46:1e:59:1a:0e:16:53:9f:e3:f4:ce: 28:47:09:fb:a8:b3:ae:f5:ec:84:cb:9a:f9:e2:e2: 99:bd:42:d0:6d:15:26:37:f6:aa:a3:25:e9:44:bd: f8:e3:99:39:76:66:c6:ba:b6:47:c6:47:2f:c8:25: 66:2a:c3:26:64:c9:18:bb:62:20:32:6f:65:6e:8a: 72:ef:7f:31:fa:c6:7d:bf:01:a2:93:71:17:ce:60: 89:42:f6:6c:83:e2:5a:87:ef:5b:9a:24:42:69:5c: b3:5f:60:d4:1a:af:b7:41:9f:b4:b9:78:0d:7a:15: 24:83:3f:52:91:ae:68:b1:0f:fa:8d:e3:3c:9b:d1: b4:85:02:04:c0:cd:31:85:eb:a4:cb:ed:43:d8:04: 04:ad:50:d2:b3:fd:a4:b6:03:86:f3:d9:b5:16:7a: d2:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:22:3C:C4:FC:70:CA:FD:48:3D:F0:BF:D6:8B:5F:41:49:61:C2:A0 X509v3 Authority Key Identifier: keyid:77:77:62:50:E4:7C:DC:AE:92:63:AB:4A:F8:FA:40:A1:39:17:92:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e517fe98-8f58-497f-be57-8665a7a04bb0/0/77776250E47CDCAE9263AB4AF8FA40A1391792EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/77776250E47CDCAE9263AB4AF8FA40A1391792EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e517fe98-8f58-497f-be57-8665a7a04bb0/0/323030313a6466303a663534303a3a2f34382d3438203d3e20313431363231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:f540::/48 Signature Algorithm: sha256WithRSAEncryption a0:f0:d2:1e:a1:9d:14:92:f1:bb:73:98:3e:cd:07:0d:92:41: d4:1d:54:ee:73:0a:66:98:e5:1c:ba:95:29:36:39:31:e1:e9: 45:a3:a6:af:da:27:04:8f:c6:55:b1:70:45:86:65:c9:71:04: 53:a0:d5:f0:e7:67:20:34:80:d4:b1:99:bf:25:d4:e6:c6:46: 98:eb:37:b3:09:51:b7:e5:bd:e2:ef:ff:aa:a6:e2:f6:42:f6: 9a:f2:cc:43:e1:73:08:3f:dd:6a:de:24:52:0c:d8:c6:d5:33: 7b:63:d7:ce:8e:d0:05:82:21:a3:c9:fa:63:d2:ad:b3:36:f0: d3:cf:9b:a5:53:ea:8b:78:6c:14:32:4e:ef:d3:80:d3:52:f5: 4a:14:87:b4:d1:c4:fe:b7:ee:73:15:f0:78:c2:09:5f:52:b0: d9:07:b3:90:59:62:1f:36:fa:88:1f:48:e0:fa:55:44:19:cf: 79:32:71:e6:05:91:9f:be:59:28:cd:d3:89:45:ad:cf:94:2b: 9d:3c:86:3d:14:ae:d6:a4:3f:6a:61:73:39:2e:09:45:27:27: 1c:8f:15:00:35:ab:57:06:55:ad:e4:1e:3c:4e:fa:ba:df:fe: 3a:45:19:d7:69:58:7c:07:15:d0:be:ff:98:13:6d:aa:b6:cb: 22:f2:05:7d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUd7lxp48AsHI7ezq3EHnmz6RwYigwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzc3NzYyNTBFNDdDRENBRTkyNjNBQjRBRjhGQTQwQTEz OTE3OTJFQTAeFw0yNDA3MDkwOTU1MDBaFw0yNTA3MDgxMDAwMDBaMDMxMTAvBgNV BAMTKDU4MjIzQ0M0RkM3MENBRkQ0ODNERjBCRkQ2OEI1RjQxNDk2MUMyQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe+ZUXG5MpxXGSBjpLqFKr5YFw Qd1nfSgjOWMPtZs8lpfGPTE2tlry0T5WfE8tpv8qLKnh/ffT0Q5/bgBNkA5oOzo6 aeA08qsa3JSogX8l2BztrytQr7TOwMFWfnRGHlkaDhZTn+P0zihHCfuos6717ITL mvni4pm9QtBtFSY39qqjJelEvfjjmTl2Zsa6tkfGRy/IJWYqwyZkyRi7YiAyb2Vu inLvfzH6xn2/AaKTcRfOYIlC9myD4lqH71uaJEJpXLNfYNQar7dBn7S5eA16FSSD P1KRrmixD/qN4zyb0bSFAgTAzTGF66TL7UPYBAStUNKz/aS2A4bz2bUWetKvAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUWCI8xPxwyv1IPfC/1otfQUlhwqAwHwYDVR0j BBgwFoAUd3diUOR83K6SY6tK+PpAoTkXkuowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTE3ZmU5OC04ZjU4LTQ5N2YtYmU1Ny04NjY1YTdhMDRiYjAvMC83Nzc3NjI1MEU0 N0NEQ0FFOTI2M0FCNEFGOEZBNDBBMTM5MTc5MkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzc3NzYyNTBFNDdDRENBRTkyNjNBQjRBRjhGQTQwQTEzOTE3 OTJFQS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1MTdmZTk4LThmNTgtNDk3Zi1i ZTU3LTg2NjVhN2EwNGJiMC8wLzMyMzAzMDMxM2E2NDY2MzAzYTY2MzUzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMxMzYzMjMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8PVAMA0GCSqGSIb3DQEBCwUAA4IBAQCg8NIeoZ0UkvG7c5g+zQcNkkHUHVTucwpm mOUcupUpNjkx4elFo6av2icEj8ZVsXBFhmXJcQRToNXw52cgNIDUsZm/JdTmxkaY 6zezCVG35b3i7/+qpuL2Qvaa8sxD4XMIP91q3iRSDNjG1TN7Y9fOjtAFgiGjyfpj 0q2zNvDTz5ulU+qLeGwUMk7v04DTUvVKFIe00cT+t+5zFfB4wglfUrDZB7OQWWIf NvqIH0jg+lVEGc95MnHmBZGfvlkozdOJRa3PlCudPIY9FK7WpD9qYXM5LglFJycc jxUANatXBlWt5B48Tvq63/46RRnXaVh8BxXQvv+YE22qtssi8gV9 -----END CERTIFICATE-----Generated at Tue Mar 11 05:04:43 2025 by rpki-client