$ rpki-client -vvf repo-rpki.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/323030313a6466343a343938303a3a2f34382d3438203d3e20313430343633.roa File: 323030313a6466343a343938303a3a2f34382d3438203d3e20313430343633.roa (raw, json) Hash identifier: UZS06JVCHJquB9MDcVVKyhbpAEHHB93htblC2PYxKYk= Subject key identifier: 40:6F:6A:D6:E4:2D:91:B8:58:0C:7C:DB:F1:49:77:B8:F6:D9:8A:59 Certificate issuer: /CN=0A1DE6FD88BB9EF4E349C1774DA926E423264796 Certificate serial: 779DE5294D1ED4D49B7A675528A2317E192E6E86 Authority key identifier: 0A:1D:E6:FD:88:BB:9E:F4:E3:49:C1:77:4D:A9:26:E4:23:26:47:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A1DE6FD88BB9EF4E349C1774DA926E423264796.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/323030313a6466343a343938303a3a2f34382d3438203d3e20313430343633.roa Signing time: Mon 01 Jul 2024 01:05:04 +0000 ROA not before: Mon 01 Jul 2024 01:00:04 +0000 ROA not after: Mon 30 Jun 2025 01:05:04 +0000 asID: 140463 IP address blocks: 2001:df4:4980::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/0A1DE6FD88BB9EF4E349C1774DA926E423264796.crl rsync://repo-rpki.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/0A1DE6FD88BB9EF4E349C1774DA926E423264796.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A1DE6FD88BB9EF4E349C1774DA926E423264796.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:9d:e5:29:4d:1e:d4:d4:9b:7a:67:55:28:a2:31:7e:19:2e:6e:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A1DE6FD88BB9EF4E349C1774DA926E423264796 Validity Not Before: Jul 1 01:00:04 2024 GMT Not After : Jun 30 01:05:04 2025 GMT Subject: CN=406F6AD6E42D91B8580C7CDBF14977B8F6D98A59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:86:46:75:fd:2f:c2:e1:4e:c4:33:bd:94:7d: 19:ff:f6:b2:5c:0d:f9:66:70:b1:2c:e6:42:57:38: c6:0e:3f:06:99:c7:7a:47:32:44:d5:3c:a4:9a:6d: c9:12:51:fd:1d:df:d5:d5:86:53:02:f4:54:dc:96: c6:2a:3c:6d:2b:8b:2b:65:5e:2c:bf:6f:b1:ad:02: 74:76:17:b3:db:47:fe:bd:77:34:33:3f:d4:d7:d3: 7d:d2:00:74:d3:eb:d6:1c:a0:86:31:88:43:69:6a: 08:c8:6a:ca:16:e4:f2:b3:1c:ae:9e:96:99:08:00: 96:29:94:13:e8:fa:cd:60:e8:e1:b6:0a:66:f6:b7: 5c:96:bb:08:0e:cd:56:a9:b2:c6:fe:a0:45:12:07: 60:5f:ee:eb:25:ac:67:b1:44:44:c7:ec:bd:4c:7f: 15:5f:5c:c0:46:74:9b:ba:83:2b:f8:13:31:bb:cb: a3:8b:6f:7a:ef:f5:17:8c:a4:9e:b2:0d:e1:75:4a: 41:5f:d2:1c:95:37:e6:bb:e7:ac:4e:45:50:ac:0c: 36:3c:32:ec:7b:41:db:f5:f5:78:37:1d:ac:96:35: d7:3d:4a:ac:c1:09:48:d9:c1:57:93:93:b8:03:99: 1f:f2:91:87:10:94:8b:da:39:5b:04:51:28:77:64: dc:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:6F:6A:D6:E4:2D:91:B8:58:0C:7C:DB:F1:49:77:B8:F6:D9:8A:59 X509v3 Authority Key Identifier: keyid:0A:1D:E6:FD:88:BB:9E:F4:E3:49:C1:77:4D:A9:26:E4:23:26:47:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/0A1DE6FD88BB9EF4E349C1774DA926E423264796.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A1DE6FD88BB9EF4E349C1774DA926E423264796.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/323030313a6466343a343938303a3a2f34382d3438203d3e20313430343633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:4980::/48 Signature Algorithm: sha256WithRSAEncryption 95:69:23:e2:85:48:c4:d7:8c:fe:5d:ba:19:8d:5f:01:d1:33: 67:db:a4:4e:1d:24:d0:e6:20:a7:93:5d:fd:eb:2d:99:a8:bc: 87:9f:00:3a:1a:7e:24:9d:c4:fe:c8:6f:83:8c:85:e1:f2:fd: 6c:46:c8:38:56:f9:e0:be:0a:7c:84:6e:24:fc:20:79:f7:b3: 4a:e5:32:aa:4d:2a:21:92:63:63:12:32:8c:63:cb:69:d1:0d: 8b:a3:59:75:74:0e:2a:f4:3e:90:d2:ed:70:38:99:0b:3b:a0: aa:7f:3f:7a:2b:65:ec:37:d6:4b:17:e1:50:50:bf:a6:b5:d7: 93:c1:dd:32:cd:d3:e4:75:1f:bf:8a:00:62:00:71:2b:e1:91: bb:5e:60:84:63:1f:26:c0:d4:b2:c2:fb:64:1a:f5:6d:45:a5: 25:42:6a:1c:d0:aa:16:a7:6e:f4:e7:4e:71:a0:4d:dc:f0:c3: c5:2e:12:4a:26:86:9d:35:7a:67:24:74:fd:eb:d5:1f:26:32: 91:ff:ae:44:90:03:c6:ba:94:b4:0a:a2:84:f3:b7:21:7f:af: 2f:da:78:a4:3b:1d:ee:9a:c9:f9:0c:7c:a9:ca:45:79:0f:8e: f6:81:b0:b7:a7:c6:6b:4c:50:6d:fd:c8:f5:83:17:7b:d6:4c: d9:04:6b:c2 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUd53lKU0e1NSbemdVKKIxfhkuboYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEExREU2RkQ4OEJCOUVGNEUzNDlDMTc3NERBOTI2RTQy MzI2NDc5NjAeFw0yNDA3MDEwMTAwMDRaFw0yNTA2MzAwMTA1MDRaMDMxMTAvBgNV BAMTKDQwNkY2QUQ2RTQyRDkxQjg1ODBDN0NEQkYxNDk3N0I4RjZEOThBNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyhkZ1/S/C4U7EM72UfRn/9rJc DflmcLEs5kJXOMYOPwaZx3pHMkTVPKSabckSUf0d39XVhlMC9FTclsYqPG0riytl Xiy/b7GtAnR2F7PbR/69dzQzP9TX033SAHTT69YcoIYxiENpagjIasoW5PKzHK6e lpkIAJYplBPo+s1g6OG2Cmb2t1yWuwgOzVapssb+oEUSB2Bf7uslrGexRETH7L1M fxVfXMBGdJu6gyv4EzG7y6OLb3rv9ReMpJ6yDeF1SkFf0hyVN+a756xORVCsDDY8 Mux7Qdv19Xg3HayWNdc9SqzBCUjZwVeTk7gDmR/ykYcQlIvaOVsEUSh3ZNyPAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUQG9q1uQtkbhYDHzb8Ul3uPbZilkwHwYDVR0j BBgwFoAUCh3m/Yi7nvTjScF3Takm5CMmR5YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTFlMGJkNy0yODFhLTRlYmEtYjk4Yy04MjkzOTMyN2RkZDcvMC8wQTFERTZGRDg4 QkI5RUY0RTM0OUMxNzc0REE5MjZFNDIzMjY0Nzk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEExREU2RkQ4OEJCOUVGNEUzNDlDMTc3NERBOTI2RTQyMzI2 NDc5Ni5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhMWUwYmQ3LTI4MWEtNGViYS1i OThjLTgyOTM5MzI3ZGRkNy8wLzMyMzAzMDMxM2E2NDY2MzQzYTM0MzkzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMwMzQzNjMzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9EmAMA0GCSqGSIb3DQEBCwUAA4IBAQCVaSPihUjE14z+XboZjV8B0TNn26ROHSTQ 5iCnk1396y2ZqLyHnwA6Gn4kncT+yG+DjIXh8v1sRsg4Vvngvgp8hG4k/CB597NK 5TKqTSohkmNjEjKMY8tp0Q2Lo1l1dA4q9D6Q0u1wOJkLO6Cqfz96K2XsN9ZLF+FQ UL+mtdeTwd0yzdPkdR+/igBiAHEr4ZG7XmCEYx8mwNSywvtkGvVtRaUlQmoc0KoW p270505xoE3c8MPFLhJKJoadNXpnJHT969UfJjKR/65EkAPGupS0CqKE87chf68v 2nikOx3umsn5DHypykV5D472gbC3p8ZrTFBt/cj1gxd71kzZBGvC -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:44 2024 by rpki-client on console-fra.rpki-client.org