$ rpki-client -vvf repo-rpki.idnic.net/repo/f0e4ca54-857b-4f68-ab5f-0d8c472e6c92/0/323030313a6466353a333930303a3a2f34382d3438203d3e203138333531.roa File: 323030313a6466353a333930303a3a2f34382d3438203d3e203138333531.roa (raw, json) Hash identifier: e1JG4uU1iuO6rgmOne6CBOco5jWQCmWhIZVp0+S/uh4= Subject key identifier: FA:66:3A:7D:D2:18:E5:5A:C9:26:99:F1:1A:82:56:69:F3:79:CD:18 Certificate issuer: /CN=78578588503A7F091F1D7CD7B16BDC9E55055889 Certificate serial: 5C5C0E5DCC1F232A4A3BBA9E757D4E2E430574D9 Authority key identifier: 78:57:85:88:50:3A:7F:09:1F:1D:7C:D7:B1:6B:DC:9E:55:05:58:89 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/78578588503A7F091F1D7CD7B16BDC9E55055889.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f0e4ca54-857b-4f68-ab5f-0d8c472e6c92/0/323030313a6466353a333930303a3a2f34382d3438203d3e203138333531.roa Signing time: Thu 31 Oct 2024 03:02:56 +0000 ROA not before: Thu 31 Oct 2024 02:57:56 +0000 ROA not after: Thu 30 Oct 2025 03:02:56 +0000 asID: 18351 IP address blocks: 2001:df5:3900::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f0e4ca54-857b-4f68-ab5f-0d8c472e6c92/0/78578588503A7F091F1D7CD7B16BDC9E55055889.crl rsync://repo-rpki.idnic.net/repo/f0e4ca54-857b-4f68-ab5f-0d8c472e6c92/0/78578588503A7F091F1D7CD7B16BDC9E55055889.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/78578588503A7F091F1D7CD7B16BDC9E55055889.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:5c:0e:5d:cc:1f:23:2a:4a:3b:ba:9e:75:7d:4e:2e:43:05:74:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=78578588503A7F091F1D7CD7B16BDC9E55055889 Validity Not Before: Oct 31 02:57:56 2024 GMT Not After : Oct 30 03:02:56 2025 GMT Subject: CN=FA663A7DD218E55AC92699F11A825669F379CD18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:bd:03:59:52:37:1f:38:23:6b:31:bb:b5:9e: 6e:55:4c:59:f7:76:b1:f0:8e:40:56:4c:42:7e:c8: 9e:9f:a7:66:fb:92:2a:f0:1b:6f:c3:b8:e6:a9:d5: 5f:af:9c:9c:38:93:61:ad:1f:ba:f8:2a:bd:7f:e0: 41:36:53:e2:65:3b:18:2e:28:53:83:7a:58:ef:10: 80:24:5a:69:64:9c:53:e3:b6:ed:db:2d:ad:cd:0f: 4d:ec:aa:b8:61:21:a8:76:ab:6c:b9:aa:a5:9c:11: 6e:1e:86:08:85:21:54:a7:2f:2a:c7:a9:41:48:f7: e2:5a:52:88:a4:03:c9:1d:fd:cb:64:e1:a2:e9:b4: 78:c3:6a:1e:62:31:a8:8c:1c:f1:9b:7c:c8:2b:c8: 58:9e:5c:6d:31:22:b1:6d:9c:73:b2:d8:8d:8d:13: f7:e4:16:1f:bb:9c:8c:c5:c3:bd:8c:86:50:60:31: 92:b3:92:ec:56:c0:9e:76:dc:a1:58:ce:df:6e:a0: f9:1f:c5:a4:b7:70:a7:c2:bc:f3:f4:03:bb:80:b5: 4c:67:e8:2c:07:8e:e8:bc:9e:d1:d2:8d:09:70:ba: 53:35:05:97:0a:a1:9b:8a:aa:ec:15:29:66:55:eb: 84:c0:40:99:7a:27:ec:97:58:af:f9:de:a7:b3:4b: 92:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:66:3A:7D:D2:18:E5:5A:C9:26:99:F1:1A:82:56:69:F3:79:CD:18 X509v3 Authority Key Identifier: keyid:78:57:85:88:50:3A:7F:09:1F:1D:7C:D7:B1:6B:DC:9E:55:05:58:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f0e4ca54-857b-4f68-ab5f-0d8c472e6c92/0/78578588503A7F091F1D7CD7B16BDC9E55055889.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/78578588503A7F091F1D7CD7B16BDC9E55055889.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f0e4ca54-857b-4f68-ab5f-0d8c472e6c92/0/323030313a6466353a333930303a3a2f34382d3438203d3e203138333531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df5:3900::/48 Signature Algorithm: sha256WithRSAEncryption 61:b2:8d:80:d9:c5:f6:a7:1c:97:58:05:ec:9b:e0:aa:17:a2: 30:a2:6b:9d:8b:26:0b:a1:87:b4:33:df:f9:08:31:4d:8d:6f: e0:2c:20:99:a4:7e:96:c2:1b:ae:96:7c:04:f2:8d:79:e5:45: 47:0c:ac:0b:61:5b:5f:67:77:94:6b:64:21:fa:7a:36:97:69: 22:ea:fb:70:fd:80:a1:24:a1:0c:ac:55:0f:3e:64:42:5e:5c: 7b:83:9a:8a:73:63:f5:74:42:53:2d:54:bb:4f:78:0b:32:17: a5:b2:3b:f8:cf:77:4a:19:b9:f0:a1:61:fc:f5:21:2f:5d:84: 0a:70:d6:49:09:69:59:f9:99:dd:62:44:17:a8:cd:ef:fc:9a: 53:cb:a8:56:6a:44:59:54:b9:c1:e1:47:e3:ca:c9:24:72:6e: e8:70:18:75:fe:a0:40:b8:9f:82:81:73:5f:db:e2:d5:ca:af: ed:19:6e:05:7b:44:46:51:3d:0e:6e:b6:8b:de:1a:60:05:07: fa:5f:08:91:bd:97:76:d3:ad:12:d6:37:1b:bd:0e:32:b9:39: 68:cb:67:8f:5a:6c:9c:87:a0:8e:16:91:66:91:a1:6c:3d:39: e5:6c:fa:2f:39:a7:cc:9e:64:45:1b:cf:b5:11:35:05:cf:67: 3f:43:98:20 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUXFwOXcwfIypKO7qedX1OLkMFdNkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzg1Nzg1ODg1MDNBN0YwOTFGMUQ3Q0Q3QjE2QkRDOUU1 NTA1NTg4OTAeFw0yNDEwMzEwMjU3NTZaFw0yNTEwMzAwMzAyNTZaMDMxMTAvBgNV BAMTKEZBNjYzQTdERDIxOEU1NUFDOTI2OTlGMTFBODI1NjY5RjM3OUNEMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIvQNZUjcfOCNrMbu1nm5VTFn3 drHwjkBWTEJ+yJ6fp2b7kirwG2/DuOap1V+vnJw4k2GtH7r4Kr1/4EE2U+JlOxgu KFODeljvEIAkWmlknFPjtu3bLa3ND03sqrhhIah2q2y5qqWcEW4ehgiFIVSnLyrH qUFI9+JaUoikA8kd/ctk4aLptHjDah5iMaiMHPGbfMgryFieXG0xIrFtnHOy2I2N E/fkFh+7nIzFw72MhlBgMZKzkuxWwJ523KFYzt9uoPkfxaS3cKfCvPP0A7uAtUxn 6CwHjui8ntHSjQlwulM1BZcKoZuKquwVKWZV64TAQJl6J+yXWK/53qezS5IVAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU+mY6fdIY5VrJJpnxGoJWafN5zRgwHwYDVR0j BBgwFoAUeFeFiFA6fwkfHXzXsWvcnlUFWIkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MGU0Y2E1NC04NTdiLTRmNjgtYWI1Zi0wZDhjNDcyZTZjOTIvMC83ODU3ODU4ODUw M0E3RjA5MUYxRDdDRDdCMTZCREM5RTU1MDU1ODg5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzg1Nzg1ODg1MDNBN0YwOTFGMUQ3Q0Q3QjE2QkRDOUU1NTA1 NTg4OS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YwZTRjYTU0LTg1N2ItNGY2OC1h YjVmLTBkOGM0NzJlNmM5Mi8wLzMyMzAzMDMxM2E2NDY2MzUzYTMzMzkzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzODMzMzUzMS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfU5 ADANBgkqhkiG9w0BAQsFAAOCAQEAYbKNgNnF9qccl1gF7JvgqheiMKJrnYsmC6GH tDPf+QgxTY1v4CwgmaR+lsIbrpZ8BPKNeeVFRwysC2FbX2d3lGtkIfp6NpdpIur7 cP2AoSShDKxVDz5kQl5ce4OainNj9XRCUy1Uu094CzIXpbI7+M93Shm58KFh/PUh L12ECnDWSQlpWfmZ3WJEF6jN7/yaU8uoVmpEWVS5weFH48rJJHJu6HAYdf6gQLif goFzX9vi1cqv7RluBXtERlE9Dm62i94aYAUH+l8Ikb2XdtOtEtY3G70OMrk5aMtn j1psnIegjhaRZpGhbD055Wz6LzmnzJ5kRRvPtRE1Bc9nP0OYIA== -----END CERTIFICATE-----Generated at Fri Nov 22 22:21:00 2024 by rpki-client on console-fra.rpki-client.org