$ rpki-client -vvf repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/323030313a6466303a666230303a3a2f34382d3438203d3e20313336313035.roa File: 323030313a6466303a666230303a3a2f34382d3438203d3e20313336313035.roa (raw, json) Hash identifier: +wADgBbGHlnAaJF9ne9rrntz6G0qBIbnlfj6NpTrwJg= Subject key identifier: 67:32:3F:29:7A:A5:D5:5D:0A:85:15:BC:A7:89:D9:E7:56:E4:A0:0F Certificate issuer: /CN=CE0CD1353A42A0A99EE768F3FAF235E38F6C1189 Certificate serial: 48C5DB9BD5490FCF78C3A7E19DF5DD04EE1868EE Authority key identifier: CE:0C:D1:35:3A:42:A0:A9:9E:E7:68:F3:FA:F2:35:E3:8F:6C:11:89 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE0CD1353A42A0A99EE768F3FAF235E38F6C1189.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/323030313a6466303a666230303a3a2f34382d3438203d3e20313336313035.roa Signing time: Mon 01 Jul 2024 01:04:16 +0000 ROA not before: Mon 01 Jul 2024 00:59:16 +0000 ROA not after: Mon 30 Jun 2025 01:04:16 +0000 asID: 136105 IP address blocks: 2001:df0:fb00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/CE0CD1353A42A0A99EE768F3FAF235E38F6C1189.crl rsync://repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/CE0CD1353A42A0A99EE768F3FAF235E38F6C1189.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE0CD1353A42A0A99EE768F3FAF235E38F6C1189.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:c5:db:9b:d5:49:0f:cf:78:c3:a7:e1:9d:f5:dd:04:ee:18:68:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE0CD1353A42A0A99EE768F3FAF235E38F6C1189 Validity Not Before: Jul 1 00:59:16 2024 GMT Not After : Jun 30 01:04:16 2025 GMT Subject: CN=67323F297AA5D55D0A8515BCA789D9E756E4A00F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:24:5e:0f:27:95:ba:32:9c:93:a6:4d:82:e9: 94:39:b7:26:22:a9:b1:4f:e7:e2:3e:b4:74:41:12: 57:72:f6:67:52:d0:f5:ea:5f:0a:2c:8b:d8:b2:28: 7e:39:a4:c0:c2:fd:fe:dd:25:ab:a3:0b:a3:23:5b: 3a:3e:77:50:b8:4b:54:e6:df:60:80:f9:20:c0:b1: 8c:75:28:7b:97:11:1b:b0:fd:a8:3a:f4:8c:dc:fb: 6e:b4:1d:e3:c5:8d:36:20:ef:44:30:ab:6b:f0:1a: 8f:77:fa:f5:01:84:9c:ca:7c:82:27:e4:d1:a0:44: 54:23:d3:ef:0f:9c:9b:1e:70:48:94:15:39:ce:99: 1c:92:33:5c:39:b2:bd:d7:d4:2d:de:7c:b3:9c:61: ff:ad:5a:66:ab:f4:48:69:78:49:11:b6:03:83:5f: e1:4b:79:6f:7e:3e:ac:7c:50:3d:2f:44:f1:dd:c2: ce:d5:ce:5e:74:b6:df:69:64:59:9d:78:23:52:4a: 1f:1e:05:7b:63:44:e2:5b:2e:39:2f:11:6f:8d:f7: 7a:1d:dd:ee:46:bd:d4:8a:56:29:64:28:67:ce:66: d6:2c:7b:97:02:35:b9:f5:c8:22:c8:ee:2a:d7:46: d6:0e:3d:62:c0:c1:03:49:50:25:a7:4b:1c:11:bc: 4f:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:32:3F:29:7A:A5:D5:5D:0A:85:15:BC:A7:89:D9:E7:56:E4:A0:0F X509v3 Authority Key Identifier: keyid:CE:0C:D1:35:3A:42:A0:A9:9E:E7:68:F3:FA:F2:35:E3:8F:6C:11:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/CE0CD1353A42A0A99EE768F3FAF235E38F6C1189.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE0CD1353A42A0A99EE768F3FAF235E38F6C1189.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/323030313a6466303a666230303a3a2f34382d3438203d3e20313336313035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:fb00::/48 Signature Algorithm: sha256WithRSAEncryption 19:0f:80:10:83:fb:2e:59:b0:43:52:a7:5b:93:7e:1a:03:1b: a0:4c:dc:24:7f:06:71:e6:21:95:b1:41:6f:6c:47:bb:42:00: 55:d4:4c:8c:31:70:e5:32:d0:8a:77:f2:cc:a6:fb:24:ee:3a: bd:60:45:9b:07:e4:08:0b:a9:58:73:88:39:e5:d8:bf:db:de: 9b:59:49:63:54:75:b0:75:1c:dd:c0:ab:38:37:0a:70:08:53: c6:91:9e:da:b4:f0:5a:a6:3a:8f:e1:41:ed:3f:30:f3:96:ab: b6:6b:d1:a1:7c:c2:8f:63:ae:3b:88:2b:73:2a:5c:48:9f:69: b3:53:8f:c6:5a:92:df:47:96:1e:4a:1f:b6:17:45:73:1d:1c: 29:3e:6b:89:e5:74:6e:d7:b1:41:02:53:95:dd:52:c1:2d:e9: 9a:f8:da:d4:b4:8f:6b:df:9e:bb:af:56:73:ea:c2:37:f5:84: 78:0e:28:66:86:fe:62:4d:89:fb:e9:a5:7f:76:a1:f5:80:33: f6:68:19:07:12:f9:79:e1:5a:e7:88:81:0e:c3:c2:8b:f8:0b: e2:e4:d3:20:f2:81:d1:9c:da:87:c2:cf:14:bf:58:cd:cd:a7: a7:c8:a3:57:fb:13:15:fc:80:b3:4e:5c:57:3c:c8:f2:ef:e9: fc:01:a2:96 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUSMXbm9VJD894w6fhnfXdBO4YaO4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0UwQ0QxMzUzQTQyQTBBOTlFRTc2OEYzRkFGMjM1RTM4 RjZDMTE4OTAeFw0yNDA3MDEwMDU5MTZaFw0yNTA2MzAwMTA0MTZaMDMxMTAvBgNV BAMTKDY3MzIzRjI5N0FBNUQ1NUQwQTg1MTVCQ0E3ODlEOUU3NTZFNEEwMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtJF4PJ5W6MpyTpk2C6ZQ5tyYi qbFP5+I+tHRBEldy9mdS0PXqXwosi9iyKH45pMDC/f7dJaujC6MjWzo+d1C4S1Tm 32CA+SDAsYx1KHuXERuw/ag69Izc+260HePFjTYg70Qwq2vwGo93+vUBhJzKfIIn 5NGgRFQj0+8PnJsecEiUFTnOmRySM1w5sr3X1C3efLOcYf+tWmar9EhpeEkRtgOD X+FLeW9+Pqx8UD0vRPHdws7Vzl50tt9pZFmdeCNSSh8eBXtjROJbLjkvEW+N93od 3e5GvdSKVilkKGfOZtYse5cCNbn1yCLI7irXRtYOPWLAwQNJUCWnSxwRvE83AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUZzI/KXql1V0KhRW8p4nZ51bkoA8wHwYDVR0j BBgwFoAUzgzRNTpCoKme52jz+vI1449sEYkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzczYmM2MS1jNWY5LTQxNTktOThiYy1hMDUzMGI0ZGQ4YjQvMC9DRTBDRDEzNTNB NDJBMEE5OUVFNzY4RjNGQUYyMzVFMzhGNkMxMTg5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0UwQ0QxMzUzQTQyQTBBOTlFRTc2OEYzRkFGMjM1RTM4RjZD MTE4OS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNzNiYzYxLWM1ZjktNDE1OS05 OGJjLWEwNTMwYjRkZDhiNC8wLzMyMzAzMDMxM2E2NDY2MzAzYTY2NjIzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzEzMDM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8PsAMA0GCSqGSIb3DQEBCwUAA4IBAQAZD4AQg/suWbBDUqdbk34aAxugTNwkfwZx 5iGVsUFvbEe7QgBV1EyMMXDlMtCKd/LMpvsk7jq9YEWbB+QIC6lYc4g55di/296b WUljVHWwdRzdwKs4NwpwCFPGkZ7atPBapjqP4UHtPzDzlqu2a9GhfMKPY647iCtz KlxIn2mzU4/GWpLfR5YeSh+2F0VzHRwpPmuJ5XRu17FBAlOV3VLBLema+NrUtI9r 3567r1Zz6sI39YR4Dihmhv5iTYn76aV/dqH1gDP2aBkHEvl54VrniIEOw8KL+Avi 5NMg8oHRnNqHws8Uv1jNzaenyKNX+xMV/ICzTlxXPMjy7+n8AaKW -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:58 2024 by rpki-client on console-fra.rpki-client.org