$ rpki-client -vvf repo-rpki.idnic.net/repo/f8fca42f-836a-40ec-a76f-b604711f3364/0/323030313a6466343a353430303a3a2f34382d3438203d3e20313333383335.roa File: 323030313a6466343a353430303a3a2f34382d3438203d3e20313333383335.roa (raw, json) Hash identifier: VsyQXSiVMiwcm5yUroJ76knQx3U8ruXQ8DjfeYFUQB4= Subject key identifier: 50:1B:57:48:B9:51:36:C0:1D:9A:87:78:DE:1D:7E:5E:3C:1B:BD:93 Certificate issuer: /CN=BEA8C6D5F4B424A9EABFC2F68F71B0505B7E3641 Certificate serial: 5DF8828DEFF786BE092AAD91E8466877FF10E0B6 Authority key identifier: BE:A8:C6:D5:F4:B4:24:A9:EA:BF:C2:F6:8F:71:B0:50:5B:7E:36:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BEA8C6D5F4B424A9EABFC2F68F71B0505B7E3641.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f8fca42f-836a-40ec-a76f-b604711f3364/0/323030313a6466343a353430303a3a2f34382d3438203d3e20313333383335.roa Signing time: Tue 18 Jun 2024 20:21:51 +0000 ROA not before: Tue 18 Jun 2024 20:16:51 +0000 ROA not after: Tue 17 Jun 2025 20:21:51 +0000 asID: 133835 IP address blocks: 2001:df4:5400::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f8fca42f-836a-40ec-a76f-b604711f3364/0/BEA8C6D5F4B424A9EABFC2F68F71B0505B7E3641.crl rsync://repo-rpki.idnic.net/repo/f8fca42f-836a-40ec-a76f-b604711f3364/0/BEA8C6D5F4B424A9EABFC2F68F71B0505B7E3641.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BEA8C6D5F4B424A9EABFC2F68F71B0505B7E3641.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:f8:82:8d:ef:f7:86:be:09:2a:ad:91:e8:46:68:77:ff:10:e0:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BEA8C6D5F4B424A9EABFC2F68F71B0505B7E3641 Validity Not Before: Jun 18 20:16:51 2024 GMT Not After : Jun 17 20:21:51 2025 GMT Subject: CN=501B5748B95136C01D9A8778DE1D7E5E3C1BBD93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:91:07:d5:bf:35:25:74:0e:26:13:cb:28:09: 2d:ce:a2:d8:e5:37:a5:0f:7e:e2:65:22:51:bf:b9: 30:91:f2:9a:fc:76:27:5b:30:cc:4c:a6:c3:a4:15: a8:4c:d4:14:ec:41:ba:2b:9c:12:0f:5e:df:80:63: 35:34:a2:2d:b2:a0:f0:18:d4:60:7d:d2:f2:91:11: 5f:5a:97:44:1e:5d:43:11:4c:5f:b9:d0:58:8e:b4: 02:0b:51:1b:13:2f:76:9b:5e:34:37:fb:92:1c:a5: 58:14:5f:81:ce:89:35:43:8c:27:39:9a:ce:4e:bd: c5:7d:91:1c:b3:dc:34:a6:5a:40:9c:d1:b5:9d:e1: 0c:93:c4:77:bf:a9:ef:8c:96:8b:27:e1:d9:69:21: 0c:00:d6:de:0d:0d:96:9f:b4:d5:f4:70:cb:e6:ad: d7:2b:71:f9:6d:22:ce:45:c1:9c:00:0b:7a:de:5f: 39:8d:a7:1b:64:9a:5d:5c:45:5d:4d:16:86:90:1b: c9:2c:1d:fe:f4:e2:b8:f0:a6:7e:7e:a3:40:3a:95: 3c:3f:04:82:ed:d5:fd:bb:b7:66:f8:4a:23:10:b6: 5f:5b:d7:c9:c6:14:23:11:0e:6f:5c:c0:94:d5:a0: 4a:f0:81:63:84:da:c6:ab:ce:aa:65:89:ce:03:e8: b8:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:1B:57:48:B9:51:36:C0:1D:9A:87:78:DE:1D:7E:5E:3C:1B:BD:93 X509v3 Authority Key Identifier: keyid:BE:A8:C6:D5:F4:B4:24:A9:EA:BF:C2:F6:8F:71:B0:50:5B:7E:36:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f8fca42f-836a-40ec-a76f-b604711f3364/0/BEA8C6D5F4B424A9EABFC2F68F71B0505B7E3641.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BEA8C6D5F4B424A9EABFC2F68F71B0505B7E3641.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f8fca42f-836a-40ec-a76f-b604711f3364/0/323030313a6466343a353430303a3a2f34382d3438203d3e20313333383335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:5400::/48 Signature Algorithm: sha256WithRSAEncryption 50:8e:8a:e8:85:77:f6:a7:8a:9b:cb:1e:b9:31:d9:66:fa:2e: c9:92:c1:d4:ed:f6:5b:68:86:f6:22:e8:aa:14:77:a4:c4:af: 43:3b:fd:37:ff:e5:83:8f:0f:76:74:ef:3f:ce:f7:28:1c:7e: 5d:6e:95:b8:5e:be:b8:07:c8:70:d9:02:d9:2e:f7:cc:8c:99: db:36:87:5f:02:19:46:83:2a:9b:ed:bd:aa:7a:81:53:c0:7d: 43:a1:ad:50:6d:7c:60:f4:34:04:1d:50:52:de:09:20:a4:f7: d4:d8:61:a3:5b:1a:a5:ac:1b:1a:e6:77:66:35:1c:34:ef:1a: 7c:f7:4f:d2:f7:1f:f2:7a:c3:3d:83:21:dd:fb:ed:68:a7:7e: 8c:13:9d:36:b0:af:7a:71:eb:72:31:bc:3d:74:33:29:f6:0a: 08:d0:9e:d0:c2:4d:a0:01:05:8e:22:3e:2c:2e:29:22:d6:c9: 2a:2e:54:80:43:9f:21:31:41:54:41:f0:cf:bb:62:bb:ac:34: 59:19:17:cd:b9:09:43:61:bc:1c:28:71:c1:98:43:65:66:cb: cd:60:62:2b:60:4f:d6:ff:76:f6:6b:22:50:6d:d8:d6:c7:90: cd:72:0e:77:17:07:1d:77:22:90:1c:8a:1d:89:25:60:ea:80: eb:aa:93:64 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUXfiCje/3hr4JKq2R6EZod/8Q4LYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkVBOEM2RDVGNEI0MjRBOUVBQkZDMkY2OEY3MUIwNTA1 QjdFMzY0MTAeFw0yNDA2MTgyMDE2NTFaFw0yNTA2MTcyMDIxNTFaMDMxMTAvBgNV BAMTKDUwMUI1NzQ4Qjk1MTM2QzAxRDlBODc3OERFMUQ3RTVFM0MxQkJEOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqkQfVvzUldA4mE8soCS3Ootjl N6UPfuJlIlG/uTCR8pr8didbMMxMpsOkFahM1BTsQbornBIPXt+AYzU0oi2yoPAY 1GB90vKREV9al0QeXUMRTF+50FiOtAILURsTL3abXjQ3+5IcpVgUX4HOiTVDjCc5 ms5OvcV9kRyz3DSmWkCc0bWd4QyTxHe/qe+Mlosn4dlpIQwA1t4NDZaftNX0cMvm rdcrcfltIs5FwZwAC3reXzmNpxtkml1cRV1NFoaQG8ksHf704rjwpn5+o0A6lTw/ BILt1f27t2b4SiMQtl9b18nGFCMRDm9cwJTVoErwgWOE2sarzqplic4D6LiDAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUUBtXSLlRNsAdmod43h1+XjwbvZMwHwYDVR0j BBgwFoAUvqjG1fS0JKnqv8L2j3GwUFt+NkEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OGZjYTQyZi04MzZhLTQwZWMtYTc2Zi1iNjA0NzExZjMzNjQvMC9CRUE4QzZENUY0 QjQyNEE5RUFCRkMyRjY4RjcxQjA1MDVCN0UzNjQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkVBOEM2RDVGNEI0MjRBOUVBQkZDMkY2OEY3MUIwNTA1QjdF MzY0MS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y4ZmNhNDJmLTgzNmEtNDBlYy1h NzZmLWI2MDQ3MTFmMzM2NC8wLzMyMzAzMDMxM2E2NDY2MzQzYTM1MzQzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMzMzgzMzM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9FQAMA0GCSqGSIb3DQEBCwUAA4IBAQBQjorohXf2p4qbyx65Mdlm+i7JksHU7fZb aIb2IuiqFHekxK9DO/03/+WDjw92dO8/zvcoHH5dbpW4Xr64B8hw2QLZLvfMjJnb NodfAhlGgyqb7b2qeoFTwH1Doa1QbXxg9DQEHVBS3gkgpPfU2GGjWxqlrBsa5ndm NRw07xp890/S9x/yesM9gyHd++1op36ME502sK96cetyMbw9dDMp9goI0J7Qwk2g AQWOIj4sLiki1skqLlSAQ58hMUFUQfDPu2K7rDRZGRfNuQlDYbwcKHHBmENlZsvN YGIrYE/W/3b2ayJQbdjWx5DNcg53FwcddyKQHIodiSVg6oDrqpNk -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:03 2024 by rpki-client on console-fra.rpki-client.org