$ rpki-client -vvf repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/323030313a6466363a616330303a3a2f34382d3438203d3e203538343034.roa File: 323030313a6466363a616330303a3a2f34382d3438203d3e203538343034.roa (raw, json) Hash identifier: HvvkfODWlbpCPVaGpltaWkLF8YbtBVvjE+DIED0bI6g= Subject key identifier: C8:17:D8:FE:BE:74:41:67:1D:24:DC:2B:44:E6:1B:60:15:C2:C4:4A Certificate issuer: /CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Certificate serial: 7B38BBFDB71B6A97246DE9E1137FEFB2A6C025E8 Authority key identifier: 52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/323030313a6466363a616330303a3a2f34382d3438203d3e203538343034.roa Signing time: Wed 10 Jul 2024 10:00:02 +0000 ROA not before: Wed 10 Jul 2024 09:55:02 +0000 ROA not after: Wed 09 Jul 2025 10:00:02 +0000 asID: 58404 IP address blocks: 2001:df6:ac00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:38:bb:fd:b7:1b:6a:97:24:6d:e9:e1:13:7f:ef:b2:a6:c0:25:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Validity Not Before: Jul 10 09:55:02 2024 GMT Not After : Jul 9 10:00:02 2025 GMT Subject: CN=C817D8FEBE7441671D24DC2B44E61B6015C2C44A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f6:93:96:e0:bb:cd:2d:43:52:e3:36:6d:3a: 47:a5:d1:82:75:86:4f:12:a8:a1:a7:38:09:4d:4c: 5c:be:78:4e:08:54:16:e1:2d:1d:b7:c5:27:60:30: eb:ec:05:47:d2:6d:f8:f2:06:3d:19:42:ba:f2:9d: 59:59:ff:68:f3:d5:4e:f1:05:19:66:4a:a6:d7:0e: 20:bc:87:15:e9:ca:a5:33:37:7c:9d:9e:99:e1:95: f0:43:99:ad:d8:69:61:dc:9d:e6:81:57:f8:d2:98: 7c:2b:6b:c3:37:b4:a7:90:cd:fc:0c:6d:e8:d2:9d: 63:0d:62:70:3c:2c:a8:8c:38:bb:52:26:fb:59:89: f9:63:fa:cc:1e:de:fd:7e:09:ec:71:1c:06:03:b2: 35:72:c2:2a:bc:3f:40:cd:21:2e:21:bd:9e:58:d3: a2:3f:06:12:f2:d7:a3:85:03:27:e0:5f:b3:b0:b1: a9:56:41:6d:b3:b2:59:93:c3:da:61:9d:bf:cd:cb: 91:70:78:19:9a:b6:25:56:00:83:99:bf:cf:59:d3: 4a:bf:12:17:4d:eb:b5:74:85:9e:4a:2a:80:8c:1c: ab:0c:ba:82:19:15:78:bf:43:26:62:69:bb:65:9d: cd:9e:dd:67:5a:ba:fd:8e:e8:89:99:75:f3:3e:ec: e2:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:17:D8:FE:BE:74:41:67:1D:24:DC:2B:44:E6:1B:60:15:C2:C4:4A X509v3 Authority Key Identifier: keyid:52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/323030313a6466363a616330303a3a2f34382d3438203d3e203538343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:ac00::/48 Signature Algorithm: sha256WithRSAEncryption 5b:a3:44:91:4e:37:ee:05:b8:0a:c3:33:18:58:e8:03:61:f8: 41:d7:c0:b7:17:67:75:a8:cb:58:25:44:4f:4a:e6:e0:35:8f: e3:ce:93:e7:d4:5a:1f:19:f5:58:5d:24:c4:1f:31:78:6d:65: f2:52:83:12:05:bb:78:71:ba:fc:0b:8c:be:37:81:8f:cd:a5: 84:c4:87:1d:49:a0:03:93:fc:c2:c6:7c:b0:6b:69:1e:31:28: 2f:c6:7a:ca:ff:1d:1f:3f:f8:75:54:9a:28:db:b6:e3:e1:05: da:5d:4e:d2:71:84:ff:ae:4d:40:fe:c5:a7:b9:aa:9c:81:93: c8:a4:be:eb:4a:c4:19:b3:f8:87:37:98:1c:42:81:38:72:48: 0c:43:99:68:77:45:86:59:86:c7:87:66:76:91:98:3b:b2:c8: 60:76:f2:30:c6:01:51:e9:2b:1c:5b:b3:89:64:97:ed:fd:33: 01:e4:e3:79:4d:be:ff:05:0a:a5:96:65:bc:c6:28:3f:60:50: 67:b5:5a:78:ce:e6:ab:37:b5:75:c6:fa:55:e2:e7:04:9f:22: 38:bf:84:48:6e:d5:0d:1b:d0:57:63:c4:59:eb:5b:ed:3b:6d: 51:4f:77:16:77:72:b3:ef:b9:85:48:7a:23:77:da:1f:41:f2: 9d:1b:b5:f0 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUezi7/bcbapckbenhE3/vsqbAJegwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQz QTBFRDVCQjAeFw0yNDA3MTAwOTU1MDJaFw0yNTA3MDkxMDAwMDJaMDMxMTAvBgNV BAMTKEM4MTdEOEZFQkU3NDQxNjcxRDI0REMyQjQ0RTYxQjYwMTVDMkM0NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+9pOW4LvNLUNS4zZtOkel0YJ1 hk8SqKGnOAlNTFy+eE4IVBbhLR23xSdgMOvsBUfSbfjyBj0ZQrrynVlZ/2jz1U7x BRlmSqbXDiC8hxXpyqUzN3ydnpnhlfBDma3YaWHcneaBV/jSmHwra8M3tKeQzfwM bejSnWMNYnA8LKiMOLtSJvtZiflj+swe3v1+CexxHAYDsjVywiq8P0DNIS4hvZ5Y 06I/BhLy16OFAyfgX7OwsalWQW2zslmTw9phnb/Ny5FweBmatiVWAIOZv89Z00q/ EhdN67V0hZ5KKoCMHKsMuoIZFXi/QyZiabtlnc2e3Wdauv2O6ImZdfM+7OI7AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUyBfY/r50QWcdJNwrROYbYBXCxEowHwYDVR0j BBgwFoAUUop5npS9UFL29YrP3Z9N7ToO1bswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OThmMTljMy1lNGUxLTQxYTEtYWFmMC1kNjEzYWNhNDkzMGMvMC81MjhBNzk5RTk0 QkQ1MDUyRjZGNThBQ0ZERDlGNERFRDNBMEVENUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQzQTBF RDVCQi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5OGYxOWMzLWU0ZTEtNDFhMS1h YWYwLWQ2MTNhY2E0OTMwYy8wLzMyMzAzMDMxM2E2NDY2MzYzYTYxNjMzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzODM0MzAzNC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfas ADANBgkqhkiG9w0BAQsFAAOCAQEAW6NEkU437gW4CsMzGFjoA2H4QdfAtxdndajL WCVET0rm4DWP486T59RaHxn1WF0kxB8xeG1l8lKDEgW7eHG6/AuMvjeBj82lhMSH HUmgA5P8wsZ8sGtpHjEoL8Z6yv8dHz/4dVSaKNu24+EF2l1O0nGE/65NQP7Fp7mq nIGTyKS+60rEGbP4hzeYHEKBOHJIDEOZaHdFhlmGx4dmdpGYO7LIYHbyMMYBUekr HFuziWSX7f0zAeTjeU2+/wUKpZZlvMYoP2BQZ7VaeM7mqze1dcb6VeLnBJ8iOL+E SG7VDRvQV2PEWetb7TttUU93Fndys++5hUh6I3faH0HynRu18A== -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:03 2024 by rpki-client on console-fra.rpki-client.org