$ rpki-client -vvf repo-rpki.idnic.net/repo/fae4cd96-cfc1-4577-ad3f-7983c0523c10/0/323030313a6466323a633638303a3a2f34382d3438203d3e20313339393830.roa File: 323030313a6466323a633638303a3a2f34382d3438203d3e20313339393830.roa (raw, json) Hash identifier: xjhpkhroZD/MLfxIHgr0W0iNRAD73tRrsROPDxi7mRk= Subject key identifier: 21:60:5C:C2:E6:D0:5E:4D:5A:26:C8:0B:61:B0:BB:D3:AB:F7:54:78 Certificate issuer: /CN=7C33921B29322EBAAC6645FC4B920923F5E49E1A Certificate serial: 3F0C05023AD4C85D0DA2A7A5A439DB85231195F9 Authority key identifier: 7C:33:92:1B:29:32:2E:BA:AC:66:45:FC:4B:92:09:23:F5:E4:9E:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7C33921B29322EBAAC6645FC4B920923F5E49E1A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fae4cd96-cfc1-4577-ad3f-7983c0523c10/0/323030313a6466323a633638303a3a2f34382d3438203d3e20313339393830.roa Signing time: Sat 30 Dec 2023 15:36:25 +0000 ROA not before: Sat 30 Dec 2023 15:31:25 +0000 ROA not after: Sat 28 Dec 2024 15:36:25 +0000 asID: 139980 IP address blocks: 2001:df2:c680::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fae4cd96-cfc1-4577-ad3f-7983c0523c10/0/7C33921B29322EBAAC6645FC4B920923F5E49E1A.crl rsync://repo-rpki.idnic.net/repo/fae4cd96-cfc1-4577-ad3f-7983c0523c10/0/7C33921B29322EBAAC6645FC4B920923F5E49E1A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7C33921B29322EBAAC6645FC4B920923F5E49E1A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 17:50:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:0c:05:02:3a:d4:c8:5d:0d:a2:a7:a5:a4:39:db:85:23:11:95:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7C33921B29322EBAAC6645FC4B920923F5E49E1A Validity Not Before: Dec 30 15:31:25 2023 GMT Not After : Dec 28 15:36:25 2024 GMT Subject: CN=21605CC2E6D05E4D5A26C80B61B0BBD3ABF75478 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:76:e6:e2:cf:2b:b9:c6:c1:cb:c5:d8:7e:74: c4:65:fe:67:2a:ac:c6:25:17:cb:a4:d3:ae:49:b2: cb:c1:f0:a6:28:e9:60:ff:3e:ca:3b:0e:ff:4d:37: 41:e7:e3:b1:31:5e:09:11:ae:17:c6:7e:54:c1:11: d6:9e:fe:fe:8b:f8:2c:2e:66:05:21:84:f0:06:f5: b9:e1:42:ec:0d:4c:09:79:13:7f:8c:1d:c2:a9:aa: f8:e1:d0:23:86:a5:b6:60:a0:c9:8a:bc:8f:3e:38: 4d:7b:d7:6a:b2:14:c2:95:04:2f:6e:98:af:8b:14: e6:cf:03:3a:59:a6:9f:89:ce:8b:41:86:d8:f9:95: 5e:35:c5:81:51:22:63:41:16:00:ab:68:c5:e1:99: 65:4b:98:62:f2:47:0e:5d:67:40:2b:3c:f4:30:d2: b8:f2:0b:5c:a6:b5:40:73:f7:2f:91:6c:19:b0:30: 6f:57:c5:0c:b2:a8:da:b4:b3:9d:3a:7c:8d:33:ab: 20:df:f6:35:46:58:2c:51:59:01:5c:74:4b:5b:ba: 89:c1:ca:8f:0b:d6:d1:54:16:2d:e4:e9:9c:e7:43: b4:3d:ee:18:54:e5:92:98:de:f6:32:79:b1:6c:64: a4:b3:88:22:94:1b:39:6d:33:e0:21:69:08:8e:17: d5:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:60:5C:C2:E6:D0:5E:4D:5A:26:C8:0B:61:B0:BB:D3:AB:F7:54:78 X509v3 Authority Key Identifier: keyid:7C:33:92:1B:29:32:2E:BA:AC:66:45:FC:4B:92:09:23:F5:E4:9E:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fae4cd96-cfc1-4577-ad3f-7983c0523c10/0/7C33921B29322EBAAC6645FC4B920923F5E49E1A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7C33921B29322EBAAC6645FC4B920923F5E49E1A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fae4cd96-cfc1-4577-ad3f-7983c0523c10/0/323030313a6466323a633638303a3a2f34382d3438203d3e20313339393830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:c680::/48 Signature Algorithm: sha256WithRSAEncryption 3e:ff:23:d9:a9:e1:ee:31:f0:b8:36:77:64:9b:08:88:8e:78: ea:61:63:a8:a5:0f:69:a7:a0:97:5a:d0:cf:86:67:e0:e2:e3: d9:d2:cd:ea:af:87:58:e2:9b:e6:6b:1c:46:4c:b3:1c:22:b9: 1d:ae:43:4f:5d:fb:91:67:f7:91:56:0b:1b:84:71:80:5f:2b: ec:46:4d:48:21:5b:65:79:16:d4:b2:75:69:8c:9a:40:f7:6d: ec:66:a1:6d:8c:c6:7e:97:dd:a9:49:fe:f4:91:8a:f1:3c:61: 53:08:a2:bb:3d:8a:9a:af:ba:3d:c5:15:59:6e:b9:af:52:09: 8a:8c:9e:b2:23:94:f9:85:91:83:54:73:ce:1b:7b:cb:68:3b: 02:88:b3:fe:e1:6b:fa:e3:ef:ef:95:64:64:94:3b:ef:77:53: 27:1f:f5:84:99:bb:95:75:41:97:ba:ed:25:55:a2:4c:8b:cf: 4b:24:a1:83:57:70:84:74:80:12:1d:9d:05:7f:55:f5:fc:ab: e9:ca:32:0c:bf:77:51:0d:0e:2d:f1:38:d8:08:d5:0e:5d:ed: 54:fb:8a:20:dc:0d:cb:ee:5e:64:c1:33:5f:2f:34:64:d4:3f: f5:e3:4a:ca:ef:79:5d:ec:e4:46:9c:77:1b:47:bb:e9:ee:f2: 19:76:25:eb -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUPwwFAjrUyF0NoqelpDnbhSMRlfkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0MzMzkyMUIyOTMyMkVCQUFDNjY0NUZDNEI5MjA5MjNG NUU0OUUxQTAeFw0yMzEyMzAxNTMxMjVaFw0yNDEyMjgxNTM2MjVaMDMxMTAvBgNV BAMTKDIxNjA1Q0MyRTZEMDVFNEQ1QTI2QzgwQjYxQjBCQkQzQUJGNzU0NzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkdubizyu5xsHLxdh+dMRl/mcq rMYlF8uk065JssvB8KYo6WD/Pso7Dv9NN0Hn47ExXgkRrhfGflTBEdae/v6L+Cwu ZgUhhPAG9bnhQuwNTAl5E3+MHcKpqvjh0COGpbZgoMmKvI8+OE1712qyFMKVBC9u mK+LFObPAzpZpp+JzotBhtj5lV41xYFRImNBFgCraMXhmWVLmGLyRw5dZ0ArPPQw 0rjyC1ymtUBz9y+RbBmwMG9XxQyyqNq0s506fI0zqyDf9jVGWCxRWQFcdEtbuonB yo8L1tFUFi3k6ZznQ7Q97hhU5ZKY3vYyebFsZKSziCKUGzltM+AhaQiOF9XhAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUIWBcwubQXk1aJsgLYbC706v3VHgwHwYDVR0j BBgwFoAUfDOSGykyLrqsZkX8S5IJI/XknhowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YWU0Y2Q5Ni1jZmMxLTQ1NzctYWQzZi03OTgzYzA1MjNjMTAvMC83QzMzOTIxQjI5 MzIyRUJBQUM2NjQ1RkM0QjkyMDkyM0Y1RTQ5RTFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0MzMzkyMUIyOTMyMkVCQUFDNjY0NUZDNEI5MjA5MjNGNUU0 OUUxQS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZhZTRjZDk2LWNmYzEtNDU3Ny1h ZDNmLTc5ODNjMDUyM2MxMC8wLzMyMzAzMDMxM2E2NDY2MzIzYTYzMzYzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzkzODMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8saAMA0GCSqGSIb3DQEBCwUAA4IBAQA+/yPZqeHuMfC4NndkmwiIjnjqYWOopQ9p p6CXWtDPhmfg4uPZ0s3qr4dY4pvmaxxGTLMcIrkdrkNPXfuRZ/eRVgsbhHGAXyvs Rk1IIVtleRbUsnVpjJpA923sZqFtjMZ+l92pSf70kYrxPGFTCKK7PYqar7o9xRVZ brmvUgmKjJ6yI5T5hZGDVHPOG3vLaDsCiLP+4Wv64+/vlWRklDvvd1MnH/WEmbuV dUGXuu0lVaJMi89LJKGDV3CEdIASHZ0Ff1X1/KvpyjIMv3dRDQ4t8TjYCNUOXe1U +4og3A3L7l5kwTNfLzRk1D/140rK73ld7ORGnHcbR7vp7vIZdiXr -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:44 2024 by rpki-client on console-fra.rpki-client.org