$ rpki-client -vvf repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/323030313a6466313a316263303a3a2f34382d3438203d3e20313431393339.roa File: 323030313a6466313a316263303a3a2f34382d3438203d3e20313431393339.roa (raw, json) Hash identifier: 7sEaXq5J0k7o+6aixvbPc/tcT7LYiqm7IslpQ0Vezhk= Subject key identifier: 5D:71:EC:D9:F5:D8:D0:12:B1:E9:9F:43:00:41:60:02:6C:C3:F2:95 Certificate issuer: /CN=8659BE8500DEBB314448F1412FA1E264025A4148 Certificate serial: 7F7A9120648FE69DFA65F715EB167C2E93693C2A Authority key identifier: 86:59:BE:85:00:DE:BB:31:44:48:F1:41:2F:A1:E2:64:02:5A:41:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8659BE8500DEBB314448F1412FA1E264025A4148.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/323030313a6466313a316263303a3a2f34382d3438203d3e20313431393339.roa Signing time: Wed 11 Sep 2024 05:00:01 +0000 ROA not before: Wed 11 Sep 2024 04:55:01 +0000 ROA not after: Wed 10 Sep 2025 05:00:01 +0000 asID: 141939 IP address blocks: 2001:df1:1bc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.crl rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8659BE8500DEBB314448F1412FA1E264025A4148.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:30:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:7a:91:20:64:8f:e6:9d:fa:65:f7:15:eb:16:7c:2e:93:69:3c:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8659BE8500DEBB314448F1412FA1E264025A4148 Validity Not Before: Sep 11 04:55:01 2024 GMT Not After : Sep 10 05:00:01 2025 GMT Subject: CN=5D71ECD9F5D8D012B1E99F43004160026CC3F295 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:64:66:6b:63:88:aa:a6:c5:87:c0:1e:ec:72: 92:e7:0f:0b:1a:69:30:6c:0f:77:79:5d:de:51:5b: b3:da:bf:c5:fd:8f:2f:32:65:cb:72:0f:42:40:87: e9:d0:6d:e9:a2:39:47:02:df:1f:da:2e:19:97:63: 48:9c:e8:ac:61:cb:16:65:a6:60:3c:43:8e:cf:b0: 1c:93:59:cf:5f:84:dc:26:58:fa:ff:33:42:ef:fe: 04:d3:a6:60:c7:5d:45:58:8c:6b:0a:b6:6a:ca:bc: f4:0c:b2:57:59:95:ff:52:bc:54:cc:04:dd:52:87: be:2c:9a:94:21:8f:58:ca:fb:15:6a:8e:57:17:46: 45:d5:b2:ea:5a:db:77:84:4d:0c:25:0e:47:94:7c: 15:28:6c:39:82:7e:31:c3:58:96:17:d2:91:60:7e: f4:9e:48:2a:08:68:ba:13:e6:4a:d4:83:df:3f:94: 7b:5b:43:f7:26:e5:30:0a:26:4a:0c:02:f7:1f:88: 7e:25:2e:f9:12:c2:c3:64:6b:90:09:5d:09:f7:af: 8d:45:14:85:4a:23:8c:b6:ef:80:7a:81:a7:4f:a7: 0d:45:8d:9a:58:04:0a:c4:68:b5:86:ca:a0:8b:6d: 91:6f:1d:08:7e:08:16:10:00:39:60:33:ce:9c:af: cc:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:71:EC:D9:F5:D8:D0:12:B1:E9:9F:43:00:41:60:02:6C:C3:F2:95 X509v3 Authority Key Identifier: keyid:86:59:BE:85:00:DE:BB:31:44:48:F1:41:2F:A1:E2:64:02:5A:41:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8659BE8500DEBB314448F1412FA1E264025A4148.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/323030313a6466313a316263303a3a2f34382d3438203d3e20313431393339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:1bc0::/48 Signature Algorithm: sha256WithRSAEncryption b5:7a:3d:22:48:da:f6:64:d8:f6:2f:54:f3:2d:e5:94:61:e5: cd:a9:42:62:e5:73:02:d4:b8:07:ff:77:38:c2:76:cb:85:a6: 3b:ad:e0:27:98:d3:a6:63:4e:dc:e3:71:cc:cb:a0:a8:9b:1d: 32:aa:b0:78:b3:aa:70:c6:bc:9f:db:39:7e:60:f2:04:0c:ff: 64:d4:a3:f5:bf:a2:46:fa:ff:e3:97:36:e8:63:d3:e1:ee:6f: 70:d5:44:7d:0c:79:75:0a:56:26:91:f6:b7:84:70:84:d3:86: 00:bb:56:a6:92:78:47:c2:89:8f:6c:a5:d2:5c:f8:31:3c:4d: 37:ef:68:72:48:75:b0:26:68:7a:ef:da:1c:bd:11:37:87:c0: 8a:0c:6b:da:3c:a5:54:1e:f7:9c:e2:68:c8:df:d3:03:55:7c: 2a:4a:a3:92:fa:61:83:a1:f7:f8:94:44:98:8f:1c:1b:d7:75: 25:11:f2:20:b0:db:15:fb:3d:50:5c:6b:2c:e3:07:ac:73:d3: 3b:c6:35:5f:eb:71:93:24:93:9f:40:dc:25:56:e4:6d:65:74: ec:af:38:89:ac:34:62:80:6e:2c:14:82:11:2d:37:55:e2:d6: 26:9a:cf:00:f9:90:a9:40:83:bd:04:75:e6:50:52:cb:90:1f: 62:99:3c:32 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUf3qRIGSP5p36ZfcV6xZ8LpNpPCowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODY1OUJFODUwMERFQkIzMTQ0NDhGMTQxMkZBMUUyNjQw MjVBNDE0ODAeFw0yNDA5MTEwNDU1MDFaFw0yNTA5MTAwNTAwMDFaMDMxMTAvBgNV BAMTKDVENzFFQ0Q5RjVEOEQwMTJCMUU5OUY0MzAwNDE2MDAyNkNDM0YyOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNZGZrY4iqpsWHwB7scpLnDwsa aTBsD3d5Xd5RW7Pav8X9jy8yZctyD0JAh+nQbemiOUcC3x/aLhmXY0ic6KxhyxZl pmA8Q47PsByTWc9fhNwmWPr/M0Lv/gTTpmDHXUVYjGsKtmrKvPQMsldZlf9SvFTM BN1Sh74smpQhj1jK+xVqjlcXRkXVsupa23eETQwlDkeUfBUobDmCfjHDWJYX0pFg fvSeSCoIaLoT5krUg98/lHtbQ/cm5TAKJkoMAvcfiH4lLvkSwsNka5AJXQn3r41F FIVKI4y274B6gadPpw1FjZpYBArEaLWGyqCLbZFvHQh+CBYQADlgM86cr8yJAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUXXHs2fXY0BKx6Z9DAEFgAmzD8pUwHwYDVR0j BBgwFoAUhlm+hQDeuzFESPFBL6HiZAJaQUgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YmE0OGU0ZS1mYzk1LTRhY2YtYmVhYy1kOTNhMGY2OTQ0MjEvMC84NjU5QkU4NTAw REVCQjMxNDQ0OEYxNDEyRkExRTI2NDAyNUE0MTQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODY1OUJFODUwMERFQkIzMTQ0NDhGMTQxMkZBMUUyNjQwMjVB NDE0OC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZiYTQ4ZTRlLWZjOTUtNGFjZi1i ZWFjLWQ5M2EwZjY5NDQyMS8wLzMyMzAzMDMxM2E2NDY2MzEzYTMxNjI2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMxMzkzMzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8RvAMA0GCSqGSIb3DQEBCwUAA4IBAQC1ej0iSNr2ZNj2L1TzLeWUYeXNqUJi5XMC 1LgH/3c4wnbLhaY7reAnmNOmY07c43HMy6Comx0yqrB4s6pwxryf2zl+YPIEDP9k 1KP1v6JG+v/jlzboY9Ph7m9w1UR9DHl1ClYmkfa3hHCE04YAu1amknhHwomPbKXS XPgxPE0372hySHWwJmh679ocvRE3h8CKDGvaPKVUHvec4mjI39MDVXwqSqOS+mGD off4lESYjxwb13UlEfIgsNsV+z1QXGss4wesc9M7xjVf63GTJJOfQNwlVuRtZXTs rziJrDRigG4sFIIRLTdV4tYmms8A+ZCpQIO9BHXmUFLLkB9imTwy -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:44 2024 by rpki-client on console-fra.rpki-client.org