$ rpki-client -vvf repo-rpki.idnic.net/repo/d7d15d53-a4b4-4435-a1da-52d0212ef33d/0/323030313a6466333a313834303a3a2f34382d3438203d3e20313531353532.roa File: 323030313a6466333a313834303a3a2f34382d3438203d3e20313531353532.roa (raw, json) Hash identifier: rIhj01gl47y+6WyyYI1A3J5O5Pscfz/aWcAiKDZXs4g= Subject key identifier: BB:53:7D:3C:88:9A:D6:DF:4F:84:B3:86:7A:22:0D:85:10:DC:F4:DB Certificate issuer: /CN=9E6AD12E8763F68692055BC4EE5A1741D489D240 Certificate serial: 3FAF0A74F0D81171F957F21A31C9D921B582FDA0 Authority key identifier: 9E:6A:D1:2E:87:63:F6:86:92:05:5B:C4:EE:5A:17:41:D4:89:D2:40 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6AD12E8763F68692055BC4EE5A1741D489D240.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d7d15d53-a4b4-4435-a1da-52d0212ef33d/0/323030313a6466333a313834303a3a2f34382d3438203d3e20313531353532.roa Signing time: Mon 11 Nov 2024 05:00:02 +0000 ROA not before: Mon 11 Nov 2024 04:55:02 +0000 ROA not after: Mon 10 Nov 2025 05:00:02 +0000 asID: 151552 IP address blocks: 2001:df3:1840::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d7d15d53-a4b4-4435-a1da-52d0212ef33d/0/9E6AD12E8763F68692055BC4EE5A1741D489D240.crl rsync://repo-rpki.idnic.net/repo/d7d15d53-a4b4-4435-a1da-52d0212ef33d/0/9E6AD12E8763F68692055BC4EE5A1741D489D240.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6AD12E8763F68692055BC4EE5A1741D489D240.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:af:0a:74:f0:d8:11:71:f9:57:f2:1a:31:c9:d9:21:b5:82:fd:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E6AD12E8763F68692055BC4EE5A1741D489D240 Validity Not Before: Nov 11 04:55:02 2024 GMT Not After : Nov 10 05:00:02 2025 GMT Subject: CN=BB537D3C889AD6DF4F84B3867A220D8510DCF4DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f2:f7:fc:e8:1e:02:bb:b9:22:b5:c9:7a:5c: 35:c2:b1:46:5d:c3:5d:4c:db:27:41:d7:14:e0:e4: 29:31:1d:d7:f2:27:95:3b:53:26:57:aa:2c:1c:67: 25:2b:0a:ee:e9:ec:b4:3f:f3:fd:8d:5c:a7:ab:c9: f2:d2:8a:69:1d:59:3f:4c:95:47:e5:24:b6:7b:b3: 07:be:59:ce:76:68:ad:e0:a7:8f:95:6e:7b:cb:90: 88:58:1a:a9:6a:29:30:3f:91:26:75:1e:0f:7f:d2: e0:76:aa:12:70:44:22:61:43:61:92:93:a0:b5:90: ab:75:e6:d7:79:aa:9b:f3:9e:d3:3d:16:b8:80:5f: 9d:1b:f8:ad:31:01:dd:84:b5:e2:78:cd:63:44:9d: f8:8f:57:53:91:72:05:7b:11:e5:5f:05:49:8a:a1: 35:a8:6b:e0:61:03:ca:6f:66:6d:81:a8:a4:56:16: 03:22:e6:20:32:64:a5:7b:17:12:e8:75:ba:ad:d7: dd:e3:e7:16:36:fa:9f:de:7f:86:ff:e7:18:2c:a1: 55:ad:72:10:86:6e:c6:08:b2:ad:0b:ee:61:a5:aa: ef:fe:9a:ab:91:ee:ac:67:25:49:39:57:77:ff:b7: 1d:32:30:50:ed:c4:96:55:4d:89:a2:b5:b0:24:25: 70:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:53:7D:3C:88:9A:D6:DF:4F:84:B3:86:7A:22:0D:85:10:DC:F4:DB X509v3 Authority Key Identifier: keyid:9E:6A:D1:2E:87:63:F6:86:92:05:5B:C4:EE:5A:17:41:D4:89:D2:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d7d15d53-a4b4-4435-a1da-52d0212ef33d/0/9E6AD12E8763F68692055BC4EE5A1741D489D240.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6AD12E8763F68692055BC4EE5A1741D489D240.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d7d15d53-a4b4-4435-a1da-52d0212ef33d/0/323030313a6466333a313834303a3a2f34382d3438203d3e20313531353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:1840::/48 Signature Algorithm: sha256WithRSAEncryption 43:a5:f2:2b:1c:d2:a7:f8:f1:93:89:04:a1:46:27:66:63:0b: 69:ce:4b:72:5d:bd:b6:20:af:f6:35:e9:2f:d5:3b:93:b2:78: 7a:fc:12:bf:cd:5c:45:26:9e:33:86:f8:bf:6b:72:19:c1:85: 6e:dc:33:c5:53:bf:bc:fa:6a:08:fd:2c:f3:f4:8c:73:93:e4: 61:0b:6f:7e:bb:ef:6b:4e:f0:5c:0c:14:c5:07:88:7f:ae:ee: 87:36:d7:ff:cc:1e:9d:4a:2f:23:4e:e9:7e:5e:ff:5d:f2:93: 23:b5:07:c0:51:fc:a9:53:96:3d:97:2b:c4:41:0c:15:90:94: e3:c6:83:4f:4a:4c:e3:f5:34:6b:66:db:09:dd:dd:44:34:f3: 94:65:62:76:0c:cd:80:24:7a:89:cc:f5:07:78:e3:24:ad:b9: 66:94:41:bb:fa:7b:39:ce:c3:6a:b9:97:ba:5e:fa:f0:05:ff: 49:60:e3:02:d9:1e:13:ec:39:ad:56:19:29:78:ac:2e:54:46: 98:6f:aa:57:a9:0a:c7:da:b7:f9:03:c7:d5:cd:ac:64:5c:15: 07:cd:b6:c2:b1:7f:a0:64:fd:b3:6e:cb:cb:60:e2:68:75:d7: 5f:d6:34:69:ad:2c:a8:cb:f5:70:00:41:32:e2:76:4c:79:b4: 5b:69:bf:0b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUP68KdPDYEXH5V/IaMcnZIbWC/aAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUU2QUQxMkU4NzYzRjY4NjkyMDU1QkM0RUU1QTE3NDFE NDg5RDI0MDAeFw0yNDExMTEwNDU1MDJaFw0yNTExMTAwNTAwMDJaMDMxMTAvBgNV BAMTKEJCNTM3RDNDODg5QUQ2REY0Rjg0QjM4NjdBMjIwRDg1MTBEQ0Y0REIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI8vf86B4Cu7kitcl6XDXCsUZd w11M2ydB1xTg5CkxHdfyJ5U7UyZXqiwcZyUrCu7p7LQ/8/2NXKeryfLSimkdWT9M lUflJLZ7swe+Wc52aK3gp4+VbnvLkIhYGqlqKTA/kSZ1Hg9/0uB2qhJwRCJhQ2GS k6C1kKt15td5qpvzntM9FriAX50b+K0xAd2EteJ4zWNEnfiPV1ORcgV7EeVfBUmK oTWoa+BhA8pvZm2BqKRWFgMi5iAyZKV7FxLodbqt193j5xY2+p/ef4b/5xgsoVWt chCGbsYIsq0L7mGlqu/+mquR7qxnJUk5V3f/tx0yMFDtxJZVTYmitbAkJXD1AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUu1N9PIia1t9PhLOGeiINhRDc9NswHwYDVR0j BBgwFoAUnmrRLodj9oaSBVvE7loXQdSJ0kAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k N2QxNWQ1My1hNGI0LTQ0MzUtYTFkYS01MmQwMjEyZWYzM2QvMC85RTZBRDEyRTg3 NjNGNjg2OTIwNTVCQzRFRTVBMTc0MUQ0ODlEMjQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUU2QUQxMkU4NzYzRjY4NjkyMDU1QkM0RUU1QTE3NDFENDg5 RDI0MC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q3ZDE1ZDUzLWE0YjQtNDQzNS1h MWRhLTUyZDAyMTJlZjMzZC8wLzMyMzAzMDMxM2E2NDY2MzMzYTMxMzgzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMxMzUzNTMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8xhAMA0GCSqGSIb3DQEBCwUAA4IBAQBDpfIrHNKn+PGTiQShRidmYwtpzktyXb22 IK/2Nekv1TuTsnh6/BK/zVxFJp4zhvi/a3IZwYVu3DPFU7+8+moI/Szz9Ixzk+Rh C29+u+9rTvBcDBTFB4h/ru6HNtf/zB6dSi8jTul+Xv9d8pMjtQfAUfypU5Y9lyvE QQwVkJTjxoNPSkzj9TRrZtsJ3d1ENPOUZWJ2DM2AJHqJzPUHeOMkrblmlEG7+ns5 zsNquZe6XvrwBf9JYOMC2R4T7DmtVhkpeKwuVEaYb6pXqQrH2rf5A8fVzaxkXBUH zbbCsX+gZP2zbsvLYOJodddf1jRprSyoy/VwAEEy4nZMebRbab8L -----END CERTIFICATE-----Generated at Sun Nov 24 18:20:19 2024 by rpki-client on console-ams.rpki-client.org