$ rpki-client -vvf repo-rpki.idnic.net/repo/03500767-9227-43ec-a525-2e97d5a03f09/0/323030313a6466303a39613a3a2f34382d3438203d3e203435363937.roa File: 323030313a6466303a39613a3a2f34382d3438203d3e203435363937.roa (raw, json) Hash identifier: 95yRGGu+tyd0MJC5bHwlKcV+5CY03B5myrPMI3qwfTE= Subject key identifier: 97:F0:62:65:CB:BD:01:C8:52:42:44:18:BE:5E:D3:C5:69:94:5D:3B Certificate issuer: /CN=6BA087A8C1BF46BBD4748D23F9E34B92774FCC66 Certificate serial: 7EC4BE3D9EC50853DF3EE9BAD17429F891C9AB99 Authority key identifier: 6B:A0:87:A8:C1:BF:46:BB:D4:74:8D:23:F9:E3:4B:92:77:4F:CC:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6BA087A8C1BF46BBD4748D23F9E34B92774FCC66.cer Subject info access: rsync://repo-rpki.idnic.net/repo/03500767-9227-43ec-a525-2e97d5a03f09/0/323030313a6466303a39613a3a2f34382d3438203d3e203435363937.roa Signing time: Fri 26 Jul 2024 03:07:52 +0000 ROA not before: Fri 26 Jul 2024 03:02:52 +0000 ROA not after: Fri 25 Jul 2025 03:07:52 +0000 asID: 45697 IP address blocks: 2001:df0:9a::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/03500767-9227-43ec-a525-2e97d5a03f09/0/6BA087A8C1BF46BBD4748D23F9E34B92774FCC66.crl rsync://repo-rpki.idnic.net/repo/03500767-9227-43ec-a525-2e97d5a03f09/0/6BA087A8C1BF46BBD4748D23F9E34B92774FCC66.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6BA087A8C1BF46BBD4748D23F9E34B92774FCC66.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 01:32:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:c4:be:3d:9e:c5:08:53:df:3e:e9:ba:d1:74:29:f8:91:c9:ab:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6BA087A8C1BF46BBD4748D23F9E34B92774FCC66 Validity Not Before: Jul 26 03:02:52 2024 GMT Not After : Jul 25 03:07:52 2025 GMT Subject: CN=97F06265CBBD01C852424418BE5ED3C569945D3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:cd:c5:70:bc:cb:55:61:dc:c8:36:2a:b0:e5: 5d:d9:99:38:76:03:fc:81:6f:e5:98:df:00:7a:98: 1c:0b:e8:5d:7c:ee:5e:b4:bb:1b:66:05:5f:f9:a8: 29:1f:84:fc:60:a5:df:d5:69:71:45:d7:54:62:15: 2c:b6:6b:d7:b8:61:53:2d:cd:17:85:10:88:4c:91: 2a:1a:a9:a7:ce:82:64:e7:30:e6:0d:f2:73:94:4e: b9:d6:21:0c:22:29:ec:64:8d:ea:bb:0d:bf:dc:b1: 37:ec:1e:1f:53:fa:97:42:ce:31:45:07:c7:4a:27: ae:7b:58:c8:ba:bb:cf:a2:76:80:a1:41:e3:85:19: ec:72:28:9c:66:65:75:32:65:50:bd:a1:8a:a3:b9: f6:1a:b7:4c:27:68:e9:62:b1:26:69:9f:e3:1e:a4: df:33:fd:f7:be:e0:ef:c1:6b:36:52:ab:d5:53:a3: ec:05:39:a4:31:29:d4:17:04:57:1e:9e:b4:63:54: cc:bd:d2:44:e3:8d:8e:8f:c3:d8:79:2c:47:0a:50: 3b:39:69:c8:70:3e:f7:d5:14:c1:93:d3:10:4b:c3: d8:8b:2b:0a:6b:5f:b2:9a:1c:4a:9b:82:47:c7:22: ac:12:d2:63:b4:f7:fc:73:5f:ec:1b:c1:d3:af:a2: ad:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:F0:62:65:CB:BD:01:C8:52:42:44:18:BE:5E:D3:C5:69:94:5D:3B X509v3 Authority Key Identifier: keyid:6B:A0:87:A8:C1:BF:46:BB:D4:74:8D:23:F9:E3:4B:92:77:4F:CC:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/03500767-9227-43ec-a525-2e97d5a03f09/0/6BA087A8C1BF46BBD4748D23F9E34B92774FCC66.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6BA087A8C1BF46BBD4748D23F9E34B92774FCC66.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/03500767-9227-43ec-a525-2e97d5a03f09/0/323030313a6466303a39613a3a2f34382d3438203d3e203435363937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:9a::/48 Signature Algorithm: sha256WithRSAEncryption 07:f5:d1:2d:9d:82:8f:14:5f:ea:3d:06:ac:bb:fa:41:fc:33: 48:fd:5a:45:97:b8:3c:54:3e:b3:28:1a:01:51:f7:8d:07:11: 0e:22:12:7e:98:f7:11:17:dd:6c:1b:fa:5f:71:ec:23:15:1b: 3e:75:76:b5:ea:af:86:4b:48:9a:79:09:4c:95:c9:8e:47:37: 63:a1:01:1a:8d:61:8d:80:e7:67:f9:b0:83:e4:99:b6:fb:70: b4:ee:84:5f:5a:a3:c7:5d:ea:e3:0d:8f:76:b1:1d:1f:d5:9b: 9c:af:9b:75:78:ec:62:58:c2:d9:d4:3c:87:1f:ac:ed:68:f8: 88:32:a3:2d:b1:12:ce:f9:84:b4:e3:1e:cc:54:e9:ee:cf:d5: 9d:15:5a:ce:72:2e:cf:3c:f9:b6:9c:f3:29:b8:39:e9:18:b4: 89:a5:e7:63:b4:5a:dd:21:6e:33:b0:a5:e9:12:f8:6a:ef:d0: 44:fa:35:39:c1:39:b6:02:1b:73:eb:a7:17:d4:34:de:f7:53: 1c:c5:2d:ac:0c:4d:38:03:7f:ca:b3:84:fc:d0:2b:12:bf:6b: db:76:30:b2:e7:fd:00:ff:ff:65:28:b8:a5:90:ab:a2:3e:1a: 00:68:8b:1d:8e:2f:0d:70:0d:f4:2c:9e:c2:f1:ef:9d:1b:fb: 6c:1a:76:c6 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUfsS+PZ7FCFPfPum60XQp+JHJq5kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkJBMDg3QThDMUJGNDZCQkQ0NzQ4RDIzRjlFMzRCOTI3 NzRGQ0M2NjAeFw0yNDA3MjYwMzAyNTJaFw0yNTA3MjUwMzA3NTJaMDMxMTAvBgNV BAMTKDk3RjA2MjY1Q0JCRDAxQzg1MjQyNDQxOEJFNUVEM0M1Njk5NDVEM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpzcVwvMtVYdzINiqw5V3ZmTh2 A/yBb+WY3wB6mBwL6F187l60uxtmBV/5qCkfhPxgpd/VaXFF11RiFSy2a9e4YVMt zReFEIhMkSoaqafOgmTnMOYN8nOUTrnWIQwiKexkjeq7Db/csTfsHh9T+pdCzjFF B8dKJ657WMi6u8+idoChQeOFGexyKJxmZXUyZVC9oYqjufYat0wnaOlisSZpn+Me pN8z/fe+4O/BazZSq9VTo+wFOaQxKdQXBFcenrRjVMy90kTjjY6Pw9h5LEcKUDs5 achwPvfVFMGT0xBLw9iLKwprX7KaHEqbgkfHIqwS0mO09/xzX+wbwdOvoq2vAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUl/BiZcu9AchSQkQYvl7TxWmUXTswHwYDVR0j BBgwFoAUa6CHqMG/RrvUdI0j+eNLkndPzGYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MzUwMDc2Ny05MjI3LTQzZWMtYTUyNS0yZTk3ZDVhMDNmMDkvMC82QkEwODdBOEMx QkY0NkJCRDQ3NDhEMjNGOUUzNEI5Mjc3NEZDQzY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkJBMDg3QThDMUJGNDZCQkQ0NzQ4RDIzRjlFMzRCOTI3NzRG Q0M2Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAzNTAwNzY3LTkyMjctNDNlYy1h NTI1LTJlOTdkNWEwM2YwOS8wLzMyMzAzMDMxM2E2NDY2MzAzYTM5NjEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNDM1MzYzOTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN8ACaMA0G CSqGSIb3DQEBCwUAA4IBAQAH9dEtnYKPFF/qPQasu/pB/DNI/VpFl7g8VD6zKBoB UfeNBxEOIhJ+mPcRF91sG/pfcewjFRs+dXa16q+GS0iaeQlMlcmORzdjoQEajWGN gOdn+bCD5Jm2+3C07oRfWqPHXerjDY92sR0f1Zucr5t1eOxiWMLZ1DyHH6ztaPiI MqMtsRLO+YS04x7MVOnuz9WdFVrOci7PPPm2nPMpuDnpGLSJpedjtFrdIW4zsKXp Evhq79BE+jU5wTm2Ahtz66cX1DTe91McxS2sDE04A3/Ks4T80CsSv2vbdjCy5/0A //9lKLilkKuiPhoAaIsdji8NcA30LJ7C8e+dG/tsGnbG -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:00 2024 by rpki-client on console-ams.rpki-client.org