$ rpki-client -vvf repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/323030313a6466303a663530303a3a2f34382d3438203d3e20313432333739.roa File: 323030313a6466303a663530303a3a2f34382d3438203d3e20313432333739.roa (raw, json) Hash identifier: wuLvX+Xgm0i3AJgZLRAJ8zSBRz4zFDFFXcC9P9aZOYA= Subject key identifier: 3D:95:80:82:21:EC:45:9B:57:49:EF:1C:33:42:18:1D:98:62:05:3F Certificate issuer: /CN=25D788BD2A450C01354B9AB70826895FDFF56208 Certificate serial: 74EC184E9F48395A5B75D5D9E0F3750A3939A316 Authority key identifier: 25:D7:88:BD:2A:45:0C:01:35:4B:9A:B7:08:26:89:5F:DF:F5:62:08 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer Subject info access: rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/323030313a6466303a663530303a3a2f34382d3438203d3e20313432333739.roa Signing time: Sun 20 Oct 2024 05:00:02 +0000 ROA not before: Sun 20 Oct 2024 04:55:02 +0000 ROA not after: Sun 19 Oct 2025 05:00:02 +0000 asID: 142379 IP address blocks: 2001:df0:f500::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.crl rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:ec:18:4e:9f:48:39:5a:5b:75:d5:d9:e0:f3:75:0a:39:39:a3:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25D788BD2A450C01354B9AB70826895FDFF56208 Validity Not Before: Oct 20 04:55:02 2024 GMT Not After : Oct 19 05:00:02 2025 GMT Subject: CN=3D95808221EC459B5749EF1C3342181D9862053F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:00:59:75:bc:df:16:38:34:4a:4c:8c:27:bf: 6e:84:7a:46:5c:34:e6:1d:c8:11:eb:21:b3:f9:f5: 2e:bb:d9:64:5c:1e:39:27:20:0e:b5:ee:f0:2a:10: fd:52:d3:1e:f6:44:85:bc:0b:ab:2f:e8:f1:45:14: f3:07:d5:7f:25:de:eb:3e:04:f3:44:3e:ac:e0:59: 8a:89:01:11:53:77:08:e7:f4:70:8e:37:db:49:7d: 50:1c:2c:e7:94:cb:65:c2:ed:77:b3:8e:71:fe:48: 48:8f:4f:48:86:14:e5:14:db:c8:0d:20:de:ef:e5: 26:78:d0:cc:71:fd:ad:05:8d:a6:bf:c1:ff:2c:69: 5b:fd:3c:1e:ca:f2:5c:d0:c6:06:6c:4b:61:97:83: b6:19:74:58:cd:27:0f:f3:5e:65:09:1e:be:8d:2a: 7e:a0:6a:58:3c:a1:7e:26:18:71:87:4a:01:77:02: 5a:c4:5c:66:7f:ec:1a:4a:f5:ad:38:e7:9f:c1:b7: de:89:71:8c:f4:2d:a2:4c:2b:ef:4b:af:ff:1f:e2: 71:f7:c7:84:48:cd:49:26:e4:ea:eb:2f:61:45:a4: d8:b6:a8:99:e2:b0:52:c5:30:47:a0:32:20:bd:54: bc:65:20:9f:25:49:45:a2:e6:a7:69:d0:02:55:4e: 1f:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:95:80:82:21:EC:45:9B:57:49:EF:1C:33:42:18:1D:98:62:05:3F X509v3 Authority Key Identifier: keyid:25:D7:88:BD:2A:45:0C:01:35:4B:9A:B7:08:26:89:5F:DF:F5:62:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/323030313a6466303a663530303a3a2f34382d3438203d3e20313432333739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:f500::/48 Signature Algorithm: sha256WithRSAEncryption 38:19:7c:a3:3e:11:79:3b:c9:a4:20:19:e7:6c:c4:0c:00:1f: b6:7d:0e:a2:74:4f:d5:23:e0:53:c6:45:71:ab:b4:35:6a:4c: 26:0b:b6:65:89:de:fa:ef:cf:9e:5d:57:a1:18:15:8e:f8:98: 14:58:9e:8c:a8:0b:1b:de:c2:bd:97:72:48:75:b6:f9:be:77: 2b:11:11:5f:9a:fa:c6:f3:29:eb:8e:30:60:f2:ac:7d:0b:69: 44:ed:7f:cf:c4:8d:24:29:2b:09:a9:cf:cf:09:0b:f9:c6:eb: 62:5c:4f:61:40:50:81:14:a4:39:a1:ef:65:f9:3a:06:55:75: 6b:05:2e:aa:29:19:83:87:7b:91:5c:12:da:0c:cf:ab:19:09: a7:7a:51:aa:78:e9:63:06:be:d4:cb:60:b6:56:35:06:d4:8d: fc:15:5d:93:99:34:9a:3a:b5:97:10:1a:17:18:28:8c:70:99: 8c:51:21:7c:17:7f:8d:2e:8a:4d:bb:d2:10:56:9e:a8:d8:b5: 1d:54:24:af:69:e9:f2:42:a0:63:32:20:6c:17:0b:e9:73:1e: 69:1a:44:2d:0d:fd:70:b7:41:1e:9e:2c:ed:4a:c8:da:10:26: 6c:b9:74:bb:9c:26:ae:47:11:4e:d5:1c:98:7c:23:d7:12:88: 98:e0:9a:6b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUdOwYTp9IOVpbddXZ4PN1Cjk5oxYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVENzg4QkQyQTQ1MEMwMTM1NEI5QUI3MDgyNjg5NUZE RkY1NjIwODAeFw0yNDEwMjAwNDU1MDJaFw0yNTEwMTkwNTAwMDJaMDMxMTAvBgNV BAMTKDNEOTU4MDgyMjFFQzQ1OUI1NzQ5RUYxQzMzNDIxODFEOTg2MjA1M0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtAFl1vN8WODRKTIwnv26EekZc NOYdyBHrIbP59S672WRcHjknIA617vAqEP1S0x72RIW8C6sv6PFFFPMH1X8l3us+ BPNEPqzgWYqJARFTdwjn9HCON9tJfVAcLOeUy2XC7XezjnH+SEiPT0iGFOUU28gN IN7v5SZ40Mxx/a0Fjaa/wf8saVv9PB7K8lzQxgZsS2GXg7YZdFjNJw/zXmUJHr6N Kn6galg8oX4mGHGHSgF3AlrEXGZ/7BpK9a0455/Bt96JcYz0LaJMK+9Lr/8f4nH3 x4RIzUkm5OrrL2FFpNi2qJnisFLFMEegMiC9VLxlIJ8lSUWi5qdp0AJVTh/HAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUPZWAgiHsRZtXSe8cM0IYHZhiBT8wHwYDVR0j BBgwFoAUJdeIvSpFDAE1S5q3CCaJX9/1YggwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NmE3NjY1YS1iNTBiLTRhNDUtYThmOS0wZDY5YmQ3ZDc0M2QvMC8yNUQ3ODhCRDJB NDUwQzAxMzU0QjlBQjcwODI2ODk1RkRGRjU2MjA4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjVENzg4QkQyQTQ1MEMwMTM1NEI5QUI3MDgyNjg5NUZERkY1 NjIwOC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2YTc2NjVhLWI1MGItNGE0NS1h OGY5LTBkNjliZDdkNzQzZC8wLzMyMzAzMDMxM2E2NDY2MzAzYTY2MzUzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMyMzMzNzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8PUAMA0GCSqGSIb3DQEBCwUAA4IBAQA4GXyjPhF5O8mkIBnnbMQMAB+2fQ6idE/V I+BTxkVxq7Q1akwmC7Zlid7678+eXVehGBWO+JgUWJ6MqAsb3sK9l3JIdbb5vncr ERFfmvrG8ynrjjBg8qx9C2lE7X/PxI0kKSsJqc/PCQv5xutiXE9hQFCBFKQ5oe9l +ToGVXVrBS6qKRmDh3uRXBLaDM+rGQmnelGqeOljBr7Uy2C2VjUG1I38FV2TmTSa OrWXEBoXGCiMcJmMUSF8F3+NLopNu9IQVp6o2LUdVCSvaenyQqBjMiBsFwvpcx5p GkQtDf1wt0EeniztSsjaECZsuXS7nCauRxFO1RyYfCPXEoiY4Jpr -----END CERTIFICATE-----Generated at Thu Nov 21 05:34:31 2024 by rpki-client on console-ams.rpki-client.org