$ rpki-client -vvf repo-rpki.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/323030313a6466313a316338303a3a2f34382d3438203d3e20313339333637.roa File: 323030313a6466313a316338303a3a2f34382d3438203d3e20313339333637.roa (raw, json) Hash identifier: XTZ0zygYpPA5hquOk5gjOjKneLBXjfUTYm7EHNckEHs= Subject key identifier: 2E:CB:C3:E7:FC:35:75:1E:5F:25:8C:A9:D2:FE:FE:8F:51:DC:48:F6 Certificate issuer: /CN=E7D91E7B841DB274E77E823084312F8B78A5C951 Certificate serial: 3305ADFA828CBE0AE4A42F05A3963D0E7B065B55 Authority key identifier: E7:D9:1E:7B:84:1D:B2:74:E7:7E:82:30:84:31:2F:8B:78:A5:C9:51 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7D91E7B841DB274E77E823084312F8B78A5C951.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/323030313a6466313a316338303a3a2f34382d3438203d3e20313339333637.roa Signing time: Wed 24 Jan 2024 07:00:45 +0000 ROA not before: Wed 24 Jan 2024 06:55:45 +0000 ROA not after: Wed 22 Jan 2025 07:00:45 +0000 asID: 139367 IP address blocks: 2001:df1:1c80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/E7D91E7B841DB274E77E823084312F8B78A5C951.crl rsync://repo-rpki.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/E7D91E7B841DB274E77E823084312F8B78A5C951.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7D91E7B841DB274E77E823084312F8B78A5C951.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:05:ad:fa:82:8c:be:0a:e4:a4:2f:05:a3:96:3d:0e:7b:06:5b:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E7D91E7B841DB274E77E823084312F8B78A5C951 Validity Not Before: Jan 24 06:55:45 2024 GMT Not After : Jan 22 07:00:45 2025 GMT Subject: CN=2ECBC3E7FC35751E5F258CA9D2FEFE8F51DC48F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:aa:02:ce:36:cb:f4:b2:9e:b0:e1:79:2c:45: eb:89:da:ea:5a:2e:12:fa:c1:41:a6:95:36:77:31: d2:0e:dc:84:e9:2a:7c:ae:ee:61:89:89:f5:54:a7: 2d:e3:bf:b3:d8:5e:ad:50:25:3b:98:f5:c2:d0:2f: c5:61:c1:99:cb:d4:84:60:b4:85:54:af:7b:2c:b4: 4c:3d:40:ba:a4:ac:31:0c:e7:dd:a3:8b:da:47:d0: 4f:72:46:05:54:b0:da:81:05:95:5d:1a:c6:ee:fb: e5:52:04:26:43:48:44:a9:fe:bd:d5:18:d2:ff:5a: 93:d0:c4:a8:44:17:ed:85:b2:18:aa:b9:87:27:34: c2:c4:ff:e0:6d:ab:56:9e:50:db:5d:27:06:cc:48: 8f:cd:f3:77:d2:1d:93:6b:f9:a9:85:76:96:ca:04: 93:7a:78:1a:10:b9:5d:87:37:3e:c7:af:3f:e1:3b: 1e:8c:49:24:c7:65:d4:64:f8:b7:a1:b8:1a:75:cd: 57:1d:9a:81:30:58:62:6b:4c:4c:13:27:c0:92:5c: 3b:d3:27:33:80:72:9e:3d:d1:16:eb:c3:bd:b9:50: cd:17:0c:e4:56:6f:d5:41:f9:4e:d0:02:7e:69:04: 33:b1:89:20:0f:0c:47:85:3d:d4:5a:72:21:6b:c2: 20:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:CB:C3:E7:FC:35:75:1E:5F:25:8C:A9:D2:FE:FE:8F:51:DC:48:F6 X509v3 Authority Key Identifier: keyid:E7:D9:1E:7B:84:1D:B2:74:E7:7E:82:30:84:31:2F:8B:78:A5:C9:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/E7D91E7B841DB274E77E823084312F8B78A5C951.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7D91E7B841DB274E77E823084312F8B78A5C951.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/323030313a6466313a316338303a3a2f34382d3438203d3e20313339333637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:1c80::/48 Signature Algorithm: sha256WithRSAEncryption 2f:b1:46:4f:c8:3e:79:7e:f9:e2:bd:49:3b:7c:84:bc:0c:2e: da:15:9f:0e:a4:5b:17:da:e2:ed:41:e7:e0:80:bb:4a:f0:81: dd:c7:62:b8:00:b9:ad:ee:1a:a9:ea:d8:fe:6f:6b:af:0e:83: 6d:dd:58:5a:26:a1:9e:e0:e5:1a:b1:0c:67:f4:4f:95:2b:b3: f6:15:a1:18:22:b1:43:32:33:8f:58:fc:86:ee:87:6d:6e:a8: ac:93:3c:18:20:da:a5:9b:9c:2e:6b:2c:38:8c:42:a6:0b:0f: 90:2c:b9:87:d2:d7:33:fe:a1:92:ab:6d:a1:08:14:df:6b:d3: 8a:13:36:2e:f3:7a:9e:37:66:e5:39:be:f8:4d:a8:e8:db:ad: fc:de:3a:c0:6f:da:9d:d6:45:39:ec:da:94:c6:84:a0:0b:20: a4:eb:a7:cb:9d:17:3f:f2:bf:4d:55:cd:02:b7:15:66:b3:03: 01:f7:29:69:73:ef:d8:d1:90:49:8b:a6:a1:83:e3:8a:e4:a4: 73:4e:30:bd:51:b0:5e:c4:79:96:5b:ee:98:7c:b5:7e:eb:c4: 33:11:c6:cc:64:56:f5:3a:10:1e:76:d5:35:5e:a9:63:84:72: 45:1a:81:f3:53:91:9e:51:aa:ee:a5:b0:02:60:e2:57:a4:4e: f9:f1:45:20 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUMwWt+oKMvgrkpC8Fo5Y9DnsGW1UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTdEOTFFN0I4NDFEQjI3NEU3N0U4MjMwODQzMTJGOEI3 OEE1Qzk1MTAeFw0yNDAxMjQwNjU1NDVaFw0yNTAxMjIwNzAwNDVaMDMxMTAvBgNV BAMTKDJFQ0JDM0U3RkMzNTc1MUU1RjI1OENBOUQyRkVGRThGNTFEQzQ4RjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+qgLONsv0sp6w4XksReuJ2upa LhL6wUGmlTZ3MdIO3ITpKnyu7mGJifVUpy3jv7PYXq1QJTuY9cLQL8VhwZnL1IRg tIVUr3sstEw9QLqkrDEM592ji9pH0E9yRgVUsNqBBZVdGsbu++VSBCZDSESp/r3V GNL/WpPQxKhEF+2FshiquYcnNMLE/+Btq1aeUNtdJwbMSI/N83fSHZNr+amFdpbK BJN6eBoQuV2HNz7Hrz/hOx6MSSTHZdRk+LehuBp1zVcdmoEwWGJrTEwTJ8CSXDvT JzOAcp490Rbrw725UM0XDORWb9VB+U7QAn5pBDOxiSAPDEeFPdRaciFrwiDdAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQULsvD5/w1dR5fJYyp0v7+j1HcSPYwHwYDVR0j BBgwFoAU59kee4QdsnTnfoIwhDEvi3ilyVEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YTcwODNhYi0yNzBhLTRiMGEtOGU1NS1hNDVlMWNmMWFmZDUvMC9FN0Q5MUU3Qjg0 MURCMjc0RTc3RTgyMzA4NDMxMkY4Qjc4QTVDOTUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTdEOTFFN0I4NDFEQjI3NEU3N0U4MjMwODQzMTJGOEI3OEE1 Qzk1MS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBhNzA4M2FiLTI3MGEtNGIwYS04 ZTU1LWE0NWUxY2YxYWZkNS8wLzMyMzAzMDMxM2E2NDY2MzEzYTMxNjMzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzMzNjM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8RyAMA0GCSqGSIb3DQEBCwUAA4IBAQAvsUZPyD55fvnivUk7fIS8DC7aFZ8OpFsX 2uLtQefggLtK8IHdx2K4ALmt7hqp6tj+b2uvDoNt3VhaJqGe4OUasQxn9E+VK7P2 FaEYIrFDMjOPWPyG7odtbqiskzwYINqlm5wuayw4jEKmCw+QLLmH0tcz/qGSq22h CBTfa9OKEzYu83qeN2blOb74Tajo26383jrAb9qd1kU57NqUxoSgCyCk66fLnRc/ 8r9NVc0CtxVmswMB9ylpc+/Y0ZBJi6ahg+OK5KRzTjC9UbBexHmWW+6YfLV+68Qz EcbMZFb1OhAedtU1XqljhHJFGoHzU5GeUarupbACYOJXpE758UUg -----END CERTIFICATE-----Generated at Mon Nov 25 18:43:01 2024 by rpki-client on console-ams.rpki-client.org