$ rpki-client -vvf repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/323030313a6466323a623263303a3a2f34382d3438203d3e20313530393538.roa File: 323030313a6466323a623263303a3a2f34382d3438203d3e20313530393538.roa (raw, json) Hash identifier: pkgFynGQ9jkHeIrXOyJUjg6uu6vSpzsXT9qLBW8x194= Subject key identifier: 58:52:AD:FE:79:15:2D:6B:0E:E8:3B:34:E7:E8:B8:AB:F7:91:11:1B Certificate issuer: /CN=DA737E8BB9E3519F19E608DC3E839F360D2C4623 Certificate serial: 2EA73D3FE71431CBF1352DCC4993F1D64E45D879 Authority key identifier: DA:73:7E:8B:B9:E3:51:9F:19:E6:08:DC:3E:83:9F:36:0D:2C:46:23 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA737E8BB9E3519F19E608DC3E839F360D2C4623.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/323030313a6466323a623263303a3a2f34382d3438203d3e20313530393538.roa Signing time: Mon 07 Oct 2024 13:51:37 +0000 ROA not before: Mon 07 Oct 2024 13:46:37 +0000 ROA not after: Mon 06 Oct 2025 13:51:37 +0000 asID: 150958 IP address blocks: 2001:df2:b2c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.crl rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA737E8BB9E3519F19E608DC3E839F360D2C4623.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 11:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:a7:3d:3f:e7:14:31:cb:f1:35:2d:cc:49:93:f1:d6:4e:45:d8:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA737E8BB9E3519F19E608DC3E839F360D2C4623 Validity Not Before: Oct 7 13:46:37 2024 GMT Not After : Oct 6 13:51:37 2025 GMT Subject: CN=5852ADFE79152D6B0EE83B34E7E8B8ABF791111B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c7:9b:bb:d3:35:61:25:8f:4f:df:c0:af:0c: 42:dc:98:ce:e9:ee:1a:d1:75:96:21:5b:57:91:de: ef:9a:62:0f:1f:89:a8:fd:0f:1d:43:7f:e8:3e:a6: fe:fa:70:1b:d1:d5:58:12:9d:65:d0:d6:f8:bb:60: f6:e6:40:5d:0a:7c:2a:bb:cd:5f:b1:36:20:50:93: 1e:56:19:73:37:ec:3e:a2:18:9b:37:af:93:88:6d: ba:0e:07:8c:b8:3c:cd:19:7d:1d:74:0e:8b:be:c9: 26:6b:7a:95:57:cb:29:8e:3e:59:bc:b7:40:93:95: 51:ac:16:6b:aa:3d:66:b0:ec:54:6b:2a:c2:4c:08: e9:64:08:bc:ef:48:6a:d0:fd:58:bd:1d:4f:3d:58: 85:2b:ef:37:40:a5:c3:d8:ca:45:8f:df:45:83:e8: 8e:0a:6c:c1:44:77:ef:a0:0e:90:d7:3a:82:7a:85: 67:19:f0:41:ad:5a:19:0f:8b:68:d6:df:57:2b:27: e3:a2:27:9b:a7:6d:19:15:8a:d8:0b:3a:01:f5:8d: e4:26:b5:b7:56:f8:6a:0f:3d:71:6e:5a:53:a1:7e: 61:0a:4e:28:5e:79:83:ee:ec:fb:4e:06:1e:6f:dc: 18:a8:f6:7a:af:ed:d9:6e:65:a2:7b:d6:a2:3b:3e: d9:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:52:AD:FE:79:15:2D:6B:0E:E8:3B:34:E7:E8:B8:AB:F7:91:11:1B X509v3 Authority Key Identifier: keyid:DA:73:7E:8B:B9:E3:51:9F:19:E6:08:DC:3E:83:9F:36:0D:2C:46:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA737E8BB9E3519F19E608DC3E839F360D2C4623.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/323030313a6466323a623263303a3a2f34382d3438203d3e20313530393538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:b2c0::/48 Signature Algorithm: sha256WithRSAEncryption ab:39:0d:8e:b3:41:dd:af:0b:44:42:70:44:18:9e:89:50:7f: 4b:f1:06:0d:be:a3:66:1f:96:95:fa:34:54:df:73:ca:35:ec: 7f:bc:66:57:81:2c:1b:44:48:2c:d8:02:ab:12:fa:fc:ea:33: b1:91:9e:b4:cb:7d:ac:13:bd:3d:f7:e7:c0:99:8a:c9:ca:79: 73:68:47:ec:2e:e7:cf:27:20:ae:2d:14:87:9f:35:3d:84:31: 05:c7:f0:1a:4a:d3:8b:e3:de:56:ee:e0:43:ca:be:43:ec:f4: 4e:4b:eb:4a:62:38:a1:f7:e9:15:65:d4:a1:e3:64:c6:a0:bc: 02:20:58:4e:38:1e:26:35:a1:4e:84:b7:19:e2:d8:e8:50:88: 4f:58:6e:30:59:a6:c1:a7:97:0a:fb:8b:79:48:3d:36:7c:e4: 4e:4d:5c:dd:67:90:d1:65:49:6b:0e:d3:b4:30:c6:e3:53:bb: a1:a7:7d:93:bb:c2:b1:38:7e:e0:f9:af:0d:8d:2e:4d:b4:3b: 65:7f:c8:db:43:fc:76:54:e6:0f:74:32:8f:e2:2b:53:f1:4d: 9b:de:05:37:bc:ad:8f:8e:47:50:92:0f:f7:c7:3d:2d:08:4e: b4:ce:8f:77:1f:02:fc:3c:10:eb:6d:13:01:e0:b9:d6:33:e1: 7f:7c:b2:9b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIULqc9P+cUMcvxNS3MSZPx1k5F2HkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE3MzdFOEJCOUUzNTE5RjE5RTYwOERDM0U4MzlGMzYw RDJDNDYyMzAeFw0yNDEwMDcxMzQ2MzdaFw0yNTEwMDYxMzUxMzdaMDMxMTAvBgNV BAMTKDU4NTJBREZFNzkxNTJENkIwRUU4M0IzNEU3RThCOEFCRjc5MTExMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7x5u70zVhJY9P38CvDELcmM7p 7hrRdZYhW1eR3u+aYg8fiaj9Dx1Df+g+pv76cBvR1VgSnWXQ1vi7YPbmQF0KfCq7 zV+xNiBQkx5WGXM37D6iGJs3r5OIbboOB4y4PM0ZfR10Dou+ySZrepVXyymOPlm8 t0CTlVGsFmuqPWaw7FRrKsJMCOlkCLzvSGrQ/Vi9HU89WIUr7zdApcPYykWP30WD 6I4KbMFEd++gDpDXOoJ6hWcZ8EGtWhkPi2jW31crJ+OiJ5unbRkVitgLOgH1jeQm tbdW+GoPPXFuWlOhfmEKTiheeYPu7PtOBh5v3Bio9nqv7dluZaJ71qI7PtnzAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUWFKt/nkVLWsO6Ds05+i4q/eRERswHwYDVR0j BBgwFoAU2nN+i7njUZ8Z5gjcPoOfNg0sRiMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZjBiY2RjMy0wZmVhLTQ3NDctOTkwNy02NTY0ODZiYWU4ZGEvMC9EQTczN0U4QkI5 RTM1MTlGMTlFNjA4REMzRTgzOUYzNjBEMkM0NjIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE3MzdFOEJCOUUzNTE5RjE5RTYwOERDM0U4MzlGMzYwRDJD NDYyMy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBmMGJjZGMzLTBmZWEtNDc0Ny05 OTA3LTY1NjQ4NmJhZThkYS8wLzMyMzAzMDMxM2E2NDY2MzIzYTYyMzI2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMwMzkzNTM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8rLAMA0GCSqGSIb3DQEBCwUAA4IBAQCrOQ2Os0HdrwtEQnBEGJ6JUH9L8QYNvqNm H5aV+jRU33PKNex/vGZXgSwbREgs2AKrEvr86jOxkZ60y32sE7099+fAmYrJynlz aEfsLufPJyCuLRSHnzU9hDEFx/AaStOL495W7uBDyr5D7PROS+tKYjih9+kVZdSh 42TGoLwCIFhOOB4mNaFOhLcZ4tjoUIhPWG4wWabBp5cK+4t5SD02fOROTVzdZ5DR ZUlrDtO0MMbjU7uhp32Tu8KxOH7g+a8NjS5NtDtlf8jbQ/x2VOYPdDKP4itT8U2b 3gU3vK2PjkdQkg/3xz0tCE60zo93HwL8PBDrbRMB4LnWM+F/fLKb -----END CERTIFICATE-----Generated at Fri Nov 22 09:38:55 2024 by rpki-client on console-ams.rpki-client.org