$ rpki-client -vvf repo-rpki.idnic.net/repo/10ff022a-9b16-4b4c-98a2-534994f589d0/0/323030313a6466313a393863303a3a2f34382d3438203d3e20313432333836.roa File: 323030313a6466313a393863303a3a2f34382d3438203d3e20313432333836.roa (raw, json) Hash identifier: Sfgoxi8kJ3P2h9QRzWw2pjkaS20AehWMHvWAvH6Cbu8= Subject key identifier: DD:ED:09:E4:81:B1:9F:71:F6:58:3D:F5:75:C8:E3:DD:22:07:94:F2 Certificate issuer: /CN=7E46C2EE5082354F1494DE6AEA6CDA642769EDF1 Certificate serial: 57405CE991258B5178D83B93A11EC98B9D0EC891 Authority key identifier: 7E:46:C2:EE:50:82:35:4F:14:94:DE:6A:EA:6C:DA:64:27:69:ED:F1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E46C2EE5082354F1494DE6AEA6CDA642769EDF1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/10ff022a-9b16-4b4c-98a2-534994f589d0/0/323030313a6466313a393863303a3a2f34382d3438203d3e20313432333836.roa Signing time: Tue 23 Apr 2024 10:00:00 +0000 ROA not before: Tue 23 Apr 2024 09:55:00 +0000 ROA not after: Tue 22 Apr 2025 10:00:00 +0000 asID: 142386 IP address blocks: 2001:df1:98c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/10ff022a-9b16-4b4c-98a2-534994f589d0/0/7E46C2EE5082354F1494DE6AEA6CDA642769EDF1.crl rsync://repo-rpki.idnic.net/repo/10ff022a-9b16-4b4c-98a2-534994f589d0/0/7E46C2EE5082354F1494DE6AEA6CDA642769EDF1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E46C2EE5082354F1494DE6AEA6CDA642769EDF1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 02:34:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:40:5c:e9:91:25:8b:51:78:d8:3b:93:a1:1e:c9:8b:9d:0e:c8:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E46C2EE5082354F1494DE6AEA6CDA642769EDF1 Validity Not Before: Apr 23 09:55:00 2024 GMT Not After : Apr 22 10:00:00 2025 GMT Subject: CN=DDED09E481B19F71F6583DF575C8E3DD220794F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c5:59:e5:d9:49:9c:1c:50:2c:f8:68:8d:c4: 92:7f:82:fb:c5:5d:af:7a:49:e4:31:3c:66:91:70: 18:f2:29:fc:0f:cc:42:f1:6d:20:43:1f:0e:06:ce: 15:60:43:2f:87:b5:c5:41:29:21:7a:71:be:41:7e: 0a:d3:3d:bf:fb:bc:72:53:09:89:4f:f9:40:a2:0c: 64:3b:cf:ee:f1:05:73:b4:ca:c9:9e:2e:58:7d:29: b2:a4:4d:04:d1:be:78:c3:92:96:e6:37:1d:fd:f8: 1c:f1:54:a4:ae:67:d3:38:76:b7:90:c2:78:20:a8: 43:1d:c3:b7:ed:68:dc:43:1f:47:34:76:59:92:01: 71:57:52:8c:da:eb:ac:b3:8a:02:22:ce:1f:f1:2b: 23:4a:c7:3d:b7:e4:d9:f1:30:b4:7a:a9:33:75:da: f8:33:60:30:e1:41:f1:2f:69:d5:f6:ce:78:ea:a4: a7:a0:48:17:dc:ab:5c:e5:34:e5:f9:f2:a4:c6:3a: f4:67:2f:7b:3b:b1:b4:01:3e:3b:ba:8e:c1:82:04: 30:a8:fe:74:56:d3:a8:94:1a:df:33:f7:22:02:37: 78:c3:46:b7:34:64:af:46:bc:bc:33:f4:d4:c8:2f: 2e:81:42:64:ec:2b:f1:e1:09:e9:6e:b8:45:f9:de: 10:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:ED:09:E4:81:B1:9F:71:F6:58:3D:F5:75:C8:E3:DD:22:07:94:F2 X509v3 Authority Key Identifier: keyid:7E:46:C2:EE:50:82:35:4F:14:94:DE:6A:EA:6C:DA:64:27:69:ED:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/10ff022a-9b16-4b4c-98a2-534994f589d0/0/7E46C2EE5082354F1494DE6AEA6CDA642769EDF1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E46C2EE5082354F1494DE6AEA6CDA642769EDF1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/10ff022a-9b16-4b4c-98a2-534994f589d0/0/323030313a6466313a393863303a3a2f34382d3438203d3e20313432333836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:98c0::/48 Signature Algorithm: sha256WithRSAEncryption 63:cf:00:46:c0:eb:e4:69:86:cc:80:4f:3c:ac:18:70:c8:c0: 29:8f:7b:72:b3:a3:51:f6:b6:1b:b5:04:f9:ef:2b:5b:37:0c: 8c:69:d2:87:47:6a:3a:ec:72:ad:06:d3:d1:e9:9c:c4:13:c6: 85:98:05:15:aa:3d:87:19:79:a2:bc:b2:74:29:ef:84:68:d7: 32:6c:9e:a6:c1:d1:ec:d7:f0:17:56:d1:e9:3d:2a:be:08:67: 0e:79:da:24:7f:34:3d:78:ae:c3:67:16:54:4b:df:13:de:cd: 56:68:ec:45:8a:9e:27:10:e7:d3:43:b7:23:ff:81:44:6d:f0: a4:f6:b1:5f:19:f9:b9:20:59:39:0d:8f:77:32:f0:e9:88:ee: 16:06:3c:77:97:57:44:a3:e7:fc:db:5a:5a:28:4a:92:63:5c: 4f:2a:df:1f:4d:39:dc:88:15:6c:95:45:8d:96:ba:a6:1a:ba: 9d:fb:c6:11:f4:60:17:f4:76:55:25:1d:a8:c7:59:f8:f4:3d: 5a:0e:69:ee:8f:19:bc:3a:cd:63:59:3b:f6:4e:ba:c5:c2:16: 08:c4:0b:a7:60:9c:9f:2f:de:ac:8a:fe:5e:9f:19:f4:ea:44: 84:91:2f:f2:d9:f3:80:28:3e:7c:2b:8c:cd:3f:7c:52:fb:40: cd:ba:30:14 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUV0Bc6ZEli1F42DuToR7Ji50OyJEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0U0NkMyRUU1MDgyMzU0RjE0OTRERTZBRUE2Q0RBNjQy NzY5RURGMTAeFw0yNDA0MjMwOTU1MDBaFw0yNTA0MjIxMDAwMDBaMDMxMTAvBgNV BAMTKERERUQwOUU0ODFCMTlGNzFGNjU4M0RGNTc1QzhFM0REMjIwNzk0RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9xVnl2UmcHFAs+GiNxJJ/gvvF Xa96SeQxPGaRcBjyKfwPzELxbSBDHw4GzhVgQy+HtcVBKSF6cb5BfgrTPb/7vHJT CYlP+UCiDGQ7z+7xBXO0ysmeLlh9KbKkTQTRvnjDkpbmNx39+BzxVKSuZ9M4dreQ wnggqEMdw7ftaNxDH0c0dlmSAXFXUoza66yzigIizh/xKyNKxz235NnxMLR6qTN1 2vgzYDDhQfEvadX2znjqpKegSBfcq1zlNOX58qTGOvRnL3s7sbQBPju6jsGCBDCo /nRW06iUGt8z9yICN3jDRrc0ZK9GvLwz9NTILy6BQmTsK/HhCeluuEX53hB7AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU3e0J5IGxn3H2WD31dcjj3SIHlPIwHwYDVR0j BBgwFoAUfkbC7lCCNU8UlN5q6mzaZCdp7fEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MGZmMDIyYS05YjE2LTRiNGMtOThhMi01MzQ5OTRmNTg5ZDAvMC83RTQ2QzJFRTUw ODIzNTRGMTQ5NERFNkFFQTZDREE2NDI3NjlFREYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0U0NkMyRUU1MDgyMzU0RjE0OTRERTZBRUE2Q0RBNjQyNzY5 RURGMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEwZmYwMjJhLTliMTYtNGI0Yy05 OGEyLTUzNDk5NGY1ODlkMC8wLzMyMzAzMDMxM2E2NDY2MzEzYTM5Mzg2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMyMzMzODM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8ZjAMA0GCSqGSIb3DQEBCwUAA4IBAQBjzwBGwOvkaYbMgE88rBhwyMApj3tys6NR 9rYbtQT57ytbNwyMadKHR2o67HKtBtPR6ZzEE8aFmAUVqj2HGXmivLJ0Ke+EaNcy bJ6mwdHs1/AXVtHpPSq+CGcOedokfzQ9eK7DZxZUS98T3s1WaOxFip4nEOfTQ7cj /4FEbfCk9rFfGfm5IFk5DY93MvDpiO4WBjx3l1dEo+f821paKEqSY1xPKt8fTTnc iBVslUWNlrqmGrqd+8YR9GAX9HZVJR2ox1n49D1aDmnujxm8Os1jWTv2TrrFwhYI xAunYJyfL96siv5enxn06kSEkS/y2fOAKD58K4zNP3xS+0DNujAU -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:01 2024 by rpki-client on console-ams.rpki-client.org