$ rpki-client -vvf repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/1/323030313a6466333a646663303a3a2f34382d3438203d3e20313532383030.roa File: 323030313a6466333a646663303a3a2f34382d3438203d3e20313532383030.roa (raw, json) Hash identifier: 49HTMVxx05wPdArfdbkc8ZuyfBJmlfmMETsXKqg+H4o= Subject key identifier: A7:8B:F0:3C:5B:A3:C8:FB:71:73:F5:F2:48:69:33:F5:FB:C7:2E:4B Certificate issuer: /CN=3FFDC502E90AF8E66FDDCD0A6DF31D168F38BAA6 Certificate serial: 6EBFD3BF2AA25A3716A3A34ECF98A328BFD5BD99 Authority key identifier: 3F:FD:C5:02:E9:0A:F8:E6:6F:DD:CD:0A:6D:F3:1D:16:8F:38:BA:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFDC502E90AF8E66FDDCD0A6DF31D168F38BAA6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/1/323030313a6466333a646663303a3a2f34382d3438203d3e20313532383030.roa Signing time: Tue 25 Jun 2024 14:14:17 +0000 ROA not before: Tue 25 Jun 2024 14:09:17 +0000 ROA not after: Tue 24 Jun 2025 14:14:17 +0000 asID: 152800 IP address blocks: 2001:df3:dfc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/1/3FFDC502E90AF8E66FDDCD0A6DF31D168F38BAA6.crl rsync://repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/1/3FFDC502E90AF8E66FDDCD0A6DF31D168F38BAA6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFDC502E90AF8E66FDDCD0A6DF31D168F38BAA6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:bf:d3:bf:2a:a2:5a:37:16:a3:a3:4e:cf:98:a3:28:bf:d5:bd:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3FFDC502E90AF8E66FDDCD0A6DF31D168F38BAA6 Validity Not Before: Jun 25 14:09:17 2024 GMT Not After : Jun 24 14:14:17 2025 GMT Subject: CN=A78BF03C5BA3C8FB7173F5F2486933F5FBC72E4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4e:ce:86:f7:7f:b0:df:1f:da:af:ee:1c:bc: 55:95:48:92:02:51:13:ef:af:0b:01:e4:da:93:14: 59:af:e5:12:dd:8d:a9:09:e7:ac:ec:2d:de:f7:ed: 61:07:74:39:d8:a8:c0:56:f6:45:b3:5d:ef:b2:fa: fc:91:18:33:80:2f:56:dd:b3:aa:f9:99:bd:e2:a9: a4:5f:d2:9b:ce:f9:86:77:99:92:e5:4b:0e:8f:56: ad:a8:9c:e6:6d:61:c6:a4:17:1c:ff:4c:f2:44:78: b5:a5:20:50:ad:5e:04:9f:79:97:36:70:82:c7:c1: c7:cc:54:b0:d4:91:be:f9:90:8b:46:81:03:80:f0: fc:3b:29:7d:02:b9:bb:ce:da:b6:02:09:50:21:59: bc:bf:5d:d3:17:83:e2:94:70:53:c5:d8:c5:59:0e: 45:3d:d2:24:c5:7f:9e:f6:ba:ca:f4:a6:9d:c7:34: 9a:b9:a4:9d:95:a4:ff:90:2f:55:6d:94:44:f7:53: 2a:b4:23:c7:5a:2f:5a:98:e8:23:c0:40:b3:02:c0: 64:0d:63:d5:f2:29:0e:93:7a:c6:29:e2:c3:56:52: 06:e3:54:ee:c9:f9:26:35:f6:2f:7a:a5:c7:a9:6a: fd:37:49:a3:c4:6e:13:0d:b1:60:6a:65:5f:2a:8e: 24:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:8B:F0:3C:5B:A3:C8:FB:71:73:F5:F2:48:69:33:F5:FB:C7:2E:4B X509v3 Authority Key Identifier: keyid:3F:FD:C5:02:E9:0A:F8:E6:6F:DD:CD:0A:6D:F3:1D:16:8F:38:BA:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/1/3FFDC502E90AF8E66FDDCD0A6DF31D168F38BAA6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFDC502E90AF8E66FDDCD0A6DF31D168F38BAA6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/1/323030313a6466333a646663303a3a2f34382d3438203d3e20313532383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:dfc0::/48 Signature Algorithm: sha256WithRSAEncryption c4:9e:31:c2:b3:9f:09:46:72:0a:79:27:b5:3f:82:e9:4f:92: de:4e:13:aa:d2:db:ae:58:e9:2c:9c:2f:e0:5e:62:07:c8:ef: f6:d0:fe:ea:26:d9:7b:e9:90:e0:9e:45:e7:40:7e:6c:7f:81: 76:2e:27:4a:cf:d4:7e:d4:14:7f:1f:1b:f3:9b:ee:c6:9b:3e: ad:7b:b4:34:57:d0:55:58:17:fa:46:f3:e2:81:e2:69:a2:ad: c2:54:bb:51:43:f2:bf:fb:19:dc:57:3b:d0:4c:1b:84:68:63: a0:10:02:6f:02:05:01:4a:8c:cb:fd:0d:4b:87:79:62:f8:00: 27:be:a5:26:f8:6a:25:05:59:d8:b0:58:7f:90:ea:72:83:4b: b9:9e:b9:2e:99:8c:bd:55:e5:34:8e:02:93:1a:23:9d:bd:5c: d9:2a:9c:3b:51:72:63:c5:b7:83:db:4e:5a:aa:7d:12:1d:5a: 59:38:e8:eb:4c:41:ea:d2:f7:35:ee:ec:ca:7f:ce:ae:22:79: 8f:0f:23:e0:1c:ca:b5:48:99:d2:c0:a5:f0:2c:a2:46:db:9d: a6:86:bb:3e:9e:15:d8:c7:d5:1d:cf:30:b3:c7:6f:c0:3d:a0: b7:cd:42:b1:1a:c6:0d:5a:fd:79:34:65:ef:87:95:e4:97:8a: 29:14:bd:fd -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUbr/TvyqiWjcWo6NOz5ijKL/VvZkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0ZGREM1MDJFOTBBRjhFNjZGRERDRDBBNkRGMzFEMTY4 RjM4QkFBNjAeFw0yNDA2MjUxNDA5MTdaFw0yNTA2MjQxNDE0MTdaMDMxMTAvBgNV BAMTKEE3OEJGMDNDNUJBM0M4RkI3MTczRjVGMjQ4NjkzM0Y1RkJDNzJFNEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHTs6G93+w3x/ar+4cvFWVSJIC URPvrwsB5NqTFFmv5RLdjakJ56zsLd737WEHdDnYqMBW9kWzXe+y+vyRGDOAL1bd s6r5mb3iqaRf0pvO+YZ3mZLlSw6PVq2onOZtYcakFxz/TPJEeLWlIFCtXgSfeZc2 cILHwcfMVLDUkb75kItGgQOA8Pw7KX0CubvO2rYCCVAhWby/XdMXg+KUcFPF2MVZ DkU90iTFf572usr0pp3HNJq5pJ2VpP+QL1VtlET3Uyq0I8daL1qY6CPAQLMCwGQN Y9XyKQ6TesYp4sNWUgbjVO7J+SY19i96pcepav03SaPEbhMNsWBqZV8qjiQ/AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUp4vwPFujyPtxc/XySGkz9fvHLkswHwYDVR0j BBgwFoAUP/3FAukK+OZv3c0KbfMdFo84uqYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmRhMGU4Mi0wNzY0LTQ1ZDMtYWVkOS1mZDI1OGU3MmI2ZTIvMS8zRkZEQzUwMkU5 MEFGOEU2NkZERENEMEE2REYzMUQxNjhGMzhCQUE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0ZGREM1MDJFOTBBRjhFNjZGRERDRDBBNkRGMzFEMTY4RjM4 QkFBNi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2ZGEwZTgyLTA3NjQtNDVkMy1h ZWQ5LWZkMjU4ZTcyYjZlMi8xLzMyMzAzMDMxM2E2NDY2MzMzYTY0NjY2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzgzMDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 89/AMA0GCSqGSIb3DQEBCwUAA4IBAQDEnjHCs58JRnIKeSe1P4LpT5LeThOq0tuu WOksnC/gXmIHyO/20P7qJtl76ZDgnkXnQH5sf4F2LidKz9R+1BR/Hxvzm+7Gmz6t e7Q0V9BVWBf6RvPigeJpoq3CVLtRQ/K/+xncVzvQTBuEaGOgEAJvAgUBSozL/Q1L h3li+AAnvqUm+GolBVnYsFh/kOpyg0u5nrkumYy9VeU0jgKTGiOdvVzZKpw7UXJj xbeD205aqn0SHVpZOOjrTEHq0vc17uzKf86uInmPDyPgHMq1SJnSwKXwLKJG252m hrs+nhXYx9UdzzCzx2/APaC3zUKxGsYNWv15NGXvh5Xkl4opFL39 -----END CERTIFICATE-----Generated at Sun Nov 24 00:53:31 2024 by rpki-client on console-fra.rpki-client.org