$ rpki-client -vvf repo-rpki.idnic.net/repo/188e3a17-1c91-4793-83c4-211d4210aea8/0/323030313a6466313a396563303a3a2f34382d3438203d3e20313439383831.roa File: 323030313a6466313a396563303a3a2f34382d3438203d3e20313439383831.roa (raw, json) Hash identifier: 2+QIfySh8c6i8OAm2ZBYIJAC5i/VOgSLnCJgIJXnqcY= Subject key identifier: 20:DA:B4:C3:0C:1E:F6:D5:D9:C6:62:D7:D3:C3:D4:40:6F:82:FA:7F Certificate issuer: /CN=E1FE69A34216C24D1870F5CED3A4309234A0F1B2 Certificate serial: 398FC8FC489F56001E80F3B404772D7D6037F813 Authority key identifier: E1:FE:69:A3:42:16:C2:4D:18:70:F5:CE:D3:A4:30:92:34:A0:F1:B2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1FE69A34216C24D1870F5CED3A4309234A0F1B2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/188e3a17-1c91-4793-83c4-211d4210aea8/0/323030313a6466313a396563303a3a2f34382d3438203d3e20313439383831.roa Signing time: Fri 18 Oct 2024 10:00:01 +0000 ROA not before: Fri 18 Oct 2024 09:55:01 +0000 ROA not after: Fri 17 Oct 2025 10:00:01 +0000 asID: 149881 IP address blocks: 2001:df1:9ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/188e3a17-1c91-4793-83c4-211d4210aea8/0/E1FE69A34216C24D1870F5CED3A4309234A0F1B2.crl rsync://repo-rpki.idnic.net/repo/188e3a17-1c91-4793-83c4-211d4210aea8/0/E1FE69A34216C24D1870F5CED3A4309234A0F1B2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1FE69A34216C24D1870F5CED3A4309234A0F1B2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 11:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:8f:c8:fc:48:9f:56:00:1e:80:f3:b4:04:77:2d:7d:60:37:f8:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1FE69A34216C24D1870F5CED3A4309234A0F1B2 Validity Not Before: Oct 18 09:55:01 2024 GMT Not After : Oct 17 10:00:01 2025 GMT Subject: CN=20DAB4C30C1EF6D5D9C662D7D3C3D4406F82FA7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d5:02:e7:5c:67:64:af:92:49:17:99:11:5b: 3f:39:d0:75:04:85:b9:de:8c:da:93:36:3d:39:2f: d4:d9:58:12:80:69:7b:b4:e7:7a:66:1d:e5:f1:9e: cd:6c:07:76:e9:ab:a4:60:5e:fa:46:f8:71:36:95: 17:33:19:89:24:9d:5b:d8:a7:ae:fd:64:37:2c:1c: bc:d4:de:82:ca:9c:ad:de:ce:53:82:c1:95:39:f2: 6c:2d:86:92:d5:a6:e3:56:2a:2d:cf:da:f7:a2:96: bc:34:2b:53:88:03:1b:63:2d:38:c4:c1:9c:b1:21: 4c:a8:3b:59:db:05:75:f3:8a:2a:ad:3a:9f:c5:1a: dd:ac:8e:c3:78:cd:62:1a:e3:84:fd:5b:f4:38:e2: 28:e2:e2:3e:3c:1d:9f:87:d2:ec:ab:29:0f:c5:7e: 1b:f7:19:13:96:c7:17:e7:c5:10:5e:68:48:b8:f5: 68:3c:14:76:16:2f:fa:13:0d:9c:c7:ff:75:f7:38: 7a:98:b0:74:42:1b:8a:85:a5:e3:44:7d:3e:27:40: 66:9e:f0:14:db:8e:1a:41:f9:7f:d2:4d:32:27:01: 51:bb:b5:35:b3:fc:6d:84:26:f8:5a:38:5e:74:02: da:2f:a6:53:3d:a2:d1:1b:c2:8a:1c:39:71:0e:bc: 8f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:DA:B4:C3:0C:1E:F6:D5:D9:C6:62:D7:D3:C3:D4:40:6F:82:FA:7F X509v3 Authority Key Identifier: keyid:E1:FE:69:A3:42:16:C2:4D:18:70:F5:CE:D3:A4:30:92:34:A0:F1:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/188e3a17-1c91-4793-83c4-211d4210aea8/0/E1FE69A34216C24D1870F5CED3A4309234A0F1B2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1FE69A34216C24D1870F5CED3A4309234A0F1B2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/188e3a17-1c91-4793-83c4-211d4210aea8/0/323030313a6466313a396563303a3a2f34382d3438203d3e20313439383831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:9ec0::/48 Signature Algorithm: sha256WithRSAEncryption 36:c5:88:60:68:e3:7b:cf:94:6e:23:45:46:36:f9:47:72:df: 79:37:8b:de:57:8a:f8:4a:67:33:15:4c:a2:8a:c0:ea:c1:c0: 43:04:34:57:93:d8:9d:77:08:6f:d9:f8:39:fc:4e:b9:df:f4: 97:97:f8:53:d3:a4:d4:65:04:70:ea:30:0b:a8:1b:7e:a8:e7: 35:7a:a1:fa:9c:c3:a3:cc:bd:9f:06:b4:53:2f:26:07:d2:f8: 9b:ea:66:3d:bd:3a:79:40:45:17:b3:af:ef:76:f5:fd:69:b3: 30:5b:38:8e:13:8b:75:3b:4a:46:b2:6e:c8:8a:50:6b:1a:36: 94:c6:84:81:fd:1a:3f:9a:d1:9c:c1:e3:b0:97:12:93:4b:0a: a6:bb:12:6c:33:19:ca:26:51:38:07:f1:c7:b1:5c:8f:75:2a: 5f:fb:36:f7:f1:b1:e8:e4:50:e4:2a:d8:e8:f0:f9:cb:1d:0a: ed:32:79:a8:20:da:df:50:db:da:2d:cc:c6:39:95:ba:ad:b7: 30:f1:56:b1:23:ff:ee:b2:29:31:39:c9:4d:ca:96:e9:d5:5f: 29:d7:0c:39:9d:0d:98:f6:21:7f:f0:8a:9e:ca:2f:90:4f:a3: 19:8e:bc:38:45:46:30:14:6a:e3:85:9f:76:f8:5a:8c:d7:7c: fd:13:41:9c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUOY/I/EifVgAegPO0BHctfWA3+BMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTFGRTY5QTM0MjE2QzI0RDE4NzBGNUNFRDNBNDMwOTIz NEEwRjFCMjAeFw0yNDEwMTgwOTU1MDFaFw0yNTEwMTcxMDAwMDFaMDMxMTAvBgNV BAMTKDIwREFCNEMzMEMxRUY2RDVEOUM2NjJEN0QzQzNENDQwNkY4MkZBN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB1QLnXGdkr5JJF5kRWz850HUE hbnejNqTNj05L9TZWBKAaXu053pmHeXxns1sB3bpq6RgXvpG+HE2lRczGYkknVvY p679ZDcsHLzU3oLKnK3ezlOCwZU58mwthpLVpuNWKi3P2veilrw0K1OIAxtjLTjE wZyxIUyoO1nbBXXziiqtOp/FGt2sjsN4zWIa44T9W/Q44iji4j48HZ+H0uyrKQ/F fhv3GROWxxfnxRBeaEi49Wg8FHYWL/oTDZzH/3X3OHqYsHRCG4qFpeNEfT4nQGae 8BTbjhpB+X/STTInAVG7tTWz/G2EJvhaOF50AtovplM9otEbwoocOXEOvI8LAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUINq0wwwe9tXZxmLX08PUQG+C+n8wHwYDVR0j BBgwFoAU4f5po0IWwk0YcPXO06QwkjSg8bIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODhlM2ExNy0xYzkxLTQ3OTMtODNjNC0yMTFkNDIxMGFlYTgvMC9FMUZFNjlBMzQy MTZDMjREMTg3MEY1Q0VEM0E0MzA5MjM0QTBGMUIyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTFGRTY5QTM0MjE2QzI0RDE4NzBGNUNFRDNBNDMwOTIzNEEw RjFCMi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4OGUzYTE3LTFjOTEtNDc5My04 M2M0LTIxMWQ0MjEwYWVhOC8wLzMyMzAzMDMxM2E2NDY2MzEzYTM5NjU2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDM5MzgzODMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8Z7AMA0GCSqGSIb3DQEBCwUAA4IBAQA2xYhgaON7z5RuI0VGNvlHct95N4veV4r4 SmczFUyiisDqwcBDBDRXk9iddwhv2fg5/E653/SXl/hT06TUZQRw6jALqBt+qOc1 eqH6nMOjzL2fBrRTLyYH0vib6mY9vTp5QEUXs6/vdvX9abMwWziOE4t1O0pGsm7I ilBrGjaUxoSB/Ro/mtGcweOwlxKTSwqmuxJsMxnKJlE4B/HHsVyPdSpf+zb38bHo 5FDkKtjo8PnLHQrtMnmoINrfUNvaLczGOZW6rbcw8VaxI//usikxOclNypbp1V8p 1ww5nQ2Y9iF/8Iqeyi+QT6MZjrw4RUYwFGrjhZ92+FqM13z9E0Gc -----END CERTIFICATE-----Generated at Mon Nov 25 09:01:49 2024 by rpki-client on console-ams.rpki-client.org