$ rpki-client -vvf repo-rpki.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/1/323030313a6466343a353863303a3a2f34382d3438203d3e20313533313237.roa File: 323030313a6466343a353863303a3a2f34382d3438203d3e20313533313237.roa (raw, json) Hash identifier: C/eQpXS1FL2/uRM5yW4FJhP7RGRcdJRCrZp3lfFC1uQ= Subject key identifier: B5:67:D5:C7:B4:48:C4:09:DA:15:35:91:2F:43:CF:D6:9D:32:95:52 Certificate issuer: /CN=1F515919CCC0A900FF9717E1B7EF11F5A5183DF3 Certificate serial: 44F50F71EE7FB01AB74B1AF078B717319DF386D8 Authority key identifier: 1F:51:59:19:CC:C0:A9:00:FF:97:17:E1:B7:EF:11:F5:A5:18:3D:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F515919CCC0A900FF9717E1B7EF11F5A5183DF3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/1/323030313a6466343a353863303a3a2f34382d3438203d3e20313533313237.roa Signing time: Wed 16 Oct 2024 06:27:29 +0000 ROA not before: Wed 16 Oct 2024 06:22:29 +0000 ROA not after: Wed 15 Oct 2025 06:27:29 +0000 asID: 153127 IP address blocks: 2001:df4:58c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/1/1F515919CCC0A900FF9717E1B7EF11F5A5183DF3.crl rsync://repo-rpki.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/1/1F515919CCC0A900FF9717E1B7EF11F5A5183DF3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F515919CCC0A900FF9717E1B7EF11F5A5183DF3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:f5:0f:71:ee:7f:b0:1a:b7:4b:1a:f0:78:b7:17:31:9d:f3:86:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F515919CCC0A900FF9717E1B7EF11F5A5183DF3 Validity Not Before: Oct 16 06:22:29 2024 GMT Not After : Oct 15 06:27:29 2025 GMT Subject: CN=B567D5C7B448C409DA1535912F43CFD69D329552 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:79:0b:3d:03:12:35:90:48:30:a0:36:aa:5e: 0b:97:fe:7c:1b:68:55:79:10:6b:ac:bf:7b:03:a7: 2b:31:68:30:9a:17:ac:77:83:91:21:e5:f1:43:c0: 3d:05:fc:35:7a:5f:94:b5:d0:c4:46:98:f1:36:41: 05:9d:03:cc:d2:b9:56:0c:0e:0f:ae:53:7c:85:48: 22:fe:c7:0a:84:29:0d:7c:06:77:7e:d5:86:24:0d: c4:12:82:c0:67:5b:b6:d2:bf:a3:54:61:bd:e3:16: 97:3a:ac:3b:c1:6f:ed:20:40:1b:27:a5:45:aa:8a: 81:af:e7:45:29:9a:ac:3d:91:e6:cb:7f:57:13:be: 47:51:c9:ed:80:e3:45:e7:55:71:7a:f6:0e:a9:24: 1d:ea:a4:15:a4:45:b2:9b:71:85:5b:ea:9c:5b:39: 6e:4d:27:aa:1e:ce:ac:26:6c:82:09:26:04:07:c4: b7:25:e7:67:44:41:c6:93:e5:88:5a:d9:b4:b9:f9: d8:f3:53:5f:4a:a6:97:b1:a6:40:1a:e9:31:32:70: 5a:af:25:04:d6:b9:f1:7e:2c:eb:0a:01:64:0e:8e: 1a:e1:61:e5:3e:55:59:7d:2a:c2:db:99:3d:1e:22: 0c:b6:a6:84:e9:71:85:32:cc:82:7d:84:7a:61:50: 05:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:67:D5:C7:B4:48:C4:09:DA:15:35:91:2F:43:CF:D6:9D:32:95:52 X509v3 Authority Key Identifier: keyid:1F:51:59:19:CC:C0:A9:00:FF:97:17:E1:B7:EF:11:F5:A5:18:3D:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/1/1F515919CCC0A900FF9717E1B7EF11F5A5183DF3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F515919CCC0A900FF9717E1B7EF11F5A5183DF3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/1/323030313a6466343a353863303a3a2f34382d3438203d3e20313533313237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:58c0::/48 Signature Algorithm: sha256WithRSAEncryption 1c:b9:71:af:2f:fc:d4:5b:21:77:2c:bf:ed:3e:f1:7d:3a:1c: 6e:c9:d5:55:55:22:3e:d2:b2:67:fa:66:56:14:0e:7a:7d:13: 75:3a:a0:14:dc:a5:63:4d:2f:5a:a0:76:2a:88:c1:6c:9b:8e: 1d:d4:6c:ea:bc:25:e2:3f:7c:c8:38:8e:8c:b1:87:f0:3b:85: 84:bc:7e:ea:76:b8:4c:34:20:10:dc:cf:18:73:a9:bb:ff:cd: c7:2f:66:a8:f1:ea:4a:68:b3:ad:42:77:e2:ee:ad:b7:1f:11: b1:a3:80:a7:ef:02:ba:90:04:47:7a:b0:1d:c5:87:6b:73:e2: 3d:27:1a:6b:eb:ca:45:b9:d3:2a:6c:1d:54:1e:83:ff:44:6a: a3:67:69:70:fe:28:e0:cd:c1:64:7c:de:af:41:14:89:d0:1a: 9d:e2:2a:34:6d:f6:93:3f:6a:24:b3:b1:97:11:31:53:e9:35: 79:41:48:4c:d5:96:ee:92:e9:8a:d8:77:a6:a2:b7:3b:04:8a: 1c:3a:69:d5:f6:1f:7f:12:5c:81:28:a5:9f:0b:1f:74:5a:b6: eb:25:72:14:ad:6b:14:8e:37:30:e7:bf:fc:33:87:02:da:3e: 3d:35:36:78:d9:cd:9e:8b:aa:3c:ad:17:83:f7:47:2e:88:93: a1:36:58:e7 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIURPUPce5/sBq3SxrweLcXMZ3zhtgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUY1MTU5MTlDQ0MwQTkwMEZGOTcxN0UxQjdFRjExRjVB NTE4M0RGMzAeFw0yNDEwMTYwNjIyMjlaFw0yNTEwMTUwNjI3MjlaMDMxMTAvBgNV BAMTKEI1NjdENUM3QjQ0OEM0MDlEQTE1MzU5MTJGNDNDRkQ2OUQzMjk1NTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3eQs9AxI1kEgwoDaqXguX/nwb aFV5EGusv3sDpysxaDCaF6x3g5Eh5fFDwD0F/DV6X5S10MRGmPE2QQWdA8zSuVYM Dg+uU3yFSCL+xwqEKQ18Bnd+1YYkDcQSgsBnW7bSv6NUYb3jFpc6rDvBb+0gQBsn pUWqioGv50Upmqw9kebLf1cTvkdRye2A40XnVXF69g6pJB3qpBWkRbKbcYVb6pxb OW5NJ6oezqwmbIIJJgQHxLcl52dEQcaT5Yha2bS5+djzU19KppexpkAa6TEycFqv JQTWufF+LOsKAWQOjhrhYeU+VVl9KsLbmT0eIgy2poTpcYUyzIJ9hHphUAXhAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUtWfVx7RIxAnaFTWRL0PP1p0ylVIwHwYDVR0j BBgwFoAUH1FZGczAqQD/lxfht+8R9aUYPfMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MWQ5N2I0MC1jMDMxLTRlNWItOWI0Mi1kMmFlMWM5Y2Y5ODcvMS8xRjUxNTkxOUND QzBBOTAwRkY5NzE3RTFCN0VGMTFGNUE1MTgzREYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUY1MTU5MTlDQ0MwQTkwMEZGOTcxN0UxQjdFRjExRjVBNTE4 M0RGMy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIxZDk3YjQwLWMwMzEtNGU1Yi05 YjQyLWQyYWUxYzljZjk4Ny8xLzMyMzAzMDMxM2E2NDY2MzQzYTM1Mzg2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzEzMjM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9FjAMA0GCSqGSIb3DQEBCwUAA4IBAQAcuXGvL/zUWyF3LL/tPvF9OhxuydVVVSI+ 0rJn+mZWFA56fRN1OqAU3KVjTS9aoHYqiMFsm44d1GzqvCXiP3zIOI6MsYfwO4WE vH7qdrhMNCAQ3M8Yc6m7/83HL2ao8epKaLOtQnfi7q23HxGxo4Cn7wK6kARHerAd xYdrc+I9Jxpr68pFudMqbB1UHoP/RGqjZ2lw/ijgzcFkfN6vQRSJ0Bqd4io0bfaT P2oks7GXETFT6TV5QUhM1ZbukumK2Hemorc7BIocOmnV9h9/ElyBKKWfCx90Wrbr JXIUrWsUjjcw57/8M4cC2j49NTZ42c2ei6o8rReD90cuiJOhNljn -----END CERTIFICATE-----Generated at Mon Nov 25 00:59:32 2024 by rpki-client on console-ams.rpki-client.org