$ rpki-client -vvf repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/323030313a6466303a61333a3a2f34382d3438203d3e203435333035.roa File: 323030313a6466303a61333a3a2f34382d3438203d3e203435333035.roa (raw, json) Hash identifier: 71jqN8DhE0JKYB0EqMDkvLldp1gfS+xo4HcST08Qg/k= Subject key identifier: 3B:50:75:51:32:9D:C4:65:53:42:0C:2D:E1:6E:B2:30:E4:A8:FA:44 Certificate issuer: /CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Certificate serial: 3B1F70ACAD73AB10E6E05E0AAB74DBC6B25E1973 Authority key identifier: D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/323030313a6466303a61333a3a2f34382d3438203d3e203435333035.roa Signing time: Mon 01 Jul 2024 01:04:07 +0000 ROA not before: Mon 01 Jul 2024 00:59:07 +0000 ROA not after: Mon 30 Jun 2025 01:04:07 +0000 asID: 45305 IP address blocks: 2001:df0:a3::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 21:37:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:1f:70:ac:ad:73:ab:10:e6:e0:5e:0a:ab:74:db:c6:b2:5e:19:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Validity Not Before: Jul 1 00:59:07 2024 GMT Not After : Jun 30 01:04:07 2025 GMT Subject: CN=3B507551329DC46553420C2DE16EB230E4A8FA44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:16:fe:a8:e7:8b:ff:98:34:ff:5f:90:82:35: 88:4c:a7:82:e7:0b:c2:e2:ad:76:1d:7b:14:07:09: 34:60:76:c2:14:3d:d3:82:87:e3:0b:99:83:34:55: 6d:4a:e7:ba:6e:9b:6f:84:cf:2a:60:94:a4:d7:93: 73:1d:ba:5f:ba:54:19:78:ca:d6:79:90:73:50:13: a5:d1:71:b8:d5:5e:f5:ff:09:99:44:19:03:93:b6: 19:fe:56:98:f1:6b:9f:d8:a8:de:2e:f3:e3:27:03: 8d:31:6e:ad:30:7e:5d:69:8f:6e:e6:17:df:f3:d0: 24:4b:ba:de:e0:dd:3f:f4:d5:c6:27:26:ed:02:be: 9b:ed:71:7b:ee:eb:4e:ed:02:14:ff:8d:19:5b:31: 11:3e:01:8c:61:13:09:2f:d9:ad:1a:07:a7:94:74: 64:20:23:c5:69:fe:bd:72:01:7c:44:d2:58:07:d6: be:4d:65:f3:de:0f:fc:47:b3:41:28:7f:ba:d4:ce: b0:c7:42:e7:3f:24:29:c4:33:15:c8:4f:2e:2a:ef: 9b:e4:b9:62:a5:b7:23:f5:0c:ea:09:dd:86:3d:30: f6:4f:81:b9:c1:e5:60:b9:c2:bf:2d:54:f2:79:d8: d7:7e:81:b4:56:61:c0:93:25:85:e3:d7:53:52:ec: 26:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:50:75:51:32:9D:C4:65:53:42:0C:2D:E1:6E:B2:30:E4:A8:FA:44 X509v3 Authority Key Identifier: keyid:D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/323030313a6466303a61333a3a2f34382d3438203d3e203435333035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:a3::/48 Signature Algorithm: sha256WithRSAEncryption 33:82:40:08:64:7c:2a:93:ec:be:97:f6:39:35:4d:6f:fa:cf: 83:da:92:9e:73:89:e3:94:92:83:06:0d:0c:4b:34:52:d2:e8: ae:59:5c:2c:12:f6:9f:8b:27:8b:7e:1c:af:77:0a:5c:a3:28: ca:55:1c:01:6f:c6:54:16:e3:67:14:51:2a:9c:a6:07:7a:17: 0a:17:90:5e:94:9a:92:76:c7:7c:b8:3e:f8:6a:81:9c:c0:28: eb:94:93:da:33:81:31:85:f4:4f:12:1d:0f:61:3a:19:59:a4: 22:5f:17:02:fb:02:46:65:52:f8:f9:0a:8d:82:0c:3b:4c:03: 4c:0c:43:50:f2:b7:ab:03:5d:86:7c:c4:d3:a0:bd:21:0c:63: 55:91:25:e9:07:c9:ed:8c:be:df:8e:04:23:a7:be:17:38:eb: cf:15:f0:61:ff:cb:33:ce:77:87:cd:fb:b8:f3:be:02:d9:98: d3:a3:aa:cd:2a:16:94:f4:86:0d:f0:52:35:48:f8:3c:b2:5a: 93:4b:59:50:3e:9e:15:e4:a3:3f:71:d8:d5:71:ef:3e:b5:de: e4:bb:4b:5c:88:1d:1d:d2:2e:4c:2a:2a:fb:d4:47:1f:49:18: 16:73:01:db:59:53:d4:75:85:79:47:84:b6:47:63:d8:e5:c9: b4:12:32:29 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUOx9wrK1zqxDm4F4Kq3TbxrJeGXMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2 MTQyRTVGRDAeFw0yNDA3MDEwMDU5MDdaFw0yNTA2MzAwMTA0MDdaMDMxMTAvBgNV BAMTKDNCNTA3NTUxMzI5REM0NjU1MzQyMEMyREUxNkVCMjMwRTRBOEZBNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtFv6o54v/mDT/X5CCNYhMp4Ln C8LirXYdexQHCTRgdsIUPdOCh+MLmYM0VW1K57pum2+EzypglKTXk3Mdul+6VBl4 ytZ5kHNQE6XRcbjVXvX/CZlEGQOTthn+Vpjxa5/YqN4u8+MnA40xbq0wfl1pj27m F9/z0CRLut7g3T/01cYnJu0CvpvtcXvu607tAhT/jRlbMRE+AYxhEwkv2a0aB6eU dGQgI8Vp/r1yAXxE0lgH1r5NZfPeD/xHs0Eof7rUzrDHQuc/JCnEMxXITy4q75vk uWKltyP1DOoJ3YY9MPZPgbnB5WC5wr8tVPJ52Nd+gbRWYcCTJYXj11NS7CbTAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUO1B1UTKdxGVTQgwt4W6yMOSo+kQwHwYDVR0j BBgwFoAU0loEoOTlL/Qi2dj7hX0j3GFC5f0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDk1YzE5Yy0zMjYyLTQ4YzctYWYwMi0zN2E4MzVkMGE3NzkvMC9EMjVBMDRBMEU0 RTUyRkY0MjJEOUQ4RkI4NTdEMjNEQzYxNDJFNUZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2MTQy RTVGRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOTVjMTljLTMyNjItNDhjNy1h ZjAyLTM3YTgzNWQwYTc3OS8wLzMyMzAzMDMxM2E2NDY2MzAzYTYxMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNDM1MzMzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN8ACjMA0G CSqGSIb3DQEBCwUAA4IBAQAzgkAIZHwqk+y+l/Y5NU1v+s+D2pKec4njlJKDBg0M SzRS0uiuWVwsEvafiyeLfhyvdwpcoyjKVRwBb8ZUFuNnFFEqnKYHehcKF5BelJqS dsd8uD74aoGcwCjrlJPaM4ExhfRPEh0PYToZWaQiXxcC+wJGZVL4+QqNggw7TANM DENQ8rerA12GfMTToL0hDGNVkSXpB8ntjL7fjgQjp74XOOvPFfBh/8szzneHzfu4 874C2ZjTo6rNKhaU9IYN8FI1SPg8slqTS1lQPp4V5KM/cdjVce8+td7ku0tciB0d 0i5MKir71EcfSRgWcwHbWVPUdYV5R4S2R2PY5cm0EjIp -----END CERTIFICATE-----Generated at Thu Nov 21 21:37:41 2024 by rpki-client on console-ams.rpki-client.org