$ rpki-client -vvf repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/323030313a6466303a666534303a3a2f34382d3438203d3e20313439393133.roa File: 323030313a6466303a666534303a3a2f34382d3438203d3e20313439393133.roa (raw, json) Hash identifier: 1dOzrX4avqAQHQ3TVbYFNMQCWQWmuWAEqDR8o1KiWmQ= Subject key identifier: 35:3F:5D:45:C3:89:9A:6C:5B:C0:05:51:3E:0D:7A:DB:5B:43:9B:AD Certificate issuer: /CN=458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33 Certificate serial: 4DF0B0087348B1198609FADE433ADE55D8393EAD Authority key identifier: 45:8D:9A:2B:4C:22:FF:50:16:AE:2E:24:72:9D:23:E2:BE:0D:FD:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/323030313a6466303a666534303a3a2f34382d3438203d3e20313439393133.roa Signing time: Fri 29 Dec 2023 02:34:22 +0000 ROA not before: Fri 29 Dec 2023 02:29:22 +0000 ROA not after: Fri 27 Dec 2024 02:34:22 +0000 asID: 149913 IP address blocks: 2001:df0:fe40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.crl rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:f0:b0:08:73:48:b1:19:86:09:fa:de:43:3a:de:55:d8:39:3e:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33 Validity Not Before: Dec 29 02:29:22 2023 GMT Not After : Dec 27 02:34:22 2024 GMT Subject: CN=353F5D45C3899A6C5BC005513E0D7ADB5B439BAD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:61:bb:a3:4d:49:cd:43:eb:49:76:bb:a9:41: eb:2b:66:89:74:cb:91:da:f4:ce:50:2e:08:19:b3: 39:20:ea:50:47:9e:85:29:f4:49:08:b5:a0:d3:c6: 63:aa:1a:4d:de:61:59:b7:3c:f0:cb:11:9e:17:ab: 93:fb:99:31:46:6e:74:b1:bc:4f:de:58:9f:84:1c: f8:8c:3a:c9:5b:5d:53:8d:03:ae:99:1d:96:ee:3f: 81:26:04:52:f9:73:5f:74:6a:4b:b4:29:ab:08:2b: 20:15:b2:3a:67:4f:24:67:22:db:aa:7c:02:2a:79: a1:e5:d8:a3:9a:8e:12:61:08:5e:c0:86:e2:66:25: b5:62:f4:7c:0f:2d:3d:fd:53:98:ab:6e:4e:e4:e7: ec:b6:bd:fe:9a:03:df:ff:0d:b9:d2:fa:a7:a6:f4: 61:71:91:a5:d3:d4:11:13:fd:7b:78:f1:ab:67:a5: 6c:8e:17:6b:53:28:b9:4f:e8:c3:4f:f3:9b:4c:2c: d4:26:39:64:78:3b:58:8b:8f:4b:25:1e:a6:e2:69: f1:e0:f4:7d:45:98:0c:a5:5c:4e:e8:bf:2e:fc:b3: 81:8e:8b:80:96:08:1d:a3:89:7f:e3:4b:da:bf:20: bb:5e:2d:3e:00:88:23:61:21:5f:40:b4:ee:16:96: 67:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:3F:5D:45:C3:89:9A:6C:5B:C0:05:51:3E:0D:7A:DB:5B:43:9B:AD X509v3 Authority Key Identifier: keyid:45:8D:9A:2B:4C:22:FF:50:16:AE:2E:24:72:9D:23:E2:BE:0D:FD:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/323030313a6466303a666534303a3a2f34382d3438203d3e20313439393133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:fe40::/48 Signature Algorithm: sha256WithRSAEncryption 8f:1e:e6:78:97:a2:69:bd:f1:2b:b9:f4:e5:f7:a8:59:a2:ab: 0f:bc:d5:10:9c:3c:24:00:70:20:ab:6d:44:c2:8b:3d:48:53: ed:7d:09:38:e7:ad:2a:40:c6:38:b7:39:29:55:bf:3a:4c:b4: 33:d2:6a:c1:63:dc:52:73:2b:a1:4c:52:ef:8a:c5:db:b5:8a: c4:1b:e8:74:3f:5f:1a:5f:7e:2b:a4:a3:d5:21:f7:a3:d6:8b: fd:30:70:1a:bb:4c:88:9c:88:42:34:d8:77:5e:1e:07:92:58: 19:00:2d:58:f6:32:d0:cb:1a:fc:b5:ec:1d:b7:cd:91:8d:f1: 32:9f:65:4a:8c:46:96:c7:77:0a:8f:77:e9:53:a5:20:ff:0b: c7:b7:ad:af:79:b6:8c:57:a5:35:0f:d0:cc:e1:a1:65:4e:31: 74:87:db:b1:ec:78:4a:e6:21:d5:17:89:81:3e:5b:bc:43:61: f8:15:1a:77:20:11:fc:72:6f:2a:e1:96:3c:75:20:ae:15:f1: af:db:b5:19:2e:c5:16:4e:4c:0d:d2:24:f8:d1:2b:80:da:6d: ea:37:7c:88:23:96:f6:27:a3:24:df:97:e4:38:6f:20:b1:59: 1c:79:a5:8e:36:d1:1a:06:27:49:c5:b9:36:fe:ae:75:8c:51: e8:13:9b:0c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUTfCwCHNIsRmGCfreQzreVdg5Pq0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDU4RDlBMkI0QzIyRkY1MDE2QUUyRTI0NzI5RDIzRTJC RTBERkQzMzAeFw0yMzEyMjkwMjI5MjJaFw0yNDEyMjcwMjM0MjJaMDMxMTAvBgNV BAMTKDM1M0Y1RDQ1QzM4OTlBNkM1QkMwMDU1MTNFMEQ3QURCNUI0MzlCQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsYbujTUnNQ+tJdrupQesrZol0 y5Ha9M5QLggZszkg6lBHnoUp9EkItaDTxmOqGk3eYVm3PPDLEZ4Xq5P7mTFGbnSx vE/eWJ+EHPiMOslbXVONA66ZHZbuP4EmBFL5c190aku0KasIKyAVsjpnTyRnItuq fAIqeaHl2KOajhJhCF7AhuJmJbVi9HwPLT39U5irbk7k5+y2vf6aA9//DbnS+qem 9GFxkaXT1BET/Xt48atnpWyOF2tTKLlP6MNP85tMLNQmOWR4O1iLj0slHqbiafHg 9H1FmAylXE7ovy78s4GOi4CWCB2jiX/jS9q/ILteLT4AiCNhIV9AtO4WlmdDAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUNT9dRcOJmmxbwAVRPg1621tDm60wHwYDVR0j BBgwFoAURY2aK0wi/1AWri4kcp0j4r4N/TMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODZkNmJhMS0xZjczLTQ3NzYtOGE2YS00ZjQ1MTIwNzkyYjEvMC80NThEOUEyQjRD MjJGRjUwMTZBRTJFMjQ3MjlEMjNFMkJFMERGRDMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDU4RDlBMkI0QzIyRkY1MDE2QUUyRTI0NzI5RDIzRTJCRTBE RkQzMy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4NmQ2YmExLTFmNzMtNDc3Ni04 YTZhLTRmNDUxMjA3OTJiMS8wLzMyMzAzMDMxM2E2NDY2MzAzYTY2NjUzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDM5MzkzMTMzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8P5AMA0GCSqGSIb3DQEBCwUAA4IBAQCPHuZ4l6JpvfErufTl96hZoqsPvNUQnDwk AHAgq21Ewos9SFPtfQk4560qQMY4tzkpVb86TLQz0mrBY9xScyuhTFLvisXbtYrE G+h0P18aX34rpKPVIfej1ov9MHAau0yInIhCNNh3Xh4HklgZAC1Y9jLQyxr8tewd t82RjfEyn2VKjEaWx3cKj3fpU6Ug/wvHt62vebaMV6U1D9DM4aFlTjF0h9ux7HhK 5iHVF4mBPlu8Q2H4FRp3IBH8cm8q4ZY8dSCuFfGv27UZLsUWTkwN0iT40SuA2m3q N3yII5b2J6Mk35fkOG8gsVkceaWONtEaBidJxbk2/q51jFHoE5sM -----END CERTIFICATE-----Generated at Sun Nov 24 05:18:49 2024 by rpki-client on console-ams.rpki-client.org