$ rpki-client -vvf repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/323030313a6466363a366630303a3a2f34382d3438203d3e20313331373034.roa File: 323030313a6466363a366630303a3a2f34382d3438203d3e20313331373034.roa (raw, json) Hash identifier: VDnkiC6xsHb+wdu6iC6My4yclVTmaygUM2M2G/K9SOQ= Subject key identifier: C7:85:9C:0D:26:76:D3:93:3F:23:E8:59:18:CD:A0:B6:DF:15:92:8F Certificate issuer: /CN=4AC7DCD8EB1234ADC427AEBE3949E8691638A707 Certificate serial: 32516CA76D669194E70615054D5F86ED3572D3E5 Authority key identifier: 4A:C7:DC:D8:EB:12:34:AD:C4:27:AE:BE:39:49:E8:69:16:38:A7:07 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.cer Subject info access: rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/323030313a6466363a366630303a3a2f34382d3438203d3e20313331373034.roa Signing time: Tue 09 Jan 2024 04:02:10 +0000 ROA not before: Tue 09 Jan 2024 03:57:10 +0000 ROA not after: Tue 07 Jan 2025 04:02:10 +0000 asID: 131704 IP address blocks: 2001:df6:6f00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.crl rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:51:6c:a7:6d:66:91:94:e7:06:15:05:4d:5f:86:ed:35:72:d3:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AC7DCD8EB1234ADC427AEBE3949E8691638A707 Validity Not Before: Jan 9 03:57:10 2024 GMT Not After : Jan 7 04:02:10 2025 GMT Subject: CN=C7859C0D2676D3933F23E85918CDA0B6DF15928F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:26:d2:fd:1e:bb:30:fd:52:c1:75:64:91:70: 5d:4f:3c:e6:96:ef:f4:a9:f2:dd:d6:e0:69:6a:81: b5:2d:1e:e7:34:99:7c:00:28:b1:2e:7f:0d:f7:c7: 03:e3:0c:b3:f2:5e:53:26:54:bc:c8:92:56:fc:0d: ea:f1:90:97:e0:b0:f6:10:56:2a:0e:87:19:e9:80: c3:f4:26:a4:2d:1d:ce:59:e7:1e:2a:0b:b3:fc:00: 86:f6:a4:f1:d3:ce:84:92:48:00:dd:3e:82:18:09: 2d:c7:94:8e:c6:a1:49:ce:f3:e0:47:49:fc:66:91: 0a:8b:87:05:53:ab:cd:f3:12:60:72:b9:89:59:3f: ed:65:29:1e:18:c0:10:79:43:d6:bf:4b:9f:18:fe: f3:f6:20:58:ca:01:79:52:da:9f:71:c7:87:6c:4e: 83:e7:d3:9f:ce:d1:9d:ee:81:71:95:32:8f:16:3f: f6:fe:29:d2:6a:4d:cf:30:93:f1:1d:a8:16:37:c3: 83:b5:10:30:e1:81:34:66:03:d5:15:01:4e:57:af: ba:26:0c:ea:d6:d2:da:8e:4a:32:cf:fb:64:4e:10: 9e:91:ef:db:a7:c8:e3:d2:1e:4b:fa:77:95:ce:58: 83:3f:06:a1:39:28:be:82:62:ff:5c:d8:40:f1:58: 55:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:85:9C:0D:26:76:D3:93:3F:23:E8:59:18:CD:A0:B6:DF:15:92:8F X509v3 Authority Key Identifier: keyid:4A:C7:DC:D8:EB:12:34:AD:C4:27:AE:BE:39:49:E8:69:16:38:A7:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/323030313a6466363a366630303a3a2f34382d3438203d3e20313331373034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:6f00::/48 Signature Algorithm: sha256WithRSAEncryption ec:0a:f4:2e:b4:be:be:bf:44:10:08:3b:82:17:94:79:0a:fd: 56:57:81:f6:7c:71:76:5a:1a:3f:a3:1e:24:75:61:df:57:b3: ab:2a:f0:c6:c9:7b:ef:da:15:d7:43:30:7e:15:b0:87:f6:72: c5:f7:55:12:5c:99:96:a1:d9:48:2c:8b:40:e2:b4:40:f5:f2: a3:24:9d:ae:27:97:e1:ca:42:f7:99:cc:1c:a1:a1:a0:e2:31: e7:53:3a:63:e3:4f:f2:3b:7b:e5:76:21:a3:ab:50:96:e4:4a: 0c:7d:19:1d:3c:f4:9a:d2:3e:b7:f6:96:2a:2a:e7:e5:39:d4: 67:af:a3:57:7e:6b:40:51:ed:79:85:c6:27:e3:4d:14:82:5b: be:50:ac:d0:cd:1f:53:ec:9f:8d:97:a9:98:d1:da:4a:9a:36: 36:29:25:db:84:fb:02:58:88:99:08:c5:1d:19:29:e4:73:10: df:2c:dd:a0:39:bd:84:7e:2e:2e:38:2d:7a:f2:6c:22:13:99: 07:ee:45:a3:12:f1:e0:0a:b8:31:c8:0d:c7:3e:e4:96:3a:91: cd:4a:56:a9:a5:9b:31:70:2e:fa:5f:d7:b3:ce:2a:e4:c1:9c: f4:99:68:03:6a:33:4b:80:ea:45:71:e8:38:3f:a4:17:2d:7c: c1:8a:1e:df -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUMlFsp21mkZTnBhUFTV+G7TVy0+UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFDN0RDRDhFQjEyMzRBREM0MjdBRUJFMzk0OUU4Njkx NjM4QTcwNzAeFw0yNDAxMDkwMzU3MTBaFw0yNTAxMDcwNDAyMTBaMDMxMTAvBgNV BAMTKEM3ODU5QzBEMjY3NkQzOTMzRjIzRTg1OTE4Q0RBMEI2REYxNTkyOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRJtL9Hrsw/VLBdWSRcF1PPOaW 7/Sp8t3W4GlqgbUtHuc0mXwAKLEufw33xwPjDLPyXlMmVLzIklb8DerxkJfgsPYQ VioOhxnpgMP0JqQtHc5Z5x4qC7P8AIb2pPHTzoSSSADdPoIYCS3HlI7GoUnO8+BH SfxmkQqLhwVTq83zEmByuYlZP+1lKR4YwBB5Q9a/S58Y/vP2IFjKAXlS2p9xx4ds ToPn05/O0Z3ugXGVMo8WP/b+KdJqTc8wk/EdqBY3w4O1EDDhgTRmA9UVAU5Xr7om DOrW0tqOSjLP+2ROEJ6R79unyOPSHkv6d5XOWIM/BqE5KL6CYv9c2EDxWFUbAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUx4WcDSZ205M/I+hZGM2gtt8Vko8wHwYDVR0j BBgwFoAUSsfc2OsSNK3EJ66+OUnoaRY4pwcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MzgwNjFmMS1mYTMwLTRiZDYtODFhMC0yZWM2NzA4MzZjNDIvMC80QUM3RENEOEVC MTIzNEFEQzQyN0FFQkUzOTQ5RTg2OTE2MzhBNzA3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEFDN0RDRDhFQjEyMzRBREM0MjdBRUJFMzk0OUU4NjkxNjM4 QTcwNy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQzODA2MWYxLWZhMzAtNGJkNi04 MWEwLTJlYzY3MDgzNmM0Mi8wLzMyMzAzMDMxM2E2NDY2MzYzYTM2NjYzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMxMzczMDM0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9m8AMA0GCSqGSIb3DQEBCwUAA4IBAQDsCvQutL6+v0QQCDuCF5R5Cv1WV4H2fHF2 Who/ox4kdWHfV7OrKvDGyXvv2hXXQzB+FbCH9nLF91USXJmWodlILItA4rRA9fKj JJ2uJ5fhykL3mcwcoaGg4jHnUzpj40/yO3vldiGjq1CW5EoMfRkdPPSa0j639pYq KuflOdRnr6NXfmtAUe15hcYn400Uglu+UKzQzR9T7J+Nl6mY0dpKmjY2KSXbhPsC WIiZCMUdGSnkcxDfLN2gOb2Efi4uOC168mwiE5kH7kWjEvHgCrgxyA3HPuSWOpHN SlappZsxcC76X9ezzirkwZz0mWgDajNLgOpFceg4P6QXLXzBih7f -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:36 2024 by rpki-client on console-ams.rpki-client.org