$ rpki-client -vvf repo-rpki.idnic.net/repo/43e4177d-8093-447c-87b5-c79c8cb4c733/0/323030313a6466343a343430303a3a2f34382d3438203d3e20313333383332.roa File: 323030313a6466343a343430303a3a2f34382d3438203d3e20313333383332.roa (raw, json) Hash identifier: UlAh8zKWIPZHwNHmAImvacovNeaS9Y+qOJYX1Qlb9uc= Subject key identifier: 97:86:6A:E8:92:C1:5E:60:69:39:72:0C:73:52:55:2C:6B:25:B1:5A Certificate issuer: /CN=C710954C7B301C60B82BA6372CACEB81DA08F190 Certificate serial: 195ECB60B68FD9B5369273851267474F81C3E2C7 Authority key identifier: C7:10:95:4C:7B:30:1C:60:B8:2B:A6:37:2C:AC:EB:81:DA:08:F1:90 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C710954C7B301C60B82BA6372CACEB81DA08F190.cer Subject info access: rsync://repo-rpki.idnic.net/repo/43e4177d-8093-447c-87b5-c79c8cb4c733/0/323030313a6466343a343430303a3a2f34382d3438203d3e20313333383332.roa Signing time: Fri 22 Nov 2024 01:00:00 +0000 ROA not before: Fri 22 Nov 2024 00:55:00 +0000 ROA not after: Fri 21 Nov 2025 01:00:00 +0000 asID: 133832 IP address blocks: 2001:df4:4400::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/43e4177d-8093-447c-87b5-c79c8cb4c733/0/C710954C7B301C60B82BA6372CACEB81DA08F190.crl rsync://repo-rpki.idnic.net/repo/43e4177d-8093-447c-87b5-c79c8cb4c733/0/C710954C7B301C60B82BA6372CACEB81DA08F190.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C710954C7B301C60B82BA6372CACEB81DA08F190.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:5e:cb:60:b6:8f:d9:b5:36:92:73:85:12:67:47:4f:81:c3:e2:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C710954C7B301C60B82BA6372CACEB81DA08F190 Validity Not Before: Nov 22 00:55:00 2024 GMT Not After : Nov 21 01:00:00 2025 GMT Subject: CN=97866AE892C15E606939720C7352552C6B25B15A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:93:6e:9e:db:22:13:72:e2:03:ea:00:11:85: 6e:a8:c5:ff:40:71:56:c7:ad:e3:29:72:98:7e:2d: e0:a0:6f:e6:33:d5:37:0d:9c:c9:56:87:99:b0:76: 6e:dc:bc:aa:5c:ee:36:15:92:ff:df:18:bb:3d:ef: 76:bc:40:82:20:23:c3:8a:c3:ad:fa:2b:44:d3:6d: f0:8a:6c:7f:85:e7:25:ed:a4:f8:06:cd:09:66:00: 2e:ba:0c:a4:1d:6b:11:43:d4:da:1f:e0:d9:15:22: 2a:bf:a9:c6:51:96:57:43:b9:74:79:e3:5f:41:c5: c8:46:d9:6d:ac:22:64:a5:fb:61:e8:0b:66:82:e4: 2c:aa:67:37:41:fc:cc:b5:28:47:5c:84:02:20:db: 45:11:5b:68:d5:5f:79:27:f5:53:c6:a7:a4:f3:67: c5:ab:56:16:df:50:9f:2c:f9:08:7c:c9:f2:3d:9d: c6:95:28:d5:cd:1e:2d:3e:44:da:ba:37:0d:5b:85: 98:4f:fe:6f:02:b2:6b:2f:02:16:3f:98:f8:98:0f: b4:72:9b:9a:df:c5:ee:6d:8d:82:10:c8:d3:86:9d: 4c:f5:eb:51:2d:75:95:32:5a:a3:64:3e:61:d2:ef: 2e:12:f1:2d:5b:db:4c:0c:05:29:ba:a1:ec:d4:f0: c3:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:86:6A:E8:92:C1:5E:60:69:39:72:0C:73:52:55:2C:6B:25:B1:5A X509v3 Authority Key Identifier: keyid:C7:10:95:4C:7B:30:1C:60:B8:2B:A6:37:2C:AC:EB:81:DA:08:F1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/43e4177d-8093-447c-87b5-c79c8cb4c733/0/C710954C7B301C60B82BA6372CACEB81DA08F190.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C710954C7B301C60B82BA6372CACEB81DA08F190.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/43e4177d-8093-447c-87b5-c79c8cb4c733/0/323030313a6466343a343430303a3a2f34382d3438203d3e20313333383332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:4400::/48 Signature Algorithm: sha256WithRSAEncryption 13:87:a6:c3:3d:7e:3e:de:0f:23:90:01:9b:a1:05:74:37:9a: d6:6c:7f:0d:af:69:c1:d7:23:3d:72:1c:77:bd:34:f7:61:3f: b6:71:5d:47:b7:f1:a7:5f:68:39:85:22:1c:8a:50:a8:05:e0: 80:92:b8:bf:53:f0:30:6b:f4:0c:da:3f:39:a6:3c:de:84:36: a8:7a:35:52:9e:44:86:3f:47:8a:fa:ae:ec:b5:42:d4:5c:b9: 25:a2:43:5a:fd:1d:b1:a6:e7:f4:16:98:f8:e6:97:6e:9a:5c: c1:6f:cd:94:7b:bc:a1:5e:a9:90:35:30:97:f5:c7:a1:79:a5: ad:b3:aa:d4:a6:5b:2e:5a:62:e1:d0:98:98:7c:d3:d4:11:e4: 44:bf:4f:2a:ae:ac:26:19:2b:13:be:d2:e5:de:73:9e:b3:56: 7d:da:3d:94:73:e5:39:81:c4:5b:29:ca:16:1f:07:fc:9e:76: e8:6d:75:7e:f5:d8:a9:4c:0b:30:2f:7f:d8:89:b8:04:2e:54: 9d:b2:c8:72:a1:4d:99:7c:46:bb:40:94:1d:af:8b:59:2f:38: 98:e4:8f:c8:c5:41:35:8d:63:f8:e5:d2:52:75:a6:e3:2f:bc: 94:97:15:1c:ea:fc:7b:c7:8d:b9:ec:f1:5b:f3:72:a2:a8:c0: 4b:bc:3a:72 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUGV7LYLaP2bU2knOFEmdHT4HD4scwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzcxMDk1NEM3QjMwMUM2MEI4MkJBNjM3MkNBQ0VCODFE QTA4RjE5MDAeFw0yNDExMjIwMDU1MDBaFw0yNTExMjEwMTAwMDBaMDMxMTAvBgNV BAMTKDk3ODY2QUU4OTJDMTVFNjA2OTM5NzIwQzczNTI1NTJDNkIyNUIxNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRk26e2yITcuID6gARhW6oxf9A cVbHreMpcph+LeCgb+Yz1TcNnMlWh5mwdm7cvKpc7jYVkv/fGLs973a8QIIgI8OK w636K0TTbfCKbH+F5yXtpPgGzQlmAC66DKQdaxFD1Nof4NkVIiq/qcZRlldDuXR5 419BxchG2W2sImSl+2HoC2aC5CyqZzdB/My1KEdchAIg20URW2jVX3kn9VPGp6Tz Z8WrVhbfUJ8s+Qh8yfI9ncaVKNXNHi0+RNq6Nw1bhZhP/m8CsmsvAhY/mPiYD7Ry m5rfxe5tjYIQyNOGnUz161EtdZUyWqNkPmHS7y4S8S1b20wMBSm6oezU8MNDAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUl4Zq6JLBXmBpOXIMc1JVLGslsVowHwYDVR0j BBgwFoAUxxCVTHswHGC4K6Y3LKzrgdoI8ZAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 M2U0MTc3ZC04MDkzLTQ0N2MtODdiNS1jNzljOGNiNGM3MzMvMC9DNzEwOTU0QzdC MzAxQzYwQjgyQkE2MzcyQ0FDRUI4MURBMDhGMTkwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzcxMDk1NEM3QjMwMUM2MEI4MkJBNjM3MkNBQ0VCODFEQTA4 RjE5MC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQzZTQxNzdkLTgwOTMtNDQ3Yy04 N2I1LWM3OWM4Y2I0YzczMy8wLzMyMzAzMDMxM2E2NDY2MzQzYTM0MzQzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMzMzgzMzMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9EQAMA0GCSqGSIb3DQEBCwUAA4IBAQATh6bDPX4+3g8jkAGboQV0N5rWbH8Nr2nB 1yM9chx3vTT3YT+2cV1Ht/GnX2g5hSIcilCoBeCAkri/U/Awa/QM2j85pjzehDao ejVSnkSGP0eK+q7stULUXLklokNa/R2xpuf0Fpj45pdumlzBb82Ue7yhXqmQNTCX 9ceheaWts6rUplsuWmLh0JiYfNPUEeREv08qrqwmGSsTvtLl3nOes1Z92j2Uc+U5 gcRbKcoWHwf8nnbobXV+9dipTAswL3/YibgELlSdsshyoU2ZfEa7QJQdr4tZLziY 5I/IxUE1jWP45dJSdabjL7yUlxUc6vx7x4257PFb83KiqMBLvDpy -----END CERTIFICATE-----Generated at Sun Nov 24 08:35:25 2024 by rpki-client on console-ams.rpki-client.org