$ rpki-client -vvf repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/323030313a6466303a663730303a3a2f34382d3438203d3e20313339333939.roa File: 323030313a6466303a663730303a3a2f34382d3438203d3e20313339333939.roa (raw, json) Hash identifier: iv2SAjyHSWCSm/Qp+qCzqgF4lXDrzm6Us1pHd8OSMEA= Subject key identifier: 03:E9:E2:12:48:6A:E5:95:66:57:C7:AB:35:CB:81:7D:35:A3:04:27 Certificate issuer: /CN=CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C Certificate serial: 0BBC5EF1C56C28A0DF505A6BB06C9432CBA14DE2 Authority key identifier: CA:70:4F:78:5E:A5:8B:3F:65:9E:6E:3C:8F:71:E2:D4:CF:D7:E2:6C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/323030313a6466303a663730303a3a2f34382d3438203d3e20313339333939.roa Signing time: Sun 17 Nov 2024 15:00:01 +0000 ROA not before: Sun 17 Nov 2024 14:55:01 +0000 ROA not after: Sun 16 Nov 2025 15:00:01 +0000 asID: 139399 IP address blocks: 2001:df0:f700::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 20:07:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:bc:5e:f1:c5:6c:28:a0:df:50:5a:6b:b0:6c:94:32:cb:a1:4d:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C Validity Not Before: Nov 17 14:55:01 2024 GMT Not After : Nov 16 15:00:01 2025 GMT Subject: CN=03E9E212486AE5956657C7AB35CB817D35A30427 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:c9:f0:6d:b0:cf:34:fb:08:f2:0e:cd:8d:b0: 1d:71:ac:cb:46:cf:4e:cf:44:77:59:a1:93:4b:3d: e2:dc:7a:83:a8:5f:77:55:91:d0:5d:98:8a:22:ed: 56:ca:bb:56:72:b6:ac:75:f4:4f:df:13:03:2d:cd: 58:bf:34:6a:fa:5e:c0:ae:fe:cf:e0:00:74:88:82: be:9a:b8:d4:73:21:58:a2:1f:b8:34:e3:92:f3:a2: 28:2d:86:1b:95:53:76:85:25:9a:ec:2e:dd:e1:00: 76:9d:2e:e5:39:03:9c:80:75:45:bb:fe:7e:aa:72: e5:54:ad:be:14:2f:73:c8:8f:e5:09:24:05:f7:78: c7:08:8c:9e:8f:12:dc:e2:68:05:3a:2b:9b:55:d0: f5:2e:db:49:2c:52:c9:94:85:84:7a:fe:a0:86:87: 33:a8:2e:62:c8:d1:06:6c:84:2f:d7:15:15:02:d7: 20:0d:b4:4f:ee:57:1c:20:5e:b5:7f:0c:70:87:e7: b9:d3:be:31:d0:97:60:03:4a:d7:30:4d:4f:3e:1a: 28:63:fe:88:8a:64:df:86:cf:59:e6:7f:12:b5:68: 5e:06:05:44:0d:cf:9b:0a:ed:c6:e2:74:2d:54:16: 5a:ca:13:b6:b4:69:fc:b5:5f:c8:ce:ef:77:d1:d8: d6:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:E9:E2:12:48:6A:E5:95:66:57:C7:AB:35:CB:81:7D:35:A3:04:27 X509v3 Authority Key Identifier: keyid:CA:70:4F:78:5E:A5:8B:3F:65:9E:6E:3C:8F:71:E2:D4:CF:D7:E2:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/323030313a6466303a663730303a3a2f34382d3438203d3e20313339333939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:f700::/48 Signature Algorithm: sha256WithRSAEncryption 5d:27:ae:15:3c:75:2f:7f:89:0f:12:3f:23:da:3e:a0:06:e7: c6:51:0b:e1:65:e0:62:80:fe:27:d7:27:ba:ec:11:74:05:0a: 07:31:91:1a:07:f6:95:50:c7:83:7d:62:77:01:ed:2d:4d:07: 92:0e:16:7a:00:06:ec:33:f3:c3:91:d0:f6:0f:0a:1e:ff:68: 5b:e6:22:60:8c:a5:a6:07:f8:99:95:fd:76:24:eb:7b:6f:19: bc:d0:e3:70:ef:26:c6:97:bf:6f:bf:d1:d5:a0:41:1c:09:6a: 48:27:21:9a:36:f7:a2:df:de:b4:34:82:3d:67:9c:c2:8d:38: d4:93:19:99:5e:9d:4b:29:6c:45:46:8f:6b:ad:50:38:e6:b5: ea:e2:1e:a3:36:f7:89:d3:14:70:d0:c3:9a:7a:44:27:38:48: 07:60:24:a0:09:49:f4:d9:02:a7:8e:49:4c:27:8a:df:c6:4d: 53:c0:dc:6b:a7:8f:a7:8d:42:ab:69:26:46:d0:eb:ea:3a:b3: 82:df:a0:6d:17:2d:a1:4a:e5:05:e4:93:89:03:f5:c3:76:33: 80:e6:9e:eb:c6:3e:30:22:ed:ed:4b:08:e1:ce:06:5e:00:41: 3a:b2:f4:ac:0f:59:40:f9:03:d9:78:a7:45:dc:ed:a2:f7:79: 2c:18:e1:ff -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUC7xe8cVsKKDfUFprsGyUMsuhTeIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E3MDRGNzg1RUE1OEIzRjY1OUU2RTNDOEY3MUUyRDRD RkQ3RTI2QzAeFw0yNDExMTcxNDU1MDFaFw0yNTExMTYxNTAwMDFaMDMxMTAvBgNV BAMTKDAzRTlFMjEyNDg2QUU1OTU2NjU3QzdBQjM1Q0I4MTdEMzVBMzA0MjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCayfBtsM80+wjyDs2NsB1xrMtG z07PRHdZoZNLPeLceoOoX3dVkdBdmIoi7VbKu1Zytqx19E/fEwMtzVi/NGr6XsCu /s/gAHSIgr6auNRzIViiH7g045LzoigthhuVU3aFJZrsLt3hAHadLuU5A5yAdUW7 /n6qcuVUrb4UL3PIj+UJJAX3eMcIjJ6PEtziaAU6K5tV0PUu20ksUsmUhYR6/qCG hzOoLmLI0QZshC/XFRUC1yANtE/uVxwgXrV/DHCH57nTvjHQl2ADStcwTU8+Gihj /oiKZN+Gz1nmfxK1aF4GBUQNz5sK7cbidC1UFlrKE7a0afy1X8jO73fR2NYzAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUA+niEkhq5ZVmV8erNcuBfTWjBCcwHwYDVR0j BBgwFoAUynBPeF6liz9lnm48j3Hi1M/X4mwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDIxOTg1Yi1hMGU2LTRlMDUtYmVmNi1mZTZmNWE2ZTJmNDMvMC9DQTcwNEY3ODVF QTU4QjNGNjU5RTZFM0M4RjcxRTJENENGRDdFMjZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0E3MDRGNzg1RUE1OEIzRjY1OUU2RTNDOEY3MUUyRDRDRkQ3 RTI2Qy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0MjE5ODViLWEwZTYtNGUwNS1i ZWY2LWZlNmY1YTZlMmY0My8wLzMyMzAzMDMxM2E2NDY2MzAzYTY2MzczMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzMzOTM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8PcAMA0GCSqGSIb3DQEBCwUAA4IBAQBdJ64VPHUvf4kPEj8j2j6gBufGUQvhZeBi gP4n1ye67BF0BQoHMZEaB/aVUMeDfWJ3Ae0tTQeSDhZ6AAbsM/PDkdD2Dwoe/2hb 5iJgjKWmB/iZlf12JOt7bxm80ONw7ybGl79vv9HVoEEcCWpIJyGaNvei3960NII9 Z5zCjTjUkxmZXp1LKWxFRo9rrVA45rXq4h6jNveJ0xRw0MOaekQnOEgHYCSgCUn0 2QKnjklMJ4rfxk1TwNxrp4+njUKraSZG0OvqOrOC36BtFy2hSuUF5JOJA/XDdjOA 5p7rxj4wIu3tSwjhzgZeAEE6svSsD1lA+QPZeKdF3O2i93ksGOH/ -----END CERTIFICATE-----Generated at Thu Nov 28 18:50:06 2024 by rpki-client on console-ams.rpki-client.org