$ rpki-client -vvf repo-rpki.idnic.net/repo/544cb8d8-1505-4682-9ddb-fcd86200b966/0/323030313a6466373a616130303a3a2f34382d3438203d3e20313333383030.roa File: 323030313a6466373a616130303a3a2f34382d3438203d3e20313333383030.roa (raw, json) Hash identifier: P4PZgQDgKj+ENiKIZj6iIx0I5gzDEshFCz1sMqi/1X8= Subject key identifier: 67:69:94:F7:6A:9E:29:09:BB:63:2E:6F:D0:E0:F6:20:C5:5E:E4:3D Certificate issuer: /CN=ACCECE368F04142505940FF29F4DD361EEF4DFBA Certificate serial: 6673C3B14F709986739ADBAE7B1E3F5DD1084FB7 Authority key identifier: AC:CE:CE:36:8F:04:14:25:05:94:0F:F2:9F:4D:D3:61:EE:F4:DF:BA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ACCECE368F04142505940FF29F4DD361EEF4DFBA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/544cb8d8-1505-4682-9ddb-fcd86200b966/0/323030313a6466373a616130303a3a2f34382d3438203d3e20313333383030.roa Signing time: Thu 11 Jul 2024 09:01:06 +0000 ROA not before: Thu 11 Jul 2024 08:56:06 +0000 ROA not after: Thu 10 Jul 2025 09:01:06 +0000 asID: 133800 IP address blocks: 2001:df7:aa00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/544cb8d8-1505-4682-9ddb-fcd86200b966/0/ACCECE368F04142505940FF29F4DD361EEF4DFBA.crl rsync://repo-rpki.idnic.net/repo/544cb8d8-1505-4682-9ddb-fcd86200b966/0/ACCECE368F04142505940FF29F4DD361EEF4DFBA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ACCECE368F04142505940FF29F4DD361EEF4DFBA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 02:49:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:73:c3:b1:4f:70:99:86:73:9a:db:ae:7b:1e:3f:5d:d1:08:4f:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ACCECE368F04142505940FF29F4DD361EEF4DFBA Validity Not Before: Jul 11 08:56:06 2024 GMT Not After : Jul 10 09:01:06 2025 GMT Subject: CN=676994F76A9E2909BB632E6FD0E0F620C55EE43D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9e:1d:90:0c:a1:22:fb:34:63:b5:dd:64:2c: 62:1b:ad:fd:cd:43:c5:e7:61:87:ec:3c:a9:8d:f5: 35:69:21:1c:79:c5:ca:98:e2:22:29:cc:9d:c6:fb: 51:db:d4:e4:bd:ae:1a:39:2b:b3:c9:a8:da:d5:0d: 33:22:14:49:90:42:7a:ff:57:46:c2:23:82:0c:07: 12:13:12:58:b7:2a:39:77:f1:a7:29:4c:23:37:52: 0e:77:13:19:77:0a:1d:52:91:77:76:bb:d1:67:a9: 66:37:29:97:75:89:1d:46:92:eb:85:4e:e3:79:66: 5f:11:12:ea:a8:c6:a5:da:dc:b8:30:5f:1a:f5:5f: e4:bd:0d:a1:bb:49:24:05:c8:4e:07:70:4b:f7:06: 23:65:77:bd:a3:c4:d6:d3:4a:de:67:e8:d1:5c:71: 19:f0:41:97:8b:dc:3f:86:01:43:d7:93:83:2f:d8: 34:8c:38:18:aa:61:0d:af:82:03:71:2f:28:8a:ee: 6d:04:e6:d9:b8:76:07:e9:ee:00:75:97:f9:0a:76: 77:68:bd:97:9a:39:de:8e:d1:5e:18:70:5f:17:e1: 7e:c0:96:4e:c1:92:b5:17:97:9b:e9:b0:e0:63:e3: 57:2b:e9:6a:62:69:e6:23:88:7c:9d:3b:6d:f2:b9: 3a:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:69:94:F7:6A:9E:29:09:BB:63:2E:6F:D0:E0:F6:20:C5:5E:E4:3D X509v3 Authority Key Identifier: keyid:AC:CE:CE:36:8F:04:14:25:05:94:0F:F2:9F:4D:D3:61:EE:F4:DF:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/544cb8d8-1505-4682-9ddb-fcd86200b966/0/ACCECE368F04142505940FF29F4DD361EEF4DFBA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ACCECE368F04142505940FF29F4DD361EEF4DFBA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/544cb8d8-1505-4682-9ddb-fcd86200b966/0/323030313a6466373a616130303a3a2f34382d3438203d3e20313333383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:aa00::/48 Signature Algorithm: sha256WithRSAEncryption 20:76:82:f1:ff:dc:9c:49:56:91:78:d9:8a:fd:28:7b:b4:e2: 2d:4f:78:11:13:01:06:b2:21:b1:55:33:ee:5a:00:0b:08:8c: d9:bd:e5:b9:84:1e:27:01:8e:bd:8b:94:c0:9a:ef:c5:05:70: 2e:68:a0:73:f3:3b:d3:97:e6:6c:ba:7e:7f:f3:e7:1d:49:c0: 64:ca:9b:bd:04:08:60:11:3e:89:9c:e3:f7:9e:a3:31:13:68: cc:ec:b5:09:d0:26:b6:8c:64:04:19:4a:0c:57:35:95:16:c8: 03:2a:57:2f:6c:0f:e4:90:b8:2f:b1:75:a8:12:63:47:57:05: 6a:01:ba:82:17:51:d6:e9:08:2e:98:e7:2b:d2:03:32:e5:bf: f8:e0:45:e8:03:71:60:61:64:c5:29:19:5a:2c:7b:9c:0b:76: 33:d9:f4:a6:a9:d3:39:9a:58:31:5f:07:64:ce:ca:7b:2b:d0: ec:35:6b:f5:f3:82:23:ff:26:83:7b:c7:3c:59:33:22:88:2a: bf:4b:21:87:3b:97:39:87:40:96:33:b6:c3:40:50:cf:fe:98: 09:a9:c1:f3:ee:f4:e5:3a:ab:a9:77:ce:a7:66:22:f0:c0:db: 71:82:35:47:b8:94:98:54:fe:3d:e0:ed:7c:25:d4:b6:af:8a: 7d:5e:08:5f -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUZnPDsU9wmYZzmtuuex4/XdEIT7cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUNDRUNFMzY4RjA0MTQyNTA1OTQwRkYyOUY0REQzNjFF RUY0REZCQTAeFw0yNDA3MTEwODU2MDZaFw0yNTA3MTAwOTAxMDZaMDMxMTAvBgNV BAMTKDY3Njk5NEY3NkE5RTI5MDlCQjYzMkU2RkQwRTBGNjIwQzU1RUU0M0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4nh2QDKEi+zRjtd1kLGIbrf3N Q8XnYYfsPKmN9TVpIRx5xcqY4iIpzJ3G+1Hb1OS9rho5K7PJqNrVDTMiFEmQQnr/ V0bCI4IMBxITEli3Kjl38acpTCM3Ug53Exl3Ch1SkXd2u9FnqWY3KZd1iR1GkuuF TuN5Zl8REuqoxqXa3LgwXxr1X+S9DaG7SSQFyE4HcEv3BiNld72jxNbTSt5n6NFc cRnwQZeL3D+GAUPXk4Mv2DSMOBiqYQ2vggNxLyiK7m0E5tm4dgfp7gB1l/kKdndo vZeaOd6O0V4YcF8X4X7Alk7BkrUXl5vpsOBj41cr6WpiaeYjiHydO23yuTrfAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUZ2mU92qeKQm7Yy5v0OD2IMVe5D0wHwYDVR0j BBgwFoAUrM7ONo8EFCUFlA/yn03TYe7037owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NDRjYjhkOC0xNTA1LTQ2ODItOWRkYi1mY2Q4NjIwMGI5NjYvMC9BQ0NFQ0UzNjhG MDQxNDI1MDU5NDBGRjI5RjRERDM2MUVFRjRERkJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUNDRUNFMzY4RjA0MTQyNTA1OTQwRkYyOUY0REQzNjFFRUY0 REZCQS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU0NGNiOGQ4LTE1MDUtNDY4Mi05 ZGRiLWZjZDg2MjAwYjk2Ni8wLzMyMzAzMDMxM2E2NDY2MzczYTYxNjEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMzMzgzMDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 96oAMA0GCSqGSIb3DQEBCwUAA4IBAQAgdoLx/9ycSVaReNmK/Sh7tOItT3gREwEG siGxVTPuWgALCIzZveW5hB4nAY69i5TAmu/FBXAuaKBz8zvTl+Zsun5/8+cdScBk ypu9BAhgET6JnOP3nqMxE2jM7LUJ0Ca2jGQEGUoMVzWVFsgDKlcvbA/kkLgvsXWo EmNHVwVqAbqCF1HW6QgumOcr0gMy5b/44EXoA3FgYWTFKRlaLHucC3Yz2fSmqdM5 mlgxXwdkzsp7K9DsNWv184Ij/yaDe8c8WTMiiCq/SyGHO5c5h0CWM7bDQFDP/pgJ qcHz7vTlOqupd86nZiLwwNtxgjVHuJSYVP494O18JdS2r4p9Xghf -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:38 2024 by rpki-client on console-ams.rpki-client.org