$ rpki-client -vvf repo-rpki.idnic.net/repo/570c1bab-13f4-4ce6-85f7-c388737f6d19/0/323030313a6466323a663334303a3a2f34382d3438203d3e20313432333333.roa File: 323030313a6466323a663334303a3a2f34382d3438203d3e20313432333333.roa (raw, json) Hash identifier: iwWTX/EFBujyZQDKZ9Hg7h0CZYdGO5vfAJe8qoIVz88= Subject key identifier: 94:C8:43:FE:A0:1F:6C:BC:59:42:97:11:B5:38:15:C8:FF:5A:E0:4D Certificate issuer: /CN=00B4ECFCCAE90A9463FD71822A3CEE4C8C145AD4 Certificate serial: 153D2C932F62F950B1989C10AB00A82398BF7009 Authority key identifier: 00:B4:EC:FC:CA:E9:0A:94:63:FD:71:82:2A:3C:EE:4C:8C:14:5A:D4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00B4ECFCCAE90A9463FD71822A3CEE4C8C145AD4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/570c1bab-13f4-4ce6-85f7-c388737f6d19/0/323030313a6466323a663334303a3a2f34382d3438203d3e20313432333333.roa Signing time: Thu 18 Jul 2024 03:52:04 +0000 ROA not before: Thu 18 Jul 2024 03:47:04 +0000 ROA not after: Thu 17 Jul 2025 03:52:04 +0000 asID: 142333 IP address blocks: 2001:df2:f340::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/570c1bab-13f4-4ce6-85f7-c388737f6d19/0/00B4ECFCCAE90A9463FD71822A3CEE4C8C145AD4.crl rsync://repo-rpki.idnic.net/repo/570c1bab-13f4-4ce6-85f7-c388737f6d19/0/00B4ECFCCAE90A9463FD71822A3CEE4C8C145AD4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00B4ECFCCAE90A9463FD71822A3CEE4C8C145AD4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:3d:2c:93:2f:62:f9:50:b1:98:9c:10:ab:00:a8:23:98:bf:70:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00B4ECFCCAE90A9463FD71822A3CEE4C8C145AD4 Validity Not Before: Jul 18 03:47:04 2024 GMT Not After : Jul 17 03:52:04 2025 GMT Subject: CN=94C843FEA01F6CBC59429711B53815C8FF5AE04D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:fb:38:e4:1f:fd:c0:a9:98:68:9e:38:a8:b4: 89:30:ce:ec:e7:0d:cb:3d:cc:f6:5f:51:d3:03:d3: 97:44:f6:59:b4:d0:c7:ca:0a:77:3a:43:6b:04:78: ab:80:21:4a:8c:35:6b:6e:65:1a:a3:d6:fc:da:7b: a7:f2:74:f3:2c:0d:6b:19:26:a1:db:52:6a:0e:db: d1:7a:3c:c3:4b:79:2f:2c:6a:19:47:a0:01:6a:07: f2:cb:bc:03:d1:29:02:4b:33:40:57:c3:d3:0f:ed: 25:47:a2:ef:ca:52:90:9e:d4:23:8e:e4:59:ea:05: 4d:3f:f4:dd:b7:45:0e:cc:bf:e9:e2:b7:a1:11:3c: 31:7e:7c:ae:a5:b5:8c:52:20:66:21:bc:56:bf:d9: 4c:99:e7:20:00:cf:9c:fc:18:d5:75:df:2a:48:67: c3:b9:d8:5e:59:ab:65:db:f6:f6:a5:59:26:8b:87: 97:f9:7a:d0:f2:64:ee:9b:ea:a0:0f:82:da:62:67: 6b:2b:4f:34:bc:6c:cd:03:71:39:4b:a7:f2:09:c7: c0:d0:fd:20:6b:85:75:b3:94:27:b8:84:d8:17:a3: 11:94:68:af:4b:b8:a5:3c:84:c1:7b:49:5e:dc:c5: f1:52:c1:e9:58:0b:bc:6e:fa:31:9c:dc:a6:53:1d: fb:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:C8:43:FE:A0:1F:6C:BC:59:42:97:11:B5:38:15:C8:FF:5A:E0:4D X509v3 Authority Key Identifier: keyid:00:B4:EC:FC:CA:E9:0A:94:63:FD:71:82:2A:3C:EE:4C:8C:14:5A:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/570c1bab-13f4-4ce6-85f7-c388737f6d19/0/00B4ECFCCAE90A9463FD71822A3CEE4C8C145AD4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00B4ECFCCAE90A9463FD71822A3CEE4C8C145AD4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/570c1bab-13f4-4ce6-85f7-c388737f6d19/0/323030313a6466323a663334303a3a2f34382d3438203d3e20313432333333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:f340::/48 Signature Algorithm: sha256WithRSAEncryption 1a:44:1a:ec:d7:d2:ef:77:bc:25:eb:57:03:c8:95:0b:78:e2: d6:82:92:1e:43:b3:60:8d:b0:7d:29:2c:32:05:61:fd:f7:82: 29:b7:3d:f1:09:2e:50:f8:d3:83:81:20:3f:92:70:01:b0:6c: 62:a9:94:f8:2c:5e:0f:cb:45:84:db:9c:89:70:fd:43:7b:09: 8e:3b:33:75:a6:20:45:9e:aa:e5:81:06:8c:ee:13:a8:32:43: 78:04:9e:d4:68:26:1c:cb:5d:bb:06:d3:ec:a0:f9:ac:15:e1: 45:77:c7:6e:8f:cf:67:1e:68:af:89:8f:9e:58:a0:3f:fd:64: 26:85:84:ce:ea:8f:3a:1f:f0:5f:10:1d:66:0c:88:eb:52:df: a3:6b:36:6b:05:e4:fd:2f:e6:46:80:40:c2:9c:11:23:a6:84: 40:f2:e0:33:49:a7:6f:02:ce:3e:d5:35:68:4f:47:aa:75:77: 88:71:bd:f4:23:3f:8f:e1:51:9d:d7:b8:ca:3e:8e:37:2b:15: 9a:fd:2b:3a:cd:77:21:0e:0a:ab:ba:c6:64:fb:74:99:1e:c6: 1a:e1:0c:7b:95:b7:ed:f8:a7:1d:18:ea:ed:db:a6:c0:a6:96: d9:4c:22:e5:42:23:cd:44:52:5a:1c:ab:d4:ca:fb:15:6a:fd: d9:10:18:04 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUFT0sky9i+VCxmJwQqwCoI5i/cAkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBCNEVDRkNDQUU5MEE5NDYzRkQ3MTgyMkEzQ0VFNEM4 QzE0NUFENDAeFw0yNDA3MTgwMzQ3MDRaFw0yNTA3MTcwMzUyMDRaMDMxMTAvBgNV BAMTKDk0Qzg0M0ZFQTAxRjZDQkM1OTQyOTcxMUI1MzgxNUM4RkY1QUUwNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7+zjkH/3AqZhonjiotIkwzuzn Dcs9zPZfUdMD05dE9lm00MfKCnc6Q2sEeKuAIUqMNWtuZRqj1vzae6fydPMsDWsZ JqHbUmoO29F6PMNLeS8sahlHoAFqB/LLvAPRKQJLM0BXw9MP7SVHou/KUpCe1COO 5FnqBU0/9N23RQ7Mv+nit6ERPDF+fK6ltYxSIGYhvFa/2UyZ5yAAz5z8GNV13ypI Z8O52F5Zq2Xb9valWSaLh5f5etDyZO6b6qAPgtpiZ2srTzS8bM0DcTlLp/IJx8DQ /SBrhXWzlCe4hNgXoxGUaK9LuKU8hMF7SV7cxfFSwelYC7xu+jGc3KZTHftbAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUlMhD/qAfbLxZQpcRtTgVyP9a4E0wHwYDVR0j BBgwFoAUALTs/MrpCpRj/XGCKjzuTIwUWtQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NzBjMWJhYi0xM2Y0LTRjZTYtODVmNy1jMzg4NzM3ZjZkMTkvMC8wMEI0RUNGQ0NB RTkwQTk0NjNGRDcxODIyQTNDRUU0QzhDMTQ1QUQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBCNEVDRkNDQUU5MEE5NDYzRkQ3MTgyMkEzQ0VFNEM4QzE0 NUFENC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU3MGMxYmFiLTEzZjQtNGNlNi04 NWY3LWMzODg3MzdmNmQxOS8wLzMyMzAzMDMxM2E2NDY2MzIzYTY2MzMzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMyMzMzMzMzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8vNAMA0GCSqGSIb3DQEBCwUAA4IBAQAaRBrs19Lvd7wl61cDyJULeOLWgpIeQ7Ng jbB9KSwyBWH994Iptz3xCS5Q+NODgSA/knABsGxiqZT4LF4Py0WE25yJcP1DewmO OzN1piBFnqrlgQaM7hOoMkN4BJ7UaCYcy127BtPsoPmsFeFFd8duj89nHmiviY+e WKA//WQmhYTO6o86H/BfEB1mDIjrUt+jazZrBeT9L+ZGgEDCnBEjpoRA8uAzSadv As4+1TVoT0eqdXeIcb30Iz+P4VGd17jKPo43KxWa/Ss6zXchDgqrusZk+3SZHsYa 4Qx7lbft+KcdGOrt26bAppbZTCLlQiPNRFJaHKvUyvsVav3ZEBgE -----END CERTIFICATE-----Generated at Thu Nov 21 21:37:41 2024 by rpki-client on console-ams.rpki-client.org