$ rpki-client -vvf repo-rpki.idnic.net/repo/59b07a9e-62df-4808-9d2a-a6e6884bcbbb/1/323030313a6466343a343463303a3a2f34382d3438203d3e20313533313137.roa File: 323030313a6466343a343463303a3a2f34382d3438203d3e20313533313137.roa (raw, json) Hash identifier: 713xk7V5/TbDWlUXCIZDu0PtZguq6d4Z3/NB3BJnuQA= Subject key identifier: AC:1B:2C:CA:76:41:A4:42:4C:99:8C:07:9F:E3:37:1E:2D:2F:B6:7E Certificate issuer: /CN=FA479894B4849679EBB9029580F04B8BD74CE048 Certificate serial: 5AA9D55E829EC05E10FF75EE12BF5E01DF9844C8 Authority key identifier: FA:47:98:94:B4:84:96:79:EB:B9:02:95:80:F0:4B:8B:D7:4C:E0:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA479894B4849679EBB9029580F04B8BD74CE048.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59b07a9e-62df-4808-9d2a-a6e6884bcbbb/1/323030313a6466343a343463303a3a2f34382d3438203d3e20313533313137.roa Signing time: Wed 25 Sep 2024 08:50:03 +0000 ROA not before: Wed 25 Sep 2024 08:45:03 +0000 ROA not after: Wed 24 Sep 2025 08:50:03 +0000 asID: 153117 IP address blocks: 2001:df4:44c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59b07a9e-62df-4808-9d2a-a6e6884bcbbb/1/FA479894B4849679EBB9029580F04B8BD74CE048.crl rsync://repo-rpki.idnic.net/repo/59b07a9e-62df-4808-9d2a-a6e6884bcbbb/1/FA479894B4849679EBB9029580F04B8BD74CE048.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA479894B4849679EBB9029580F04B8BD74CE048.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:a9:d5:5e:82:9e:c0:5e:10:ff:75:ee:12:bf:5e:01:df:98:44:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA479894B4849679EBB9029580F04B8BD74CE048 Validity Not Before: Sep 25 08:45:03 2024 GMT Not After : Sep 24 08:50:03 2025 GMT Subject: CN=AC1B2CCA7641A4424C998C079FE3371E2D2FB67E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:75:e8:13:ae:80:f9:2e:ad:70:c1:88:f2:54: 27:38:a3:40:47:41:2a:0a:18:b2:53:9b:b0:87:74: 2b:a2:5a:5d:5d:ca:83:64:83:78:86:f1:ff:c1:32: a3:39:d3:df:2b:dc:c3:1b:3f:d3:07:1d:a4:35:c3: 7d:87:85:a2:4c:ac:bb:2e:fc:c6:bb:d7:7a:a8:86: a0:f8:44:16:56:62:94:dd:69:e6:8b:2f:18:53:bb: bd:88:40:0e:ec:fa:27:91:13:d2:b2:62:b9:ba:b3: 24:56:5d:7b:e6:4f:91:ad:12:61:51:fa:1c:df:46: 24:20:da:2d:4d:0a:e1:bc:47:fc:c6:1d:66:31:c6: ee:33:68:3d:f7:ca:95:fa:cd:3b:ac:0c:1d:3c:0d: 09:ba:f9:5c:d3:ae:63:ac:f1:af:f8:de:7b:58:a7: 16:12:8c:fe:d4:65:1b:cc:67:6d:43:1d:0a:7e:9a: c6:ca:ef:5d:a2:3a:83:b1:42:d4:6c:92:15:45:35: 37:8e:26:ef:ad:13:3d:c3:2e:ec:cd:9c:0d:fa:ec: 88:d9:67:0f:d0:7e:56:d0:82:8e:99:76:f2:99:86: 50:bd:0c:09:2f:8d:f4:2e:f3:24:df:23:47:f9:46: e8:6a:ad:4e:55:78:e7:94:1a:2e:14:cd:b1:3d:02: 26:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:1B:2C:CA:76:41:A4:42:4C:99:8C:07:9F:E3:37:1E:2D:2F:B6:7E X509v3 Authority Key Identifier: keyid:FA:47:98:94:B4:84:96:79:EB:B9:02:95:80:F0:4B:8B:D7:4C:E0:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59b07a9e-62df-4808-9d2a-a6e6884bcbbb/1/FA479894B4849679EBB9029580F04B8BD74CE048.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA479894B4849679EBB9029580F04B8BD74CE048.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59b07a9e-62df-4808-9d2a-a6e6884bcbbb/1/323030313a6466343a343463303a3a2f34382d3438203d3e20313533313137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:44c0::/48 Signature Algorithm: sha256WithRSAEncryption 4a:43:e4:05:02:79:9a:f9:50:01:70:07:f3:cd:7e:26:e8:79: 92:5e:78:ec:ac:a2:59:0c:d9:18:39:fb:19:e1:d3:dc:8d:50: 53:f6:2a:a2:ae:39:2a:1d:34:fe:17:bd:de:8e:18:bd:64:d7: f8:eb:53:b8:1f:bd:35:3e:79:2f:d0:87:b4:f2:82:15:dc:be: b6:9c:44:67:e1:c9:3f:b0:e6:2d:58:6f:7d:fc:b0:14:ed:d5: cf:1d:6f:ae:ce:33:f1:1f:28:ef:f1:cf:fa:5f:d7:48:a8:f5: d5:09:21:6e:02:20:7d:bb:92:0b:96:8f:68:d5:62:02:77:88: 48:1d:23:ce:b5:2d:ac:ec:93:64:91:03:b0:57:21:01:45:fc: e0:18:a4:d0:3e:3f:62:8e:0f:ee:89:8a:52:c4:da:c4:f9:46: 40:c8:24:68:6b:18:6b:7d:bd:a3:26:82:e3:60:e2:9e:7a:93: d2:06:6f:71:11:84:de:3c:6a:b4:2d:d1:0a:e8:e5:18:f7:47: 52:3a:0b:63:da:89:17:03:f6:4b:c7:b0:b3:7e:6e:24:9b:fe: 95:3c:fa:e8:28:38:51:77:66:60:0c:11:e2:92:52:08:06:68: 2d:84:3a:9a:c0:f9:52:da:7a:8d:3a:64:bf:43:7d:43:5d:a9: e2:36:cb:93 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUWqnVXoKewF4Q/3XuEr9eAd+YRMgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE0Nzk4OTRCNDg0OTY3OUVCQjkwMjk1ODBGMDRCOEJE NzRDRTA0ODAeFw0yNDA5MjUwODQ1MDNaFw0yNTA5MjQwODUwMDNaMDMxMTAvBgNV BAMTKEFDMUIyQ0NBNzY0MUE0NDI0Qzk5OEMwNzlGRTMzNzFFMkQyRkI2N0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAdegTroD5Lq1wwYjyVCc4o0BH QSoKGLJTm7CHdCuiWl1dyoNkg3iG8f/BMqM5098r3MMbP9MHHaQ1w32HhaJMrLsu /Ma713qohqD4RBZWYpTdaeaLLxhTu72IQA7s+ieRE9KyYrm6syRWXXvmT5GtEmFR +hzfRiQg2i1NCuG8R/zGHWYxxu4zaD33ypX6zTusDB08DQm6+VzTrmOs8a/43ntY pxYSjP7UZRvMZ21DHQp+msbK712iOoOxQtRskhVFNTeOJu+tEz3DLuzNnA367IjZ Zw/QflbQgo6ZdvKZhlC9DAkvjfQu8yTfI0f5RuhqrU5VeOeUGi4UzbE9AiZpAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUrBssynZBpEJMmYwHn+M3Hi0vtn4wHwYDVR0j BBgwFoAU+keYlLSElnnruQKVgPBLi9dM4EgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWIwN2E5ZS02MmRmLTQ4MDgtOWQyYS1hNmU2ODg0YmNiYmIvMS9GQTQ3OTg5NEI0 ODQ5Njc5RUJCOTAyOTU4MEYwNEI4QkQ3NENFMDQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE0Nzk4OTRCNDg0OTY3OUVCQjkwMjk1ODBGMDRCOEJENzRD RTA0OC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5YjA3YTllLTYyZGYtNDgwOC05 ZDJhLWE2ZTY4ODRiY2JiYi8xLzMyMzAzMDMxM2E2NDY2MzQzYTM0MzQ2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzEzMTM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9ETAMA0GCSqGSIb3DQEBCwUAA4IBAQBKQ+QFAnma+VABcAfzzX4m6HmSXnjsrKJZ DNkYOfsZ4dPcjVBT9iqirjkqHTT+F73ejhi9ZNf461O4H701Pnkv0Ie08oIV3L62 nERn4ck/sOYtWG99/LAU7dXPHW+uzjPxHyjv8c/6X9dIqPXVCSFuAiB9u5ILlo9o 1WICd4hIHSPOtS2s7JNkkQOwVyEBRfzgGKTQPj9ijg/uiYpSxNrE+UZAyCRoaxhr fb2jJoLjYOKeepPSBm9xEYTePGq0LdEK6OUY90dSOgtj2okXA/ZLx7Czfm4km/6V PProKDhRd2ZgDBHiklIIBmgthDqawPlS2nqNOmS/Q31DXaniNsuT -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:02 2024 by rpki-client on console-ams.rpki-client.org