$ rpki-client -vvf repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/323030313a6466333a373030303a3a2f34382d3438203d3e20313332363738.roa File: 323030313a6466333a373030303a3a2f34382d3438203d3e20313332363738.roa (raw, json) Hash identifier: +NS9YY9+pvm+gKuTTS1+bnH64U8DgIFgqBnhR5C6R8A= Subject key identifier: 6E:85:D6:A7:2B:3A:E7:C7:D1:15:01:C9:C1:4B:FB:29:98:87:FB:91 Certificate issuer: /CN=0BAF96670660C94FBB3E387EF1505E6FA401ECCF Certificate serial: 65031A6E4D4F1E2958FB46F941362FC3CBB5B99F Authority key identifier: 0B:AF:96:67:06:60:C9:4F:BB:3E:38:7E:F1:50:5E:6F:A4:01:EC:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/323030313a6466333a373030303a3a2f34382d3438203d3e20313332363738.roa Signing time: Mon 01 Jan 2024 09:00:44 +0000 ROA not before: Mon 01 Jan 2024 08:55:44 +0000 ROA not after: Mon 30 Dec 2024 09:00:44 +0000 asID: 132678 IP address blocks: 2001:df3:7000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.crl rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:03:1a:6e:4d:4f:1e:29:58:fb:46:f9:41:36:2f:c3:cb:b5:b9:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BAF96670660C94FBB3E387EF1505E6FA401ECCF Validity Not Before: Jan 1 08:55:44 2024 GMT Not After : Dec 30 09:00:44 2024 GMT Subject: CN=6E85D6A72B3AE7C7D11501C9C14BFB299887FB91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8c:8d:f3:5a:e0:af:f9:dc:d3:b6:5d:5b:09: 53:0f:30:ab:a3:c9:68:ec:64:3a:aa:f9:d5:cb:15: c7:e9:27:41:9e:2e:ed:29:d9:51:7f:5b:37:09:d1: ff:ed:98:87:95:5e:88:4a:be:cb:31:69:5d:a9:30: a0:4c:e2:06:91:d1:1e:f8:ce:4f:b0:20:5b:53:3d: 66:09:d4:57:78:98:b5:7d:ff:78:bf:f3:d2:c7:55: 50:b5:29:93:9c:a6:ca:d2:7b:0e:0c:0f:be:7e:20: 9b:0d:72:ec:26:cd:23:7f:52:c7:03:46:44:cc:34: 2c:58:ea:1a:81:37:fc:bb:75:15:80:7f:7c:23:ac: 09:87:d6:53:f8:e6:86:82:d3:53:d3:5a:0c:0b:27: 97:eb:da:f9:c3:6a:23:b0:91:9c:b1:a8:94:07:89: 9f:de:c9:3a:a1:59:6e:25:23:eb:96:42:98:8d:6e: 4b:04:21:af:8d:77:3c:c2:3e:df:fc:59:40:48:dc: 41:d7:7b:7e:1f:db:d4:c9:3d:a4:15:16:2e:ba:fa: cd:3d:00:e1:41:5f:0d:7c:ba:5c:0b:bd:7d:04:a1: ff:7e:56:11:31:7f:c0:c5:83:1f:55:78:fa:39:cc: dd:e1:9d:51:f4:4d:91:5e:e0:02:53:cf:73:53:00: 8c:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:85:D6:A7:2B:3A:E7:C7:D1:15:01:C9:C1:4B:FB:29:98:87:FB:91 X509v3 Authority Key Identifier: keyid:0B:AF:96:67:06:60:C9:4F:BB:3E:38:7E:F1:50:5E:6F:A4:01:EC:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/323030313a6466333a373030303a3a2f34382d3438203d3e20313332363738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:7000::/48 Signature Algorithm: sha256WithRSAEncryption 14:dd:58:be:a1:12:ae:1f:18:ba:10:74:41:fe:2d:dc:1f:2d: 31:46:81:21:40:bc:72:27:ce:e2:3c:45:d9:90:ba:e2:ef:c9: 7a:cb:ef:b3:4b:3b:d2:5e:96:ad:63:e2:a7:17:24:1c:ba:f6: 08:4a:97:92:66:9c:87:52:12:2a:0e:e5:f2:43:2a:96:84:ea: b3:d6:e4:5c:dd:7f:ca:e6:5f:9a:09:57:3f:a6:ee:ec:3f:31: dc:de:f0:4f:24:7a:f8:45:b5:28:7e:fa:d9:90:d4:8b:b1:ca: 60:2e:af:c3:29:77:24:9c:f4:b0:57:5d:47:9a:48:53:c0:86: 5a:e2:b0:c7:45:4d:e5:31:7c:8f:b6:96:9a:c1:6f:c7:40:6f: 64:3c:ef:ba:c1:f4:e5:21:1f:d7:fc:0d:8e:77:e0:79:3f:e1: 48:d1:2f:6e:69:f5:8b:60:76:95:46:3f:e9:15:8d:94:ed:35: 6c:fe:1d:ab:00:d0:45:04:77:45:88:e7:8a:df:4c:9c:e2:6e: 3a:9d:31:7a:90:70:6d:92:2b:ed:3f:64:2c:81:e0:a8:80:ea: c3:3e:8d:60:99:2c:a2:af:a6:6a:57:35:d1:5c:f7:45:c5:ff: c8:2f:49:ed:99:2f:10:37:60:e6:d3:de:6c:82:59:09:66:ac: c2:e5:63:61 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUZQMabk1PHilY+0b5QTYvw8u1uZ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJBRjk2NjcwNjYwQzk0RkJCM0UzODdFRjE1MDVFNkZB NDAxRUNDRjAeFw0yNDAxMDEwODU1NDRaFw0yNDEyMzAwOTAwNDRaMDMxMTAvBgNV BAMTKDZFODVENkE3MkIzQUU3QzdEMTE1MDFDOUMxNEJGQjI5OTg4N0ZCOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEjI3zWuCv+dzTtl1bCVMPMKuj yWjsZDqq+dXLFcfpJ0GeLu0p2VF/WzcJ0f/tmIeVXohKvssxaV2pMKBM4gaR0R74 zk+wIFtTPWYJ1Fd4mLV9/3i/89LHVVC1KZOcpsrSew4MD75+IJsNcuwmzSN/UscD RkTMNCxY6hqBN/y7dRWAf3wjrAmH1lP45oaC01PTWgwLJ5fr2vnDaiOwkZyxqJQH iZ/eyTqhWW4lI+uWQpiNbksEIa+NdzzCPt/8WUBI3EHXe34f29TJPaQVFi66+s09 AOFBXw18ulwLvX0Eof9+VhExf8DFgx9VePo5zN3hnVH0TZFe4AJTz3NTAIwNAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUboXWpys658fRFQHJwUv7KZiH+5EwHwYDVR0j BBgwFoAUC6+WZwZgyU+7Pjh+8VBeb6QB7M8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWEwY2Y5YS1jNTdkLTQzOTUtOTI0OS1iZmNmNDY3MjQyODIvMC8wQkFGOTY2NzA2 NjBDOTRGQkIzRTM4N0VGMTUwNUU2RkE0MDFFQ0NGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEJBRjk2NjcwNjYwQzk0RkJCM0UzODdFRjE1MDVFNkZBNDAx RUNDRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVlYTBjZjlhLWM1N2QtNDM5NS05 MjQ5LWJmY2Y0NjcyNDI4Mi8wLzMyMzAzMDMxM2E2NDY2MzMzYTM3MzAzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMyMzYzNzM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 83AAMA0GCSqGSIb3DQEBCwUAA4IBAQAU3Vi+oRKuHxi6EHRB/i3cHy0xRoEhQLxy J87iPEXZkLri78l6y++zSzvSXpatY+KnFyQcuvYISpeSZpyHUhIqDuXyQyqWhOqz 1uRc3X/K5l+aCVc/pu7sPzHc3vBPJHr4RbUofvrZkNSLscpgLq/DKXcknPSwV11H mkhTwIZa4rDHRU3lMXyPtpaawW/HQG9kPO+6wfTlIR/X/A2Od+B5P+FI0S9uafWL YHaVRj/pFY2U7TVs/h2rANBFBHdFiOeK30yc4m46nTF6kHBtkivtP2QsgeCogOrD Po1gmSyir6ZqVzXRXPdFxf/IL0ntmS8QN2Dm095sglkJZqzC5WNh -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:33 2024 by rpki-client on console-ams.rpki-client.org