$ rpki-client -vvf repo-rpki.idnic.net/repo/641e08ef-3ae6-4b90-b477-0e9140d04380/0/323030313a6466303a376263303a3a2f34382d3438203d3e20313439333935.roa File: 323030313a6466303a376263303a3a2f34382d3438203d3e20313439333935.roa (raw, json) Hash identifier: KmwxYNBof+9d1bN3iAjGOYXY8SVr0+E+UsBOHaijDGU= Subject key identifier: 34:B4:F0:9C:25:63:27:3B:44:20:24:0E:DE:96:DC:9E:40:93:A9:75 Certificate issuer: /CN=E9314307AD14302DF40DE1A8ED0B5D48D6F73FAF Certificate serial: 433C293289E141BC4834148C3EC7B213B6740A42 Authority key identifier: E9:31:43:07:AD:14:30:2D:F4:0D:E1:A8:ED:0B:5D:48:D6:F7:3F:AF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E9314307AD14302DF40DE1A8ED0B5D48D6F73FAF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/641e08ef-3ae6-4b90-b477-0e9140d04380/0/323030313a6466303a376263303a3a2f34382d3438203d3e20313439333935.roa Signing time: Fri 11 Oct 2024 12:00:00 +0000 ROA not before: Fri 11 Oct 2024 11:55:00 +0000 ROA not after: Fri 10 Oct 2025 12:00:00 +0000 asID: 149395 IP address blocks: 2001:df0:7bc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/641e08ef-3ae6-4b90-b477-0e9140d04380/0/E9314307AD14302DF40DE1A8ED0B5D48D6F73FAF.crl rsync://repo-rpki.idnic.net/repo/641e08ef-3ae6-4b90-b477-0e9140d04380/0/E9314307AD14302DF40DE1A8ED0B5D48D6F73FAF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E9314307AD14302DF40DE1A8ED0B5D48D6F73FAF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:3c:29:32:89:e1:41:bc:48:34:14:8c:3e:c7:b2:13:b6:74:0a:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E9314307AD14302DF40DE1A8ED0B5D48D6F73FAF Validity Not Before: Oct 11 11:55:00 2024 GMT Not After : Oct 10 12:00:00 2025 GMT Subject: CN=34B4F09C2563273B4420240EDE96DC9E4093A975 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b2:bd:64:05:35:e8:3a:a1:e2:21:1d:aa:3e: aa:79:8e:72:44:5c:97:29:9e:34:c9:e8:eb:d6:40: fb:98:6d:ae:b6:53:e1:90:00:82:7b:a3:85:58:5b: d0:72:23:6c:e1:39:ca:8d:f8:84:75:11:7b:76:a3: 43:ad:0d:1d:56:6e:89:f4:6b:c1:e0:4c:39:99:93: ac:b4:58:9e:7a:b6:6f:bb:af:4d:e8:bd:27:ab:b1: f8:b6:4e:46:07:f7:55:41:c3:b9:01:13:c0:c0:f2: d6:4f:b0:df:01:0e:cb:5c:35:a8:e9:b4:c3:23:90: 79:35:a4:41:bf:b3:7f:9d:0a:76:5e:17:9f:ef:fe: 46:20:64:4b:1f:67:f7:51:cc:ba:19:ff:8c:f6:1e: af:31:ee:45:90:27:6c:c8:1e:2f:f3:75:b2:46:e5: 1b:38:6e:a3:dd:b2:a1:56:80:b9:25:fa:78:78:0e: fb:b9:25:22:61:1d:15:4d:6e:9a:03:e6:7b:78:7c: 32:b9:79:0c:1c:e4:5d:2f:b9:08:a6:8b:6c:1c:7e: 3f:6d:64:f2:2f:c0:3b:a2:fe:d1:25:de:b5:41:59: 51:68:74:e0:50:63:42:e6:5d:de:96:0d:5e:1d:75: d3:d6:57:16:7d:c5:7d:3c:b8:e5:b3:67:88:aa:94: 54:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:B4:F0:9C:25:63:27:3B:44:20:24:0E:DE:96:DC:9E:40:93:A9:75 X509v3 Authority Key Identifier: keyid:E9:31:43:07:AD:14:30:2D:F4:0D:E1:A8:ED:0B:5D:48:D6:F7:3F:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/641e08ef-3ae6-4b90-b477-0e9140d04380/0/E9314307AD14302DF40DE1A8ED0B5D48D6F73FAF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E9314307AD14302DF40DE1A8ED0B5D48D6F73FAF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/641e08ef-3ae6-4b90-b477-0e9140d04380/0/323030313a6466303a376263303a3a2f34382d3438203d3e20313439333935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:7bc0::/48 Signature Algorithm: sha256WithRSAEncryption 46:27:07:24:ca:8e:55:ac:59:12:51:b2:d9:da:f4:50:b8:a0: 1b:a1:52:1a:69:34:c9:98:61:80:4d:d3:94:8d:73:83:28:da: f7:23:9e:19:57:2e:4a:10:ff:60:72:d2:a7:4f:df:b9:ea:5d: d4:cc:e4:31:3c:b9:65:6c:b9:a3:61:51:e1:38:12:f6:04:e5: 1a:ee:d6:0f:9a:dd:fb:4e:86:23:f6:61:9e:65:d5:06:ce:2d: 35:9d:74:f8:b0:0f:91:9e:4a:85:7b:7b:62:c3:d1:0b:6d:84: 98:7b:32:8f:e1:fa:4c:bb:5c:0a:01:85:19:e8:39:11:e2:27: 82:d4:62:91:f4:1d:a7:1e:7a:7f:a2:65:ba:00:2f:43:08:e8: f3:c9:97:76:c0:af:2f:48:1b:5c:85:30:71:e2:dd:72:1c:79: b5:da:ee:6d:a3:fa:d2:e1:4c:95:0c:c9:3c:eb:2e:35:29:32: fe:37:28:dc:e7:75:e1:06:55:94:41:52:97:cb:d7:0f:e4:80: eb:20:9f:54:13:6a:be:0c:f4:55:e9:c4:42:37:5b:ba:cb:fe: 15:4c:95:52:ba:19:e5:7b:8d:54:64:d6:99:99:f2:3f:c3:42: 2e:d5:73:23:f3:51:8a:73:6a:49:30:b9:98:9a:05:1d:38:2f: 7f:30:63:48 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUQzwpMonhQbxINBSMPseyE7Z0CkIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTkzMTQzMDdBRDE0MzAyREY0MERFMUE4RUQwQjVENDhE NkY3M0ZBRjAeFw0yNDEwMTExMTU1MDBaFw0yNTEwMTAxMjAwMDBaMDMxMTAvBgNV BAMTKDM0QjRGMDlDMjU2MzI3M0I0NDIwMjQwRURFOTZEQzlFNDA5M0E5NzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzsr1kBTXoOqHiIR2qPqp5jnJE XJcpnjTJ6OvWQPuYba62U+GQAIJ7o4VYW9ByI2zhOcqN+IR1EXt2o0OtDR1Wbon0 a8HgTDmZk6y0WJ56tm+7r03ovSersfi2TkYH91VBw7kBE8DA8tZPsN8BDstcNajp tMMjkHk1pEG/s3+dCnZeF5/v/kYgZEsfZ/dRzLoZ/4z2Hq8x7kWQJ2zIHi/zdbJG 5Rs4bqPdsqFWgLkl+nh4Dvu5JSJhHRVNbpoD5nt4fDK5eQwc5F0vuQimi2wcfj9t ZPIvwDui/tEl3rVBWVFodOBQY0LmXd6WDV4dddPWVxZ9xX08uOWzZ4iqlFT/AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUNLTwnCVjJztEICQO3pbcnkCTqXUwHwYDVR0j BBgwFoAU6TFDB60UMC30DeGo7QtdSNb3P68wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDFlMDhlZi0zYWU2LTRiOTAtYjQ3Ny0wZTkxNDBkMDQzODAvMC9FOTMxNDMwN0FE MTQzMDJERjQwREUxQThFRDBCNUQ0OEQ2RjczRkFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTkzMTQzMDdBRDE0MzAyREY0MERFMUE4RUQwQjVENDhENkY3 M0ZBRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0MWUwOGVmLTNhZTYtNGI5MC1i NDc3LTBlOTE0MGQwNDM4MC8wLzMyMzAzMDMxM2E2NDY2MzAzYTM3NjI2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDM5MzMzOTM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8HvAMA0GCSqGSIb3DQEBCwUAA4IBAQBGJwckyo5VrFkSUbLZ2vRQuKAboVIaaTTJ mGGATdOUjXODKNr3I54ZVy5KEP9gctKnT9+56l3UzOQxPLllbLmjYVHhOBL2BOUa 7tYPmt37ToYj9mGeZdUGzi01nXT4sA+RnkqFe3tiw9ELbYSYezKP4fpMu1wKAYUZ 6DkR4ieC1GKR9B2nHnp/omW6AC9DCOjzyZd2wK8vSBtchTBx4t1yHHm12u5to/rS 4UyVDMk86y41KTL+Nyjc53XhBlWUQVKXy9cP5IDrIJ9UE2q+DPRV6cRCN1u6y/4V TJVSuhnle41UZNaZmfI/w0Iu1XMj81GKc2pJMLmYmgUdOC9/MGNI -----END CERTIFICATE-----Generated at Mon Nov 25 21:31:14 2024 by rpki-client on console-ams.rpki-client.org