$ rpki-client -vvf repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/323030313a6466303a3266633a3a2f34382d3438203d3e203538343034.roa File: 323030313a6466303a3266633a3a2f34382d3438203d3e203538343034.roa (raw, json) Hash identifier: CnkVTPyXoN81CXoMBzW6erzeaYjqRdKYOHnGAhWhsKo= Subject key identifier: FD:A1:8E:89:F7:8F:86:1A:87:38:FD:D3:D9:00:E3:56:37:2A:F1:7A Certificate issuer: /CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A Certificate serial: 02D86374F975E5024C745D92A72BBCABC14E2F0C Authority key identifier: C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/323030313a6466303a3266633a3a2f34382d3438203d3e203538343034.roa Signing time: Wed 10 Jul 2024 08:00:01 +0000 ROA not before: Wed 10 Jul 2024 07:55:01 +0000 ROA not after: Wed 09 Jul 2025 08:00:01 +0000 asID: 58404 IP address blocks: 2001:df0:2fc::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:d8:63:74:f9:75:e5:02:4c:74:5d:92:a7:2b:bc:ab:c1:4e:2f:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A Validity Not Before: Jul 10 07:55:01 2024 GMT Not After : Jul 9 08:00:01 2025 GMT Subject: CN=FDA18E89F78F861A8738FDD3D900E356372AF17A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:5f:81:f9:bb:c0:a9:ec:a0:8f:e2:f7:c0:3c: 27:21:21:58:d0:41:a0:53:44:52:c9:ea:7a:1e:3a: be:8a:01:0d:9b:ca:79:1a:6d:47:94:82:fd:da:29: c3:45:5d:fe:b1:2f:a9:61:e3:0d:e9:d7:3b:b7:e5: 5f:ec:af:14:df:e7:2d:c9:18:86:6c:2f:bc:76:ae: 42:40:9e:54:e8:f4:b8:83:09:41:d9:74:be:fb:db: 15:ae:b2:d1:ff:f8:86:f1:60:57:e3:ee:ba:af:a0: ab:74:cd:25:0c:8d:ab:4a:81:5d:be:89:22:99:cf: 33:be:26:49:ad:cd:c3:a9:94:8e:ef:1e:21:55:27: e3:8a:2d:0b:8e:9e:64:d0:39:93:57:95:68:d9:8e: b9:24:57:78:29:be:54:a3:6c:5c:f7:1b:ad:e9:bc: 0e:fb:de:e8:e6:ac:d8:89:07:08:9d:9e:4c:df:42: cc:6a:01:d0:2f:70:93:6e:d3:28:7d:81:f3:d0:78: 52:14:3c:ba:3d:99:57:9b:34:3c:4c:52:19:a7:7c: 9e:f5:da:30:1f:4b:22:b5:02:cc:76:02:b2:43:30: 30:cf:0c:7e:23:cd:02:8f:45:37:d8:80:f5:0a:48: 2a:79:1d:2e:41:f5:84:80:04:2c:2c:aa:3b:ed:f0: d9:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:A1:8E:89:F7:8F:86:1A:87:38:FD:D3:D9:00:E3:56:37:2A:F1:7A X509v3 Authority Key Identifier: keyid:C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/323030313a6466303a3266633a3a2f34382d3438203d3e203538343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:2fc::/48 Signature Algorithm: sha256WithRSAEncryption 5f:7e:93:ef:ff:d5:f9:a9:81:fd:10:5d:db:6c:ee:b1:5b:72: 0e:7d:dd:ee:95:98:af:94:05:20:39:61:ee:6e:36:0d:5b:cb: 6a:16:bb:b2:f2:1a:ff:a9:f7:36:11:35:5f:6e:33:42:f1:f8: bd:32:c4:1c:9c:51:d5:41:ae:e1:98:e1:70:9e:1d:c8:3c:42: aa:d8:28:5f:64:01:d6:34:0f:a1:7e:91:af:b6:fd:2a:aa:52: 46:ef:1a:7c:f2:32:c9:94:17:8c:16:b6:dd:c9:da:46:64:28: d6:af:2a:7c:5a:a8:87:5a:a9:90:77:48:ef:a6:2f:c5:c2:6e: 2e:6e:3b:6a:d9:1a:bc:86:d4:58:c8:07:fa:03:d7:2b:b7:9b: b9:70:cc:b6:79:46:94:7f:64:b9:eb:e0:94:27:c7:33:da:8f: a3:2d:6b:bf:eb:91:fc:7b:36:dd:8b:b4:13:57:dd:b8:ca:ff: 2a:42:a5:97:cc:08:0a:63:3e:e0:88:99:a7:48:54:86:62:0c: 8b:40:79:66:5d:35:9d:c5:b4:30:ed:21:26:aa:a4:c0:a5:12: a4:34:c3:c9:1b:23:9e:33:c3:2f:b4:5f:48:5e:7d:99:2a:f4: c3:8e:13:f5:a5:df:a1:91:14:aa:1b:84:78:1a:91:d3:af:af: 54:ff:36:76 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUAthjdPl15QJMdF2Spyu8q8FOLwwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZG QjQ4ODcxQTAeFw0yNDA3MTAwNzU1MDFaFw0yNTA3MDkwODAwMDFaMDMxMTAvBgNV BAMTKEZEQTE4RTg5Rjc4Rjg2MUE4NzM4RkREM0Q5MDBFMzU2MzcyQUYxN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbX4H5u8Cp7KCP4vfAPCchIVjQ QaBTRFLJ6noeOr6KAQ2bynkabUeUgv3aKcNFXf6xL6lh4w3p1zu35V/srxTf5y3J GIZsL7x2rkJAnlTo9LiDCUHZdL772xWustH/+IbxYFfj7rqvoKt0zSUMjatKgV2+ iSKZzzO+JkmtzcOplI7vHiFVJ+OKLQuOnmTQOZNXlWjZjrkkV3gpvlSjbFz3G63p vA773ujmrNiJBwidnkzfQsxqAdAvcJNu0yh9gfPQeFIUPLo9mVebNDxMUhmnfJ71 2jAfSyK1Asx2ArJDMDDPDH4jzQKPRTfYgPUKSCp5HS5B9YSABCwsqjvt8NnvAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU/aGOifePhhqHOP3T2QDjVjcq8XowHwYDVR0j BBgwFoAUwlRKDB7oq/naBhRQCTABL/tIhxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTBmOTE2My0zZTVhLTRlZmEtOGJkOS00YWM0YmM2MzA0MTQvMC9DMjU0NEEwQzFF RThBQkY5REEwNjE0NTAwOTMwMDEyRkZCNDg4NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZGQjQ4 ODcxQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlMGY5MTYzLTNlNWEtNGVmYS04 YmQ5LTRhYzRiYzYzMDQxNC8wLzMyMzAzMDMxM2E2NDY2MzAzYTMyNjY2MzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNDMwMzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ3wAvww DQYJKoZIhvcNAQELBQADggEBAF9+k+//1fmpgf0QXdts7rFbcg593e6VmK+UBSA5 Ye5uNg1by2oWu7LyGv+p9zYRNV9uM0Lx+L0yxBycUdVBruGY4XCeHcg8QqrYKF9k AdY0D6F+ka+2/SqqUkbvGnzyMsmUF4wWtt3J2kZkKNavKnxaqIdaqZB3SO+mL8XC bi5uO2rZGryG1FjIB/oD1yu3m7lwzLZ5RpR/ZLnr4JQnxzPaj6Mta7/rkfx7Nt2L tBNX3bjK/ypCpZfMCApjPuCImadIVIZiDItAeWZdNZ3FtDDtISaqpMClEqQ0w8kb I54zwy+0X0hefZkq9MOOE/Wl36GRFKobhHgakdOvr1T/NnY= -----END CERTIFICATE-----Generated at Fri Nov 22 14:19:26 2024 by rpki-client on console-ams.rpki-client.org