$ rpki-client -vvf repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/1/323030313a6466333a356263303a3a2f34382d3438203d3e20313532303832.roa File: 323030313a6466333a356263303a3a2f34382d3438203d3e20313532303832.roa (raw, json) Hash identifier: 4TimN+2+l5fCgKmyWbGn8f8LrgZk1v2Jjdf3BNFGy84= Subject key identifier: E7:C3:8E:EE:35:2D:7B:5A:23:FC:7B:23:30:39:AC:0F:30:9F:A2:46 Certificate issuer: /CN=93B49EA86589396F687875020DE4D17DE244CD6E Certificate serial: 491F160C2FA67E06E5180A29D4E8F36DE8C96C43 Authority key identifier: 93:B4:9E:A8:65:89:39:6F:68:78:75:02:0D:E4:D1:7D:E2:44:CD:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/93B49EA86589396F687875020DE4D17DE244CD6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/1/323030313a6466333a356263303a3a2f34382d3438203d3e20313532303832.roa Signing time: Thu 11 Jan 2024 03:26:55 +0000 ROA not before: Thu 11 Jan 2024 03:21:55 +0000 ROA not after: Thu 09 Jan 2025 03:26:55 +0000 asID: 152082 IP address blocks: 2001:df3:5bc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/1/93B49EA86589396F687875020DE4D17DE244CD6E.crl rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/1/93B49EA86589396F687875020DE4D17DE244CD6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/93B49EA86589396F687875020DE4D17DE244CD6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 08:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:1f:16:0c:2f:a6:7e:06:e5:18:0a:29:d4:e8:f3:6d:e8:c9:6c:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=93B49EA86589396F687875020DE4D17DE244CD6E Validity Not Before: Jan 11 03:21:55 2024 GMT Not After : Jan 9 03:26:55 2025 GMT Subject: CN=E7C38EEE352D7B5A23FC7B233039AC0F309FA246 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:20:01:62:9e:3b:15:18:5b:8a:fe:ad:14:43: 28:81:c9:7d:a7:0d:1a:42:88:51:a2:de:ad:d0:23: c9:e3:00:4c:02:f3:a5:64:7b:c2:33:88:c3:9b:a5: 10:2a:51:1d:f3:96:02:8b:8b:91:ae:ad:6c:1c:71: 95:58:bb:0d:dd:1b:aa:6e:98:9d:01:a7:25:6e:f2: 63:c9:98:32:ea:b6:d8:46:6c:9a:1a:ec:8e:ac:73: 9f:0d:f4:10:c3:fb:50:23:5c:04:d2:42:44:51:40: b5:b7:d7:be:e8:1f:39:b5:34:29:7d:39:dd:ef:cc: 9c:2f:b3:88:19:97:68:86:fb:69:95:66:5c:2c:83: 21:8b:5f:0e:75:de:2c:e3:e3:c5:95:b7:7a:2e:e6: ae:d1:a2:e8:c4:aa:c0:bc:70:c4:f4:02:6d:dc:0b: 73:47:bb:17:d5:a0:7c:ec:d9:a4:80:24:1f:94:b6: 40:e1:1e:bf:ad:3c:62:0e:31:68:1a:34:40:14:29: 29:92:fd:6d:0f:7b:7a:81:ad:62:fc:0a:d0:b7:9a: 46:c5:20:d1:8b:cc:7d:5e:fe:91:2b:7b:c4:3c:5b: 55:dd:d0:a6:9c:37:08:11:c0:81:c5:ae:2d:66:19: a8:f0:95:50:f2:d9:07:77:98:f6:db:f0:a4:e7:ba: 54:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:C3:8E:EE:35:2D:7B:5A:23:FC:7B:23:30:39:AC:0F:30:9F:A2:46 X509v3 Authority Key Identifier: keyid:93:B4:9E:A8:65:89:39:6F:68:78:75:02:0D:E4:D1:7D:E2:44:CD:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/1/93B49EA86589396F687875020DE4D17DE244CD6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/93B49EA86589396F687875020DE4D17DE244CD6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/1/323030313a6466333a356263303a3a2f34382d3438203d3e20313532303832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:5bc0::/48 Signature Algorithm: sha256WithRSAEncryption 60:df:7c:0d:5d:f8:ae:c8:b0:1b:f6:5c:4b:39:03:de:67:00: 42:37:4c:77:74:00:bd:bb:9b:76:20:77:88:72:1d:a1:f3:b7: 38:69:83:bd:23:07:ab:54:73:6e:03:3b:65:25:53:26:8b:bd: f4:fc:23:1c:07:fb:34:b8:6b:a8:2f:f2:5b:4f:72:fd:87:a7: fa:a9:64:9e:e2:04:60:a8:f8:b3:da:58:f3:4a:98:23:77:81: d9:b7:67:ae:23:b3:85:3b:7b:ba:08:27:99:25:0a:54:6b:c0: 37:28:0f:e1:e1:4f:e6:60:94:57:92:da:ac:f4:88:1d:c7:4d: 40:f6:89:01:0c:ac:ab:49:c5:31:5d:03:b9:06:db:f8:a7:6a: 54:b5:49:e7:9c:bb:3f:cb:45:6f:f1:05:25:94:59:82:be:69: 61:05:e7:71:59:d0:d8:20:a8:52:5e:79:2d:18:00:6a:f3:c6: d7:40:2c:fa:d2:8f:18:a8:ce:57:6a:22:ec:6f:e4:8f:1f:75: fb:fb:fd:e5:8c:65:d7:32:6f:2a:92:3a:cf:48:97:5f:f0:06: fa:12:a6:21:04:7a:0b:9a:01:a0:1c:92:1a:ed:37:9d:99:20: de:cc:40:53:fc:69:49:9a:ce:88:0a:44:ba:11:57:b8:dd:65: ed:3b:69:e0 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUSR8WDC+mfgblGAop1OjzbejJbEMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTNCNDlFQTg2NTg5Mzk2RjY4Nzg3NTAyMERFNEQxN0RF MjQ0Q0Q2RTAeFw0yNDAxMTEwMzIxNTVaFw0yNTAxMDkwMzI2NTVaMDMxMTAvBgNV BAMTKEU3QzM4RUVFMzUyRDdCNUEyM0ZDN0IyMzMwMzlBQzBGMzA5RkEyNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXIAFinjsVGFuK/q0UQyiByX2n DRpCiFGi3q3QI8njAEwC86Vke8IziMObpRAqUR3zlgKLi5GurWwccZVYuw3dG6pu mJ0BpyVu8mPJmDLqtthGbJoa7I6sc58N9BDD+1AjXATSQkRRQLW3177oHzm1NCl9 Od3vzJwvs4gZl2iG+2mVZlwsgyGLXw513izj48WVt3ou5q7RoujEqsC8cMT0Am3c C3NHuxfVoHzs2aSAJB+UtkDhHr+tPGIOMWgaNEAUKSmS/W0Pe3qBrWL8CtC3mkbF INGLzH1e/pEre8Q8W1Xd0KacNwgRwIHFri1mGajwlVDy2Qd3mPbb8KTnulRHAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU58OO7jUte1oj/HsjMDmsDzCfokYwHwYDVR0j BBgwFoAUk7SeqGWJOW9oeHUCDeTRfeJEzW4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MzJlNGY4Ni00OGU3LTQ4YzctYmE5MS1lMjU5NjgzNzhlOTUvMS85M0I0OUVBODY1 ODkzOTZGNjg3ODc1MDIwREU0RDE3REUyNDRDRDZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTNCNDlFQTg2NTg5Mzk2RjY4Nzg3NTAyMERFNEQxN0RFMjQ0 Q0Q2RS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczMmU0Zjg2LTQ4ZTctNDhjNy1i YTkxLWUyNTk2ODM3OGU5NS8xLzMyMzAzMDMxM2E2NDY2MzMzYTM1NjI2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzAzODMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 81vAMA0GCSqGSIb3DQEBCwUAA4IBAQBg33wNXfiuyLAb9lxLOQPeZwBCN0x3dAC9 u5t2IHeIch2h87c4aYO9IwerVHNuAztlJVMmi730/CMcB/s0uGuoL/JbT3L9h6f6 qWSe4gRgqPiz2ljzSpgjd4HZt2euI7OFO3u6CCeZJQpUa8A3KA/h4U/mYJRXktqs 9Igdx01A9okBDKyrScUxXQO5Btv4p2pUtUnnnLs/y0Vv8QUllFmCvmlhBedxWdDY IKhSXnktGABq88bXQCz60o8YqM5XaiLsb+SPH3X7+/3ljGXXMm8qkjrPSJdf8Ab6 EqYhBHoLmgGgHJIa7TedmSDezEBT/GlJms6ICkS6EVe43WXtO2ng -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:34 2024 by rpki-client on console-ams.rpki-client.org