$ rpki-client -vvf repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/323030313a6466313a666530303a3a2f34382d3438203d3e20313431313037.roa File: 323030313a6466313a666530303a3a2f34382d3438203d3e20313431313037.roa (raw, json) Hash identifier: 96iMJoj+cFMvtnyIVwYET8bE27HKdbaW3rJ7KX7hPqQ= Subject key identifier: 77:AF:F6:D4:85:BB:58:B9:98:95:52:CA:56:A9:93:54:F2:86:22:73 Certificate issuer: /CN=0FA41B65D1881666013C9683E40575E68E5DC0A5 Certificate serial: 0B12164B47F23C133B31EB84677E267DC7437D73 Authority key identifier: 0F:A4:1B:65:D1:88:16:66:01:3C:96:83:E4:05:75:E6:8E:5D:C0:A5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/323030313a6466313a666530303a3a2f34382d3438203d3e20313431313037.roa Signing time: Thu 26 Sep 2024 07:02:24 +0000 ROA not before: Thu 26 Sep 2024 06:57:24 +0000 ROA not after: Thu 25 Sep 2025 07:02:24 +0000 asID: 141107 IP address blocks: 2001:df1:fe00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.crl rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:37:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:12:16:4b:47:f2:3c:13:3b:31:eb:84:67:7e:26:7d:c7:43:7d:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FA41B65D1881666013C9683E40575E68E5DC0A5 Validity Not Before: Sep 26 06:57:24 2024 GMT Not After : Sep 25 07:02:24 2025 GMT Subject: CN=77AFF6D485BB58B9989552CA56A99354F2862273 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ee:ee:e7:d7:e9:a5:9b:21:2f:9f:f5:e2:4a: 03:84:27:24:e3:60:12:08:d5:f4:81:79:eb:e4:68: 1e:e6:52:7b:a8:f8:a5:9d:ae:4e:61:36:57:c0:f8: d7:f6:ac:2b:80:ed:ca:5d:8c:02:0c:99:ec:12:7f: 2e:80:b1:b6:aa:bb:39:e8:78:a8:d7:63:e1:f4:ca: 81:fd:4c:c4:49:a1:6a:ae:99:56:12:9b:6f:25:19: 87:44:6e:02:8f:e2:c5:20:35:11:3a:be:19:20:ef: 26:f0:84:42:fe:a1:02:cb:dd:f8:9f:23:47:f6:5f: df:d6:64:b1:8e:c2:a3:64:b2:82:97:80:26:ae:15: 8f:73:a5:a4:c8:1d:9f:46:66:7f:0b:23:3f:4e:2b: d8:7b:fc:7b:4c:13:dc:dc:a1:63:3f:b6:42:a4:96: cf:dd:c2:26:44:6f:02:e3:4e:10:ae:72:71:58:7b: 60:59:a7:d4:ef:75:f9:05:a4:5e:ea:11:1b:5e:a8: 93:9d:30:26:f3:52:19:02:5d:72:5d:e4:a1:d7:48: aa:dc:08:8d:1b:a8:65:ff:95:f9:48:5f:a0:e5:e3: 19:37:56:61:7b:61:d9:f6:53:ca:96:5f:16:43:af: f6:a9:fd:68:38:63:f1:21:bb:c9:10:da:92:d9:e5: 18:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:AF:F6:D4:85:BB:58:B9:98:95:52:CA:56:A9:93:54:F2:86:22:73 X509v3 Authority Key Identifier: keyid:0F:A4:1B:65:D1:88:16:66:01:3C:96:83:E4:05:75:E6:8E:5D:C0:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/323030313a6466313a666530303a3a2f34382d3438203d3e20313431313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:fe00::/48 Signature Algorithm: sha256WithRSAEncryption 62:46:c3:06:32:15:04:74:ca:c4:1a:a8:81:d4:cc:e6:5c:d6: ca:2d:c4:d5:8c:57:90:06:d3:d1:7e:26:95:dc:4d:19:f6:7b: 35:0e:16:b1:31:53:75:57:e9:3f:68:76:76:e6:d9:26:f3:cc: 25:a0:44:02:c0:8d:45:73:f6:f7:36:1d:da:cf:dd:82:2e:ba: 78:26:2a:6e:ad:c4:2a:f8:f6:f8:4c:33:0b:86:91:ce:7a:14: 02:ae:b6:c3:5d:d8:19:54:b9:7a:8e:93:61:d6:41:9e:69:9a: 27:9d:0e:91:f3:e0:3c:8b:5c:65:b6:cf:a5:4e:f0:3a:cd:48: d6:15:01:ca:34:72:d3:04:e4:66:8f:53:30:17:54:2b:f3:f6: 50:6c:3e:16:59:19:0f:af:5d:d0:a1:31:e3:69:7a:66:72:75: a4:18:52:e5:3a:93:37:1f:65:10:33:0b:6c:ce:84:00:82:09: 1f:91:fe:12:88:2d:8a:f4:5c:c1:89:8f:2d:3a:f6:e3:48:23: 99:55:d9:74:0b:d2:b0:42:4c:7a:87:4d:f1:50:ee:f4:99:96: 26:c1:d3:f2:be:37:37:8c:ac:76:6b:32:3d:e1:83:bb:7b:af: e9:92:48:19:92:aa:9e:4e:11:fd:af:2c:4d:0e:51:b8:1f:99: 30:e9:ef:c5 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUCxIWS0fyPBM7MeuEZ34mfcdDfXMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZBNDFCNjVEMTg4MTY2NjAxM0M5NjgzRTQwNTc1RTY4 RTVEQzBBNTAeFw0yNDA5MjYwNjU3MjRaFw0yNTA5MjUwNzAyMjRaMDMxMTAvBgNV BAMTKDc3QUZGNkQ0ODVCQjU4Qjk5ODk1NTJDQTU2QTk5MzU0RjI4NjIyNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCe7u7n1+mlmyEvn/XiSgOEJyTj YBII1fSBeevkaB7mUnuo+KWdrk5hNlfA+Nf2rCuA7cpdjAIMmewSfy6Asbaquzno eKjXY+H0yoH9TMRJoWqumVYSm28lGYdEbgKP4sUgNRE6vhkg7ybwhEL+oQLL3fif I0f2X9/WZLGOwqNksoKXgCauFY9zpaTIHZ9GZn8LIz9OK9h7/HtME9zcoWM/tkKk ls/dwiZEbwLjThCucnFYe2BZp9TvdfkFpF7qERteqJOdMCbzUhkCXXJd5KHXSKrc CI0bqGX/lflIX6Dl4xk3VmF7Ydn2U8qWXxZDr/ap/Wg4Y/Ehu8kQ2pLZ5RihAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUd6/21IW7WLmYlVLKVqmTVPKGInMwHwYDVR0j BBgwFoAUD6QbZdGIFmYBPJaD5AV15o5dwKUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OTk0ZDM3NS1mYzdkLTRkYzctYTFmMS1lMGIzYTU5ZmRmNzgvMC8wRkE0MUI2NUQx ODgxNjY2MDEzQzk2ODNFNDA1NzVFNjhFNURDMEE1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEZBNDFCNjVEMTg4MTY2NjAxM0M5NjgzRTQwNTc1RTY4RTVE QzBBNS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc5OTRkMzc1LWZjN2QtNGRjNy1h MWYxLWUwYjNhNTlmZGY3OC8wLzMyMzAzMDMxM2E2NDY2MzEzYTY2NjUzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMxMzEzMDM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8f4AMA0GCSqGSIb3DQEBCwUAA4IBAQBiRsMGMhUEdMrEGqiB1MzmXNbKLcTVjFeQ BtPRfiaV3E0Z9ns1DhaxMVN1V+k/aHZ25tkm88wloEQCwI1Fc/b3Nh3az92CLrp4 JipurcQq+Pb4TDMLhpHOehQCrrbDXdgZVLl6jpNh1kGeaZonnQ6R8+A8i1xlts+l TvA6zUjWFQHKNHLTBORmj1MwF1Qr8/ZQbD4WWRkPr13QoTHjaXpmcnWkGFLlOpM3 H2UQMwtszoQAggkfkf4SiC2K9FzBiY8tOvbjSCOZVdl0C9KwQkx6h03xUO70mZYm wdPyvjc3jKx2azI94YO7e6/pkkgZkqqeThH9ryxNDlG4H5kw6e/F -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:33 2024 by rpki-client on console-ams.rpki-client.org