$ rpki-client -vvf repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/1/323030313a6466333a643934303a3a2f34382d3438203d3e20313532373732.roa File: 323030313a6466333a643934303a3a2f34382d3438203d3e20313532373732.roa (raw, json) Hash identifier: shl5hzE7A/Tc3LxB68K5+LeHHHNimXXsrSJroYt9mi4= Subject key identifier: B8:D1:D2:5F:B7:62:F0:EB:89:DF:DA:79:5B:8D:CE:A8:35:9C:AE:D1 Certificate issuer: /CN=798A229C42DA54D0690064D264AA7AA2375D0419 Certificate serial: 4C0248D72016BFA068B94CB19C593E125F64B18F Authority key identifier: 79:8A:22:9C:42:DA:54:D0:69:00:64:D2:64:AA:7A:A2:37:5D:04:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/798A229C42DA54D0690064D264AA7AA2375D0419.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/1/323030313a6466333a643934303a3a2f34382d3438203d3e20313532373732.roa Signing time: Sun 16 Jun 2024 17:24:36 +0000 ROA not before: Sun 16 Jun 2024 17:19:36 +0000 ROA not after: Sun 15 Jun 2025 17:24:36 +0000 asID: 152772 IP address blocks: 2001:df3:d940::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/1/798A229C42DA54D0690064D264AA7AA2375D0419.crl rsync://repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/1/798A229C42DA54D0690064D264AA7AA2375D0419.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/798A229C42DA54D0690064D264AA7AA2375D0419.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:02:48:d7:20:16:bf:a0:68:b9:4c:b1:9c:59:3e:12:5f:64:b1:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=798A229C42DA54D0690064D264AA7AA2375D0419 Validity Not Before: Jun 16 17:19:36 2024 GMT Not After : Jun 15 17:24:36 2025 GMT Subject: CN=B8D1D25FB762F0EB89DFDA795B8DCEA8359CAED1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:99:78:e3:98:2e:c6:c9:70:6c:4d:90:ad:5a: ca:3d:7c:e4:fd:28:db:7c:b1:da:fd:f8:6f:1f:44: 80:27:db:66:29:f2:55:15:93:f2:79:74:39:ed:62: 47:65:77:e1:7f:e6:4a:41:5a:2b:eb:72:8e:03:c6: 4a:cf:e7:cc:8d:37:2b:90:8b:37:a3:0d:2b:84:5d: 9b:28:7a:5c:55:4c:a6:c0:24:74:c8:f9:2f:9f:89: 2d:5d:22:5c:dd:a7:f4:2e:3b:4d:dc:f8:1f:d0:2f: 19:d2:16:3a:ad:89:ed:93:77:62:a1:1f:d4:b6:43: 9f:75:27:28:0d:37:55:92:ac:5f:b4:45:c7:cd:3c: 8f:20:2c:cb:13:45:2c:f7:c5:38:d6:d2:db:fe:8a: 81:5d:72:c8:95:c8:31:cb:b7:9a:e6:50:88:25:54: 34:65:b0:69:4c:c1:87:4c:b9:29:e9:c9:b0:3b:d9: 74:d1:11:b8:d0:27:7f:f5:d2:cf:f0:03:cf:8a:f1: 4f:f8:75:ce:76:52:de:a9:d1:17:bb:31:04:f8:69: 4e:ac:1b:83:99:65:ad:e9:65:87:c0:05:ff:7a:5c: bf:af:e6:21:91:86:2a:b4:61:ff:bb:75:e5:86:1f: 29:00:6d:28:b0:44:16:88:76:56:42:4d:88:21:1b: 13:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:D1:D2:5F:B7:62:F0:EB:89:DF:DA:79:5B:8D:CE:A8:35:9C:AE:D1 X509v3 Authority Key Identifier: keyid:79:8A:22:9C:42:DA:54:D0:69:00:64:D2:64:AA:7A:A2:37:5D:04:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/1/798A229C42DA54D0690064D264AA7AA2375D0419.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/798A229C42DA54D0690064D264AA7AA2375D0419.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/1/323030313a6466333a643934303a3a2f34382d3438203d3e20313532373732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:d940::/48 Signature Algorithm: sha256WithRSAEncryption 47:da:56:1e:5e:12:a3:51:a6:e6:dd:43:d4:51:d8:f8:8a:fc: 28:18:f3:98:83:c1:0b:28:8f:da:2c:3b:ff:36:3d:2f:27:50: a7:47:1d:94:c1:24:de:9a:fd:cc:51:ac:0d:ef:51:b2:b3:c6: b8:6a:d2:fd:55:3d:be:84:78:c1:95:b5:9a:02:0b:f1:20:cf: 4a:f1:0e:b0:14:f2:7c:c6:7f:ff:c2:0c:3d:a1:ba:44:36:65: 3d:92:ca:be:c5:58:b5:89:ae:24:d2:ca:ad:23:3e:e9:75:97: 98:8a:98:bc:1f:b6:91:fe:16:3a:0d:6b:70:79:c0:3a:f1:6f: ef:e0:1e:b1:b7:00:56:be:18:b2:c9:08:ee:e0:0f:25:59:f8: 0d:55:ec:56:f1:43:ea:8e:e9:01:76:0f:ce:6c:0f:b8:af:5b: 3d:bf:eb:40:fd:6c:05:f2:1a:ab:87:c1:e4:64:4b:30:99:84: 62:00:b9:1a:29:ed:25:00:f3:09:1b:d1:5b:35:ee:c9:91:12: 75:d3:2e:bf:7d:38:f5:e4:5c:0e:82:b4:f8:55:5c:83:b9:84: e8:32:28:bc:12:0e:89:d3:95:bb:d2:f5:e9:94:4e:d1:c1:b8: 47:5c:ee:98:84:41:3b:aa:cf:f2:d7:df:1c:4f:17:e1:38:3a: a3:6f:7b:e0 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUTAJI1yAWv6BouUyxnFk+El9ksY8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzk4QTIyOUM0MkRBNTREMDY5MDA2NEQyNjRBQTdBQTIz NzVEMDQxOTAeFw0yNDA2MTYxNzE5MzZaFw0yNTA2MTUxNzI0MzZaMDMxMTAvBgNV BAMTKEI4RDFEMjVGQjc2MkYwRUI4OURGREE3OTVCOERDRUE4MzU5Q0FFRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwmXjjmC7GyXBsTZCtWso9fOT9 KNt8sdr9+G8fRIAn22Yp8lUVk/J5dDntYkdld+F/5kpBWivrco4DxkrP58yNNyuQ izejDSuEXZsoelxVTKbAJHTI+S+fiS1dIlzdp/QuO03c+B/QLxnSFjqtie2Td2Kh H9S2Q591JygNN1WSrF+0RcfNPI8gLMsTRSz3xTjW0tv+ioFdcsiVyDHLt5rmUIgl VDRlsGlMwYdMuSnpybA72XTREbjQJ3/10s/wA8+K8U/4dc52Ut6p0Re7MQT4aU6s G4OZZa3pZYfABf96XL+v5iGRhiq0Yf+7deWGHykAbSiwRBaIdlZCTYghGxN5AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUuNHSX7di8OuJ39p5W43OqDWcrtEwHwYDVR0j BBgwFoAUeYoinELaVNBpAGTSZKp6ojddBBkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 Y2YwMWVjNi04ZTg5LTQwMmEtOTBjNy01MGM2ZjE0Y2QyNDIvMS83OThBMjI5QzQy REE1NEQwNjkwMDY0RDI2NEFBN0FBMjM3NUQwNDE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzk4QTIyOUM0MkRBNTREMDY5MDA2NEQyNjRBQTdBQTIzNzVE MDQxOS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjZjAxZWM2LThlODktNDAyYS05 MGM3LTUwYzZmMTRjZDI0Mi8xLzMyMzAzMDMxM2E2NDY2MzMzYTY0MzkzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzczNzMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 89lAMA0GCSqGSIb3DQEBCwUAA4IBAQBH2lYeXhKjUabm3UPUUdj4ivwoGPOYg8EL KI/aLDv/Nj0vJ1CnRx2UwSTemv3MUawN71Gys8a4atL9VT2+hHjBlbWaAgvxIM9K 8Q6wFPJ8xn//wgw9obpENmU9ksq+xVi1ia4k0sqtIz7pdZeYipi8H7aR/hY6DWtw ecA68W/v4B6xtwBWvhiyyQju4A8lWfgNVexW8UPqjukBdg/ObA+4r1s9v+tA/WwF 8hqrh8HkZEswmYRiALkaKe0lAPMJG9FbNe7JkRJ10y6/fTj15FwOgrT4VVyDuYTo Mii8Eg6J05W70vXplE7RwbhHXO6YhEE7qs/y198cTxfhODqjb3vg -----END CERTIFICATE-----Generated at Fri Nov 22 08:00:08 2024 by rpki-client on console-ams.rpki-client.org