$ rpki-client -vvf repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/323030313a6466323a353463303a3a2f34382d3438203d3e20313432333638.roa File: 323030313a6466323a353463303a3a2f34382d3438203d3e20313432333638.roa (raw, json) Hash identifier: oAaVILpnGjJ6ZQSss2N01FKCzay+aKTOLvG9oVZT11U= Subject key identifier: 92:EF:F2:F2:C0:DC:CC:11:C6:41:A0:25:E6:55:FC:25:8E:65:1B:36 Certificate issuer: /CN=3BA10823C279932D7573B930625CD2884433C744 Certificate serial: 6A64F4E5FF1B47A24951B8C43573440D56B24FA2 Authority key identifier: 3B:A1:08:23:C2:79:93:2D:75:73:B9:30:62:5C:D2:88:44:33:C7:44 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA10823C279932D7573B930625CD2884433C744.cer Subject info access: rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/323030313a6466323a353463303a3a2f34382d3438203d3e20313432333638.roa Signing time: Sat 30 Mar 2024 08:00:00 +0000 ROA not before: Sat 30 Mar 2024 07:55:00 +0000 ROA not after: Sat 29 Mar 2025 08:00:00 +0000 asID: 142368 IP address blocks: 2001:df2:54c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3BA10823C279932D7573B930625CD2884433C744.crl rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3BA10823C279932D7573B930625CD2884433C744.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA10823C279932D7573B930625CD2884433C744.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:44:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:64:f4:e5:ff:1b:47:a2:49:51:b8:c4:35:73:44:0d:56:b2:4f:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BA10823C279932D7573B930625CD2884433C744 Validity Not Before: Mar 30 07:55:00 2024 GMT Not After : Mar 29 08:00:00 2025 GMT Subject: CN=92EFF2F2C0DCCC11C641A025E655FC258E651B36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:49:2d:8d:f0:f2:06:1a:d0:84:97:41:44:e4: d4:15:11:77:4f:be:fc:96:f1:b0:c0:f3:0d:61:b4: 41:da:f5:20:f2:0b:da:ff:8a:a3:60:28:db:59:22: 50:8d:e1:cd:c4:6c:9f:c7:f7:c2:ed:c4:80:3d:b9: 2d:bc:f0:0d:e1:d8:74:74:c1:53:e5:05:8c:c1:3e: 74:7a:d0:57:8c:e8:79:a6:09:86:ea:e3:1b:6b:1b: 28:2f:e8:90:c8:f2:19:c1:3d:e7:a6:42:17:b8:c3: d6:3f:37:3e:5f:b2:85:76:7b:29:de:8c:a7:c8:01: 6e:86:e7:4e:67:b2:bb:e0:65:7f:66:a1:08:77:2b: 22:9f:cf:af:88:af:a5:55:c3:e0:91:54:c9:d8:0f: 67:38:e2:e2:73:d1:de:79:f4:4c:ea:ea:94:d9:99: 40:c5:2c:55:38:15:04:56:61:d9:55:c3:de:89:41: e5:6c:05:31:dd:37:a8:02:aa:20:48:e0:a7:aa:80: cb:d7:27:33:db:8b:33:c9:ec:5a:01:29:57:eb:6f: 2f:d1:84:87:8c:9a:db:96:34:8d:60:df:ac:5c:e4: 1a:10:1c:9b:f4:e7:15:66:56:84:8a:e5:8e:9f:89: 19:49:ca:0e:03:4a:7d:3e:b6:4c:be:f2:a4:fb:68: f4:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:EF:F2:F2:C0:DC:CC:11:C6:41:A0:25:E6:55:FC:25:8E:65:1B:36 X509v3 Authority Key Identifier: keyid:3B:A1:08:23:C2:79:93:2D:75:73:B9:30:62:5C:D2:88:44:33:C7:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3BA10823C279932D7573B930625CD2884433C744.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA10823C279932D7573B930625CD2884433C744.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/323030313a6466323a353463303a3a2f34382d3438203d3e20313432333638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:54c0::/48 Signature Algorithm: sha256WithRSAEncryption 34:28:f3:cc:02:fc:5c:c7:11:28:83:3c:4e:78:49:97:9a:a7: 0d:eb:f5:28:a1:0f:14:6b:83:62:ea:49:e6:65:63:ea:3c:c1: a9:a1:cc:e4:5a:ea:b2:cb:2c:43:5d:f7:5c:51:95:6c:03:76: 80:75:af:13:22:af:b3:3e:b0:03:d3:d5:e1:e7:8c:db:c4:63: 34:ca:aa:0c:d2:af:6a:6f:fb:aa:2e:d0:2d:ec:8d:a8:0c:e4: 9b:61:0e:b0:ed:e7:fb:4d:51:89:14:ae:19:ec:99:2d:2f:4b: 57:34:b8:62:fe:1c:41:af:80:0c:f3:cc:1a:9b:73:e2:13:a9: 79:9b:57:24:e9:f8:84:44:1f:2f:d4:4c:4a:ed:f7:14:7e:a4: 64:68:c3:1b:60:d5:f7:3c:eb:70:80:37:46:e2:19:41:32:16: d2:b2:dd:74:31:63:2d:1b:b3:22:ed:6f:c3:d5:81:19:5c:24: 0a:2b:9a:89:0e:ea:78:72:c9:e1:89:80:e3:cb:7e:9b:f8:f7: b3:24:6e:8b:76:d5:c4:1d:a1:86:d4:4b:c2:47:0d:e0:bc:7d: a9:8f:7b:0e:de:57:b2:e2:c4:95:76:cc:62:a4:eb:66:61:bb: 63:72:41:e7:0e:c4:e3:da:eb:b0:dd:04:0b:22:39:0a:1a:ce: 13:42:28:2e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUamT05f8bR6JJUbjENXNEDVayT6IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0JBMTA4MjNDMjc5OTMyRDc1NzNCOTMwNjI1Q0QyODg0 NDMzQzc0NDAeFw0yNDAzMzAwNzU1MDBaFw0yNTAzMjkwODAwMDBaMDMxMTAvBgNV BAMTKDkyRUZGMkYyQzBEQ0NDMTFDNjQxQTAyNUU2NTVGQzI1OEU2NTFCMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYSS2N8PIGGtCEl0FE5NQVEXdP vvyW8bDA8w1htEHa9SDyC9r/iqNgKNtZIlCN4c3EbJ/H98LtxIA9uS288A3h2HR0 wVPlBYzBPnR60FeM6HmmCYbq4xtrGygv6JDI8hnBPeemQhe4w9Y/Nz5fsoV2eyne jKfIAW6G505nsrvgZX9moQh3KyKfz6+Ir6VVw+CRVMnYD2c44uJz0d559Ezq6pTZ mUDFLFU4FQRWYdlVw96JQeVsBTHdN6gCqiBI4KeqgMvXJzPbizPJ7FoBKVfrby/R hIeMmtuWNI1g36xc5BoQHJv05xVmVoSK5Y6fiRlJyg4DSn0+tky+8qT7aPQ7AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUku/y8sDczBHGQaAl5lX8JY5lGzYwHwYDVR0j BBgwFoAUO6EII8J5ky11c7kwYlzSiEQzx0QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MmQ0OTE3OS00ZDhiLTRkMmQtYWJmNC00MzIzMWRlYjViMDEvMC8zQkExMDgyM0My Nzk5MzJENzU3M0I5MzA2MjVDRDI4ODQ0MzNDNzQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0JBMTA4MjNDMjc5OTMyRDc1NzNCOTMwNjI1Q0QyODg0NDMz Qzc0NC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgyZDQ5MTc5LTRkOGItNGQyZC1h YmY0LTQzMjMxZGViNWIwMS8wLzMyMzAzMDMxM2E2NDY2MzIzYTM1MzQ2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMyMzMzNjM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8lTAMA0GCSqGSIb3DQEBCwUAA4IBAQA0KPPMAvxcxxEogzxOeEmXmqcN6/UooQ8U a4Ni6knmZWPqPMGpoczkWuqyyyxDXfdcUZVsA3aAda8TIq+zPrAD09Xh54zbxGM0 yqoM0q9qb/uqLtAt7I2oDOSbYQ6w7ef7TVGJFK4Z7JktL0tXNLhi/hxBr4AM88wa m3PiE6l5m1ck6fiERB8v1ExK7fcUfqRkaMMbYNX3POtwgDdG4hlBMhbSst10MWMt G7Mi7W/D1YEZXCQKK5qJDup4csnhiYDjy36b+PezJG6LdtXEHaGG1EvCRw3gvH2p j3sO3ley4sSVdsxipOtmYbtjckHnDsTj2uuw3QQLIjkKGs4TQigu -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:02 2024 by rpki-client on console-ams.rpki-client.org