$ rpki-client -vvf repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/323030313a6466333a333438303a3a2f34382d3438203d3e20313430343433.roa File: 323030313a6466333a333438303a3a2f34382d3438203d3e20313430343433.roa (raw, json) Hash identifier: MxebdHEhOjXip7gq4+61F23EIcShrXqwS4BKGpKtDTs= Subject key identifier: C5:DB:4D:FF:E8:74:C8:68:6B:7C:FA:43:79:D4:32:DF:17:C0:F8:5D Certificate issuer: /CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Certificate serial: 3EF1A32FB6D407AFAAC85CD0E635F7F73CB02266 Authority key identifier: 74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/323030313a6466333a333438303a3a2f34382d3438203d3e20313430343433.roa Signing time: Mon 20 May 2024 04:00:00 +0000 ROA not before: Mon 20 May 2024 03:55:00 +0000 ROA not after: Mon 19 May 2025 04:00:00 +0000 asID: 140443 IP address blocks: 2001:df3:3480::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 06:14:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:f1:a3:2f:b6:d4:07:af:aa:c8:5c:d0:e6:35:f7:f7:3c:b0:22:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Validity Not Before: May 20 03:55:00 2024 GMT Not After : May 19 04:00:00 2025 GMT Subject: CN=C5DB4DFFE874C8686B7CFA4379D432DF17C0F85D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:46:dc:c3:9f:16:b7:ab:d5:94:19:ee:46:a7: d2:d2:36:21:0a:57:06:ee:06:4b:ce:94:4a:b0:43: 59:74:3d:4b:64:19:f7:e6:21:aa:41:42:1a:34:c5: b1:4e:4e:58:ba:5e:a7:ed:06:2d:4b:28:a3:35:f8: 1e:6d:01:04:b3:76:c2:40:51:19:e5:3e:91:ec:a7: 0b:66:08:77:49:eb:0b:ea:35:98:90:6d:40:be:40: 4b:9b:b5:c8:a8:63:d9:ce:7d:2e:2c:0c:a4:13:39: 46:e7:43:19:bd:7e:82:22:35:78:06:34:80:ea:95: 55:87:e5:14:b1:64:b7:99:b3:45:67:f8:23:ac:54: 66:92:01:b5:83:9a:c1:4f:43:c2:3d:2f:18:a0:12: 27:d1:78:69:1a:93:df:e6:04:3c:4d:1d:16:d1:2c: cf:a4:e0:bc:c5:5b:9d:4c:e0:d6:71:44:79:45:3a: af:ad:e2:df:f3:53:65:b3:b3:bb:e2:e4:af:53:0e: 95:ff:4d:89:2f:ed:f2:dd:0b:dc:a4:71:c1:e2:34: 07:cd:d5:91:c9:e4:07:08:a2:85:e8:9c:8a:e8:44: 64:23:aa:0c:ce:6d:5d:36:b6:ea:0b:6a:c8:ca:4e: 8f:df:89:18:6c:91:ae:a0:28:55:96:50:0d:e8:85: fc:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:DB:4D:FF:E8:74:C8:68:6B:7C:FA:43:79:D4:32:DF:17:C0:F8:5D X509v3 Authority Key Identifier: keyid:74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/323030313a6466333a333438303a3a2f34382d3438203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:3480::/48 Signature Algorithm: sha256WithRSAEncryption 36:8b:73:53:48:d3:1b:42:8a:8e:87:e8:fa:42:d9:1f:4c:a4: 2e:40:0b:00:22:68:17:83:79:27:d5:65:d1:fd:f2:8d:70:93: dd:c6:64:cc:d8:58:9b:cc:0d:c5:02:50:23:2f:f6:a0:61:be: ad:d5:26:db:97:13:63:ce:ea:97:07:7f:17:cb:0b:c7:6c:ec: fd:74:51:c8:22:3f:d6:45:f9:2b:b9:b3:f2:5b:20:15:c4:69: 1e:13:b9:cb:93:a7:df:b9:ee:66:21:70:d5:97:00:7c:89:ad: d3:4f:e5:e6:b9:00:25:8f:2c:c4:54:ae:08:36:9d:cd:65:27: b3:7f:f7:7d:32:be:66:f0:46:21:3e:ab:c5:d6:7a:e7:cd:0f: a6:d4:9c:ab:e4:f9:6b:cc:ed:05:c3:2d:79:18:95:7e:a5:19: ee:1c:26:d4:ae:46:b8:dd:8d:3f:53:a7:62:88:4c:d0:98:5f: cc:c7:63:af:fc:17:b0:d1:72:3f:ca:81:66:e7:21:e7:3a:ae: 4d:43:95:ec:b0:2f:63:fc:50:38:a3:ea:a1:4f:1f:46:86:28: 0a:40:ca:b2:ad:a1:75:d6:08:9e:40:98:40:66:89:88:bc:a3: 8c:27:73:4b:0d:27:c3:89:ce:c3:1c:5e:b2:57:74:0f:9d:eb: 03:96:e9:93 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUPvGjL7bUB6+qyFzQ5jX39zywImYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVDRDNF QTI3NjM1QzAeFw0yNDA1MjAwMzU1MDBaFw0yNTA1MTkwNDAwMDBaMDMxMTAvBgNV BAMTKEM1REI0REZGRTg3NEM4Njg2QjdDRkE0Mzc5RDQzMkRGMTdDMEY4NUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1RtzDnxa3q9WUGe5Gp9LSNiEK VwbuBkvOlEqwQ1l0PUtkGffmIapBQho0xbFOTli6XqftBi1LKKM1+B5tAQSzdsJA URnlPpHspwtmCHdJ6wvqNZiQbUC+QEubtcioY9nOfS4sDKQTOUbnQxm9foIiNXgG NIDqlVWH5RSxZLeZs0Vn+COsVGaSAbWDmsFPQ8I9LxigEifReGkak9/mBDxNHRbR LM+k4LzFW51M4NZxRHlFOq+t4t/zU2Wzs7vi5K9TDpX/TYkv7fLdC9ykccHiNAfN 1ZHJ5AcIooXonIroRGQjqgzObV02tuoLasjKTo/fiRhska6gKFWWUA3ohfxdAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUxdtN/+h0yGhrfPpDedQy3xfA+F0wHwYDVR0j BBgwFoAUdJ6PbF8i0YpwtoL4bGXs0+onY1wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YWU4ZGIzOC02M2E4LTQxM2MtYTlmNi1jYzIyM2FmYTRhNzUvMC83NDlFOEY2QzVG MjJEMThBNzBCNjgyRjg2QzY1RUNEM0VBMjc2MzVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVDRDNFQTI3 NjM1Qy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhhZThkYjM4LTYzYTgtNDEzYy1h OWY2LWNjMjIzYWZhNGE3NS8wLzMyMzAzMDMxM2E2NDY2MzMzYTMzMzQzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMwMzQzNDMzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8zSAMA0GCSqGSIb3DQEBCwUAA4IBAQA2i3NTSNMbQoqOh+j6QtkfTKQuQAsAImgX g3kn1WXR/fKNcJPdxmTM2FibzA3FAlAjL/agYb6t1SbblxNjzuqXB38XywvHbOz9 dFHIIj/WRfkrubPyWyAVxGkeE7nLk6ffue5mIXDVlwB8ia3TT+XmuQAljyzEVK4I Np3NZSezf/d9Mr5m8EYhPqvF1nrnzQ+m1Jyr5PlrzO0Fwy15GJV+pRnuHCbUrka4 3Y0/U6diiEzQmF/Mx2Ov/Bew0XI/yoFm5yHnOq5NQ5XssC9j/FA4o+qhTx9GhigK QMqyraF11gieQJhAZomIvKOMJ3NLDSfDic7DHF6yV3QPnesDlumT -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:01 2024 by rpki-client on console-ams.rpki-client.org