$ rpki-client -vvf repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/323030313a6466323a633938303a3a2f34382d3438203d3e20313430343231.roa File: 323030313a6466323a633938303a3a2f34382d3438203d3e20313430343231.roa (raw, json) Hash identifier: 68fT/6O+GQIrkXJcp+Dg6OpaZLLbbrSI6G1YMP9fXt0= Subject key identifier: 97:E5:CF:33:04:36:E5:89:9A:04:47:7D:04:6C:6D:08:46:0E:84:71 Certificate issuer: /CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Certificate serial: 59FB9EC1F7E5ADF390FB83AAEDDEE89592C5740F Authority key identifier: 0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/323030313a6466323a633938303a3a2f34382d3438203d3e20313430343231.roa Signing time: Fri 02 Aug 2024 03:43:13 +0000 ROA not before: Fri 02 Aug 2024 03:38:13 +0000 ROA not after: Fri 01 Aug 2025 03:43:13 +0000 asID: 140421 IP address blocks: 2001:df2:c980::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:fb:9e:c1:f7:e5:ad:f3:90:fb:83:aa:ed:de:e8:95:92:c5:74:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Validity Not Before: Aug 2 03:38:13 2024 GMT Not After : Aug 1 03:43:13 2025 GMT Subject: CN=97E5CF330436E5899A04477D046C6D08460E8471 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:bd:6c:b2:d4:b8:75:0c:12:ff:34:01:a8:35: 00:a7:e7:7b:33:31:c9:a5:08:9d:b4:e8:fc:a0:e3: 7e:35:e1:20:b2:5a:2b:53:49:c4:f3:db:e9:44:86: b8:25:54:ce:be:7e:95:5f:ce:b3:94:1b:22:7c:b4: 35:11:1c:56:3c:bb:bb:9b:6f:ac:b8:1b:53:a7:4d: ef:2c:06:53:79:73:85:71:94:84:97:a2:a5:e7:7b: cf:09:c7:3c:b0:6d:39:7f:bf:ea:ea:6b:86:69:41: 98:22:e1:11:b5:5e:2b:18:ef:82:4a:fc:7e:bd:fd: 0c:4c:0c:72:00:f0:cc:53:4c:ed:a9:c7:25:ac:c3: 87:a5:58:2b:19:af:94:0e:8a:93:87:18:2a:c2:93: 17:e0:de:7c:37:ae:17:d2:62:7a:ab:b1:d7:66:39: 24:93:d9:99:4c:d7:dc:2a:7c:1f:f1:8a:23:79:ee: 80:d2:d6:3c:d1:61:f0:78:8c:dc:52:41:b9:0e:fd: 35:e6:ef:9a:56:b5:20:2d:50:53:23:44:00:2f:fe: d6:c3:78:60:7e:dd:a2:88:2c:b8:b9:9e:f5:1b:4f: fa:69:9a:59:e1:da:c3:34:56:d8:4b:d3:65:11:40: 53:c3:19:81:f1:7c:c4:5a:94:78:2a:eb:48:c2:8a: f1:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:E5:CF:33:04:36:E5:89:9A:04:47:7D:04:6C:6D:08:46:0E:84:71 X509v3 Authority Key Identifier: keyid:0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/323030313a6466323a633938303a3a2f34382d3438203d3e20313430343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:c980::/48 Signature Algorithm: sha256WithRSAEncryption 28:46:fd:a8:0a:d6:75:d3:61:22:ac:31:49:19:90:54:4a:9b: c2:24:50:e8:05:f5:2d:14:7c:79:0b:a6:d2:f2:62:12:fb:fd: c7:a5:dc:38:8c:8c:e5:cf:6d:a6:d4:e9:5e:91:cb:c4:1a:ff: cb:d2:1e:9f:a5:f3:51:c3:f7:31:d4:26:1b:ad:e9:f3:ea:34: 70:c8:72:8b:bc:89:ad:93:4b:45:7d:85:21:50:db:a7:ec:0e: 26:5a:b5:09:19:60:cb:f4:4d:68:15:ba:58:a9:b4:d9:d6:4c: 30:48:a3:05:1d:7a:07:7e:c8:14:7d:02:33:14:d0:2f:f2:61: e0:b4:56:a7:c1:c9:ab:c0:01:cd:24:61:e2:16:48:a1:2f:75: 8c:08:4c:82:c3:74:d7:8a:79:70:70:76:26:73:f0:3d:f1:82: 1a:a8:f8:dc:83:53:d5:df:99:45:ad:5f:1b:a5:b4:fc:f1:8a: 89:ce:3c:7b:19:79:dc:5b:01:3b:ae:6b:e1:e6:69:7d:b6:04: ed:d4:82:e0:bc:53:95:4d:73:57:34:98:5b:98:54:3c:f8:c7: ee:c3:63:ff:92:42:32:77:05:8b:3c:b0:fb:2e:bc:82:f1:77: 48:f0:5f:61:9f:05:e6:dd:8e:94:65:fe:c4:81:50:c1:6e:ff: 20:ce:a0:c4 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUWfuewfflrfOQ+4Oq7d7olZLFdA8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0 NDk3QkZFMzAeFw0yNDA4MDIwMzM4MTNaFw0yNTA4MDEwMzQzMTNaMDMxMTAvBgNV BAMTKDk3RTVDRjMzMDQzNkU1ODk5QTA0NDc3RDA0NkM2RDA4NDYwRTg0NzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZvWyy1Lh1DBL/NAGoNQCn53sz McmlCJ206Pyg43414SCyWitTScTz2+lEhrglVM6+fpVfzrOUGyJ8tDURHFY8u7ub b6y4G1OnTe8sBlN5c4VxlISXoqXne88JxzywbTl/v+rqa4ZpQZgi4RG1XisY74JK /H69/QxMDHIA8MxTTO2pxyWsw4elWCsZr5QOipOHGCrCkxfg3nw3rhfSYnqrsddm OSST2ZlM19wqfB/xiiN57oDS1jzRYfB4jNxSQbkO/TXm75pWtSAtUFMjRAAv/tbD eGB+3aKILLi5nvUbT/ppmlnh2sM0VthL02URQFPDGYHxfMRalHgq60jCivErAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUl+XPMwQ25YmaBEd9BGxtCEYOhHEwHwYDVR0j BBgwFoAUC7TpUniaxQL6DPuVwuA/Q0SXv+MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjcyZWNhNC03M2FkLTRlMGItYTZhNi03YTY1Njk4YjczYmUvMC8wQkI0RTk1Mjc4 OUFDNTAyRkEwQ0ZCOTVDMkUwM0Y0MzQ0OTdCRkUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0NDk3 QkZFMy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiNzJlY2E0LTczYWQtNGUwYi1h NmE2LTdhNjU2OThiNzNiZS8wLzMyMzAzMDMxM2E2NDY2MzIzYTYzMzkzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMwMzQzMjMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8smAMA0GCSqGSIb3DQEBCwUAA4IBAQAoRv2oCtZ102EirDFJGZBUSpvCJFDoBfUt FHx5C6bS8mIS+/3Hpdw4jIzlz22m1OlekcvEGv/L0h6fpfNRw/cx1CYbrenz6jRw yHKLvImtk0tFfYUhUNun7A4mWrUJGWDL9E1oFbpYqbTZ1kwwSKMFHXoHfsgUfQIz FNAv8mHgtFanwcmrwAHNJGHiFkihL3WMCEyCw3TXinlwcHYmc/A98YIaqPjcg1PV 35lFrV8bpbT88YqJzjx7GXncWwE7rmvh5ml9tgTt1ILgvFOVTXNXNJhbmFQ8+Mfu w2P/kkIydwWLPLD7LryC8XdI8F9hnwXm3Y6UZf7EgVDBbv8gzqDE -----END CERTIFICATE-----Generated at Sun Nov 24 07:10:00 2024 by rpki-client on console-ams.rpki-client.org