$ rpki-client -vvf repo-rpki.idnic.net/repo/93dc1b05-2a69-45b0-8c44-626772276bd9/0/323030313a6466333a313230303a3a2f34382d3438203d3e20313335343535.roa File: 323030313a6466333a313230303a3a2f34382d3438203d3e20313335343535.roa (raw, json) Hash identifier: 3qnCtoCeKXBegDtpX3cC5NA+r2J5bWzaWBUjmHqCK/8= Subject key identifier: 1D:39:01:02:2A:AA:80:DC:6E:13:CD:86:AF:F7:A5:0B:D7:8F:C4:05 Certificate issuer: /CN=B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416 Certificate serial: 6CE553C66EB3E45E65DB25DC0BBBC50879D22FD9 Authority key identifier: B2:C1:8E:11:C8:53:0B:DF:4E:E3:33:F5:DE:BD:0B:05:5F:9D:A4:16 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416.cer Subject info access: rsync://repo-rpki.idnic.net/repo/93dc1b05-2a69-45b0-8c44-626772276bd9/0/323030313a6466333a313230303a3a2f34382d3438203d3e20313335343535.roa Signing time: Wed 17 Apr 2024 09:02:27 +0000 ROA not before: Wed 17 Apr 2024 08:57:27 +0000 ROA not after: Wed 16 Apr 2025 09:02:27 +0000 asID: 135455 IP address blocks: 2001:df3:1200::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/93dc1b05-2a69-45b0-8c44-626772276bd9/0/B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416.crl rsync://repo-rpki.idnic.net/repo/93dc1b05-2a69-45b0-8c44-626772276bd9/0/B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:e5:53:c6:6e:b3:e4:5e:65:db:25:dc:0b:bb:c5:08:79:d2:2f:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416 Validity Not Before: Apr 17 08:57:27 2024 GMT Not After : Apr 16 09:02:27 2025 GMT Subject: CN=1D3901022AAA80DC6E13CD86AFF7A50BD78FC405 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:a0:a9:32:b7:4e:64:3a:50:5c:df:bb:08:ed: 87:d4:c6:b2:fc:4d:c3:35:f2:a9:1a:f2:ee:bf:a8: 46:10:03:1f:09:eb:a0:64:56:a4:56:50:eb:e0:b6: eb:68:62:72:5c:8e:2f:dc:b5:e2:5c:9d:8b:cb:db: 92:4b:fe:1f:78:cd:b3:3e:61:c7:36:c0:30:4f:43: 3d:27:df:81:8f:61:b8:06:d5:84:32:a8:f6:c9:77: 61:32:5a:6b:77:30:4b:d3:32:5a:79:ed:81:84:00: a2:93:10:8e:e3:72:c6:db:93:b1:78:02:57:6c:87: 67:b6:7b:99:c6:c3:a7:70:8b:a3:bc:0f:59:be:76: 58:75:fd:c4:4b:ec:9c:03:18:2a:de:d8:8d:92:aa: a2:aa:2e:b4:85:07:0b:76:98:d7:9f:ac:44:4e:8a: bc:cb:c0:4f:d7:ea:d1:b5:c5:7b:ef:bc:c9:da:09: 3f:58:5b:c8:78:9d:ee:fb:0f:ad:30:30:c3:49:19: d4:10:54:4f:ff:fb:d2:11:d0:77:74:b2:de:05:62: b5:cc:eb:82:2f:01:5e:8a:7c:24:bc:c0:47:bd:9b: 16:66:d6:43:40:41:3b:b9:66:18:6a:9b:ec:d4:7c: b2:a4:36:1c:ac:de:12:7c:57:2c:ff:ab:96:5d:06: 83:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:39:01:02:2A:AA:80:DC:6E:13:CD:86:AF:F7:A5:0B:D7:8F:C4:05 X509v3 Authority Key Identifier: keyid:B2:C1:8E:11:C8:53:0B:DF:4E:E3:33:F5:DE:BD:0B:05:5F:9D:A4:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/93dc1b05-2a69-45b0-8c44-626772276bd9/0/B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/93dc1b05-2a69-45b0-8c44-626772276bd9/0/323030313a6466333a313230303a3a2f34382d3438203d3e20313335343535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:1200::/48 Signature Algorithm: sha256WithRSAEncryption 45:00:49:c5:26:80:8d:46:fa:5f:bc:df:d7:c5:28:0d:4b:bc: f3:7e:67:a0:0f:99:5a:e8:24:96:37:e5:21:4f:bc:1f:47:ef: 07:16:70:54:ab:63:67:c3:90:66:01:cd:69:7e:84:53:c5:9c: 9c:cf:e7:c4:36:c0:51:ab:18:74:4c:9f:cb:31:9a:f9:15:f3: 31:72:c2:02:1b:4a:23:24:1b:48:8c:3e:30:72:75:a8:83:0a: 50:78:25:7a:33:24:0d:f9:e4:f5:21:30:f5:14:66:ed:7a:59: d2:55:ec:8f:04:76:81:63:d8:81:84:5c:44:93:15:bd:4a:92: 91:c5:2b:80:02:33:da:23:91:9d:db:83:b4:2e:bd:d7:ad:59: c3:27:34:c0:bc:37:e3:38:28:59:d7:ac:d3:3c:9b:94:d3:be: 56:b5:77:51:df:a6:3f:56:4e:fc:22:30:24:f2:e9:b4:af:eb: 70:db:51:0e:5f:6d:38:6a:a0:58:1b:ed:f0:f9:d4:94:5c:93: 13:08:83:bb:9f:82:43:2c:28:d6:cc:df:5e:f3:22:ae:c9:cc: c6:11:29:c1:c2:ba:57:d0:1a:fb:ef:39:49:db:c6:bb:8c:60: cf:5c:17:a4:9d:a5:eb:65:cb:2f:49:1e:24:27:9d:ca:01:f6: c7:0f:c6:13 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUbOVTxm6z5F5l2yXcC7vFCHnSL9kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjJDMThFMTFDODUzMEJERjRFRTMzM0Y1REVCRDBCMDU1 RjlEQTQxNjAeFw0yNDA0MTcwODU3MjdaFw0yNTA0MTYwOTAyMjdaMDMxMTAvBgNV BAMTKDFEMzkwMTAyMkFBQTgwREM2RTEzQ0Q4NkFGRjdBNTBCRDc4RkM0MDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpoKkyt05kOlBc37sI7YfUxrL8 TcM18qka8u6/qEYQAx8J66BkVqRWUOvgtutoYnJcji/cteJcnYvL25JL/h94zbM+ Ycc2wDBPQz0n34GPYbgG1YQyqPbJd2EyWmt3MEvTMlp57YGEAKKTEI7jcsbbk7F4 Aldsh2e2e5nGw6dwi6O8D1m+dlh1/cRL7JwDGCre2I2SqqKqLrSFBwt2mNefrERO irzLwE/X6tG1xXvvvMnaCT9YW8h4ne77D60wMMNJGdQQVE//+9IR0Hd0st4FYrXM 64IvAV6KfCS8wEe9mxZm1kNAQTu5Zhhqm+zUfLKkNhys3hJ8Vyz/q5ZdBoPlAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUHTkBAiqqgNxuE82Gr/elC9ePxAUwHwYDVR0j BBgwFoAUssGOEchTC99O4zP13r0LBV+dpBYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 M2RjMWIwNS0yYTY5LTQ1YjAtOGM0NC02MjY3NzIyNzZiZDkvMC9CMkMxOEUxMUM4 NTMwQkRGNEVFMzMzRjVERUJEMEIwNTVGOURBNDE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjJDMThFMTFDODUzMEJERjRFRTMzM0Y1REVCRDBCMDU1RjlE QTQxNi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkzZGMxYjA1LTJhNjktNDViMC04 YzQ0LTYyNjc3MjI3NmJkOS8wLzMyMzAzMDMxM2E2NDY2MzMzYTMxMzIzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM1MzQzNTM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8xIAMA0GCSqGSIb3DQEBCwUAA4IBAQBFAEnFJoCNRvpfvN/XxSgNS7zzfmegD5la 6CSWN+UhT7wfR+8HFnBUq2Nnw5BmAc1pfoRTxZycz+fENsBRqxh0TJ/LMZr5FfMx csICG0ojJBtIjD4wcnWogwpQeCV6MyQN+eT1ITD1FGbtelnSVeyPBHaBY9iBhFxE kxW9SpKRxSuAAjPaI5Gd24O0Lr3XrVnDJzTAvDfjOChZ16zTPJuU075WtXdR36Y/ Vk78IjAk8um0r+tw21EOX204aqBYG+3w+dSUXJMTCIO7n4JDLCjWzN9e8yKuyczG ESnBwrpX0Br77zlJ28a7jGDPXBeknaXrZcsvSR4kJ53KAfbHD8YT -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:56 2024 by rpki-client on console-ams.rpki-client.org