$ rpki-client -vvf repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/323030313a6466333a6330303a3a2f34382d3438203d3e203633383732.roa File: 323030313a6466333a6330303a3a2f34382d3438203d3e203633383732.roa (raw, json) Hash identifier: 8Z0pSGSnkKlaMC3s0SAaLzt4eONtxvATdsVtNdjluzw= Subject key identifier: 90:2F:AC:46:29:98:42:19:99:36:B1:74:E5:1E:38:40:20:0F:73:31 Certificate issuer: /CN=6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19 Certificate serial: 22CA53B303BA19EE79890F18A3FCB2FB932E71E3 Authority key identifier: 6D:6B:AE:DB:FD:BB:AA:46:BF:3D:A2:18:55:70:77:16:27:BE:7B:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/323030313a6466333a6330303a3a2f34382d3438203d3e203633383732.roa Signing time: Mon 01 Jul 2024 01:05:52 +0000 ROA not before: Mon 01 Jul 2024 01:00:52 +0000 ROA not after: Mon 30 Jun 2025 01:05:52 +0000 asID: 63872 IP address blocks: 2001:df3:c00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.crl rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:ca:53:b3:03:ba:19:ee:79:89:0f:18:a3:fc:b2:fb:93:2e:71:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19 Validity Not Before: Jul 1 01:00:52 2024 GMT Not After : Jun 30 01:05:52 2025 GMT Subject: CN=902FAC46299842199936B174E51E3840200F7331 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:c2:14:9c:62:2a:ab:3a:4e:f3:7f:78:20:9b: 87:4a:9f:d4:53:9b:c0:54:d5:62:b1:1f:5c:95:6f: 29:f4:3c:ac:74:06:1a:59:38:80:1c:0c:98:1e:39: e8:59:19:67:1f:b8:02:a2:85:f6:e8:80:d7:9b:1a: 3e:d3:73:29:04:9f:a6:76:1f:ac:7a:00:65:2b:d2: 7d:99:9a:eb:6a:e4:ca:fe:bf:56:75:18:e1:91:c3: 8c:cd:2c:cc:00:5f:58:cc:15:31:ae:0b:8f:97:4a: 78:05:36:a0:33:8d:df:df:d0:72:9b:84:62:b7:6d: 0d:02:17:35:06:2d:45:ca:58:8e:5b:9f:4e:e6:52: e3:23:a7:67:8d:83:c2:6c:87:38:8a:af:8b:ab:5a: cd:31:7f:77:9c:cd:f8:0f:7d:c9:78:6f:f4:99:a4: 9b:56:5c:a3:e7:2b:0b:51:55:20:d2:8e:8f:75:c5: 89:8b:7b:81:2d:4a:ba:d4:61:72:a6:54:7b:da:40: c9:23:a8:5d:b6:04:67:b4:97:85:6d:e3:3e:63:8c: 53:c3:76:17:0e:a4:9b:eb:28:3b:8e:ee:d9:8d:3e: 0e:ea:95:f5:2f:da:78:f6:76:f6:e0:e9:dd:89:bf: 40:b3:a3:9f:dd:9d:66:94:ec:70:f0:19:04:c5:b9: f9:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:2F:AC:46:29:98:42:19:99:36:B1:74:E5:1E:38:40:20:0F:73:31 X509v3 Authority Key Identifier: keyid:6D:6B:AE:DB:FD:BB:AA:46:BF:3D:A2:18:55:70:77:16:27:BE:7B:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/323030313a6466333a6330303a3a2f34382d3438203d3e203633383732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:c00::/48 Signature Algorithm: sha256WithRSAEncryption 16:76:67:3f:a0:27:58:e9:f2:8d:09:a7:17:ce:1c:91:96:2e: 1c:63:a9:87:26:71:dc:b1:e8:a7:c6:b3:73:07:49:5c:bc:71: 88:86:5d:90:d0:ce:6e:d5:43:59:69:43:c3:c0:2b:b9:08:65: c0:fb:32:e1:9c:04:eb:14:29:a7:23:66:f1:bc:a6:c6:8b:69: 20:6f:66:a3:98:f4:ce:69:0b:59:0b:07:74:d7:17:48:ff:f6: 7f:68:15:b0:9a:6e:ef:31:1f:a9:a8:34:67:6c:bf:74:b9:f7: aa:35:7d:21:a0:cd:c9:80:31:7b:37:5c:d5:0b:98:44:31:13: 58:d0:77:fe:f5:eb:78:eb:1b:3c:52:66:83:07:5a:c9:fc:4b: b8:cd:b1:eb:dc:5f:1c:2f:7a:79:e9:1a:7a:f3:73:10:67:09: 98:96:57:93:6a:0d:4b:2a:6a:1b:25:86:ec:15:ff:4f:84:2d: 4b:c4:82:73:d7:ca:ea:5c:9c:a6:ab:57:0c:c2:f6:e1:51:2d: dc:79:32:e2:e5:6e:ce:e7:80:cd:e9:db:90:4d:8c:e2:a5:2e: 50:00:95:49:72:d5:98:1c:bf:f3:fc:51:11:d3:8a:30:9d:7b: 19:23:e8:15:4b:e3:de:cd:85:ba:aa:aa:b0:2a:68:45:a7:90: 37:6f:64:03 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUIspTswO6Ge55iQ8Yo/yy+5MuceMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkQ2QkFFREJGREJCQUE0NkJGM0RBMjE4NTU3MDc3MTYy N0JFN0IxOTAeFw0yNDA3MDEwMTAwNTJaFw0yNTA2MzAwMTA1NTJaMDMxMTAvBgNV BAMTKDkwMkZBQzQ2Mjk5ODQyMTk5OTM2QjE3NEU1MUUzODQwMjAwRjczMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfwhScYiqrOk7zf3ggm4dKn9RT m8BU1WKxH1yVbyn0PKx0BhpZOIAcDJgeOehZGWcfuAKihfbogNebGj7TcykEn6Z2 H6x6AGUr0n2Zmutq5Mr+v1Z1GOGRw4zNLMwAX1jMFTGuC4+XSngFNqAzjd/f0HKb hGK3bQ0CFzUGLUXKWI5bn07mUuMjp2eNg8JshziKr4urWs0xf3eczfgPfcl4b/SZ pJtWXKPnKwtRVSDSjo91xYmLe4EtSrrUYXKmVHvaQMkjqF22BGe0l4Vt4z5jjFPD dhcOpJvrKDuO7tmNPg7qlfUv2nj2dvbg6d2Jv0Czo5/dnWaU7HDwGQTFufmBAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUkC+sRimYQhmZNrF05R44QCAPczEwHwYDVR0j BBgwFoAUbWuu2/27qka/PaIYVXB3Fie+exkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NmJiMzMzYy05ODJiLTRmY2UtYWM4MS1iYzA2OTIyOWUyNDMvMC82RDZCQUVEQkZE QkJBQTQ2QkYzREEyMTg1NTcwNzcxNjI3QkU3QjE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkQ2QkFFREJGREJCQUE0NkJGM0RBMjE4NTU3MDc3MTYyN0JF N0IxOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2YmIzMzNjLTk4MmItNGZjZS1h YzgxLWJjMDY5MjI5ZTI0My8wLzMyMzAzMDMxM2E2NDY2MzMzYTYzMzAzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM2MzMzODM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ3zDAAw DQYJKoZIhvcNAQELBQADggEBABZ2Zz+gJ1jp8o0JpxfOHJGWLhxjqYcmcdyx6KfG s3MHSVy8cYiGXZDQzm7VQ1lpQ8PAK7kIZcD7MuGcBOsUKacjZvG8psaLaSBvZqOY 9M5pC1kLB3TXF0j/9n9oFbCabu8xH6moNGdsv3S596o1fSGgzcmAMXs3XNULmEQx E1jQd/7163jrGzxSZoMHWsn8S7jNsevcXxwvennpGnrzcxBnCZiWV5NqDUsqahsl huwV/0+ELUvEgnPXyupcnKarVwzC9uFRLdx5MuLlbs7ngM3p25BNjOKlLlAAlUly 1Zgcv/P8URHTijCdexkj6BVL497NhbqqqrAqaEWnkDdvZAM= -----END CERTIFICATE-----Generated at Tue Nov 26 04:52:15 2024 by rpki-client on console-ams.rpki-client.org