$ rpki-client -vvf repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a383a3a2f34382d3438203d3e203338373539.roa File: 323030313a6436383a383a3a2f34382d3438203d3e203338373539.roa (raw, json) Hash identifier: c+jQs0ElIWSpEW/65Zb1JJymOpSsqz3QthadpLqsPEw= Subject key identifier: 9F:CE:C2:D2:4D:BB:34:A0:9F:39:FA:81:B6:C0:C3:09:58:C5:DF:98 Certificate issuer: /CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Certificate serial: 2A9B3B710C3B5E5C96B04F073AB4D38E46700CC6 Authority key identifier: 42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a383a3a2f34382d3438203d3e203338373539.roa Signing time: Thu 18 Jul 2024 08:00:00 +0000 ROA not before: Thu 18 Jul 2024 07:55:00 +0000 ROA not after: Thu 17 Jul 2025 08:00:00 +0000 asID: 38759 IP address blocks: 2001:d68:8::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 11:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:9b:3b:71:0c:3b:5e:5c:96:b0:4f:07:3a:b4:d3:8e:46:70:0c:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Validity Not Before: Jul 18 07:55:00 2024 GMT Not After : Jul 17 08:00:00 2025 GMT Subject: CN=9FCEC2D24DBB34A09F39FA81B6C0C30958C5DF98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:18:59:e7:a5:ec:eb:bc:10:0e:c2:c2:13:72: 5b:c7:eb:1f:20:b7:c5:f4:68:31:6a:95:7f:47:68: f0:80:3c:90:08:f7:32:6b:30:f9:70:3e:d0:33:fa: 3a:cc:8c:96:f5:c4:bf:c2:ae:7a:e7:7a:48:7f:ca: 8e:c9:fe:b1:46:0b:a9:59:e6:a0:4b:b5:7b:6e:00: 83:ac:75:f3:96:8e:26:7a:77:d7:18:b6:90:34:7e: 8a:a4:bd:dd:51:e5:45:ba:f1:cc:87:67:c8:39:c0: 1f:70:40:b0:ad:3f:62:f3:d6:ae:5f:7a:00:a1:75: 8a:ad:1b:11:e1:a4:23:4a:14:ea:96:76:f4:fd:d9: f4:ae:91:80:57:21:8d:88:92:d1:89:4a:49:fe:96: c5:42:f2:72:25:ae:a0:12:ac:de:76:eb:d2:68:ce: 19:89:bf:4f:f7:9f:e6:24:dc:46:67:08:60:50:cf: 40:62:23:17:02:2b:27:40:64:ca:1f:dd:f6:ba:6b: e8:e2:43:2f:54:41:da:fe:00:f5:d6:ad:ea:c6:15: 92:7c:9e:ed:8e:89:d6:1e:a9:60:b4:24:39:1e:d3: 40:e7:e8:23:03:76:1a:f5:66:e9:8e:b9:19:86:bd: bf:83:c4:b6:3f:d1:5b:87:88:9a:aa:83:2f:c6:35: 4e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:CE:C2:D2:4D:BB:34:A0:9F:39:FA:81:B6:C0:C3:09:58:C5:DF:98 X509v3 Authority Key Identifier: keyid:42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a383a3a2f34382d3438203d3e203338373539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:d68:8::/48 Signature Algorithm: sha256WithRSAEncryption 4b:2f:9a:71:41:0b:bd:ae:dd:60:28:43:95:05:83:72:0f:92: 22:f9:60:0c:20:0e:b8:7a:87:da:b3:9f:8f:ec:74:f6:42:84: 3c:a5:86:99:46:c9:bd:7f:af:0f:c5:5e:c9:42:08:44:b4:49: c1:99:0a:6a:09:84:27:ce:38:89:fd:e6:0d:8f:23:2b:1d:c5: 17:24:f3:8c:7c:f9:99:a7:79:1e:9f:d5:9f:a1:79:2c:ff:e9: 08:cf:66:62:c7:d0:55:c3:31:0c:ca:e5:c4:60:2c:17:20:06: f4:3d:1a:b8:00:ee:6d:23:55:d0:cf:af:bf:e6:55:25:71:45: 1b:4e:7e:1d:16:b8:3c:0f:0e:ed:27:2e:8a:d1:dc:d0:6a:f3: 18:2c:c5:3c:53:da:96:72:0e:a3:51:aa:9c:70:c9:35:92:d2: 3f:88:f1:99:69:a5:94:8f:c5:b4:c6:b6:9b:25:11:4b:04:a2: c2:d4:67:ac:f6:ca:26:c9:4d:e4:13:b0:04:da:c4:c9:e2:2f: cd:47:c5:78:8a:f9:eb:50:1e:4d:89:05:03:e3:f2:8b:f1:61: ab:42:de:f4:ae:ce:34:b2:75:9f:5c:84:94:44:8d:14:05:19: 32:8c:66:78:49:54:a2:0e:c7:11:73:d4:ca:75:8f:b2:c4:ae: b8:e6:a6:0e -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUKps7cQw7XlyWsE8HOrTTjkZwDMYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFF QzdDQTMwNjAeFw0yNDA3MTgwNzU1MDBaFw0yNTA3MTcwODAwMDBaMDMxMTAvBgNV BAMTKDlGQ0VDMkQyNERCQjM0QTA5RjM5RkE4MUI2QzBDMzA5NThDNURGOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNGFnnpezrvBAOwsITclvH6x8g t8X0aDFqlX9HaPCAPJAI9zJrMPlwPtAz+jrMjJb1xL/Crnrnekh/yo7J/rFGC6lZ 5qBLtXtuAIOsdfOWjiZ6d9cYtpA0foqkvd1R5UW68cyHZ8g5wB9wQLCtP2Lz1q5f egChdYqtGxHhpCNKFOqWdvT92fSukYBXIY2IktGJSkn+lsVC8nIlrqASrN5269Jo zhmJv0/3n+Yk3EZnCGBQz0BiIxcCKydAZMof3fa6a+jiQy9UQdr+APXWrerGFZJ8 nu2OidYeqWC0JDke00Dn6CMDdhr1ZumOuRmGvb+DxLY/0VuHiJqqgy/GNU5tAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUn87C0k27NKCfOfqBtsDDCVjF35gwHwYDVR0j BBgwFoAUQgQuZytojDBy/UdDs+fdgex8owYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTJmMjI4Yy1kZjIwLTQ3MjgtOWY5Ni04ZmFhMTM0MDAxN2EvMC80MjA0MkU2NzJC Njg4QzMwNzJGRDQ3NDNCM0U3REQ4MUVDN0NBMzA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFFQzdD QTMwNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExMmYyMjhjLWRmMjAtNDcyOC05 Zjk2LThmYWExMzQwMDE3YS8wLzMyMzAzMDMxM2E2NDM2MzgzYTM4M2EzYTJmMzQz ODJkMzQzODIwM2QzZTIwMzMzODM3MzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDWgACDANBgkq hkiG9w0BAQsFAAOCAQEASy+acUELva7dYChDlQWDcg+SIvlgDCAOuHqH2rOfj+x0 9kKEPKWGmUbJvX+vD8VeyUIIRLRJwZkKagmEJ844if3mDY8jKx3FFyTzjHz5mad5 Hp/Vn6F5LP/pCM9mYsfQVcMxDMrlxGAsFyAG9D0auADubSNV0M+vv+ZVJXFFG05+ HRa4PA8O7ScuitHc0GrzGCzFPFPalnIOo1GqnHDJNZLSP4jxmWmllI/FtMa2myUR SwSiwtRnrPbKJslN5BOwBNrEyeIvzUfFeIr561AeTYkFA+Pyi/Fhq0Le9K7ONLJ1 n1yElESNFAUZMoxmeElUog7HEXPUynWPssSuuOamDg== -----END CERTIFICATE-----Generated at Mon Nov 25 09:02:06 2024 by rpki-client on console-ams.rpki-client.org