$ rpki-client -vvf repo-rpki.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/323030313a6466313a393030303a3a2f34382d3438203d3e203538383230.roa File: 323030313a6466313a393030303a3a2f34382d3438203d3e203538383230.roa (raw, json) Hash identifier: RwOErGnh1bGu5FkVnp58HOVR+5t+9lZFyEAb9yZFjwk= Subject key identifier: AF:F5:C2:83:03:94:F9:3B:DC:52:F1:C0:02:AA:29:0F:19:10:47:A5 Certificate issuer: /CN=F318D15D68E63CEBE4BFA026A5269F3877BE13C1 Certificate serial: 59EAD0283CC6414E8D12C80FE614B333CF6A0260 Authority key identifier: F3:18:D1:5D:68:E6:3C:EB:E4:BF:A0:26:A5:26:9F:38:77:BE:13:C1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F318D15D68E63CEBE4BFA026A5269F3877BE13C1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/323030313a6466313a393030303a3a2f34382d3438203d3e203538383230.roa Signing time: Fri 15 Mar 2024 10:02:01 +0000 ROA not before: Fri 15 Mar 2024 09:57:01 +0000 ROA not after: Fri 14 Mar 2025 10:02:01 +0000 asID: 58820 IP address blocks: 2001:df1:9000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/F318D15D68E63CEBE4BFA026A5269F3877BE13C1.crl rsync://repo-rpki.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/F318D15D68E63CEBE4BFA026A5269F3877BE13C1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F318D15D68E63CEBE4BFA026A5269F3877BE13C1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 03:56:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:ea:d0:28:3c:c6:41:4e:8d:12:c8:0f:e6:14:b3:33:cf:6a:02:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F318D15D68E63CEBE4BFA026A5269F3877BE13C1 Validity Not Before: Mar 15 09:57:01 2024 GMT Not After : Mar 14 10:02:01 2025 GMT Subject: CN=AFF5C2830394F93BDC52F1C002AA290F191047A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a2:b9:91:ca:9c:94:b5:a0:96:d2:b3:73:30: f4:a6:1b:73:d9:38:b0:a2:bc:72:c8:f0:51:55:8b: aa:97:d1:7d:7e:43:08:13:7e:e9:c8:81:81:c6:9e: d3:9c:f8:7b:b1:7e:c8:ea:66:ca:45:7f:6a:4b:24: 0a:fd:8e:8d:87:5e:fc:aa:8f:3a:db:8d:08:b7:95: c7:7b:d4:96:24:ec:cb:5b:73:67:2a:ec:d8:7b:51: df:70:37:2a:0a:c9:bc:60:de:1d:77:1b:c0:36:c9: b4:93:be:f6:d1:7d:42:1f:c3:9f:d4:1b:b1:59:e6: 90:5e:e0:71:d4:b2:68:47:8f:3c:e5:02:cf:2a:d0: 03:bc:c9:60:15:3b:bb:30:2c:07:c5:be:42:d9:11: 2d:b7:06:46:81:d0:d3:ae:9a:2a:7a:c2:1d:8e:af: 2e:7e:5b:f3:91:14:1d:f3:b1:bd:b5:11:c8:ac:3c: 03:51:bf:7a:49:6f:fc:c4:85:7f:9e:6f:f8:e5:57: e6:7c:01:22:95:11:0d:c7:17:00:6a:73:b6:35:bc: f7:8b:62:36:7c:cc:8a:c5:77:28:e9:70:2b:d6:7e: b0:20:3e:48:42:98:58:42:ec:62:25:fd:af:b2:ab: 59:28:bc:17:6b:24:a3:e3:d0:5f:9e:23:a5:da:f8: b2:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:F5:C2:83:03:94:F9:3B:DC:52:F1:C0:02:AA:29:0F:19:10:47:A5 X509v3 Authority Key Identifier: keyid:F3:18:D1:5D:68:E6:3C:EB:E4:BF:A0:26:A5:26:9F:38:77:BE:13:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/F318D15D68E63CEBE4BFA026A5269F3877BE13C1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F318D15D68E63CEBE4BFA026A5269F3877BE13C1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/323030313a6466313a393030303a3a2f34382d3438203d3e203538383230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:9000::/48 Signature Algorithm: sha256WithRSAEncryption 22:02:75:bc:aa:1a:19:38:4e:b4:4a:8b:f9:de:50:db:92:a4: b0:5b:9e:99:b8:1f:87:6a:43:fc:b8:71:f0:7c:72:a5:f7:7d: 9c:92:31:58:68:30:f5:91:95:e0:8d:86:1d:32:80:31:78:3e: 66:cb:91:2f:a3:8e:9b:d7:f1:97:32:a5:58:b4:a5:11:16:db: 57:d6:6d:9e:5d:01:27:2c:19:03:bc:7b:11:8b:6d:d8:d1:eb: f5:3e:60:15:a2:d2:cf:83:ac:3d:08:86:9a:54:90:5d:4e:e6: ef:df:2d:56:f4:17:1d:56:f9:34:e1:cd:74:62:74:d9:14:14: 3d:22:39:b3:b7:17:99:ef:7d:4b:37:19:09:ab:a0:f5:fc:e3: d0:70:2b:a7:c4:87:59:69:dd:f5:2f:43:fd:c2:0e:7a:1d:41: 78:88:94:c3:0d:00:9e:d3:52:b7:13:be:6d:98:d4:cf:b7:90: 73:70:5f:7d:ee:e7:21:95:58:b5:70:7a:af:38:ac:30:00:a9: cb:af:bf:36:01:64:4b:f1:45:31:8a:2b:e3:91:be:3d:0d:fc: 6a:c8:a0:b0:97:f6:dd:c4:9b:d9:c7:c7:ee:47:dc:8e:62:41: 08:93:57:b8:4b:90:df:c5:ee:b9:46:33:cd:0a:7b:f0:68:95: 1f:a8:81:06 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUWerQKDzGQU6NEsgP5hSzM89qAmAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjMxOEQxNUQ2OEU2M0NFQkU0QkZBMDI2QTUyNjlGMzg3 N0JFMTNDMTAeFw0yNDAzMTUwOTU3MDFaFw0yNTAzMTQxMDAyMDFaMDMxMTAvBgNV BAMTKEFGRjVDMjgzMDM5NEY5M0JEQzUyRjFDMDAyQUEyOTBGMTkxMDQ3QTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9ormRypyUtaCW0rNzMPSmG3PZ OLCivHLI8FFVi6qX0X1+QwgTfunIgYHGntOc+HuxfsjqZspFf2pLJAr9jo2HXvyq jzrbjQi3lcd71JYk7Mtbc2cq7Nh7Ud9wNyoKybxg3h13G8A2ybSTvvbRfUIfw5/U G7FZ5pBe4HHUsmhHjzzlAs8q0AO8yWAVO7swLAfFvkLZES23BkaB0NOumip6wh2O ry5+W/ORFB3zsb21EcisPANRv3pJb/zEhX+eb/jlV+Z8ASKVEQ3HFwBqc7Y1vPeL YjZ8zIrFdyjpcCvWfrAgPkhCmFhC7GIl/a+yq1kovBdrJKPj0F+eI6Xa+LIBAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUr/XCgwOU+TvcUvHAAqopDxkQR6UwHwYDVR0j BBgwFoAU8xjRXWjmPOvkv6AmpSafOHe+E8EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NDAxNDM2Yi0wMjY3LTQ2NmItYTM0MC1lMjg4ZDJlOTM0YTgvMC9GMzE4RDE1RDY4 RTYzQ0VCRTRCRkEwMjZBNTI2OUYzODc3QkUxM0MxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjMxOEQxNUQ2OEU2M0NFQkU0QkZBMDI2QTUyNjlGMzg3N0JF MTNDMS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E0MDE0MzZiLTAyNjctNDY2Yi1h MzQwLWUyODhkMmU5MzRhOC8wLzMyMzAzMDMxM2E2NDY2MzEzYTM5MzAzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzODM4MzIzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfGQ ADANBgkqhkiG9w0BAQsFAAOCAQEAIgJ1vKoaGThOtEqL+d5Q25KksFuembgfh2pD /Lhx8Hxypfd9nJIxWGgw9ZGV4I2GHTKAMXg+ZsuRL6OOm9fxlzKlWLSlERbbV9Zt nl0BJywZA7x7EYtt2NHr9T5gFaLSz4OsPQiGmlSQXU7m798tVvQXHVb5NOHNdGJ0 2RQUPSI5s7cXme99SzcZCaug9fzj0HArp8SHWWnd9S9D/cIOeh1BeIiUww0AntNS txO+bZjUz7eQc3Bffe7nIZVYtXB6rzisMACpy6+/NgFkS/FFMYor45G+PQ38asig sJf23cSb2cfH7kfcjmJBCJNXuEuQ38XuuUYzzQp78GiVH6iBBg== -----END CERTIFICATE-----Generated at Sat Nov 23 03:54:22 2024 by rpki-client on console-ams.rpki-client.org