$ rpki-client -vvf repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/323030313a6466303a623538303a3a2f34382d3438203d3e20313338383736.roa File: 323030313a6466303a623538303a3a2f34382d3438203d3e20313338383736.roa (raw, json) Hash identifier: WPA2QrUeZrym7GUv4/JaUTJ+UMPuBXVi0qNhIq7SGXo= Subject key identifier: A2:06:77:1B:8F:30:31:EE:6F:05:3F:B2:1B:C6:41:71:65:26:A1:B9 Certificate issuer: /CN=456957B6E32ABD1576136BF4B39EC4CCAD972FCD Certificate serial: 5A60747DC8A737C8319C043A2045A69938ABAAA0 Authority key identifier: 45:69:57:B6:E3:2A:BD:15:76:13:6B:F4:B3:9E:C4:CC:AD:97:2F:CD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/456957B6E32ABD1576136BF4B39EC4CCAD972FCD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/323030313a6466303a623538303a3a2f34382d3438203d3e20313338383736.roa Signing time: Thu 11 Jan 2024 08:01:01 +0000 ROA not before: Thu 11 Jan 2024 07:56:01 +0000 ROA not after: Thu 09 Jan 2025 08:01:01 +0000 asID: 138876 IP address blocks: 2001:df0:b580::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/456957B6E32ABD1576136BF4B39EC4CCAD972FCD.crl rsync://repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/456957B6E32ABD1576136BF4B39EC4CCAD972FCD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/456957B6E32ABD1576136BF4B39EC4CCAD972FCD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:60:74:7d:c8:a7:37:c8:31:9c:04:3a:20:45:a6:99:38:ab:aa:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=456957B6E32ABD1576136BF4B39EC4CCAD972FCD Validity Not Before: Jan 11 07:56:01 2024 GMT Not After : Jan 9 08:01:01 2025 GMT Subject: CN=A206771B8F3031EE6F053FB21BC641716526A1B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ed:7a:8d:a5:db:b1:3e:f9:8d:54:17:21:5a: 72:89:4d:b0:65:2e:1c:e1:5c:b0:28:a3:99:dc:f1: 21:a7:74:b5:b5:f1:8b:dd:ef:51:85:ad:7e:cf:4c: ed:65:ac:07:65:79:c0:6d:a4:0b:5f:26:ef:1f:72: 10:7d:38:77:e7:cc:c8:09:60:79:09:8b:10:10:ad: d2:8f:2a:33:38:17:92:92:13:e5:22:99:ff:9c:f6: 09:fa:95:35:b7:5b:b4:d7:99:b6:9e:c4:71:9d:72: 18:30:bd:0b:dc:f7:96:08:e0:a2:83:db:ee:3c:34: 78:5e:87:2f:38:fe:6e:de:6e:9f:82:83:6e:81:fc: 33:7b:be:58:43:45:6a:02:49:1e:5f:d9:a1:7e:f2: 6e:28:f3:fd:66:ce:de:a0:36:3b:19:2b:7f:13:c6: 2a:7c:d7:12:85:85:f6:f4:af:fd:7c:77:d9:ac:cd: 09:a1:68:4b:b9:01:6e:73:a3:28:63:71:ab:26:0f: c7:52:d4:a9:16:2c:14:2b:51:09:48:a5:c2:47:6d: d9:59:d7:95:2e:90:57:3a:2a:9d:f0:1a:f1:e6:83: 90:e7:d5:e7:66:a2:cb:9f:b9:0c:cf:8b:bc:68:cc: aa:89:f5:c6:c4:4c:9a:30:99:79:9a:d8:b6:5b:0e: f3:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:06:77:1B:8F:30:31:EE:6F:05:3F:B2:1B:C6:41:71:65:26:A1:B9 X509v3 Authority Key Identifier: keyid:45:69:57:B6:E3:2A:BD:15:76:13:6B:F4:B3:9E:C4:CC:AD:97:2F:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/456957B6E32ABD1576136BF4B39EC4CCAD972FCD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/456957B6E32ABD1576136BF4B39EC4CCAD972FCD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/323030313a6466303a623538303a3a2f34382d3438203d3e20313338383736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:b580::/48 Signature Algorithm: sha256WithRSAEncryption ab:bb:82:1e:69:f6:10:5f:35:2c:75:df:19:f2:8c:d5:cc:95: 29:fd:a2:1d:9e:67:cb:1b:55:9f:d5:98:32:73:fe:4e:51:f8: c2:1f:04:aa:e9:27:e7:b1:8a:28:5c:aa:43:d7:c5:1c:19:40: aa:ca:c1:5e:e1:d7:f6:86:53:e8:43:fd:8b:6d:7b:0f:30:61: a0:ba:6c:7f:c8:3f:22:ff:e4:21:9a:d4:76:73:8b:ee:8d:8c: 3e:b0:63:3d:94:41:b2:cd:33:45:fd:77:ff:76:c6:35:2b:d3: b7:d6:f7:fd:8e:34:eb:31:ea:ac:68:3e:a3:b1:16:c8:2f:cd: 2a:43:23:9b:94:4f:11:22:8b:03:62:86:fd:77:94:6e:8c:d5: e1:39:94:10:da:2f:da:a2:c9:6e:2f:f7:10:e1:4b:0a:da:1d: 67:f9:39:3e:76:c3:fe:e9:52:8d:4c:4b:33:cc:d3:c5:ea:f7: fd:97:d5:79:2a:f3:58:a8:0a:93:44:02:1f:e2:6c:2e:49:15: aa:d8:6f:37:2e:fa:61:0c:f3:99:f9:68:f5:4a:56:51:64:55: 42:d7:ff:f7:63:6e:61:42:bd:f1:9d:d8:a9:88:8b:35:56:cf: ba:ec:45:47:c1:44:05:40:2d:5b:1f:f2:88:a6:76:55:17:53: 5a:48:dc:ff -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUWmB0fcinN8gxnAQ6IEWmmTirqqAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDU2OTU3QjZFMzJBQkQxNTc2MTM2QkY0QjM5RUM0Q0NB RDk3MkZDRDAeFw0yNDAxMTEwNzU2MDFaFw0yNTAxMDkwODAxMDFaMDMxMTAvBgNV BAMTKEEyMDY3NzFCOEYzMDMxRUU2RjA1M0ZCMjFCQzY0MTcxNjUyNkExQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCj7XqNpduxPvmNVBchWnKJTbBl LhzhXLAoo5nc8SGndLW18Yvd71GFrX7PTO1lrAdlecBtpAtfJu8fchB9OHfnzMgJ YHkJixAQrdKPKjM4F5KSE+Uimf+c9gn6lTW3W7TXmbaexHGdchgwvQvc95YI4KKD 2+48NHhehy84/m7ebp+Cg26B/DN7vlhDRWoCSR5f2aF+8m4o8/1mzt6gNjsZK38T xip81xKFhfb0r/18d9mszQmhaEu5AW5zoyhjcasmD8dS1KkWLBQrUQlIpcJHbdlZ 15UukFc6Kp3wGvHmg5Dn1edmosufuQzPi7xozKqJ9cbETJowmXma2LZbDvNpAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUogZ3G48wMe5vBT+yG8ZBcWUmobkwHwYDVR0j BBgwFoAURWlXtuMqvRV2E2v0s57EzK2XL80wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NmE5ZGRmNy01NzZhLTRhNTgtODliYi03ZTg5Mjg5MDIyNzAvMC80NTY5NTdCNkUz MkFCRDE1NzYxMzZCRjRCMzlFQzRDQ0FEOTcyRkNELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDU2OTU3QjZFMzJBQkQxNTc2MTM2QkY0QjM5RUM0Q0NBRDk3 MkZDRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2YTlkZGY3LTU3NmEtNGE1OC04 OWJiLTdlODkyODkwMjI3MC8wLzMyMzAzMDMxM2E2NDY2MzAzYTYyMzUzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzgzNzM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8LWAMA0GCSqGSIb3DQEBCwUAA4IBAQCru4IeafYQXzUsdd8Z8ozVzJUp/aIdnmfL G1Wf1Zgyc/5OUfjCHwSq6SfnsYooXKpD18UcGUCqysFe4df2hlPoQ/2LbXsPMGGg umx/yD8i/+QhmtR2c4vujYw+sGM9lEGyzTNF/Xf/dsY1K9O31vf9jjTrMeqsaD6j sRbIL80qQyOblE8RIosDYob9d5RujNXhOZQQ2i/aosluL/cQ4UsK2h1n+Tk+dsP+ 6VKNTEszzNPF6vf9l9V5KvNYqAqTRAIf4mwuSRWq2G83LvphDPOZ+Wj1SlZRZFVC 1//3Y25hQr3xndipiIs1Vs+67EVHwUQFQC1bH/KIpnZVF1NaSNz/ -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:00 2024 by rpki-client on console-ams.rpki-client.org