$ rpki-client -vvf repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/323030313a6466333a623838303a3a2f34382d3438203d3e203137353338.roa File: 323030313a6466333a623838303a3a2f34382d3438203d3e203137353338.roa (raw, json) Hash identifier: qdWdsvIUCg9flRqMStTQ4oe1N2TKrSaY2SzVkpN3z2c= Subject key identifier: D5:54:8D:A3:CE:F1:31:52:10:ED:0F:4F:3E:A3:98:65:B2:B0:93:7D Certificate issuer: /CN=6A75F95EA11C3F984C5C610FE9222026394BA8E9 Certificate serial: 0AB9A6C2CE7FF2E73A33DC58017EE6152C0F82B1 Authority key identifier: 6A:75:F9:5E:A1:1C:3F:98:4C:5C:61:0F:E9:22:20:26:39:4B:A8:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A75F95EA11C3F984C5C610FE9222026394BA8E9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/323030313a6466333a623838303a3a2f34382d3438203d3e203137353338.roa Signing time: Mon 01 Jul 2024 01:05:06 +0000 ROA not before: Mon 01 Jul 2024 01:00:06 +0000 ROA not after: Mon 30 Jun 2025 01:05:06 +0000 asID: 17538 IP address blocks: 2001:df3:b880::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/6A75F95EA11C3F984C5C610FE9222026394BA8E9.crl rsync://repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/6A75F95EA11C3F984C5C610FE9222026394BA8E9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A75F95EA11C3F984C5C610FE9222026394BA8E9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:b9:a6:c2:ce:7f:f2:e7:3a:33:dc:58:01:7e:e6:15:2c:0f:82:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A75F95EA11C3F984C5C610FE9222026394BA8E9 Validity Not Before: Jul 1 01:00:06 2024 GMT Not After : Jun 30 01:05:06 2025 GMT Subject: CN=D5548DA3CEF1315210ED0F4F3EA39865B2B0937D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:8f:c0:40:53:28:42:80:f4:28:fa:8f:01:1d: fc:12:64:a8:6b:9f:05:6c:4b:12:52:5b:2e:32:8a: 14:21:5d:69:e0:54:30:9d:05:cb:49:25:2f:81:1d: 85:02:f2:49:18:af:af:b5:e2:ce:ea:62:26:48:e0: 73:b8:54:0e:05:c4:3a:c9:b6:e1:10:65:97:9b:f1: 70:86:18:2a:c2:5d:d2:1c:47:63:92:ee:98:f3:e8: a3:d9:2d:7e:a2:37:71:e3:13:4d:84:4c:48:4f:e5: ad:9f:e6:9b:62:52:00:fc:ab:52:26:81:fc:38:ea: 2b:bb:9c:35:d6:3d:fc:a4:ab:ee:91:c9:6c:73:e3: 9f:a0:ff:2a:7c:31:79:01:bb:12:eb:ac:3d:f1:5d: e1:22:8c:56:5d:50:9f:51:2d:cf:2d:46:b4:a1:35: 30:ab:88:75:9f:79:43:12:34:64:dc:18:ca:9b:71: 48:4d:39:48:4b:8a:17:f0:b6:7d:d0:c0:11:00:4b: 0b:61:1c:8b:51:a7:8c:41:2d:bc:6b:d2:e7:cd:79: 10:98:f7:86:78:c9:73:37:46:79:74:e7:30:32:41: 94:37:9c:f4:1a:44:40:43:58:04:45:1e:6b:1a:3e: 90:9e:03:27:66:1b:a5:56:86:3d:5c:5b:62:01:fc: d0:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:54:8D:A3:CE:F1:31:52:10:ED:0F:4F:3E:A3:98:65:B2:B0:93:7D X509v3 Authority Key Identifier: keyid:6A:75:F9:5E:A1:1C:3F:98:4C:5C:61:0F:E9:22:20:26:39:4B:A8:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/6A75F95EA11C3F984C5C610FE9222026394BA8E9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A75F95EA11C3F984C5C610FE9222026394BA8E9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/323030313a6466333a623838303a3a2f34382d3438203d3e203137353338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:b880::/48 Signature Algorithm: sha256WithRSAEncryption 8b:15:8b:ca:8b:e8:c0:c8:49:07:f3:55:bc:87:95:cd:3e:6a: 12:d2:9c:80:ac:17:08:65:e4:84:c3:13:92:c8:a4:49:4e:87: 63:aa:d6:01:47:b9:c9:f7:78:60:42:d3:dc:37:03:a5:aa:e6: 06:46:ad:b4:2c:14:e8:aa:f9:f2:e7:64:cf:07:d2:8a:a6:ea: 57:a7:56:4f:02:e8:20:00:af:c5:a2:3f:af:8e:d5:b3:c9:65: 54:3f:b0:83:42:a1:e9:a3:2a:60:65:d4:a3:5d:b4:f4:07:3c: 92:0a:1d:a6:a7:0b:db:9e:38:89:62:ba:f9:a9:18:9a:a5:6f: 9f:fa:28:25:ce:8a:1b:2c:ad:14:8a:af:26:1a:d2:51:c0:9e: e8:ce:5f:7d:9d:ce:eb:4d:6f:b3:5c:a7:f8:1b:0d:9a:79:82: ef:90:92:98:65:11:1c:26:98:3d:43:ae:35:e1:9d:bf:18:4c: 03:0c:fd:d7:c4:04:82:84:68:d4:20:7b:33:17:f0:1f:77:69: 28:80:9d:32:95:a4:c8:29:b5:ac:fe:40:d0:bd:ff:ff:8c:90: dc:d0:2b:39:b0:bf:77:96:3f:5a:15:73:06:58:16:5a:a5:10: 25:e4:ca:17:47:18:54:84:9c:4d:83:9a:2a:68:ba:fd:cd:d8: f3:6c:13:04 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUCrmmws5/8uc6M9xYAX7mFSwPgrEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkE3NUY5NUVBMTFDM0Y5ODRDNUM2MTBGRTkyMjIwMjYz OTRCQThFOTAeFw0yNDA3MDEwMTAwMDZaFw0yNTA2MzAwMTA1MDZaMDMxMTAvBgNV BAMTKEQ1NTQ4REEzQ0VGMTMxNTIxMEVEMEY0RjNFQTM5ODY1QjJCMDkzN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVj8BAUyhCgPQo+o8BHfwSZKhr nwVsSxJSWy4yihQhXWngVDCdBctJJS+BHYUC8kkYr6+14s7qYiZI4HO4VA4FxDrJ tuEQZZeb8XCGGCrCXdIcR2OS7pjz6KPZLX6iN3HjE02ETEhP5a2f5ptiUgD8q1Im gfw46iu7nDXWPfykq+6RyWxz45+g/yp8MXkBuxLrrD3xXeEijFZdUJ9RLc8tRrSh NTCriHWfeUMSNGTcGMqbcUhNOUhLihfwtn3QwBEASwthHItRp4xBLbxr0ufNeRCY 94Z4yXM3Rnl05zAyQZQ3nPQaREBDWARFHmsaPpCeAydmG6VWhj1cW2IB/NAPAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU1VSNo87xMVIQ7Q9PPqOYZbKwk30wHwYDVR0j BBgwFoAUanX5XqEcP5hMXGEP6SIgJjlLqOkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YTQzMzkzNC0zODQ0LTQ2NTMtOGZhYy0xODU4YjI4MjNkMWMvMC82QTc1Rjk1RUEx MUMzRjk4NEM1QzYxMEZFOTIyMjAyNjM5NEJBOEU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkE3NUY5NUVBMTFDM0Y5ODRDNUM2MTBGRTkyMjIwMjYzOTRC QThFOS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhNDMzOTM0LTM4NDQtNDY1My04 ZmFjLTE4NThiMjgyM2QxYy8wLzMyMzAzMDMxM2E2NDY2MzMzYTYyMzgzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNzM1MzMzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfO4 gDANBgkqhkiG9w0BAQsFAAOCAQEAixWLyovowMhJB/NVvIeVzT5qEtKcgKwXCGXk hMMTksikSU6HY6rWAUe5yfd4YELT3DcDparmBkattCwU6Kr58udkzwfSiqbqV6dW TwLoIACvxaI/r47Vs8llVD+wg0Kh6aMqYGXUo1209Ac8kgodpqcL2544iWK6+akY mqVvn/ooJc6KGyytFIqvJhrSUcCe6M5ffZ3O601vs1yn+BsNmnmC75CSmGURHCaY PUOuNeGdvxhMAwz918QEgoRo1CB7MxfwH3dpKICdMpWkyCm1rP5A0L3//4yQ3NAr ObC/d5Y/WhVzBlgWWqUQJeTKF0cYVIScTYOaKmi6/c3Y82wTBA== -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:18 2024 by rpki-client on console-ams.rpki-client.org