$ rpki-client -vvf repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/323030313a6466343a366330303a3a2f34382d3438203d3e20313333383032.roa File: 323030313a6466343a366330303a3a2f34382d3438203d3e20313333383032.roa (raw, json) Hash identifier: clOOS2UHgiK1XdM7aZazMvJvGgOo73bVQrDZ1oe6k8c= Subject key identifier: 4B:BD:D9:9F:B2:96:4A:00:FA:37:53:9D:48:B3:17:95:0B:F5:EC:87 Certificate issuer: /CN=BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D Certificate serial: 65C15E286C15538B32C40A0B2BE7EC7E0B8D9ED0 Authority key identifier: BD:8C:DE:6F:E3:DF:9F:A1:ED:A6:CE:A4:62:F7:7E:F6:04:78:99:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/323030313a6466343a366330303a3a2f34382d3438203d3e20313333383032.roa Signing time: Mon 01 Jul 2024 01:04:56 +0000 ROA not before: Mon 01 Jul 2024 00:59:56 +0000 ROA not after: Mon 30 Jun 2025 01:04:56 +0000 asID: 133802 IP address blocks: 2001:df4:6c00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.crl rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:c1:5e:28:6c:15:53:8b:32:c4:0a:0b:2b:e7:ec:7e:0b:8d:9e:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D Validity Not Before: Jul 1 00:59:56 2024 GMT Not After : Jun 30 01:04:56 2025 GMT Subject: CN=4BBDD99FB2964A00FA37539D48B317950BF5EC87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:73:26:17:8a:4b:0a:2f:fa:75:e1:aa:0d:09: 9b:53:f8:90:2b:69:7b:77:ba:3b:7d:5b:da:7b:ac: fa:72:80:c8:af:5a:61:d3:36:66:5a:0b:34:f2:21: 4b:4d:4f:9d:c0:e0:63:76:6d:c4:7e:35:69:e3:fd: 70:e2:c4:6c:35:0c:b5:0e:eb:91:d9:9b:ee:8d:cb: 24:b0:12:b4:7e:75:74:2c:28:00:7b:e8:86:04:59: 4c:37:75:c8:c3:0a:88:f6:38:84:76:3c:84:28:75: f3:ea:4c:f3:c7:77:7a:81:b2:86:71:a1:25:cf:b7: 76:a6:c1:04:21:62:9b:f8:19:35:fe:21:25:72:11: 03:96:c6:26:fe:a6:be:e7:03:8f:21:a2:cf:bf:fb: 16:13:41:ed:1f:0d:57:b9:3c:61:41:ea:b5:70:4c: 51:2f:ae:d9:24:96:b2:e9:19:a5:df:0a:86:3b:1c: 1a:36:e1:91:36:59:59:ca:8d:d0:da:8f:ce:64:ec: 6e:94:82:da:f6:51:f1:42:f2:04:fc:f7:a0:37:08: 7e:ee:f8:ac:18:9b:7c:4d:cf:6e:c4:80:a7:b6:9c: b0:34:76:8b:31:af:8d:46:75:51:d8:86:e8:9b:59: 25:aa:3a:75:23:c3:74:88:97:6f:ab:ec:dc:c6:9b: cd:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:BD:D9:9F:B2:96:4A:00:FA:37:53:9D:48:B3:17:95:0B:F5:EC:87 X509v3 Authority Key Identifier: keyid:BD:8C:DE:6F:E3:DF:9F:A1:ED:A6:CE:A4:62:F7:7E:F6:04:78:99:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/323030313a6466343a366330303a3a2f34382d3438203d3e20313333383032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:6c00::/48 Signature Algorithm: sha256WithRSAEncryption 74:36:72:29:45:7e:c5:4a:26:45:f8:7c:1e:2c:ee:4f:2f:7c: 8a:1f:6d:38:e7:35:ba:29:8d:bd:7f:61:e9:57:8c:7e:eb:96: 66:99:9b:0d:d0:2d:30:58:90:9f:e4:13:91:f8:d3:f1:22:ff: 25:3d:dd:87:3e:e2:f8:a6:ef:15:67:e8:81:46:40:b0:d0:8b: a8:f7:b0:bf:44:24:6f:ee:b8:de:cc:7a:de:4a:83:4c:2a:b3: 36:ad:2e:59:07:93:ce:6c:8e:e0:1d:75:08:e2:e2:4a:eb:4f: 20:cb:71:c5:fc:05:dd:22:42:08:01:07:4c:09:d0:23:7c:6c: fa:67:79:27:c1:28:17:d9:f5:5e:06:60:60:3d:57:13:c0:9d: 6a:6f:a4:62:f5:ad:a2:29:84:f2:72:9b:73:10:cb:fe:0c:a2: 81:59:8d:9c:1a:e8:e7:86:7e:4a:c1:bb:7d:5f:a0:f3:e0:6b: e5:05:14:f2:fa:49:73:05:cc:85:7b:f5:8e:a6:fb:34:4d:da: 84:76:0f:ec:57:1c:3c:b7:d2:a0:bb:2e:62:08:24:5f:b8:63: 57:f4:e1:88:4c:4c:b6:bb:cb:14:15:e9:6e:11:57:f5:50:5f: 22:63:df:95:c6:f7:b3:70:91:c3:33:7d:4a:c1:13:e1:ab:2b: 9f:4b:2f:52 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUZcFeKGwVU4syxAoLK+fsfguNntAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ4Q0RFNkZFM0RGOUZBMUVEQTZDRUE0NjJGNzdFRjYw NDc4OTkwRDAeFw0yNDA3MDEwMDU5NTZaFw0yNTA2MzAwMTA0NTZaMDMxMTAvBgNV BAMTKDRCQkREOTlGQjI5NjRBMDBGQTM3NTM5RDQ4QjMxNzk1MEJGNUVDODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChcyYXiksKL/p14aoNCZtT+JAr aXt3ujt9W9p7rPpygMivWmHTNmZaCzTyIUtNT53A4GN2bcR+NWnj/XDixGw1DLUO 65HZm+6NyySwErR+dXQsKAB76IYEWUw3dcjDCoj2OIR2PIQodfPqTPPHd3qBsoZx oSXPt3amwQQhYpv4GTX+ISVyEQOWxib+pr7nA48hos+/+xYTQe0fDVe5PGFB6rVw TFEvrtkklrLpGaXfCoY7HBo24ZE2WVnKjdDaj85k7G6Ugtr2UfFC8gT896A3CH7u +KwYm3xNz27EgKe2nLA0dosxr41GdVHYhuibWSWqOnUjw3SIl2+r7NzGm83jAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUS73Zn7KWSgD6N1OdSLMXlQv17IcwHwYDVR0j BBgwFoAUvYzeb+Pfn6Htps6kYvd+9gR4mQ0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTljZmQwNC02OWQwLTRkNGMtOGQwOS0yZDIyMTM4NDJjMmMvMC9CRDhDREU2RkUz REY5RkExRURBNkNFQTQ2MkY3N0VGNjA0Nzg5OTBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ4Q0RFNkZFM0RGOUZBMUVEQTZDRUE0NjJGNzdFRjYwNDc4 OTkwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1OWNmZDA0LTY5ZDAtNGQ0Yy04 ZDA5LTJkMjIxMzg0MmMyYy8wLzMyMzAzMDMxM2E2NDY2MzQzYTM2NjMzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMzMzgzMDMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9GwAMA0GCSqGSIb3DQEBCwUAA4IBAQB0NnIpRX7FSiZF+HweLO5PL3yKH2045zW6 KY29f2HpV4x+65ZmmZsN0C0wWJCf5BOR+NPxIv8lPd2HPuL4pu8VZ+iBRkCw0Iuo 97C/RCRv7rjezHreSoNMKrM2rS5ZB5PObI7gHXUI4uJK608gy3HF/AXdIkIIAQdM CdAjfGz6Z3knwSgX2fVeBmBgPVcTwJ1qb6Ri9a2iKYTycptzEMv+DKKBWY2cGujn hn5Kwbt9X6Dz4GvlBRTy+klzBcyFe/WOpvs0TdqEdg/sVxw8t9Kguy5iCCRfuGNX 9OGITEy2u8sUFeluEVf1UF8iY9+VxvezcJHDM31KwRPhqyufSy9S -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:57 2024 by rpki-client on console-ams.rpki-client.org