$ rpki-client -vvf repo-rpki.idnic.net/repo/c846f422-c302-4462-b584-700e9346ca09/0/323030313a6466313a653034303a3a2f34382d3438203d3e20313530323435.roa File: 323030313a6466313a653034303a3a2f34382d3438203d3e20313530323435.roa (raw, json) Hash identifier: eRH5kE0nf7sl/yfNBUeGsTQ63WysjlZkI4+SQ9Wxrx4= Subject key identifier: 60:F9:78:8F:26:59:C9:6F:55:5B:01:2C:6D:53:78:BD:A2:18:78:08 Certificate issuer: /CN=B2B2F42BF1978AD094186480A7DA0086FD7C2919 Certificate serial: 22846E1A20F0188D33027A4D8C408BE75F9659FF Authority key identifier: B2:B2:F4:2B:F1:97:8A:D0:94:18:64:80:A7:DA:00:86:FD:7C:29:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2B2F42BF1978AD094186480A7DA0086FD7C2919.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c846f422-c302-4462-b584-700e9346ca09/0/323030313a6466313a653034303a3a2f34382d3438203d3e20313530323435.roa Signing time: Wed 20 Mar 2024 00:00:01 +0000 ROA not before: Tue 19 Mar 2024 23:55:01 +0000 ROA not after: Wed 19 Mar 2025 00:00:01 +0000 asID: 150245 IP address blocks: 2001:df1:e040::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c846f422-c302-4462-b584-700e9346ca09/0/B2B2F42BF1978AD094186480A7DA0086FD7C2919.crl rsync://repo-rpki.idnic.net/repo/c846f422-c302-4462-b584-700e9346ca09/0/B2B2F42BF1978AD094186480A7DA0086FD7C2919.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2B2F42BF1978AD094186480A7DA0086FD7C2919.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 11:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:84:6e:1a:20:f0:18:8d:33:02:7a:4d:8c:40:8b:e7:5f:96:59:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2B2F42BF1978AD094186480A7DA0086FD7C2919 Validity Not Before: Mar 19 23:55:01 2024 GMT Not After : Mar 19 00:00:01 2025 GMT Subject: CN=60F9788F2659C96F555B012C6D5378BDA2187808 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:05:cc:94:30:d0:80:b4:25:13:c9:13:6e:4c: e9:30:63:d3:3a:60:19:2b:f3:61:65:3f:bd:d2:ea: 9e:c5:d7:9c:72:49:5c:1e:e6:d4:1d:29:61:e5:37: 86:b5:8e:a8:93:76:c1:7d:6c:fd:39:ad:6c:b3:94: 83:e2:6f:fa:9e:1a:7a:d5:c7:51:45:94:07:e1:ec: a7:bf:21:bb:6e:7d:56:c5:da:b5:71:01:f1:b2:bf: a0:0c:c9:f9:99:cf:54:06:79:b1:3c:e2:16:5b:7f: 60:a0:81:f0:24:e7:a1:d8:63:18:ad:65:61:a7:e6: a6:68:e8:21:9d:c5:ec:97:4f:63:a3:97:c7:2d:18: 38:88:6e:b4:fb:2b:32:13:2c:24:ce:6f:a7:61:da: fc:53:77:3c:b6:9b:98:b3:58:f4:15:d0:e8:e9:52: bc:0a:b0:fc:e3:a0:18:9d:63:b2:b7:77:62:ce:81: cd:3d:34:86:96:31:41:6e:d4:b6:c9:11:15:6d:ee: 6b:cb:5e:94:13:6e:ba:ab:da:5a:9f:c2:1e:3c:65: 4a:48:42:22:a0:62:5d:e1:6c:c9:90:d9:c6:af:e8: 2c:ed:a7:7c:47:14:07:51:ab:cc:cc:ff:06:45:15: a6:55:0e:0f:81:56:49:d5:18:74:45:40:e0:44:50: d7:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:F9:78:8F:26:59:C9:6F:55:5B:01:2C:6D:53:78:BD:A2:18:78:08 X509v3 Authority Key Identifier: keyid:B2:B2:F4:2B:F1:97:8A:D0:94:18:64:80:A7:DA:00:86:FD:7C:29:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c846f422-c302-4462-b584-700e9346ca09/0/B2B2F42BF1978AD094186480A7DA0086FD7C2919.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2B2F42BF1978AD094186480A7DA0086FD7C2919.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c846f422-c302-4462-b584-700e9346ca09/0/323030313a6466313a653034303a3a2f34382d3438203d3e20313530323435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:e040::/48 Signature Algorithm: sha256WithRSAEncryption 88:63:4e:6f:21:60:3c:11:00:d1:4b:5c:74:8d:04:c1:96:2c: fd:94:09:73:0f:20:92:2e:13:f9:da:fb:18:73:8b:02:75:22: 1d:17:ee:02:0d:89:10:06:3b:d1:e5:6b:65:d9:82:1f:23:e9: 37:4c:24:15:7c:78:fe:89:8f:87:00:e6:20:cb:ab:5a:4a:af: 92:9f:d4:79:ae:5c:28:67:83:04:40:68:a2:8b:41:de:c4:31: 10:42:03:14:3e:4b:4d:39:71:1d:1a:f5:25:61:c8:2c:f3:86: 12:f4:a7:71:e3:b5:bc:4a:84:02:40:31:2a:08:1e:99:8f:5b: 48:b8:0f:53:a8:5b:69:73:32:d2:65:a6:b5:56:b2:35:8d:4c: 9c:4e:19:6a:ed:a9:64:42:2e:6f:3d:1c:c5:c5:5a:8f:aa:f9: 60:74:c8:ea:b7:d9:14:08:48:ce:7d:3c:86:82:58:1e:ec:41: fd:ac:df:c2:7f:85:f3:9b:e6:36:32:cd:29:b6:62:77:a8:c0: b3:c5:52:5c:5b:d5:f3:7b:fb:96:37:fa:13:dc:c3:b3:66:16: af:37:99:52:22:ad:46:7e:3f:92:b8:5c:e0:d2:93:16:e6:04: 53:4f:03:3d:6e:4d:ed:51:87:da:b4:74:f2:37:cf:71:31:2b: cc:11:e9:7f -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUIoRuGiDwGI0zAnpNjECL51+WWf8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjJCMkY0MkJGMTk3OEFEMDk0MTg2NDgwQTdEQTAwODZG RDdDMjkxOTAeFw0yNDAzMTkyMzU1MDFaFw0yNTAzMTkwMDAwMDFaMDMxMTAvBgNV BAMTKDYwRjk3ODhGMjY1OUM5NkY1NTVCMDEyQzZENTM3OEJEQTIxODc4MDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeBcyUMNCAtCUTyRNuTOkwY9M6 YBkr82FlP73S6p7F15xySVwe5tQdKWHlN4a1jqiTdsF9bP05rWyzlIPib/qeGnrV x1FFlAfh7Ke/IbtufVbF2rVxAfGyv6AMyfmZz1QGebE84hZbf2CggfAk56HYYxit ZWGn5qZo6CGdxeyXT2Ojl8ctGDiIbrT7KzITLCTOb6dh2vxTdzy2m5izWPQV0Ojp UrwKsPzjoBidY7K3d2LOgc09NIaWMUFu1LbJERVt7mvLXpQTbrqr2lqfwh48ZUpI QiKgYl3hbMmQ2cav6Cztp3xHFAdRq8zM/wZFFaZVDg+BVknVGHRFQOBEUNcNAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUYPl4jyZZyW9VWwEsbVN4vaIYeAgwHwYDVR0j BBgwFoAUsrL0K/GXitCUGGSAp9oAhv18KRkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ODQ2ZjQyMi1jMzAyLTQ0NjItYjU4NC03MDBlOTM0NmNhMDkvMC9CMkIyRjQyQkYx OTc4QUQwOTQxODY0ODBBN0RBMDA4NkZEN0MyOTE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjJCMkY0MkJGMTk3OEFEMDk0MTg2NDgwQTdEQTAwODZGRDdD MjkxOS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4NDZmNDIyLWMzMDItNDQ2Mi1i NTg0LTcwMGU5MzQ2Y2EwOS8wLzMyMzAzMDMxM2E2NDY2MzEzYTY1MzAzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMwMzIzNDM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8eBAMA0GCSqGSIb3DQEBCwUAA4IBAQCIY05vIWA8EQDRS1x0jQTBliz9lAlzDyCS LhP52vsYc4sCdSIdF+4CDYkQBjvR5Wtl2YIfI+k3TCQVfHj+iY+HAOYgy6taSq+S n9R5rlwoZ4MEQGiii0HexDEQQgMUPktNOXEdGvUlYcgs84YS9Kdx47W8SoQCQDEq CB6Zj1tIuA9TqFtpczLSZaa1VrI1jUycThlq7alkQi5vPRzFxVqPqvlgdMjqt9kU CEjOfTyGglge7EH9rN/Cf4Xzm+Y2Ms0ptmJ3qMCzxVJcW9Xze/uWN/oT3MOzZhav N5lSIq1Gfj+SuFzg0pMW5gRTTwM9bk3tUYfatHTyN89xMSvMEel/ -----END CERTIFICATE-----Generated at Mon Nov 25 09:02:06 2024 by rpki-client on console-ams.rpki-client.org