$ rpki-client -vvf repo-rpki.idnic.net/repo/cabeebcc-a247-4fde-aa86-c6669eabcd82/0/323030313a6466333a3263303a3a2f34382d3438203d3e20313531353639.roa File: 323030313a6466333a3263303a3a2f34382d3438203d3e20313531353639.roa (raw, json) Hash identifier: Yo3YDtNICENVtjQCJjmao0Ij4Zhr/p/PS47VjT7FrD0= Subject key identifier: 3F:35:1F:71:F1:B4:B0:31:0E:7C:C1:CB:B0:29:B3:D3:15:45:3A:F3 Certificate issuer: /CN=8AF24BA6BB2F67CD548BD08B64D97B9A2468ED80 Certificate serial: 1FC28BA81B7E4DA085443FF57210ABB10F31FA42 Authority key identifier: 8A:F2:4B:A6:BB:2F:67:CD:54:8B:D0:8B:64:D9:7B:9A:24:68:ED:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AF24BA6BB2F67CD548BD08B64D97B9A2468ED80.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cabeebcc-a247-4fde-aa86-c6669eabcd82/0/323030313a6466333a3263303a3a2f34382d3438203d3e20313531353639.roa Signing time: Wed 18 Sep 2024 08:00:54 +0000 ROA not before: Wed 18 Sep 2024 07:55:54 +0000 ROA not after: Wed 17 Sep 2025 08:00:54 +0000 asID: 151569 IP address blocks: 2001:df3:2c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cabeebcc-a247-4fde-aa86-c6669eabcd82/0/8AF24BA6BB2F67CD548BD08B64D97B9A2468ED80.crl rsync://repo-rpki.idnic.net/repo/cabeebcc-a247-4fde-aa86-c6669eabcd82/0/8AF24BA6BB2F67CD548BD08B64D97B9A2468ED80.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AF24BA6BB2F67CD548BD08B64D97B9A2468ED80.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:54:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:c2:8b:a8:1b:7e:4d:a0:85:44:3f:f5:72:10:ab:b1:0f:31:fa:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AF24BA6BB2F67CD548BD08B64D97B9A2468ED80 Validity Not Before: Sep 18 07:55:54 2024 GMT Not After : Sep 17 08:00:54 2025 GMT Subject: CN=3F351F71F1B4B0310E7CC1CBB029B3D315453AF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7f:33:e5:a8:ee:be:08:14:15:26:b1:61:c1: f2:76:a6:2f:96:dc:0d:0d:f8:37:12:40:ce:26:b8: 64:d4:da:f6:c5:ac:9e:f7:0b:5f:7f:05:b0:68:d0: 3e:8a:fd:e1:ac:cd:8a:c8:90:e6:2c:1a:ba:5a:ee: e5:56:d6:81:a3:bd:0a:b6:e5:aa:19:b8:68:7d:ce: 91:83:2e:22:f2:b2:c7:fa:a4:ed:31:dd:47:15:b5: d6:6a:d7:ce:c9:00:94:88:6c:b7:fc:0b:d1:38:c5: b5:1e:aa:73:73:49:55:10:c8:d6:bb:1b:06:81:c6: f8:88:35:d0:af:e1:71:db:47:f8:39:28:35:07:46: bf:dc:1e:07:f3:d9:18:27:52:bc:9b:db:22:61:2b: 7e:63:21:d2:74:e4:7f:9a:b6:54:1d:31:f4:b7:22: 2f:83:13:50:24:3f:3d:09:b2:27:10:3c:11:1b:00: 96:0c:c4:e1:05:3e:07:a4:d2:a9:bc:8b:c4:22:01: d9:98:5a:ab:35:be:10:f8:e8:79:f4:09:aa:78:da: 53:f6:86:e0:0c:19:c4:18:6f:22:01:e8:13:69:7e: 21:05:0c:fd:bb:b6:df:58:3a:62:53:df:48:59:34: 28:0b:76:85:bb:b6:36:9e:18:4b:4b:74:67:15:86: cc:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:35:1F:71:F1:B4:B0:31:0E:7C:C1:CB:B0:29:B3:D3:15:45:3A:F3 X509v3 Authority Key Identifier: keyid:8A:F2:4B:A6:BB:2F:67:CD:54:8B:D0:8B:64:D9:7B:9A:24:68:ED:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cabeebcc-a247-4fde-aa86-c6669eabcd82/0/8AF24BA6BB2F67CD548BD08B64D97B9A2468ED80.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AF24BA6BB2F67CD548BD08B64D97B9A2468ED80.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cabeebcc-a247-4fde-aa86-c6669eabcd82/0/323030313a6466333a3263303a3a2f34382d3438203d3e20313531353639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:2c0::/48 Signature Algorithm: sha256WithRSAEncryption 7e:50:3e:97:9f:98:67:e0:f1:14:9d:10:0c:38:f5:a6:7e:4e: 3a:38:54:b2:92:c1:12:08:4a:6e:eb:17:34:1f:0c:f2:d3:fe: 8b:d4:6a:9e:68:73:db:3b:91:ba:c9:38:3f:ec:fb:5a:bb:b2: ee:b2:83:40:98:91:24:86:01:10:72:1d:78:73:c9:39:aa:39: b7:93:77:99:f0:82:4a:d8:2e:c7:bc:db:6c:60:d9:22:11:c8: 31:25:81:c1:c2:d5:26:78:b6:54:f5:62:47:b7:63:c1:0d:39: 5e:ea:22:c8:09:e2:03:3d:cd:e8:4f:67:5d:3d:d6:5d:b1:50: 1c:3d:34:0f:80:32:fd:49:b6:45:7f:c3:97:e5:bb:6b:2e:ae: 5d:91:fb:29:22:cc:25:89:85:8c:fb:5e:87:4b:06:0b:ad:b6: 6b:1c:a5:48:58:03:66:f2:3f:23:ee:97:41:b7:d9:49:eb:ae: a1:57:d8:02:1c:cb:fd:18:da:fe:4a:86:92:84:85:9e:7c:52: 7f:fc:51:44:6c:58:ab:15:25:49:02:de:66:29:56:5d:42:c6: 73:c7:80:31:a1:2b:04:62:89:4b:11:bb:33:0e:3c:4d:10:16: a2:e9:37:a7:b2:37:a2:77:be:a9:59:c2:6b:62:f4:30:5f:cb: 71:dd:6f:63 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUH8KLqBt+TaCFRD/1chCrsQ8x+kIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGMjRCQTZCQjJGNjdDRDU0OEJEMDhCNjREOTdCOUEy NDY4RUQ4MDAeFw0yNDA5MTgwNzU1NTRaFw0yNTA5MTcwODAwNTRaMDMxMTAvBgNV BAMTKDNGMzUxRjcxRjFCNEIwMzEwRTdDQzFDQkIwMjlCM0QzMTU0NTNBRjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/fzPlqO6+CBQVJrFhwfJ2pi+W 3A0N+DcSQM4muGTU2vbFrJ73C19/BbBo0D6K/eGszYrIkOYsGrpa7uVW1oGjvQq2 5aoZuGh9zpGDLiLyssf6pO0x3UcVtdZq187JAJSIbLf8C9E4xbUeqnNzSVUQyNa7 GwaBxviINdCv4XHbR/g5KDUHRr/cHgfz2RgnUryb2yJhK35jIdJ05H+atlQdMfS3 Ii+DE1AkPz0JsicQPBEbAJYMxOEFPgek0qm8i8QiAdmYWqs1vhD46Hn0Cap42lP2 huAMGcQYbyIB6BNpfiEFDP27tt9YOmJT30hZNCgLdoW7tjaeGEtLdGcVhszpAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUPzUfcfG0sDEOfMHLsCmz0xVFOvMwHwYDVR0j BBgwFoAUivJLprsvZ81Ui9CLZNl7miRo7YAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YWJlZWJjYy1hMjQ3LTRmZGUtYWE4Ni1jNjY2OWVhYmNkODIvMC84QUYyNEJBNkJC MkY2N0NENTQ4QkQwOEI2NEQ5N0I5QTI0NjhFRDgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGMjRCQTZCQjJGNjdDRDU0OEJEMDhCNjREOTdCOUEyNDY4 RUQ4MC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhYmVlYmNjLWEyNDctNGZkZS1h YTg2LWM2NjY5ZWFiY2Q4Mi8wLzMyMzAzMDMxM2E2NDY2MzMzYTMyNjMzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzUzMTM1MzYzOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfMC wDANBgkqhkiG9w0BAQsFAAOCAQEAflA+l5+YZ+DxFJ0QDDj1pn5OOjhUspLBEghK busXNB8M8tP+i9Rqnmhz2zuRusk4P+z7Wruy7rKDQJiRJIYBEHIdeHPJOao5t5N3 mfCCStgux7zbbGDZIhHIMSWBwcLVJni2VPViR7djwQ05XuoiyAniAz3N6E9nXT3W XbFQHD00D4Ay/Um2RX/Dl+W7ay6uXZH7KSLMJYmFjPteh0sGC622axylSFgDZvI/ I+6XQbfZSeuuoVfYAhzL/Rja/kqGkoSFnnxSf/xRRGxYqxUlSQLeZilWXULGc8eA MaErBGKJSxG7Mw48TRAWouk3p7I3one+qVnCa2L0MF/Lcd1vYw== -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:18 2024 by rpki-client on console-ams.rpki-client.org