$ rpki-client -vvf repo-rpki.idnic.net/repo/d00f9cc7-4a69-4c9e-bba6-4d9abb56eff6/0/323030313a6466373a633138303a3a2f34382d3438203d3e20313437303837.roa File: 323030313a6466373a633138303a3a2f34382d3438203d3e20313437303837.roa (raw, json) Hash identifier: SISmoMd9IDy7UIhYINg4jNQmxZBYxELrgbvx7I2ZzYc= Subject key identifier: 22:DE:86:E9:98:6E:45:D6:A4:53:4B:B5:D7:88:58:9B:0A:89:5B:65 Certificate issuer: /CN=580F61C23A4857BE23095E060FE36642F86DA6E8 Certificate serial: 707395203A8EE8249D2744435C9810E598CF9A02 Authority key identifier: 58:0F:61:C2:3A:48:57:BE:23:09:5E:06:0F:E3:66:42:F8:6D:A6:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/580F61C23A4857BE23095E060FE36642F86DA6E8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d00f9cc7-4a69-4c9e-bba6-4d9abb56eff6/0/323030313a6466373a633138303a3a2f34382d3438203d3e20313437303837.roa Signing time: Sat 31 Aug 2024 18:00:01 +0000 ROA not before: Sat 31 Aug 2024 17:55:01 +0000 ROA not after: Sat 30 Aug 2025 18:00:01 +0000 asID: 147087 IP address blocks: 2001:df7:c180::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d00f9cc7-4a69-4c9e-bba6-4d9abb56eff6/0/580F61C23A4857BE23095E060FE36642F86DA6E8.crl rsync://repo-rpki.idnic.net/repo/d00f9cc7-4a69-4c9e-bba6-4d9abb56eff6/0/580F61C23A4857BE23095E060FE36642F86DA6E8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/580F61C23A4857BE23095E060FE36642F86DA6E8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:73:95:20:3a:8e:e8:24:9d:27:44:43:5c:98:10:e5:98:cf:9a:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=580F61C23A4857BE23095E060FE36642F86DA6E8 Validity Not Before: Aug 31 17:55:01 2024 GMT Not After : Aug 30 18:00:01 2025 GMT Subject: CN=22DE86E9986E45D6A4534BB5D788589B0A895B65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ab:4e:bb:03:d3:71:47:90:f7:1f:65:d4:76: cc:49:9c:66:19:2e:1e:a1:a3:99:c6:6f:ab:7c:71: fe:51:70:19:81:2b:ed:4b:1f:56:8b:4c:db:92:8f: 3b:63:82:93:a6:7e:37:7f:a4:7c:df:27:dd:d2:4e: 52:54:0a:72:f1:95:96:4a:ee:48:01:81:31:d2:66: d1:bc:3c:51:f6:e1:b9:e2:3c:2f:df:29:3e:6c:3a: 1b:6d:52:70:1c:e6:43:c8:85:8f:28:dd:96:6f:09: 07:e4:ce:bf:cb:d0:d6:d6:e6:4f:35:5c:4d:d6:ce: f3:8f:cf:ce:6a:fe:1f:87:ae:2e:0e:67:76:41:d1: cc:29:95:b5:aa:14:bd:21:9e:9f:57:df:c6:1b:37: aa:ac:e6:43:b1:f8:7b:1a:67:48:0e:e0:ee:52:ca: 67:d6:b8:a7:74:63:8f:a7:ad:f3:4a:92:19:e3:2d: 1b:17:37:c7:c4:0e:cf:1d:e1:a3:74:f8:4b:56:a9: 84:f1:43:76:42:ab:1d:bc:0e:bd:0a:83:c6:61:ea: 7d:71:9e:3a:b3:70:bf:a5:65:40:5c:0a:44:37:d8: c9:cb:52:99:77:8a:00:11:9f:48:da:8a:34:d6:35: 7f:45:38:95:05:8d:75:ed:0b:76:33:be:14:31:17: e5:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:DE:86:E9:98:6E:45:D6:A4:53:4B:B5:D7:88:58:9B:0A:89:5B:65 X509v3 Authority Key Identifier: keyid:58:0F:61:C2:3A:48:57:BE:23:09:5E:06:0F:E3:66:42:F8:6D:A6:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d00f9cc7-4a69-4c9e-bba6-4d9abb56eff6/0/580F61C23A4857BE23095E060FE36642F86DA6E8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/580F61C23A4857BE23095E060FE36642F86DA6E8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d00f9cc7-4a69-4c9e-bba6-4d9abb56eff6/0/323030313a6466373a633138303a3a2f34382d3438203d3e20313437303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:c180::/48 Signature Algorithm: sha256WithRSAEncryption 77:09:2a:5b:78:d9:84:bf:6b:b9:10:e4:43:6d:1d:d8:d6:3e: d3:de:5b:68:8d:eb:aa:2d:58:19:88:f1:22:27:c2:c9:c3:51: ae:99:a6:14:86:e9:52:20:ca:23:96:9b:18:c9:7d:ee:96:cb: 7e:6e:c1:e7:31:b5:cc:85:13:e1:8a:2e:42:43:8b:96:a1:15: 65:6d:32:4f:1d:d7:c7:c2:39:14:10:5d:b2:de:70:7b:97:92: a7:a9:28:42:ed:28:a7:6a:cf:aa:41:14:ff:f7:1f:00:22:50: f2:e6:88:8b:fc:72:00:85:78:4c:27:4e:3b:41:84:73:e1:5f: c9:01:24:23:28:62:19:3d:46:ce:dd:30:02:39:57:d0:e4:f7: 6f:2f:c5:2e:08:b0:0b:a3:2d:e7:84:d1:00:d6:a1:25:c2:82: 24:48:11:89:63:7c:ce:9a:60:ca:ed:62:67:e0:70:c9:67:e1: 93:9d:3a:a9:a0:2d:6e:9f:4e:4d:31:72:d8:ff:d8:25:cd:bf: 3b:a7:47:58:a4:52:b4:bc:92:4d:3f:e4:01:f9:87:ee:57:49: 97:30:97:d9:5c:39:af:81:49:b0:5f:cd:15:be:bb:78:3d:c5: 41:35:29:d4:1f:77:36:96:93:5a:a5:c3:8e:66:ac:79:59:77: cb:98:79:89 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUcHOVIDqO6CSdJ0RDXJgQ5ZjPmgIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTgwRjYxQzIzQTQ4NTdCRTIzMDk1RTA2MEZFMzY2NDJG ODZEQTZFODAeFw0yNDA4MzExNzU1MDFaFw0yNTA4MzAxODAwMDFaMDMxMTAvBgNV BAMTKDIyREU4NkU5OTg2RTQ1RDZBNDUzNEJCNUQ3ODg1ODlCMEE4OTVCNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3q067A9NxR5D3H2XUdsxJnGYZ Lh6ho5nGb6t8cf5RcBmBK+1LH1aLTNuSjztjgpOmfjd/pHzfJ93STlJUCnLxlZZK 7kgBgTHSZtG8PFH24bniPC/fKT5sOhttUnAc5kPIhY8o3ZZvCQfkzr/L0NbW5k81 XE3WzvOPz85q/h+Hri4OZ3ZB0cwplbWqFL0hnp9X38YbN6qs5kOx+HsaZ0gO4O5S ymfWuKd0Y4+nrfNKkhnjLRsXN8fEDs8d4aN0+EtWqYTxQ3ZCqx28Dr0Kg8Zh6n1x njqzcL+lZUBcCkQ32MnLUpl3igARn0jaijTWNX9FOJUFjXXtC3YzvhQxF+W3AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUIt6G6ZhuRdakU0u114hYmwqJW2UwHwYDVR0j BBgwFoAUWA9hwjpIV74jCV4GD+NmQvhtpugwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDBmOWNjNy00YTY5LTRjOWUtYmJhNi00ZDlhYmI1NmVmZjYvMC81ODBGNjFDMjNB NDg1N0JFMjMwOTVFMDYwRkUzNjY0MkY4NkRBNkU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTgwRjYxQzIzQTQ4NTdCRTIzMDk1RTA2MEZFMzY2NDJGODZE QTZFOC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwMGY5Y2M3LTRhNjktNGM5ZS1i YmE2LTRkOWFiYjU2ZWZmNi8wLzMyMzAzMDMxM2E2NDY2MzczYTYzMzEzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDM3MzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 98GAMA0GCSqGSIb3DQEBCwUAA4IBAQB3CSpbeNmEv2u5EORDbR3Y1j7T3ltojeuq LVgZiPEiJ8LJw1GumaYUhulSIMojlpsYyX3ulst+bsHnMbXMhRPhii5CQ4uWoRVl bTJPHdfHwjkUEF2y3nB7l5KnqShC7Sinas+qQRT/9x8AIlDy5oiL/HIAhXhMJ047 QYRz4V/JASQjKGIZPUbO3TACOVfQ5PdvL8UuCLALoy3nhNEA1qElwoIkSBGJY3zO mmDK7WJn4HDJZ+GTnTqpoC1un05NMXLY/9glzb87p0dYpFK0vJJNP+QB+YfuV0mX MJfZXDmvgUmwX80Vvrt4PcVBNSnUH3c2lpNapcOOZqx5WXfLmHmJ -----END CERTIFICATE-----Generated at Thu Nov 21 09:07:22 2024 by rpki-client on console-ams.rpki-client.org