$ rpki-client -vvf repo-rpki.idnic.net/repo/d0962c6e-595a-47c4-aa7c-ef8e77cae642/0/323030313a6466343a663330303a3a2f34382d3438203d3e20313337333439.roa File: 323030313a6466343a663330303a3a2f34382d3438203d3e20313337333439.roa (raw, json) Hash identifier: 8FPgLGtfyDAEpIxK5OqOfu3zjvn4uiTV9+bBUUTfjTg= Subject key identifier: 46:A0:61:CA:73:04:DD:73:C7:73:53:D0:0C:CE:69:C5:53:4C:12:F9 Certificate issuer: /CN=EADA0AEE51F3910B50A065D57D946E3EAFA8BD11 Certificate serial: 43D0C7C612B2FBB7FD16D8881F066083134FCB58 Authority key identifier: EA:DA:0A:EE:51:F3:91:0B:50:A0:65:D5:7D:94:6E:3E:AF:A8:BD:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EADA0AEE51F3910B50A065D57D946E3EAFA8BD11.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d0962c6e-595a-47c4-aa7c-ef8e77cae642/0/323030313a6466343a663330303a3a2f34382d3438203d3e20313337333439.roa Signing time: Mon 01 Jul 2024 01:04:05 +0000 ROA not before: Mon 01 Jul 2024 00:59:05 +0000 ROA not after: Mon 30 Jun 2025 01:04:05 +0000 asID: 137349 IP address blocks: 2001:df4:f300::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d0962c6e-595a-47c4-aa7c-ef8e77cae642/0/EADA0AEE51F3910B50A065D57D946E3EAFA8BD11.crl rsync://repo-rpki.idnic.net/repo/d0962c6e-595a-47c4-aa7c-ef8e77cae642/0/EADA0AEE51F3910B50A065D57D946E3EAFA8BD11.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EADA0AEE51F3910B50A065D57D946E3EAFA8BD11.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:d0:c7:c6:12:b2:fb:b7:fd:16:d8:88:1f:06:60:83:13:4f:cb:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EADA0AEE51F3910B50A065D57D946E3EAFA8BD11 Validity Not Before: Jul 1 00:59:05 2024 GMT Not After : Jun 30 01:04:05 2025 GMT Subject: CN=46A061CA7304DD73C77353D00CCE69C5534C12F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:77:1b:1f:41:30:9d:b9:a8:91:ab:20:3e:a4: ed:0b:fa:3e:bb:58:39:ae:b6:d8:f7:74:33:d5:d8: d0:56:85:6b:a1:0f:f1:80:17:ac:68:17:25:a6:7c: 91:fd:24:92:0b:3c:c5:7d:31:91:89:a8:a9:31:73: d3:f9:e7:b5:2f:2a:b2:3a:a2:54:0b:3e:78:18:6a: 4f:61:d1:a1:a1:42:79:81:c0:a4:f9:24:35:f4:d8: 35:56:99:9a:aa:ca:b0:0a:ff:43:67:38:5c:c6:d8: b2:d2:a6:e2:25:2c:97:80:35:ee:15:4c:f8:5f:3d: b2:a3:eb:5d:58:c7:fd:8d:5c:8a:9d:ff:fc:4c:5e: fa:29:1e:46:86:6d:f9:55:65:67:17:02:81:b7:1a: 90:14:4e:49:f2:18:c5:00:30:53:75:40:da:f3:ee: 98:da:06:84:0d:8d:6d:0d:e7:0f:76:f4:99:70:7b: dd:ab:96:72:ad:9c:1f:7d:ba:29:c4:63:1b:93:9e: 05:86:9b:48:8a:4f:06:65:40:ab:da:61:1a:58:37: 6d:58:72:c4:24:bb:18:eb:d7:8d:21:d9:b0:cd:2c: 9d:06:ca:dd:59:44:77:64:36:db:a4:d5:0c:54:81: 19:36:ee:2b:43:d1:1b:c7:e4:70:52:3e:43:e8:5e: a5:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:A0:61:CA:73:04:DD:73:C7:73:53:D0:0C:CE:69:C5:53:4C:12:F9 X509v3 Authority Key Identifier: keyid:EA:DA:0A:EE:51:F3:91:0B:50:A0:65:D5:7D:94:6E:3E:AF:A8:BD:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d0962c6e-595a-47c4-aa7c-ef8e77cae642/0/EADA0AEE51F3910B50A065D57D946E3EAFA8BD11.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EADA0AEE51F3910B50A065D57D946E3EAFA8BD11.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d0962c6e-595a-47c4-aa7c-ef8e77cae642/0/323030313a6466343a663330303a3a2f34382d3438203d3e20313337333439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:f300::/48 Signature Algorithm: sha256WithRSAEncryption 95:8c:05:cf:55:bd:f0:c6:1c:81:0a:59:71:10:0f:db:46:aa: da:f2:cc:18:d5:ff:fd:bf:be:9d:07:9b:ef:e6:65:13:8a:d7: b4:26:7f:c0:d6:af:4f:57:34:9f:ae:bf:7e:e5:33:38:d2:71: 98:ea:cd:d1:66:f0:cd:05:52:ef:d6:43:63:a6:19:06:92:6a: 53:68:1f:7a:2d:a8:f8:e5:79:ce:1c:22:b1:5c:33:38:9b:b6: ef:8b:01:e2:82:4c:a5:ef:69:cc:a3:58:ed:75:9a:1f:f6:2a: 55:0c:42:78:8e:60:49:fd:57:fc:c0:a2:49:f7:14:4f:62:21: f8:a5:88:11:77:58:20:cb:40:94:56:e7:c4:49:41:56:4f:f5: 21:6d:66:d5:cc:36:a1:1e:81:07:9c:e3:3e:47:92:17:1a:f5: c0:1e:60:03:8c:01:19:4c:9d:b5:c9:99:ed:e8:e4:41:6a:36: eb:b7:ad:83:47:96:e5:be:7b:1e:a0:ad:44:d7:8f:d9:1d:e7: 6a:43:b6:e6:26:ef:2c:c4:4c:8d:d2:0f:2b:0c:75:aa:89:dd: 7c:d6:d7:2f:c9:d3:51:c9:ae:5e:30:32:db:d8:c3:19:1a:58: 2b:fe:e8:a2:99:c6:f9:a9:26:c0:90:b4:92:08:e7:d7:00:ae: e2:f1:5b:4d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUQ9DHxhKy+7f9FtiIHwZggxNPy1gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUFEQTBBRUU1MUYzOTEwQjUwQTA2NUQ1N0Q5NDZFM0VB RkE4QkQxMTAeFw0yNDA3MDEwMDU5MDVaFw0yNTA2MzAwMTA0MDVaMDMxMTAvBgNV BAMTKDQ2QTA2MUNBNzMwNERENzNDNzczNTNEMDBDQ0U2OUM1NTM0QzEyRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRdxsfQTCduaiRqyA+pO0L+j67 WDmuttj3dDPV2NBWhWuhD/GAF6xoFyWmfJH9JJILPMV9MZGJqKkxc9P557UvKrI6 olQLPngYak9h0aGhQnmBwKT5JDX02DVWmZqqyrAK/0NnOFzG2LLSpuIlLJeANe4V TPhfPbKj611Yx/2NXIqd//xMXvopHkaGbflVZWcXAoG3GpAUTknyGMUAMFN1QNrz 7pjaBoQNjW0N5w929Jlwe92rlnKtnB99uinEYxuTngWGm0iKTwZlQKvaYRpYN21Y csQkuxjr140h2bDNLJ0Gyt1ZRHdkNtuk1QxUgRk27itD0RvH5HBSPkPoXqXbAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQURqBhynME3XPHc1PQDM5pxVNMEvkwHwYDVR0j BBgwFoAU6toK7lHzkQtQoGXVfZRuPq+ovREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDk2MmM2ZS01OTVhLTQ3YzQtYWE3Yy1lZjhlNzdjYWU2NDIvMC9FQURBMEFFRTUx RjM5MTBCNTBBMDY1RDU3RDk0NkUzRUFGQThCRDExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUFEQTBBRUU1MUYzOTEwQjUwQTA2NUQ1N0Q5NDZFM0VBRkE4 QkQxMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwOTYyYzZlLTU5NWEtNDdjNC1h YTdjLWVmOGU3N2NhZTY0Mi8wLzMyMzAzMDMxM2E2NDY2MzQzYTY2MzMzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM3MzMzNDM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9PMAMA0GCSqGSIb3DQEBCwUAA4IBAQCVjAXPVb3wxhyBCllxEA/bRqra8swY1f/9 v76dB5vv5mUTite0Jn/A1q9PVzSfrr9+5TM40nGY6s3RZvDNBVLv1kNjphkGkmpT aB96Laj45XnOHCKxXDM4m7bviwHigkyl72nMo1jtdZof9ipVDEJ4jmBJ/Vf8wKJJ 9xRPYiH4pYgRd1ggy0CUVufESUFWT/UhbWbVzDahHoEHnOM+R5IXGvXAHmADjAEZ TJ21yZnt6ORBajbrt62DR5blvnseoK1E14/ZHedqQ7bmJu8sxEyN0g8rDHWqid18 1tcvydNRya5eMDLb2MMZGlgr/uiimcb5qSbAkLSSCOfXAK7i8VtN -----END CERTIFICATE-----Generated at Thu Nov 21 09:07:22 2024 by rpki-client on console-ams.rpki-client.org