$ rpki-client -vvf repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/1/323030313a6466333a643163303a3a2f34382d3438203d3e20313532373538.roa File: 323030313a6466333a643163303a3a2f34382d3438203d3e20313532373538.roa (raw, json) Hash identifier: nvp6aBQxjtptGYgUeLEHjxMFltaz+YvY0H1/2W6JEXw= Subject key identifier: 6E:71:87:05:A8:C7:D2:25:56:B4:F9:86:79:04:0A:7F:63:EE:B8:9C Certificate issuer: /CN=A8E6492B5EFE9362C2CCDB1C25DA022A2E157782 Certificate serial: 0BF4022F3013009EA1E741EDAC65C26F5FDC8441 Authority key identifier: A8:E6:49:2B:5E:FE:93:62:C2:CC:DB:1C:25:DA:02:2A:2E:15:77:82 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A8E6492B5EFE9362C2CCDB1C25DA022A2E157782.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/1/323030313a6466333a643163303a3a2f34382d3438203d3e20313532373538.roa Signing time: Tue 19 Nov 2024 12:30:23 +0000 ROA not before: Tue 19 Nov 2024 12:25:23 +0000 ROA not after: Tue 18 Nov 2025 12:30:23 +0000 asID: 152758 IP address blocks: 2001:df3:d1c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/1/A8E6492B5EFE9362C2CCDB1C25DA022A2E157782.crl rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/1/A8E6492B5EFE9362C2CCDB1C25DA022A2E157782.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A8E6492B5EFE9362C2CCDB1C25DA022A2E157782.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:f4:02:2f:30:13:00:9e:a1:e7:41:ed:ac:65:c2:6f:5f:dc:84:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A8E6492B5EFE9362C2CCDB1C25DA022A2E157782 Validity Not Before: Nov 19 12:25:23 2024 GMT Not After : Nov 18 12:30:23 2025 GMT Subject: CN=6E718705A8C7D22556B4F98679040A7F63EEB89C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:1f:41:a3:87:82:0d:a7:6c:f7:95:68:32:e7: 5d:d8:a3:cd:b6:e5:6c:fa:50:70:c8:e7:91:8f:1c: 32:86:50:56:7e:36:18:44:55:73:fe:e1:bd:4d:0b: 89:53:97:12:36:ad:f6:19:ee:ee:94:51:a7:67:d3: 9f:91:93:fe:85:fb:3d:26:22:a5:34:e1:03:ca:77: 7b:b4:dd:55:77:7c:51:09:ee:3a:6f:72:66:6b:b7: a3:99:b7:69:ff:0d:28:c7:cb:d4:de:27:fd:2e:c8: ee:4f:57:1a:76:2d:b1:8a:77:19:f8:51:0f:ff:44: b8:7f:86:71:7a:ff:fa:3f:de:e5:c7:91:e4:c2:90: b2:f9:ea:12:66:74:e6:e6:1b:7e:9b:5c:ad:1a:de: a9:fd:4e:d1:0a:a7:74:9e:bd:0c:e0:11:2c:df:b9: 81:ba:c2:16:8d:39:58:ad:21:84:e9:1e:ec:f6:2b: 86:5b:85:32:73:25:cb:af:61:8d:db:65:f6:60:d4: 56:c2:9b:f7:f8:ce:93:fe:07:5a:be:be:ce:27:dd: eb:aa:47:e8:68:fa:47:f0:4e:3f:96:17:e1:9c:8a: 3e:bf:18:49:03:61:42:2a:0f:d2:5a:4a:bb:fa:26: 5c:ec:d7:a5:78:6a:81:05:e6:15:f0:14:19:96:c5: 7d:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:71:87:05:A8:C7:D2:25:56:B4:F9:86:79:04:0A:7F:63:EE:B8:9C X509v3 Authority Key Identifier: keyid:A8:E6:49:2B:5E:FE:93:62:C2:CC:DB:1C:25:DA:02:2A:2E:15:77:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/1/A8E6492B5EFE9362C2CCDB1C25DA022A2E157782.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A8E6492B5EFE9362C2CCDB1C25DA022A2E157782.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/1/323030313a6466333a643163303a3a2f34382d3438203d3e20313532373538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:d1c0::/48 Signature Algorithm: sha256WithRSAEncryption 27:d7:c7:2f:6a:f6:43:8a:f3:5f:9d:1d:eb:66:24:e3:15:0e: e3:5f:e1:1e:df:d7:dd:56:f5:b9:a0:8b:ce:d7:25:5c:ea:93: 4f:be:f2:82:81:d4:7d:fa:c8:76:f9:9a:73:39:0f:fb:fb:66: f3:ad:31:0a:14:fe:58:87:bf:0b:83:cd:e3:39:05:93:58:fb: 54:55:7c:ae:88:b6:de:23:01:fd:93:57:54:ef:01:ec:e2:e0: 7b:5d:a2:f5:21:90:1a:46:34:5f:d3:e0:08:d1:a9:a3:82:e4: ac:92:e4:75:8c:75:7d:c5:c1:e3:b6:b0:54:9e:44:bd:1c:4e: a6:fc:2a:53:11:d4:08:52:54:7b:55:97:37:99:85:69:d0:5d: d6:26:a4:8a:94:af:b6:d1:d1:19:4f:6e:61:58:08:eb:f1:2f: 0a:c1:d5:1a:f2:63:31:a4:77:89:6c:7e:bf:78:8b:2e:43:69: 72:1d:cc:95:5a:e6:bf:aa:cb:9b:ec:49:04:09:f1:0f:47:69: 28:a0:95:5f:fc:8a:dd:30:6e:0a:40:ba:71:44:7f:43:d2:44: 51:e2:6a:0c:6a:49:4f:97:d4:45:7d:1f:42:bb:56:86:c7:3c: 0f:cb:ba:0e:9e:e0:a1:d1:d2:49:93:9e:f6:50:4b:03:d7:44: 4f:bf:80:1a -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUC/QCLzATAJ6h50HtrGXCb1/chEEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQThFNjQ5MkI1RUZFOTM2MkMyQ0NEQjFDMjVEQTAyMkEy RTE1Nzc4MjAeFw0yNDExMTkxMjI1MjNaFw0yNTExMTgxMjMwMjNaMDMxMTAvBgNV BAMTKDZFNzE4NzA1QThDN0QyMjU1NkI0Rjk4Njc5MDQwQTdGNjNFRUI4OUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcH0Gjh4INp2z3lWgy513Yo822 5Wz6UHDI55GPHDKGUFZ+NhhEVXP+4b1NC4lTlxI2rfYZ7u6UUadn05+Rk/6F+z0m IqU04QPKd3u03VV3fFEJ7jpvcmZrt6OZt2n/DSjHy9TeJ/0uyO5PVxp2LbGKdxn4 UQ//RLh/hnF6//o/3uXHkeTCkLL56hJmdObmG36bXK0a3qn9TtEKp3SevQzgESzf uYG6whaNOVitIYTpHuz2K4ZbhTJzJcuvYY3bZfZg1FbCm/f4zpP+B1q+vs4n3euq R+ho+kfwTj+WF+Gcij6/GEkDYUIqD9JaSrv6Jlzs16V4aoEF5hXwFBmWxX2PAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUbnGHBajH0iVWtPmGeQQKf2PuuJwwHwYDVR0j BBgwFoAUqOZJK17+k2LCzNscJdoCKi4Vd4IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k N2RkMjUxOS0zMDc4LTQ3ZDMtOWU4Ni00OGZkM2JkZTc2YzgvMS9BOEU2NDkyQjVF RkU5MzYyQzJDQ0RCMUMyNURBMDIyQTJFMTU3NzgyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQThFNjQ5MkI1RUZFOTM2MkMyQ0NEQjFDMjVEQTAyMkEyRTE1 Nzc4Mi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q3ZGQyNTE5LTMwNzgtNDdkMy05 ZTg2LTQ4ZmQzYmRlNzZjOC8xLzMyMzAzMDMxM2E2NDY2MzMzYTY0MzE2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzczNTM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 89HAMA0GCSqGSIb3DQEBCwUAA4IBAQAn18cvavZDivNfnR3rZiTjFQ7jX+Ee39fd VvW5oIvO1yVc6pNPvvKCgdR9+sh2+ZpzOQ/7+2bzrTEKFP5Yh78Lg83jOQWTWPtU VXyuiLbeIwH9k1dU7wHs4uB7XaL1IZAaRjRf0+AI0amjguSskuR1jHV9xcHjtrBU nkS9HE6m/CpTEdQIUlR7VZc3mYVp0F3WJqSKlK+20dEZT25hWAjr8S8KwdUa8mMx pHeJbH6/eIsuQ2lyHcyVWua/qsub7EkECfEPR2kooJVf/IrdMG4KQLpxRH9D0kRR 4moMaklPl9RFfR9Cu1aGxzwPy7oOnuCh0dJJk572UEsD10RPv4Aa -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:57 2024 by rpki-client on console-ams.rpki-client.org