$ rpki-client -vvf repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/1/323030313a6466333a356263303a3a2f34382d3438203d3e20313532303832.roa File: 323030313a6466333a356263303a3a2f34382d3438203d3e20313532303832.roa (raw, json) Hash identifier: dv83ads6B98JXr6W2nivuRbVpP9Jt3nhky2RYXKBVC0= Subject key identifier: D3:64:6B:8B:2E:A6:03:3B:A7:63:5F:DC:34:0F:41:35:0A:B1:F8:E9 Certificate issuer: /CN=DF3717861F6521730921F11365C5A826CFF24DAA Certificate serial: 596876F38D4DE51AAF7C6907DC380620C6553C56 Authority key identifier: DF:37:17:86:1F:65:21:73:09:21:F1:13:65:C5:A8:26:CF:F2:4D:AA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF3717861F6521730921F11365C5A826CFF24DAA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/1/323030313a6466333a356263303a3a2f34382d3438203d3e20313532303832.roa Signing time: Thu 11 Jan 2024 04:39:10 +0000 ROA not before: Thu 11 Jan 2024 04:34:10 +0000 ROA not after: Thu 09 Jan 2025 04:39:10 +0000 asID: 152082 IP address blocks: 2001:df3:5bc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/1/DF3717861F6521730921F11365C5A826CFF24DAA.crl rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/1/DF3717861F6521730921F11365C5A826CFF24DAA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF3717861F6521730921F11365C5A826CFF24DAA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 17:42:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:68:76:f3:8d:4d:e5:1a:af:7c:69:07:dc:38:06:20:c6:55:3c:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF3717861F6521730921F11365C5A826CFF24DAA Validity Not Before: Jan 11 04:34:10 2024 GMT Not After : Jan 9 04:39:10 2025 GMT Subject: CN=D3646B8B2EA6033BA7635FDC340F41350AB1F8E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:8a:e3:ee:4e:b0:97:8b:03:38:d2:00:9e:43: 28:38:c2:1f:67:53:d4:cd:d1:f1:5c:ad:af:f2:4c: c5:83:19:dc:74:68:f0:d3:25:4a:0a:9d:a6:bc:94: dd:00:24:c5:b0:47:a6:37:6e:76:43:46:8d:ae:f9: 96:e5:4b:4d:26:46:8e:e9:4f:c9:f5:27:15:c3:6c: 57:ee:21:24:cb:d3:57:f8:c8:7c:ac:8e:24:27:08: 67:0f:b9:e5:ca:ee:05:9e:e6:27:04:c6:5b:b2:ce: 3a:57:f5:16:73:57:8c:c1:81:67:2d:df:41:83:0e: 43:57:9e:49:3e:53:6c:18:8c:fc:21:5f:8c:a5:3f: df:e7:98:77:18:d0:83:62:55:19:47:45:9f:76:75: bf:ab:d2:ed:8d:c7:ff:cc:b8:f5:78:de:f7:bc:89: 64:22:d2:d7:d5:c5:c7:7c:3d:82:e3:d8:7d:45:5b: 7c:04:d9:de:ec:c7:73:d1:d3:2a:a1:70:d4:38:6f: e7:6d:af:85:e0:a4:20:82:d2:ab:94:40:3f:fb:90: 15:9e:0a:71:6e:bf:a7:61:7e:1d:51:c4:fb:e4:b7: 5e:9a:28:c0:85:e6:aa:03:45:69:80:03:f5:e9:30: 53:0e:44:5f:c2:f7:55:1f:99:97:69:5c:e3:da:6a: 5a:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:64:6B:8B:2E:A6:03:3B:A7:63:5F:DC:34:0F:41:35:0A:B1:F8:E9 X509v3 Authority Key Identifier: keyid:DF:37:17:86:1F:65:21:73:09:21:F1:13:65:C5:A8:26:CF:F2:4D:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/1/DF3717861F6521730921F11365C5A826CFF24DAA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF3717861F6521730921F11365C5A826CFF24DAA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/1/323030313a6466333a356263303a3a2f34382d3438203d3e20313532303832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:5bc0::/48 Signature Algorithm: sha256WithRSAEncryption 8b:98:b4:d7:73:1a:5f:be:3d:5a:15:74:bf:97:f2:e6:27:db: e2:8b:c2:28:9d:df:90:93:95:8c:12:0a:53:74:09:d1:b6:35: e8:0f:70:7c:bd:2a:8c:fd:03:8d:8c:86:74:44:cc:2e:dd:2f: 5a:a2:a6:04:aa:38:2d:d1:27:0f:f9:28:0d:8b:a0:08:cc:a1: c8:22:b3:57:e8:51:c5:d7:6f:f5:58:f9:02:dd:ea:5c:96:7a: 26:3c:36:63:97:b7:13:41:db:a7:90:9c:06:df:ab:9a:e6:c1: 57:44:72:0c:62:6f:99:25:a7:b2:9b:7b:9f:13:75:94:48:35: 4f:d5:fd:c6:4a:64:a4:03:81:58:44:3d:2e:f3:4b:69:2f:a5: fe:dc:46:bd:c6:b9:fa:eb:51:5b:22:8f:f2:cd:80:44:5d:4e: fd:b4:45:3a:ed:76:5d:b4:69:b0:20:3a:e5:09:05:2b:69:d3: 42:a2:12:5f:ee:f2:80:55:9a:68:81:97:80:52:6f:56:b0:e4: ba:82:9e:1f:a0:e4:71:3d:13:77:22:38:27:d6:90:b2:db:e9: b5:ff:14:62:58:78:bf:70:a1:27:6f:73:57:20:47:34:bc:43: dc:6d:78:8f:8a:4f:57:36:1b:e0:92:dd:39:4d:c6:53:8d:b5: 9b:32:71:15 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUWWh2841N5RqvfGkH3DgGIMZVPFYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREYzNzE3ODYxRjY1MjE3MzA5MjFGMTEzNjVDNUE4MjZD RkYyNERBQTAeFw0yNDAxMTEwNDM0MTBaFw0yNTAxMDkwNDM5MTBaMDMxMTAvBgNV BAMTKEQzNjQ2QjhCMkVBNjAzM0JBNzYzNUZEQzM0MEY0MTM1MEFCMUY4RTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLiuPuTrCXiwM40gCeQyg4wh9n U9TN0fFcra/yTMWDGdx0aPDTJUoKnaa8lN0AJMWwR6Y3bnZDRo2u+ZblS00mRo7p T8n1JxXDbFfuISTL01f4yHysjiQnCGcPueXK7gWe5icExluyzjpX9RZzV4zBgWct 30GDDkNXnkk+U2wYjPwhX4ylP9/nmHcY0INiVRlHRZ92db+r0u2Nx//MuPV43ve8 iWQi0tfVxcd8PYLj2H1FW3wE2d7sx3PR0yqhcNQ4b+dtr4XgpCCC0quUQD/7kBWe CnFuv6dhfh1RxPvkt16aKMCF5qoDRWmAA/XpMFMORF/C91UfmZdpXOPaalpFAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU02Rriy6mAzunY1/cNA9BNQqx+OkwHwYDVR0j BBgwFoAU3zcXhh9lIXMJIfETZcWoJs/yTaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NDdjZDVhMi1hNzQyLTQ1MGMtYjE5MC01MDBlNzU0NTIwZGUvMS9ERjM3MTc4NjFG NjUyMTczMDkyMUYxMTM2NUM1QTgyNkNGRjI0REFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREYzNzE3ODYxRjY1MjE3MzA5MjFGMTEzNjVDNUE4MjZDRkYy NERBQS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U0N2NkNWEyLWE3NDItNDUwYy1i MTkwLTUwMGU3NTQ1MjBkZS8xLzMyMzAzMDMxM2E2NDY2MzMzYTM1NjI2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzAzODMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 81vAMA0GCSqGSIb3DQEBCwUAA4IBAQCLmLTXcxpfvj1aFXS/l/LmJ9vii8Iond+Q k5WMEgpTdAnRtjXoD3B8vSqM/QONjIZ0RMwu3S9aoqYEqjgt0ScP+SgNi6AIzKHI IrNX6FHF12/1WPkC3epclnomPDZjl7cTQdunkJwG36ua5sFXRHIMYm+ZJaeym3uf E3WUSDVP1f3GSmSkA4FYRD0u80tpL6X+3Ea9xrn661FbIo/yzYBEXU79tEU67XZd tGmwIDrlCQUradNCohJf7vKAVZpogZeAUm9WsOS6gp4foORxPRN3Ijgn1pCy2+m1 /xRiWHi/cKEnb3NXIEc0vEPcbXiPik9XNhvgkt05TcZTjbWbMnEV -----END CERTIFICATE-----Generated at Fri May 31 20:32:45 2024 by rpki-client on console-ams.rpki-client.org