$ rpki-client -vvf repo-rpki.idnic.net/repo/edde8fb8-3a77-487e-9dfc-f479d6b33809/0/323030313a6466363a356130303a3a2f34382d3438203d3e203634333032.roa File: 323030313a6466363a356130303a3a2f34382d3438203d3e203634333032.roa (raw, json) Hash identifier: 7c1sfMcrfO93nFfMchi4QHV2HKxCNeAUSMnzGqAyt9Q= Subject key identifier: 3E:DB:D7:CF:2F:79:93:69:1D:B7:41:12:9C:14:4B:8A:87:51:77:87 Certificate issuer: /CN=9F1E176A521C3CEFE1D787F898211547A2D65955 Certificate serial: 7486F5FBBC65EAF1CA387FDA1DD870B0B30385D6 Authority key identifier: 9F:1E:17:6A:52:1C:3C:EF:E1:D7:87:F8:98:21:15:47:A2:D6:59:55 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F1E176A521C3CEFE1D787F898211547A2D65955.cer Subject info access: rsync://repo-rpki.idnic.net/repo/edde8fb8-3a77-487e-9dfc-f479d6b33809/0/323030313a6466363a356130303a3a2f34382d3438203d3e203634333032.roa Signing time: Sat 05 Oct 2024 04:02:25 +0000 ROA not before: Sat 05 Oct 2024 03:57:25 +0000 ROA not after: Sat 04 Oct 2025 04:02:25 +0000 asID: 64302 IP address blocks: 2001:df6:5a00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/edde8fb8-3a77-487e-9dfc-f479d6b33809/0/9F1E176A521C3CEFE1D787F898211547A2D65955.crl rsync://repo-rpki.idnic.net/repo/edde8fb8-3a77-487e-9dfc-f479d6b33809/0/9F1E176A521C3CEFE1D787F898211547A2D65955.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F1E176A521C3CEFE1D787F898211547A2D65955.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:86:f5:fb:bc:65:ea:f1:ca:38:7f:da:1d:d8:70:b0:b3:03:85:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F1E176A521C3CEFE1D787F898211547A2D65955 Validity Not Before: Oct 5 03:57:25 2024 GMT Not After : Oct 4 04:02:25 2025 GMT Subject: CN=3EDBD7CF2F7993691DB741129C144B8A87517787 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:8c:5c:2a:68:37:cb:3b:71:45:43:01:e4:89: 12:81:73:bf:f2:ae:76:4c:12:8e:4e:ee:f7:fe:1b: d4:c6:df:25:89:15:4d:ed:f2:b2:2d:15:f3:ea:c6: b1:1f:e1:cc:10:f4:be:f4:7a:9a:36:b9:24:7d:d3: 7c:00:ee:ac:b7:bf:ef:0a:1d:c1:b5:42:65:1c:f1: c7:d9:bc:e6:95:e5:7e:4d:49:1c:da:64:8d:bc:5b: a6:3a:ef:7d:0f:70:86:98:b8:49:ba:9c:c2:16:c6: 48:25:d2:84:d5:44:48:63:b8:36:23:94:6c:69:99: 0e:fa:01:4c:96:49:ac:bf:e3:30:6f:95:d9:20:7b: 1c:d5:70:fc:b6:0d:d8:a7:d4:b6:75:ee:2b:fd:6b: f1:df:08:f9:8c:ac:2f:35:9c:40:6f:4a:9d:f5:08: 57:fa:b5:52:49:51:ca:ac:29:d5:7f:a6:f1:aa:90: c9:4f:40:ff:1e:53:68:db:d8:13:41:21:b3:38:d0: e9:27:14:cc:85:fa:60:5a:23:7b:f4:cf:76:47:c9: a4:34:26:3c:51:a7:57:81:b1:d2:78:90:11:fb:40: d9:9e:85:2f:ac:dc:e3:03:8a:79:14:60:11:ff:fe: e0:a8:43:87:ca:19:fd:e4:ca:3c:0c:fe:ed:c3:c2: 5c:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:DB:D7:CF:2F:79:93:69:1D:B7:41:12:9C:14:4B:8A:87:51:77:87 X509v3 Authority Key Identifier: keyid:9F:1E:17:6A:52:1C:3C:EF:E1:D7:87:F8:98:21:15:47:A2:D6:59:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/edde8fb8-3a77-487e-9dfc-f479d6b33809/0/9F1E176A521C3CEFE1D787F898211547A2D65955.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F1E176A521C3CEFE1D787F898211547A2D65955.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/edde8fb8-3a77-487e-9dfc-f479d6b33809/0/323030313a6466363a356130303a3a2f34382d3438203d3e203634333032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:5a00::/48 Signature Algorithm: sha256WithRSAEncryption a7:39:05:00:2b:c6:7e:b1:b9:ee:47:61:f9:00:70:17:d1:e6: 88:12:5e:17:6f:52:8b:e1:e7:39:00:9f:16:15:06:6b:fb:de: cd:93:19:0e:1c:1d:79:77:71:ad:d2:1d:62:c3:ba:a0:1a:62: 63:2e:65:00:fb:13:f1:62:7b:d5:0f:ec:9c:90:da:bd:1b:78: e4:2e:72:e7:00:4a:bf:f3:5a:39:6e:60:c1:d3:67:ba:22:a0: 2e:a8:1c:6c:85:81:3d:e7:2b:83:ee:5e:37:ac:eb:93:19:88: 43:60:2f:70:f3:3c:6c:16:27:14:97:31:19:d0:ce:5f:61:b6: c0:77:52:10:47:f6:ac:34:34:a7:11:7b:d7:81:86:3d:9b:7e: c8:bd:f5:72:56:95:a8:d6:26:39:b8:f6:f2:79:56:28:bd:61: 4e:f1:ed:47:17:65:49:f4:a0:7c:d5:01:f1:80:d1:f9:10:2b: 98:a6:06:2b:54:b9:64:9c:ff:0f:11:77:8b:1b:59:0a:ac:62: f5:7a:8b:ac:ee:4d:b4:1d:c5:b9:6f:5b:6a:2f:ed:02:58:fb: 1e:e3:9c:32:90:da:d5:62:a5:94:95:d2:30:41:09:60:9b:1e: ce:1d:c0:a0:7d:f3:6f:fc:0f:be:e1:d2:f7:80:1b:4b:d7:1d: 5b:3f:27:f6 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUdIb1+7xl6vHKOH/aHdhwsLMDhdYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUYxRTE3NkE1MjFDM0NFRkUxRDc4N0Y4OTgyMTE1NDdB MkQ2NTk1NTAeFw0yNDEwMDUwMzU3MjVaFw0yNTEwMDQwNDAyMjVaMDMxMTAvBgNV BAMTKDNFREJEN0NGMkY3OTkzNjkxREI3NDExMjlDMTQ0QjhBODc1MTc3ODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDjFwqaDfLO3FFQwHkiRKBc7/y rnZMEo5O7vf+G9TG3yWJFU3t8rItFfPqxrEf4cwQ9L70epo2uSR903wA7qy3v+8K HcG1QmUc8cfZvOaV5X5NSRzaZI28W6Y6730PcIaYuEm6nMIWxkgl0oTVREhjuDYj lGxpmQ76AUyWSay/4zBvldkgexzVcPy2Ddin1LZ17iv9a/HfCPmMrC81nEBvSp31 CFf6tVJJUcqsKdV/pvGqkMlPQP8eU2jb2BNBIbM40OknFMyF+mBaI3v0z3ZHyaQ0 JjxRp1eBsdJ4kBH7QNmehS+s3OMDinkUYBH//uCoQ4fKGf3kyjwM/u3Dwlx5AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUPtvXzy95k2kdt0ESnBRLiodRd4cwHwYDVR0j BBgwFoAUnx4XalIcPO/h14f4mCEVR6LWWVUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZGRlOGZiOC0zYTc3LTQ4N2UtOWRmYy1mNDc5ZDZiMzM4MDkvMC85RjFFMTc2QTUy MUMzQ0VGRTFENzg3Rjg5ODIxMTU0N0EyRDY1OTU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUYxRTE3NkE1MjFDM0NFRkUxRDc4N0Y4OTgyMTE1NDdBMkQ2 NTk1NS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkZGU4ZmI4LTNhNzctNDg3ZS05 ZGZjLWY0NzlkNmIzMzgwOS8wLzMyMzAzMDMxM2E2NDY2MzYzYTM1NjEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzYzNDMzMzAzMi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfZa ADANBgkqhkiG9w0BAQsFAAOCAQEApzkFACvGfrG57kdh+QBwF9HmiBJeF29Si+Hn OQCfFhUGa/vezZMZDhwdeXdxrdIdYsO6oBpiYy5lAPsT8WJ71Q/snJDavRt45C5y 5wBKv/NaOW5gwdNnuiKgLqgcbIWBPecrg+5eN6zrkxmIQ2AvcPM8bBYnFJcxGdDO X2G2wHdSEEf2rDQ0pxF714GGPZt+yL31claVqNYmObj28nlWKL1hTvHtRxdlSfSg fNUB8YDR+RArmKYGK1S5ZJz/DxF3ixtZCqxi9XqLrO5NtB3FuW9bai/tAlj7HuOc MpDa1WKllJXSMEEJYJsezh3AoH3zb/wPvuHS94AbS9cdWz8n9g== -----END CERTIFICATE-----Generated at Sun Nov 24 09:53:16 2024 by rpki-client on console-ams.rpki-client.org