$ rpki-client -vvf repo-rpki.idnic.net/repo/f0e11ffc-e75a-4bf4-8448-c68e20335ee8/0/323030313a6466313a326430303a3a2f34382d3438203d3e20313336313132.roa File: 323030313a6466313a326430303a3a2f34382d3438203d3e20313336313132.roa (raw, json) Hash identifier: elpZsHFUPni8NExlf7jvhA0Mz0EriSlS19uVnK8uSa4= Subject key identifier: 4E:3F:EC:57:14:19:4F:60:DB:D2:68:9E:B3:EC:53:FC:FE:D7:83:87 Certificate issuer: /CN=0FAFA39AA3875A4CF63BCF7E873087927B499D2F Certificate serial: 79610B554AA778568A9A4E3D7C3176C4F65A83 Authority key identifier: 0F:AF:A3:9A:A3:87:5A:4C:F6:3B:CF:7E:87:30:87:92:7B:49:9D:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FAFA39AA3875A4CF63BCF7E873087927B499D2F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f0e11ffc-e75a-4bf4-8448-c68e20335ee8/0/323030313a6466313a326430303a3a2f34382d3438203d3e20313336313132.roa Signing time: Mon 15 Apr 2024 08:00:00 +0000 ROA not before: Mon 15 Apr 2024 07:55:00 +0000 ROA not after: Mon 14 Apr 2025 08:00:00 +0000 asID: 136112 IP address blocks: 2001:df1:2d00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f0e11ffc-e75a-4bf4-8448-c68e20335ee8/0/0FAFA39AA3875A4CF63BCF7E873087927B499D2F.crl rsync://repo-rpki.idnic.net/repo/f0e11ffc-e75a-4bf4-8448-c68e20335ee8/0/0FAFA39AA3875A4CF63BCF7E873087927B499D2F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FAFA39AA3875A4CF63BCF7E873087927B499D2F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:61:0b:55:4a:a7:78:56:8a:9a:4e:3d:7c:31:76:c4:f6:5a:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FAFA39AA3875A4CF63BCF7E873087927B499D2F Validity Not Before: Apr 15 07:55:00 2024 GMT Not After : Apr 14 08:00:00 2025 GMT Subject: CN=4E3FEC5714194F60DBD2689EB3EC53FCFED78387 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:d3:1b:d4:25:9a:1c:ed:96:bc:e3:26:af:ce: e1:15:a8:ba:7e:9c:4f:25:63:bd:20:f0:8e:45:2c: d7:5b:39:cd:45:21:d9:0d:b5:43:ff:6d:15:d0:ce: 1f:a8:4f:6b:b2:cb:41:3a:f5:c3:ae:39:48:35:22: 24:60:02:20:84:fd:21:bb:ff:3c:a7:84:4f:5e:df: 8a:72:31:92:08:18:42:1f:b0:17:ab:5c:85:2f:de: ee:7e:58:35:53:23:cc:13:d3:5f:94:80:f8:69:0e: 1b:b4:e6:ba:23:a9:75:1a:fb:08:c9:50:f5:26:4b: fe:9d:cd:f7:08:12:90:20:7a:70:91:fa:6b:7d:88: 97:3c:69:48:04:92:b0:df:be:cc:a4:16:c1:c7:4d: 33:41:2a:16:13:1b:17:44:44:f3:59:2f:eb:ba:85: 89:7a:90:42:58:12:60:70:f1:f1:a1:0b:42:fa:30: 88:88:75:7c:c9:a1:8b:a3:a1:52:e5:63:0a:4a:51: e3:4a:d0:d4:78:f7:25:0e:23:55:49:7a:b7:ca:60: 7c:bb:1d:36:c8:a9:9f:97:7f:7c:3b:18:a8:ea:64: 04:6f:cd:0d:20:5d:ee:e8:7d:11:c7:64:9f:ad:6d: 6c:27:61:da:84:67:d8:3e:d2:1c:91:22:50:b1:a4: bd:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:3F:EC:57:14:19:4F:60:DB:D2:68:9E:B3:EC:53:FC:FE:D7:83:87 X509v3 Authority Key Identifier: keyid:0F:AF:A3:9A:A3:87:5A:4C:F6:3B:CF:7E:87:30:87:92:7B:49:9D:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f0e11ffc-e75a-4bf4-8448-c68e20335ee8/0/0FAFA39AA3875A4CF63BCF7E873087927B499D2F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FAFA39AA3875A4CF63BCF7E873087927B499D2F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f0e11ffc-e75a-4bf4-8448-c68e20335ee8/0/323030313a6466313a326430303a3a2f34382d3438203d3e20313336313132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:2d00::/48 Signature Algorithm: sha256WithRSAEncryption 61:99:4a:7f:1d:4a:94:01:6e:43:23:11:16:9a:d5:f5:13:b3: 3c:76:07:ab:41:80:6c:e5:d5:eb:d7:02:2c:0c:42:21:a7:6e: c7:05:77:79:db:b9:bb:02:a0:8e:f3:da:68:f4:8d:89:d1:12: 24:d7:36:d7:c9:e1:63:c3:db:0a:af:6e:93:a6:a0:61:79:6f: ce:86:14:b3:8e:9b:44:80:1e:8f:06:da:dc:75:74:c3:48:20: 49:91:21:ba:ea:37:ac:50:98:fa:03:8a:1c:eb:66:0d:61:b9: e1:26:ea:70:64:a7:31:58:21:ec:22:e7:37:04:bd:8f:b9:ca: 0e:57:ad:ec:51:7a:b3:74:02:0d:91:8b:81:15:1b:c5:87:19: c0:26:1d:84:ee:ac:2f:59:f1:f7:91:01:34:4c:25:dc:8e:c1: 33:16:eb:09:9c:1c:e9:3b:c7:d3:12:ab:be:3f:e9:be:8a:49: be:ac:1b:b7:56:ec:1c:d3:e4:2c:fc:92:ff:51:37:ed:68:c9: af:6c:5a:86:2f:0d:0c:28:fa:42:f0:4e:43:57:15:9f:ef:58: b7:3b:cc:68:82:b9:76:30:16:f8:17:8b:67:41:45:3e:bc:d0: e7:69:2e:e0:1e:cf:ec:01:bf:74:c7:66:60:7e:59:9e:e0:64: 6a:f7:24:d3 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgITeWELVUqneFaKmk49fDF2xPZagzANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEygwRkFGQTM5QUEzODc1QTRDRjYzQkNGN0U4NzMwODc5MjdC NDk5RDJGMB4XDTI0MDQxNTA3NTUwMFoXDTI1MDQxNDA4MDAwMFowMzExMC8GA1UE AxMoNEUzRkVDNTcxNDE5NEY2MERCRDI2ODlFQjNFQzUzRkNGRUQ3ODM4NzCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAN/TG9QlmhztlrzjJq/O4RWoun6c TyVjvSDwjkUs11s5zUUh2Q21Q/9tFdDOH6hPa7LLQTr1w645SDUiJGACIIT9Ibv/ PKeET17finIxkggYQh+wF6tchS/e7n5YNVMjzBPTX5SA+GkOG7TmuiOpdRr7CMlQ 9SZL/p3N9wgSkCB6cJH6a32IlzxpSASSsN++zKQWwcdNM0EqFhMbF0RE81kv67qF iXqQQlgSYHDx8aELQvowiIh1fMmhi6OhUuVjCkpR40rQ1Hj3JQ4jVUl6t8pgfLsd Nsipn5d/fDsYqOpkBG/NDSBd7uh9Ecdkn61tbCdh2oRn2D7SHJEiULGkvc0CAwEA AaOCAj0wggI5MB0GA1UdDgQWBBROP+xXFBlPYNvSaJ6z7FP8/teDhzAfBgNVHSME GDAWgBQPr6Oao4daTPY7z36HMIeSe0mdLzAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Yw ZTExZmZjLWU3NWEtNGJmNC04NDQ4LWM2OGUyMDMzNWVlOC8wLzBGQUZBMzlBQTM4 NzVBNENGNjNCQ0Y3RTg3MzA4NzkyN0I0OTlEMkYuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMi8wRkFGQTM5QUEzODc1QTRDRjYzQkNGN0U4NzMwODc5MjdCNDk5 RDJGLmNlcjCBqgYIKwYBBQUHAQsEgZ0wgZowgZcGCCsGAQUFBzALhoGKcnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjBlMTFmZmMtZTc1YS00YmY0LTg0 NDgtYzY4ZTIwMzM1ZWU4LzAvMzIzMDMwMzEzYTY0NjYzMTNhMzI2NDMwMzAzYTNh MmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMTMxMzIucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ3x LQAwDQYJKoZIhvcNAQELBQADggEBAGGZSn8dSpQBbkMjERaa1fUTszx2B6tBgGzl 1evXAiwMQiGnbscFd3nbubsCoI7z2mj0jYnREiTXNtfJ4WPD2wqvbpOmoGF5b86G FLOOm0SAHo8G2tx1dMNIIEmRIbrqN6xQmPoDihzrZg1hueEm6nBkpzFYIewi5zcE vY+5yg5XrexRerN0Ag2Ri4EVG8WHGcAmHYTurC9Z8feRATRMJdyOwTMW6wmcHOk7 x9MSq74/6b6KSb6sG7dW7BzT5Cz8kv9RN+1oya9sWoYvDQwo+kLwTkNXFZ/vWLc7 zGiCuXYwFvgXi2dBRT680OdpLuAez+wBv3THZmB+WZ7gZGr3JNM= -----END CERTIFICATE-----Generated at Thu Nov 21 23:33:00 2024 by rpki-client on console-ams.rpki-client.org