$ rpki-client -vvf repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/323030313a6466343a316630303a3a2f34382d3438203d3e20313337333132.roa File: 323030313a6466343a316630303a3a2f34382d3438203d3e20313337333132.roa (raw, json) Hash identifier: Y4VWHmgW9HZwKxSE/waNnU6ZuSrPKeVjHYVcm5B2tUE= Subject key identifier: 91:9C:2F:BF:3F:F6:BE:FF:77:1B:CF:AF:69:D5:D2:7F:B8:9F:17:53 Certificate issuer: /CN=DEF44331E724964F28697DEABAF2313CDCEEFACE Certificate serial: 21DC30389E10A7775BE52C24F0679FA8C89BF69C Authority key identifier: DE:F4:43:31:E7:24:96:4F:28:69:7D:EA:BA:F2:31:3C:DC:EE:FA:CE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DEF44331E724964F28697DEABAF2313CDCEEFACE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/323030313a6466343a316630303a3a2f34382d3438203d3e20313337333132.roa Signing time: Mon 01 Jul 2024 01:05:25 +0000 ROA not before: Mon 01 Jul 2024 01:00:25 +0000 ROA not after: Mon 30 Jun 2025 01:05:25 +0000 asID: 137312 IP address blocks: 2001:df4:1f00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/DEF44331E724964F28697DEABAF2313CDCEEFACE.crl rsync://repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/DEF44331E724964F28697DEABAF2313CDCEEFACE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DEF44331E724964F28697DEABAF2313CDCEEFACE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:dc:30:38:9e:10:a7:77:5b:e5:2c:24:f0:67:9f:a8:c8:9b:f6:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DEF44331E724964F28697DEABAF2313CDCEEFACE Validity Not Before: Jul 1 01:00:25 2024 GMT Not After : Jun 30 01:05:25 2025 GMT Subject: CN=919C2FBF3FF6BEFF771BCFAF69D5D27FB89F1753 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c2:ac:cf:cf:81:ed:33:44:f7:b2:ea:53:b2: c5:a3:dc:5b:dd:4b:42:10:dd:f7:b4:7c:88:f8:c3: d4:44:4d:e3:e6:9b:0f:09:20:df:85:35:02:d9:5e: a7:81:ff:15:ed:66:9d:eb:32:2f:47:53:ce:16:57: ea:8d:60:99:ee:3d:1c:2f:fe:4e:1e:91:6c:39:f5: d8:9e:69:4f:0a:85:8e:fa:51:ca:07:c4:dd:d5:30: 13:a3:16:22:9e:69:4a:d3:74:12:14:64:be:8c:e1: 3d:5b:23:e2:cf:3a:06:43:b4:36:d5:65:23:24:91: 3e:f3:2d:45:b2:20:3e:28:56:65:49:fb:89:86:ba: 4b:06:2f:9b:63:5e:9d:0f:3f:4a:f1:0b:bf:2b:6f: bb:05:50:40:5e:65:9a:0f:53:03:bf:fa:f3:f8:9a: 32:25:f8:40:a3:e1:2c:18:3f:03:81:f5:99:bd:c9: 53:cc:12:26:8f:42:fb:3d:8f:80:94:18:c0:53:c5: a8:9d:06:4c:69:75:ab:aa:ef:5d:45:a4:90:c8:b0: 90:9e:9b:94:d9:10:f5:ed:8c:fc:6c:1f:13:86:d0: 64:13:34:af:98:ba:cc:ef:e7:7a:24:0a:73:ef:48: f7:fd:6c:84:88:d0:8e:ee:e5:17:d3:f5:55:c2:da: f5:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:9C:2F:BF:3F:F6:BE:FF:77:1B:CF:AF:69:D5:D2:7F:B8:9F:17:53 X509v3 Authority Key Identifier: keyid:DE:F4:43:31:E7:24:96:4F:28:69:7D:EA:BA:F2:31:3C:DC:EE:FA:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/DEF44331E724964F28697DEABAF2313CDCEEFACE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DEF44331E724964F28697DEABAF2313CDCEEFACE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/323030313a6466343a316630303a3a2f34382d3438203d3e20313337333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:1f00::/48 Signature Algorithm: sha256WithRSAEncryption a2:4e:db:ff:3b:9e:ab:72:0d:4e:a3:5c:9b:de:04:74:ad:fc: 43:48:d2:71:05:76:7d:bb:d1:92:76:f5:46:99:8c:f9:a4:4c: 7c:2f:22:25:78:90:3d:3a:93:36:5e:9b:98:17:50:95:25:b6: 9c:cf:a2:a4:e6:82:fa:a0:4d:f7:0a:9d:3e:a4:3d:eb:8f:bf: 7b:d9:03:45:32:0d:08:cc:f5:72:38:0b:26:42:be:fc:d7:18: d4:d5:22:a9:da:de:08:33:db:e6:d7:00:92:9c:ec:b7:92:ec: 0a:c6:5b:77:15:99:54:87:f8:0e:db:5c:4d:31:98:fe:f4:fc: 61:51:d4:9a:e7:36:fe:eb:7c:e2:17:40:1a:e8:09:9a:8d:4a: b0:53:6f:4f:92:00:86:a1:9a:05:50:3e:d1:01:63:76:0a:d9: 0b:ce:a3:8f:75:ad:63:28:18:88:e8:6e:da:26:75:84:6e:a6: 07:80:53:43:c4:d1:d8:f2:f3:b5:68:68:4f:5f:5a:67:f4:0e: 85:61:58:b2:29:03:73:16:b1:0b:8e:b8:95:17:f5:74:ae:67: a7:04:ad:22:02:fd:9b:37:d8:db:77:a4:c3:d9:a3:6c:4e:0a: 46:d6:e7:cb:c8:6e:17:c5:b6:3a:3a:ae:4f:67:48:76:2d:76: ad:c5:49:e8 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUIdwwOJ4Qp3db5Swk8GefqMib9pwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREVGNDQzMzFFNzI0OTY0RjI4Njk3REVBQkFGMjMxM0NE Q0VFRkFDRTAeFw0yNDA3MDEwMTAwMjVaFw0yNTA2MzAwMTA1MjVaMDMxMTAvBgNV BAMTKDkxOUMyRkJGM0ZGNkJFRkY3NzFCQ0ZBRjY5RDVEMjdGQjg5RjE3NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYwqzPz4HtM0T3supTssWj3Fvd S0IQ3fe0fIj4w9RETePmmw8JIN+FNQLZXqeB/xXtZp3rMi9HU84WV+qNYJnuPRwv /k4ekWw59dieaU8KhY76UcoHxN3VMBOjFiKeaUrTdBIUZL6M4T1bI+LPOgZDtDbV ZSMkkT7zLUWyID4oVmVJ+4mGuksGL5tjXp0PP0rxC78rb7sFUEBeZZoPUwO/+vP4 mjIl+ECj4SwYPwOB9Zm9yVPMEiaPQvs9j4CUGMBTxaidBkxpdauq711FpJDIsJCe m5TZEPXtjPxsHxOG0GQTNK+Yuszv53okCnPvSPf9bISI0I7u5RfT9VXC2vVlAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUkZwvvz/2vv93G8+vadXSf7ifF1MwHwYDVR0j BBgwFoAU3vRDMecklk8oaX3quvIxPNzu+s4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MTkwYzM3ZS0yNjU1LTQyYjEtYmFmNy00MmVjMWNmMTkyYWEvMC9ERUY0NDMzMUU3 MjQ5NjRGMjg2OTdERUFCQUYyMzEzQ0RDRUVGQUNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREVGNDQzMzFFNzI0OTY0RjI4Njk3REVBQkFGMjMxM0NEQ0VF RkFDRS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxOTBjMzdlLTI2NTUtNDJiMS1i YWY3LTQyZWMxY2YxOTJhYS8wLzMyMzAzMDMxM2E2NDY2MzQzYTMxNjYzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM3MzMzMTMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9B8AMA0GCSqGSIb3DQEBCwUAA4IBAQCiTtv/O56rcg1Oo1yb3gR0rfxDSNJxBXZ9 u9GSdvVGmYz5pEx8LyIleJA9OpM2XpuYF1CVJbacz6Kk5oL6oE33Cp0+pD3rj797 2QNFMg0IzPVyOAsmQr781xjU1SKp2t4IM9vm1wCSnOy3kuwKxlt3FZlUh/gO21xN MZj+9PxhUdSa5zb+63ziF0Aa6AmajUqwU29PkgCGoZoFUD7RAWN2CtkLzqOPda1j KBiI6G7aJnWEbqYHgFNDxNHY8vO1aGhPX1pn9A6FYViyKQNzFrELjriVF/V0rmen BK0iAv2bN9jbd6TD2aNsTgpG1ufLyG4XxbY6Oq5PZ0h2LXatxUno -----END CERTIFICATE-----Generated at Fri Nov 22 22:09:43 2024 by rpki-client on console-ams.rpki-client.org