$ rpki-client -vvf repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/323030313a6466313a353438303a3a2f34382d3438203d3e20313339333737.roa File: 323030313a6466313a353438303a3a2f34382d3438203d3e20313339333737.roa (raw, json) Hash identifier: ZbZ6zOoalY4meikmpWqbjUYDj/Ftz0Woih/BNfF7ajc= Subject key identifier: 2E:F9:74:F0:A4:05:FE:5D:D9:F9:45:C6:3C:66:64:9C:82:8E:81:9E Certificate issuer: /CN=C43D9C91D389ADDD2039882757F731CAFAAC740F Certificate serial: 665765409995868519675F91FA3CDC9D916454DA Authority key identifier: C4:3D:9C:91:D3:89:AD:DD:20:39:88:27:57:F7:31:CA:FA:AC:74:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C43D9C91D389ADDD2039882757F731CAFAAC740F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/323030313a6466313a353438303a3a2f34382d3438203d3e20313339333737.roa Signing time: Fri 29 Dec 2023 21:00:00 +0000 ROA not before: Fri 29 Dec 2023 20:55:00 +0000 ROA not after: Fri 27 Dec 2024 21:00:00 +0000 asID: 139377 IP address blocks: 2001:df1:5480::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/C43D9C91D389ADDD2039882757F731CAFAAC740F.crl rsync://repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/C43D9C91D389ADDD2039882757F731CAFAAC740F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C43D9C91D389ADDD2039882757F731CAFAAC740F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:57:65:40:99:95:86:85:19:67:5f:91:fa:3c:dc:9d:91:64:54:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C43D9C91D389ADDD2039882757F731CAFAAC740F Validity Not Before: Dec 29 20:55:00 2023 GMT Not After : Dec 27 21:00:00 2024 GMT Subject: CN=2EF974F0A405FE5DD9F945C63C66649C828E819E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:82:d3:77:cf:9f:08:6b:47:ff:04:2a:89:3b: 01:18:4a:6b:ad:bc:13:fb:4f:0c:de:8b:70:51:35: ce:44:b6:c6:84:67:d6:6f:14:71:d2:da:40:c0:21: 7c:c3:aa:68:d5:94:66:08:10:b3:3c:14:20:35:06: 60:31:32:4b:7a:b4:5b:9f:84:ba:25:62:11:9b:09: 7c:0a:ab:08:b9:f9:ee:64:5d:a3:60:91:e3:31:eb: e0:02:a0:02:fc:50:8a:c2:d9:cf:61:6c:51:94:10: 00:f1:9b:41:53:18:24:fb:25:45:99:8d:6e:f4:c1: da:5e:8d:90:74:26:d4:9b:21:3a:c8:8f:b1:05:3e: 8a:74:f6:f7:21:36:05:59:1b:bf:fc:27:cc:33:18: 97:4a:7c:0f:9a:8e:49:3e:8a:db:58:98:26:f2:79: 67:d4:78:f3:d5:99:0b:70:db:1c:6c:4c:43:98:1b: c2:8f:7f:b3:7f:61:16:3b:f6:e8:54:1e:d9:9c:de: fa:e3:77:4c:48:65:83:6d:4d:8f:8a:03:3b:ab:70: b6:e0:8b:32:29:a8:2a:89:3a:c1:fa:a1:c2:93:7f: bb:a7:44:64:b6:c5:a2:37:8a:90:44:f0:40:da:65: 9b:77:22:17:2c:85:11:20:e9:d5:24:ec:b9:fa:a1: 4c:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:F9:74:F0:A4:05:FE:5D:D9:F9:45:C6:3C:66:64:9C:82:8E:81:9E X509v3 Authority Key Identifier: keyid:C4:3D:9C:91:D3:89:AD:DD:20:39:88:27:57:F7:31:CA:FA:AC:74:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/C43D9C91D389ADDD2039882757F731CAFAAC740F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C43D9C91D389ADDD2039882757F731CAFAAC740F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/323030313a6466313a353438303a3a2f34382d3438203d3e20313339333737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:5480::/48 Signature Algorithm: sha256WithRSAEncryption 72:cb:df:ef:69:5c:c2:1c:b0:34:08:c6:9a:60:3d:78:0e:cd: 8c:11:af:dd:e2:20:e2:2d:78:a2:13:e8:dd:92:d0:f9:b2:6e: a0:d9:27:0f:43:1a:9e:ac:8a:1e:f7:0a:3d:10:f3:1a:a5:59: 0e:a2:29:77:1d:e3:fe:5b:6e:82:86:c0:55:ca:2f:b8:5b:75: ba:7a:f2:a1:7b:cd:ca:26:46:7a:9b:3b:6f:44:37:76:f8:19: d9:5f:e2:29:d1:a3:a1:d6:41:c4:97:52:63:fb:cb:29:18:c5: c1:eb:a4:95:e8:8a:6f:5c:e3:4c:f4:63:03:6f:b0:23:b4:d1: 48:8f:48:f3:f2:b4:24:56:37:78:f9:08:b8:cf:99:f8:f5:76: 25:c2:4c:ac:3e:5b:de:7d:1c:03:90:ec:a4:b0:4b:23:14:14: de:2f:55:e5:c5:52:6f:07:d2:e6:db:43:fc:a4:94:3b:49:b5: cb:be:97:4d:6a:1a:bc:15:aa:32:60:23:21:e0:cd:98:70:f1: f8:a1:c7:3c:69:b3:d2:de:dd:1d:01:68:97:a3:e6:26:c2:ab: b6:ef:4d:e1:65:dd:cb:d7:5b:d5:41:73:68:77:d5:5f:00:5c: 1c:a9:26:41:9f:b4:6a:d8:7c:82:b9:bb:83:be:93:9f:8b:ea: 7d:11:ac:3c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUZldlQJmVhoUZZ1+R+jzcnZFkVNowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQzRDlDOTFEMzg5QURERDIwMzk4ODI3NTdGNzMxQ0FG QUFDNzQwRjAeFw0yMzEyMjkyMDU1MDBaFw0yNDEyMjcyMTAwMDBaMDMxMTAvBgNV BAMTKDJFRjk3NEYwQTQwNUZFNUREOUY5NDVDNjNDNjY2NDlDODI4RTgxOUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxgtN3z58Ia0f/BCqJOwEYSmut vBP7Twzei3BRNc5EtsaEZ9ZvFHHS2kDAIXzDqmjVlGYIELM8FCA1BmAxMkt6tFuf hLolYhGbCXwKqwi5+e5kXaNgkeMx6+ACoAL8UIrC2c9hbFGUEADxm0FTGCT7JUWZ jW70wdpejZB0JtSbITrIj7EFPop09vchNgVZG7/8J8wzGJdKfA+ajkk+ittYmCby eWfUePPVmQtw2xxsTEOYG8KPf7N/YRY79uhUHtmc3vrjd0xIZYNtTY+KAzurcLbg izIpqCqJOsH6ocKTf7unRGS2xaI3ipBE8EDaZZt3IhcshREg6dUk7Ln6oUx/AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQULvl08KQF/l3Z+UXGPGZknIKOgZ4wHwYDVR0j BBgwFoAUxD2ckdOJrd0gOYgnV/cxyvqsdA8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MmFhMmQxMC0zZmFhLTQyNzItYmUxZi04MTAyOTU3YjY1ZTYvMC9DNDNEOUM5MUQz ODlBREREMjAzOTg4Mjc1N0Y3MzFDQUZBQUM3NDBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQzRDlDOTFEMzg5QURERDIwMzk4ODI3NTdGNzMxQ0FGQUFD NzQwRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YyYWEyZDEwLTNmYWEtNDI3Mi1i ZTFmLTgxMDI5NTdiNjVlNi8wLzMyMzAzMDMxM2E2NDY2MzEzYTM1MzQzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzMzNzM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8VSAMA0GCSqGSIb3DQEBCwUAA4IBAQByy9/vaVzCHLA0CMaaYD14Ds2MEa/d4iDi LXiiE+jdktD5sm6g2ScPQxqerIoe9wo9EPMapVkOoil3HeP+W26ChsBVyi+4W3W6 evKhe83KJkZ6mztvRDd2+BnZX+Ip0aOh1kHEl1Jj+8spGMXB66SV6IpvXONM9GMD b7AjtNFIj0jz8rQkVjd4+Qi4z5n49XYlwkysPlvefRwDkOyksEsjFBTeL1XlxVJv B9Lm20P8pJQ7SbXLvpdNahq8FaoyYCMh4M2YcPH4occ8abPS3t0dAWiXo+Ymwqu2 703hZd3L11vVQXNod9VfAFwcqSZBn7Rq2HyCubuDvpOfi+p9Eaw8 -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:52 2024 by rpki-client on console-ams.rpki-client.org