$ rpki-client -vvf repo-rpki.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/323030313a6466303a623238303a3a2f34382d3438203d3e20313338383733.roa File: 323030313a6466303a623238303a3a2f34382d3438203d3e20313338383733.roa (raw, json) Hash identifier: 0nV8oEBVXH/JPtvgS8EpIh/oB0Hfx5eWoEzYr6jyICg= Subject key identifier: 9B:62:20:D0:0F:AE:7A:BA:01:7B:39:21:EC:3D:2F:9E:35:72:1B:F5 Certificate issuer: /CN=45795CE411027C6961B89E9C0FBDB9B73BD61C39 Certificate serial: 1E808B6F650365022ED9064F0259FBB0D334E0 Authority key identifier: 45:79:5C:E4:11:02:7C:69:61:B8:9E:9C:0F:BD:B9:B7:3B:D6:1C:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45795CE411027C6961B89E9C0FBDB9B73BD61C39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/323030313a6466303a623238303a3a2f34382d3438203d3e20313338383733.roa Signing time: Mon 01 Jul 2024 01:04:14 +0000 ROA not before: Mon 01 Jul 2024 00:59:14 +0000 ROA not after: Mon 30 Jun 2025 01:04:14 +0000 asID: 138873 IP address blocks: 2001:df0:b280::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/45795CE411027C6961B89E9C0FBDB9B73BD61C39.crl rsync://repo-rpki.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/45795CE411027C6961B89E9C0FBDB9B73BD61C39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45795CE411027C6961B89E9C0FBDB9B73BD61C39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:80:8b:6f:65:03:65:02:2e:d9:06:4f:02:59:fb:b0:d3:34:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45795CE411027C6961B89E9C0FBDB9B73BD61C39 Validity Not Before: Jul 1 00:59:14 2024 GMT Not After : Jun 30 01:04:14 2025 GMT Subject: CN=9B6220D00FAE7ABA017B3921EC3D2F9E35721BF5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:c5:66:f2:97:c6:e3:71:a0:9a:57:93:c1:b2: 51:ac:3f:d2:97:23:24:39:4e:60:e6:50:20:56:49: d8:b2:2e:5c:dd:0c:23:e1:d2:87:21:b1:57:6c:d1: a3:80:8c:26:cb:38:ac:a6:49:93:55:2b:2f:bd:00: 16:eb:c7:fe:0e:66:02:76:55:0e:eb:c6:99:90:a1: b2:74:18:55:ca:80:b6:e8:d5:6f:96:68:70:a1:b3: 7c:48:ba:96:26:cc:9d:c7:79:03:c3:39:07:33:74: 1e:b2:2c:b9:b9:8b:dc:c0:ad:eb:3f:46:a9:56:fe: cf:9c:e3:90:40:61:f0:ae:6d:c4:70:ba:3b:f8:d1: 5f:a9:2e:fe:9c:3a:f4:9f:62:8e:12:27:1a:7a:f6: f6:cf:61:f4:93:da:f3:ee:bf:06:3e:07:57:96:fd: e4:9f:7e:5d:9d:78:14:2c:67:a2:5f:91:55:b0:1f: c0:3e:0b:e4:24:2f:8c:73:dc:43:63:54:34:4b:ec: 79:73:06:b0:fe:c6:6e:c5:19:9b:f6:81:ad:40:eb: 18:9b:b5:d4:6a:c8:bb:67:ca:b3:b1:51:77:ee:6c: 64:30:20:4c:ba:a8:f4:a2:d2:b8:98:16:33:a7:00: 15:83:95:af:70:72:84:d8:64:1c:b3:c3:75:48:a9: 24:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:62:20:D0:0F:AE:7A:BA:01:7B:39:21:EC:3D:2F:9E:35:72:1B:F5 X509v3 Authority Key Identifier: keyid:45:79:5C:E4:11:02:7C:69:61:B8:9E:9C:0F:BD:B9:B7:3B:D6:1C:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/45795CE411027C6961B89E9C0FBDB9B73BD61C39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45795CE411027C6961B89E9C0FBDB9B73BD61C39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/323030313a6466303a623238303a3a2f34382d3438203d3e20313338383733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:b280::/48 Signature Algorithm: sha256WithRSAEncryption 58:d1:10:7f:20:2d:40:d2:21:ac:d3:a8:92:9c:00:05:69:b4: 14:d4:ef:26:26:b6:47:72:89:69:99:24:84:37:37:96:82:a7: 38:43:da:d4:d0:22:0b:da:2c:85:6a:a1:5a:74:6e:5e:a8:6b: 2c:a2:9b:f2:90:40:a9:ae:f0:1a:ee:61:09:0e:ae:11:f6:11: 58:e7:f2:09:f5:7c:80:5c:e4:07:19:33:70:a2:cd:7f:85:69: 24:b8:36:77:73:66:75:14:aa:89:fe:76:95:3c:0b:4e:bf:de: d4:16:b4:44:ef:d3:0e:ae:b3:83:a9:e1:a1:7a:b3:24:b8:ca: c6:40:1c:d0:11:f6:9b:0c:c5:b4:4a:97:1f:cc:37:e2:3c:35: 75:95:52:e9:da:ec:e0:57:1a:78:48:cd:be:93:78:d4:3b:e3: 46:ad:fc:8b:eb:11:fd:84:03:cb:f9:d3:09:85:ca:52:a2:50: 93:83:6b:08:c2:8b:5f:79:be:01:88:b1:14:e9:fe:db:63:bd: 3a:0a:e0:f8:7d:cc:6e:c4:06:82:53:2e:52:86:0c:dd:7e:17: 7b:0f:15:58:3e:24:36:13:e7:a9:9e:52:98:e1:fc:8c:f7:01: c1:1c:29:40:5f:c2:a8:99:0a:39:8a:03:ae:8f:c7:58:81:94: c7:99:ed:79 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgITHoCLb2UDZQIu2QZPAln7sNM04DANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyg0NTc5NUNFNDExMDI3QzY5NjFCODlFOUMwRkJEQjlCNzNC RDYxQzM5MB4XDTI0MDcwMTAwNTkxNFoXDTI1MDYzMDAxMDQxNFowMzExMC8GA1UE AxMoOUI2MjIwRDAwRkFFN0FCQTAxN0IzOTIxRUMzRDJGOUUzNTcyMUJGNTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJbFZvKXxuNxoJpXk8GyUaw/0pcj JDlOYOZQIFZJ2LIuXN0MI+HShyGxV2zRo4CMJss4rKZJk1UrL70AFuvH/g5mAnZV DuvGmZChsnQYVcqAtujVb5ZocKGzfEi6libMncd5A8M5BzN0HrIsubmL3MCt6z9G qVb+z5zjkEBh8K5txHC6O/jRX6ku/pw69J9ijhInGnr29s9h9JPa8+6/Bj4HV5b9 5J9+XZ14FCxnol+RVbAfwD4L5CQvjHPcQ2NUNEvseXMGsP7GbsUZm/aBrUDrGJu1 1GrIu2fKs7FRd+5sZDAgTLqo9KLSuJgWM6cAFYOVr3ByhNhkHLPDdUipJPkCAwEA AaOCAj0wggI5MB0GA1UdDgQWBBSbYiDQD656ugF7OSHsPS+eNXIb9TAfBgNVHSME GDAWgBRFeVzkEQJ8aWG4npwPvbm3O9YcOTAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3 M2FiNzlkLTAwZDUtNDljYi1hYzEwLTNiZDRmMjM4NmJjNi8wLzQ1Nzk1Q0U0MTEw MjdDNjk2MUI4OUU5QzBGQkRCOUI3M0JENjFDMzkuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMi80NTc5NUNFNDExMDI3QzY5NjFCODlFOUMwRkJEQjlCNzNCRDYx QzM5LmNlcjCBqgYIKwYBBQUHAQsEgZ0wgZowgZcGCCsGAQUFBzALhoGKcnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjczYWI3OWQtMDBkNS00OWNiLWFj MTAtM2JkNGYyMzg2YmM2LzAvMzIzMDMwMzEzYTY0NjYzMDNhNjIzMjM4MzAzYTNh MmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODM3MzMucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ3w soAwDQYJKoZIhvcNAQELBQADggEBAFjREH8gLUDSIazTqJKcAAVptBTU7yYmtkdy iWmZJIQ3N5aCpzhD2tTQIgvaLIVqoVp0bl6oayyim/KQQKmu8BruYQkOrhH2EVjn 8gn1fIBc5AcZM3CizX+FaSS4NndzZnUUqon+dpU8C06/3tQWtETv0w6us4Op4aF6 syS4ysZAHNAR9psMxbRKlx/MN+I8NXWVUuna7OBXGnhIzb6TeNQ740at/IvrEf2E A8v50wmFylKiUJODawjCi195vgGIsRTp/ttjvToK4Ph9zG7EBoJTLlKGDN1+F3sP FVg+JDYT56meUpjh/Iz3AcEcKUBfwqiZCjmKA66Px1iBlMeZ7Xk= -----END CERTIFICATE-----Generated at Thu Nov 21 23:33:00 2024 by rpki-client on console-ams.rpki-client.org