$ rpki-client -vvf repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/1/323030313a6466333a623034303a3a2f34382d3438203d3e20313532343432.roa File: 323030313a6466333a623034303a3a2f34382d3438203d3e20313532343432.roa (raw, json) Hash identifier: 7jVoIePPEDKyWmgUwQNu5NUHhUMYqDH7yxVanAnuUz4= Subject key identifier: 58:D6:2F:7D:AE:A9:CB:0F:D2:8B:5C:23:D0:E5:68:C5:59:81:51:28 Certificate issuer: /CN=6B35526165718CDFDDCB202D241332F565BEE7B0 Certificate serial: 0C5E0DF26160AE3C61C5BF82F3C5787296F155C7 Authority key identifier: 6B:35:52:61:65:71:8C:DF:DD:CB:20:2D:24:13:32:F5:65:BE:E7:B0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B35526165718CDFDDCB202D241332F565BEE7B0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/1/323030313a6466333a623034303a3a2f34382d3438203d3e20313532343432.roa Signing time: Fri 14 Jun 2024 04:39:27 +0000 ROA not before: Fri 14 Jun 2024 04:34:27 +0000 ROA not after: Fri 13 Jun 2025 04:39:27 +0000 asID: 152442 IP address blocks: 2001:df3:b040::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/1/6B35526165718CDFDDCB202D241332F565BEE7B0.crl rsync://repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/1/6B35526165718CDFDDCB202D241332F565BEE7B0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B35526165718CDFDDCB202D241332F565BEE7B0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 19:43:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:5e:0d:f2:61:60:ae:3c:61:c5:bf:82:f3:c5:78:72:96:f1:55:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B35526165718CDFDDCB202D241332F565BEE7B0 Validity Not Before: Jun 14 04:34:27 2024 GMT Not After : Jun 13 04:39:27 2025 GMT Subject: CN=58D62F7DAEA9CB0FD28B5C23D0E568C559815128 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:95:f7:65:e9:97:b2:5d:86:50:5c:eb:31:c8: e4:69:3d:a2:f6:d4:1a:d5:d4:8c:ca:35:a8:a3:40: bd:97:3d:46:ed:b0:32:d8:cb:96:b3:68:f4:b4:b6: 05:98:03:05:e2:b4:9b:ec:0f:5f:00:15:48:51:7c: 97:f2:e6:54:d1:2f:63:0e:17:71:db:f5:0a:7d:66: 72:b0:82:36:f5:89:38:61:57:05:22:d8:63:ca:a9: 3d:b5:09:1a:76:d8:82:49:24:87:d0:c6:1e:0e:26: 1b:7b:aa:9e:19:6f:85:8a:c4:6e:cb:c8:b8:03:e2: 46:4f:b8:70:27:eb:7d:45:ef:49:31:0e:65:f7:dd: eb:44:b8:bb:f3:6d:60:ef:f8:43:64:3c:de:d7:f9: 03:45:47:95:74:62:06:4f:77:30:4d:f5:f6:a9:c9: 46:24:e6:83:29:fa:72:3b:d0:3a:bd:be:70:49:ae: e1:d4:c0:cd:af:91:9e:8d:9b:fd:9a:83:94:9f:aa: 75:b2:d3:bd:78:53:1b:02:b2:96:60:f8:aa:80:69: 23:cd:05:1a:f7:41:6b:97:ca:8c:80:e9:b5:91:5b: 53:f0:70:dc:45:89:09:37:66:4d:3a:53:71:42:c4: 89:9f:e7:64:6f:4c:08:16:7a:c3:8a:98:22:b3:ef: 62:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:D6:2F:7D:AE:A9:CB:0F:D2:8B:5C:23:D0:E5:68:C5:59:81:51:28 X509v3 Authority Key Identifier: keyid:6B:35:52:61:65:71:8C:DF:DD:CB:20:2D:24:13:32:F5:65:BE:E7:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/1/6B35526165718CDFDDCB202D241332F565BEE7B0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B35526165718CDFDDCB202D241332F565BEE7B0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/1/323030313a6466333a623034303a3a2f34382d3438203d3e20313532343432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:b040::/48 Signature Algorithm: sha256WithRSAEncryption 93:de:ba:6b:1d:c6:f1:3c:19:09:bb:69:73:ab:f3:f3:e9:4f: cf:44:81:db:22:8d:4b:7b:16:31:ca:9d:a6:a4:33:8a:e1:e3: d7:b2:4c:8b:f3:3c:cc:3e:37:95:40:fb:d5:a2:a5:7e:d8:81: f9:c7:eb:28:ef:99:df:6b:8d:d8:8a:dc:de:92:7b:23:2f:fa: ba:ed:b9:ff:c0:b6:0f:4e:59:be:b9:66:93:8d:99:23:48:12: 50:0f:6d:1c:c3:b2:02:19:52:c8:ce:17:77:f1:2c:26:e0:1c: 83:02:d3:7b:6d:61:93:48:8f:53:8f:4c:35:63:60:fd:52:4e: c8:f5:ae:eb:47:d6:c0:ba:33:72:59:09:8b:10:21:5e:9f:d0: fa:99:40:a8:a2:d4:e4:22:f1:3a:08:40:2b:87:44:0e:23:14: bd:8c:f0:57:1a:73:56:4d:3e:d7:d4:b9:c0:83:60:28:e6:25: 5e:15:c0:d5:a9:cc:e3:aa:f2:82:f8:28:53:24:ef:0e:35:17: a4:e1:23:07:c2:4c:41:df:d4:1c:15:87:67:e4:9d:a7:40:c2: 43:c8:29:93:09:fa:d7:0b:4f:f5:3b:b0:a3:94:1b:fb:b0:8a: d7:b0:02:26:6a:76:d0:af:40:f8:d3:5e:57:31:bc:3f:e4:33: ca:5e:e0:be -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUDF4N8mFgrjxhxb+C88V4cpbxVccwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzNTUyNjE2NTcxOENERkREQ0IyMDJEMjQxMzMyRjU2 NUJFRTdCMDAeFw0yNDA2MTQwNDM0MjdaFw0yNTA2MTMwNDM5MjdaMDMxMTAvBgNV BAMTKDU4RDYyRjdEQUVBOUNCMEZEMjhCNUMyM0QwRTU2OEM1NTk4MTUxMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDClfdl6ZeyXYZQXOsxyORpPaL2 1BrV1IzKNaijQL2XPUbtsDLYy5azaPS0tgWYAwXitJvsD18AFUhRfJfy5lTRL2MO F3Hb9Qp9ZnKwgjb1iThhVwUi2GPKqT21CRp22IJJJIfQxh4OJht7qp4Zb4WKxG7L yLgD4kZPuHAn631F70kxDmX33etEuLvzbWDv+ENkPN7X+QNFR5V0YgZPdzBN9fap yUYk5oMp+nI70Dq9vnBJruHUwM2vkZ6Nm/2ag5SfqnWy0714UxsCspZg+KqAaSPN BRr3QWuXyoyA6bWRW1PwcNxFiQk3Zk06U3FCxImf52RvTAgWesOKmCKz72KPAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUWNYvfa6pyw/Si1wj0OVoxVmBUSgwHwYDVR0j BBgwFoAUazVSYWVxjN/dyyAtJBMy9WW+57AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ODdkZDU5Ny00MGNkLTQwOWItYjNjNS0yODUyY2UwMTQ4ODkvMS82QjM1NTI2MTY1 NzE4Q0RGRERDQjIwMkQyNDEzMzJGNTY1QkVFN0IwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzNTUyNjE2NTcxOENERkREQ0IyMDJEMjQxMzMyRjU2NUJF RTdCMC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y4N2RkNTk3LTQwY2QtNDA5Yi1i M2M1LTI4NTJjZTAxNDg4OS8xLzMyMzAzMDMxM2E2NDY2MzMzYTYyMzAzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzQzNDMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 87BAMA0GCSqGSIb3DQEBCwUAA4IBAQCT3rprHcbxPBkJu2lzq/Pz6U/PRIHbIo1L exYxyp2mpDOK4ePXskyL8zzMPjeVQPvVoqV+2IH5x+so75nfa43YitzeknsjL/q6 7bn/wLYPTlm+uWaTjZkjSBJQD20cw7ICGVLIzhd38Swm4ByDAtN7bWGTSI9Tj0w1 Y2D9Uk7I9a7rR9bAujNyWQmLECFen9D6mUCootTkIvE6CEArh0QOIxS9jPBXGnNW TT7X1LnAg2Ao5iVeFcDVqczjqvKC+ChTJO8ONRek4SMHwkxB39QcFYdn5J2nQMJD yCmTCfrXC0/1O7CjlBv7sIrXsAImanbQr0D4015XMbw/5DPKXuC+ -----END CERTIFICATE-----Generated at Fri Nov 22 14:19:27 2024 by rpki-client on console-ams.rpki-client.org