$ rpki-client -vvf repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/323030313a6466323a633238303a3a2f34382d3438203d3e20313339393839.roa File: 323030313a6466323a633238303a3a2f34382d3438203d3e20313339393839.roa (raw, json) Hash identifier: RN1hq3qQtmcBptwGx1Nrpt8KoXq37tvNFqLtNxr4voA= Subject key identifier: 19:34:AE:D2:10:DC:CF:59:11:6D:3A:70:6F:4B:E1:D0:02:64:49:6A Certificate issuer: /CN=5A0CBE2DBCF9883569F8C24BFB9E595442D835D0 Certificate serial: 3CEC410E8BCFA8D6B14F4E0A0770CA5ADBAC5A4F Authority key identifier: 5A:0C:BE:2D:BC:F9:88:35:69:F8:C2:4B:FB:9E:59:54:42:D8:35:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/323030313a6466323a633238303a3a2f34382d3438203d3e20313339393839.roa Signing time: Fri 25 Aug 2023 11:00:00 +0000 ROA not before: Fri 25 Aug 2023 10:55:00 +0000 ROA not after: Fri 23 Aug 2024 11:00:00 +0000 asID: 139989 IP address blocks: 2001:df2:c280::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.crl rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 15:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:ec:41:0e:8b:cf:a8:d6:b1:4f:4e:0a:07:70:ca:5a:db:ac:5a:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5A0CBE2DBCF9883569F8C24BFB9E595442D835D0 Validity Not Before: Aug 25 10:55:00 2023 GMT Not After : Aug 23 11:00:00 2024 GMT Subject: CN=1934AED210DCCF59116D3A706F4BE1D00264496A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:ad:3e:b5:d8:44:fd:30:e9:63:b8:2b:de:f6: e8:06:3a:9a:c7:a9:0b:db:24:a4:7f:9a:14:20:e2: cc:bd:36:a9:94:f6:71:5c:f1:91:1f:e6:5b:ae:31: 43:5b:df:69:8f:ee:91:7e:5e:3e:37:e7:c3:97:b2: 7e:93:68:18:5b:c8:8c:d8:84:f2:21:1d:5f:85:51: 35:79:87:97:88:e6:0c:29:83:e2:2f:d6:4c:10:dd: 99:ae:26:5e:58:4e:c5:10:34:6b:1a:75:62:79:8b: 7b:d0:0c:fa:99:ac:f4:95:ae:26:fb:de:15:01:87: f1:41:23:46:25:c3:fd:e5:29:6c:43:06:6a:68:e6: e0:e4:94:c6:57:bb:ed:a7:97:c5:40:f2:22:3a:32: b1:0a:8d:54:c9:e3:72:05:3a:c0:04:37:01:34:d4: 0e:47:b3:a6:88:5f:5b:18:25:b9:be:0d:da:ae:c3: 7e:91:4e:30:77:b1:56:10:27:88:27:38:c8:9d:9e: 6a:eb:37:24:8a:5f:81:c1:01:36:93:5c:81:06:67: 93:67:e9:91:32:ab:2d:e4:11:f2:eb:11:d2:98:6a: d9:33:c4:09:58:b5:89:a8:3d:fb:cd:60:9f:22:1d: 30:c9:b7:13:16:35:5f:43:c9:fb:63:13:f2:34:91: 53:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:34:AE:D2:10:DC:CF:59:11:6D:3A:70:6F:4B:E1:D0:02:64:49:6A X509v3 Authority Key Identifier: keyid:5A:0C:BE:2D:BC:F9:88:35:69:F8:C2:4B:FB:9E:59:54:42:D8:35:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/323030313a6466323a633238303a3a2f34382d3438203d3e20313339393839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:c280::/48 Signature Algorithm: sha256WithRSAEncryption 5c:7f:1b:a7:c0:89:4e:24:da:88:cb:58:f0:26:67:97:c7:0c: 29:9e:68:4d:e9:0d:80:ca:44:13:02:92:72:e7:14:3c:f3:f2: 5d:9b:cd:40:1d:e6:21:13:c5:ff:d9:34:bf:50:bb:f6:16:e6: 33:4a:5c:ab:06:97:82:1f:f6:cb:df:e1:c9:39:12:d0:0b:19: 0d:62:1e:72:30:5e:17:4f:2a:2a:cb:a4:30:28:62:81:d5:45: e0:ab:14:92:76:01:be:05:73:13:8d:19:e7:5f:f3:0e:51:eb: a3:e5:c7:83:06:74:70:98:a7:05:8f:95:c9:7d:b8:d7:1f:66: f7:1d:49:5d:de:cc:bc:4c:93:dd:de:ad:fa:d5:d6:48:10:09: 01:91:e1:61:0d:27:8d:eb:95:10:dc:aa:2b:a4:22:8c:eb:20: 6d:a0:3c:15:b2:5b:94:a0:d4:bf:83:21:9c:af:e4:8e:9b:37: 82:a4:e4:7e:b4:41:59:3c:56:e3:0f:60:39:14:d8:eb:a2:1a: 1f:db:50:fb:71:6d:54:52:92:12:e1:c4:fd:7d:9a:cc:53:a7: fa:ce:9f:2d:79:11:49:63:bc:de:22:75:9e:98:b3:02:0b:5c: e9:63:2d:f8:3a:d0:da:0a:ab:07:b4:a5:a7:49:ab:7f:ff:d3: 7c:d4:6f:62 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUPOxBDovPqNaxT04KB3DKWtusWk8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUEwQ0JFMkRCQ0Y5ODgzNTY5RjhDMjRCRkI5RTU5NTQ0 MkQ4MzVEMDAeFw0yMzA4MjUxMDU1MDBaFw0yNDA4MjMxMTAwMDBaMDMxMTAvBgNV BAMTKDE5MzRBRUQyMTBEQ0NGNTkxMTZEM0E3MDZGNEJFMUQwMDI2NDQ5NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDirT612ET9MOljuCve9ugGOprH qQvbJKR/mhQg4sy9NqmU9nFc8ZEf5luuMUNb32mP7pF+Xj4358OXsn6TaBhbyIzY hPIhHV+FUTV5h5eI5gwpg+Iv1kwQ3ZmuJl5YTsUQNGsadWJ5i3vQDPqZrPSVrib7 3hUBh/FBI0Ylw/3lKWxDBmpo5uDklMZXu+2nl8VA8iI6MrEKjVTJ43IFOsAENwE0 1A5Hs6aIX1sYJbm+Ddquw36RTjB3sVYQJ4gnOMidnmrrNySKX4HBATaTXIEGZ5Nn 6ZEyqy3kEfLrEdKYatkzxAlYtYmoPfvNYJ8iHTDJtxMWNV9DyftjE/I0kVP5AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUGTSu0hDcz1kRbTpwb0vh0AJkSWowHwYDVR0j BBgwFoAUWgy+Lbz5iDVp+MJL+55ZVELYNdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MDMxNzQ2ZS1iMGY2LTQ4MjctOGM0ZS1iODE5MmRlY2MzOWEvMC81QTBDQkUyREJD Rjk4ODM1NjlGOEMyNEJGQjlFNTk1NDQyRDgzNUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUEwQ0JFMkRCQ0Y5ODgzNTY5RjhDMjRCRkI5RTU5NTQ0MkQ4 MzVEMC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQwMzE3NDZlLWIwZjYtNDgyNy04 YzRlLWI4MTkyZGVjYzM5YS8wLzMyMzAzMDMxM2E2NDY2MzIzYTYzMzIzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzkzODM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8sKAMA0GCSqGSIb3DQEBCwUAA4IBAQBcfxunwIlOJNqIy1jwJmeXxwwpnmhN6Q2A ykQTApJy5xQ88/Jdm81AHeYhE8X/2TS/ULv2FuYzSlyrBpeCH/bL3+HJORLQCxkN Yh5yMF4XTyoqy6QwKGKB1UXgqxSSdgG+BXMTjRnnX/MOUeuj5ceDBnRwmKcFj5XJ fbjXH2b3HUld3sy8TJPd3q361dZIEAkBkeFhDSeN65UQ3KorpCKM6yBtoDwVsluU oNS/gyGcr+SOmzeCpOR+tEFZPFbjD2A5FNjrohof21D7cW1UUpIS4cT9fZrMU6f6 zp8teRFJY7zeInWemLMCC1zpYy34OtDaCqsHtKWnSat//9N81G9i -----END CERTIFICATE-----Generated at Thu Apr 25 00:30:06 2024 by rpki-client on console-fra.rpki-client.org