$ rpki-client -vvf repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/323030313a6466373a353330303a3a2f34382d3438203d3e20313338313135.roa File: 323030313a6466373a353330303a3a2f34382d3438203d3e20313338313135.roa (raw, json) Hash identifier: coLKK6IcC/kKZG1MXhZNj5hMCo2fVszQ0C3dFr5u8mo= Subject key identifier: 96:63:CF:BF:22:0F:3B:00:E7:22:27:AD:8E:DC:45:BF:72:B7:B7:B3 Certificate issuer: /CN=9DEEEB0CB9492DADDE47B31629ACDA7241728768 Certificate serial: 16855FAC7DD8E8795E1DB551AD414180F1D67930 Authority key identifier: 9D:EE:EB:0C:B9:49:2D:AD:DE:47:B3:16:29:AC:DA:72:41:72:87:68 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DEEEB0CB9492DADDE47B31629ACDA7241728768.cer Subject info access: rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/323030313a6466373a353330303a3a2f34382d3438203d3e20313338313135.roa Signing time: Mon 31 Jul 2023 00:03:06 +0000 ROA not before: Sun 30 Jul 2023 23:58:06 +0000 ROA not after: Mon 29 Jul 2024 00:03:06 +0000 asID: 138115 IP address blocks: 2001:df7:5300::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/9DEEEB0CB9492DADDE47B31629ACDA7241728768.crl rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/9DEEEB0CB9492DADDE47B31629ACDA7241728768.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DEEEB0CB9492DADDE47B31629ACDA7241728768.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 15:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:85:5f:ac:7d:d8:e8:79:5e:1d:b5:51:ad:41:41:80:f1:d6:79:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9DEEEB0CB9492DADDE47B31629ACDA7241728768 Validity Not Before: Jul 30 23:58:06 2023 GMT Not After : Jul 29 00:03:06 2024 GMT Subject: CN=9663CFBF220F3B00E72227AD8EDC45BF72B7B7B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:82:6a:d2:95:52:ea:95:ac:f3:c2:10:6c:a1: 1e:81:6c:b4:ed:49:60:20:3a:55:2a:86:09:70:ee: 5e:79:c8:e3:b8:64:46:0a:70:de:f5:8f:89:89:c9: 54:17:f5:ad:23:78:70:5d:30:68:83:37:b3:47:0b: 8b:b8:8c:aa:21:fe:3f:64:6b:8f:27:77:5d:36:7b: bc:c6:50:22:4d:40:a9:27:a7:3b:a2:06:49:bd:82: 39:e4:f6:c7:b4:ab:64:7e:5e:ec:b7:21:56:75:6e: 9e:c1:7b:61:d3:ff:a5:70:72:85:01:e0:a0:a6:db: 7b:1b:64:a2:e5:1b:d5:b3:61:9d:d8:0b:47:c5:5a: 76:9c:45:a2:6a:48:e5:40:50:d0:63:09:37:bb:9a: e1:0f:02:bf:dc:97:f8:da:28:00:3f:d2:3e:31:51: b5:e5:42:0c:75:61:84:ef:cf:54:e9:92:c1:2f:13: ef:10:fd:79:8d:db:22:01:50:35:12:1e:f6:b8:12: 36:d8:17:c0:b0:b6:6b:32:e5:ab:72:63:50:1c:09: 35:28:96:71:3c:c6:2e:e5:e2:01:62:e8:53:3b:53: c6:f8:11:94:0f:ff:cc:fa:c6:26:d0:68:a8:a3:d4: f5:b4:ee:75:b0:fe:10:1b:54:e9:74:bc:76:95:7f: 6e:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:63:CF:BF:22:0F:3B:00:E7:22:27:AD:8E:DC:45:BF:72:B7:B7:B3 X509v3 Authority Key Identifier: keyid:9D:EE:EB:0C:B9:49:2D:AD:DE:47:B3:16:29:AC:DA:72:41:72:87:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/9DEEEB0CB9492DADDE47B31629ACDA7241728768.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DEEEB0CB9492DADDE47B31629ACDA7241728768.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/323030313a6466373a353330303a3a2f34382d3438203d3e20313338313135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:5300::/48 Signature Algorithm: sha256WithRSAEncryption 8a:61:d0:ff:c8:03:76:69:3c:f2:e3:fe:5c:aa:d0:de:53:52: 4a:6c:fe:25:4c:ca:3c:3d:4a:20:8b:c2:c4:55:9a:da:0f:0a: 55:30:e3:b3:dc:e8:00:0f:64:56:c1:6e:9c:70:46:a4:f3:df: 24:58:9f:7c:15:c5:e5:82:a8:f0:1d:e6:66:39:3a:ac:c2:28: 94:78:a3:29:79:6f:af:32:3d:f0:50:79:f9:5f:2e:da:19:e6: b5:e5:2b:38:b0:e4:fe:8f:0c:be:80:4e:f3:f0:b3:44:9e:ba: 88:8d:b4:cc:25:17:56:cb:a6:a8:f0:db:f5:cd:b7:4a:2a:fc: e6:1b:08:71:42:08:78:0d:41:10:15:c1:38:b4:54:e4:71:b8: d8:d5:a9:04:3e:55:d0:85:2d:96:95:22:56:6c:8a:85:42:8e: 34:6c:f1:87:71:ba:1f:d1:d0:cd:39:fc:7e:12:8a:bd:48:6f: d3:85:21:8d:e8:b3:e0:1b:49:4e:c1:1a:e1:73:4a:83:55:0e: 59:b4:a5:48:b9:33:33:72:1c:a0:6c:d3:50:2b:6d:7d:01:af: e0:67:f2:05:f4:cc:36:e7:98:a5:14:57:65:2e:18:9a:e5:b2: 59:3b:63:99:1b:bc:5e:3e:90:0d:39:4f:9a:59:2f:6c:70:b5: 6d:b5:7c:8c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUFoVfrH3Y6HleHbVRrUFBgPHWeTAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOURFRUVCMENCOTQ5MkRBRERFNDdCMzE2MjlBQ0RBNzI0 MTcyODc2ODAeFw0yMzA3MzAyMzU4MDZaFw0yNDA3MjkwMDAzMDZaMDMxMTAvBgNV BAMTKDk2NjNDRkJGMjIwRjNCMDBFNzIyMjdBRDhFREM0NUJGNzJCN0I3QjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsgmrSlVLqlazzwhBsoR6BbLTt SWAgOlUqhglw7l55yOO4ZEYKcN71j4mJyVQX9a0jeHBdMGiDN7NHC4u4jKoh/j9k a48nd102e7zGUCJNQKknpzuiBkm9gjnk9se0q2R+Xuy3IVZ1bp7Be2HT/6VwcoUB 4KCm23sbZKLlG9WzYZ3YC0fFWnacRaJqSOVAUNBjCTe7muEPAr/cl/jaKAA/0j4x UbXlQgx1YYTvz1TpksEvE+8Q/XmN2yIBUDUSHva4EjbYF8Cwtmsy5atyY1AcCTUo lnE8xi7l4gFi6FM7U8b4EZQP/8z6xibQaKij1PW07nWw/hAbVOl0vHaVf24hAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUlmPPvyIPOwDnIietjtxFv3K3t7MwHwYDVR0j BBgwFoAUne7rDLlJLa3eR7MWKazackFyh2gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NGNmNjMyZC1kNjFhLTQ4MjYtYjU3Mi05ZjE5NDhhZTU4MGMvMC85REVFRUIwQ0I5 NDkyREFEREU0N0IzMTYyOUFDREE3MjQxNzI4NzY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOURFRUVCMENCOTQ5MkRBRERFNDdCMzE2MjlBQ0RBNzI0MTcy ODc2OC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0Y2Y2MzJkLWQ2MWEtNDgyNi1i NTcyLTlmMTk0OGFlNTgwYy8wLzMyMzAzMDMxM2E2NDY2MzczYTM1MzMzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzEzMTM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 91MAMA0GCSqGSIb3DQEBCwUAA4IBAQCKYdD/yAN2aTzy4/5cqtDeU1JKbP4lTMo8 PUogi8LEVZraDwpVMOOz3OgAD2RWwW6ccEak898kWJ98FcXlgqjwHeZmOTqswiiU eKMpeW+vMj3wUHn5Xy7aGea15Ss4sOT+jwy+gE7z8LNEnrqIjbTMJRdWy6ao8Nv1 zbdKKvzmGwhxQgh4DUEQFcE4tFTkcbjY1akEPlXQhS2WlSJWbIqFQo40bPGHcbof 0dDNOfx+Eoq9SG/ThSGN6LPgG0lOwRrhc0qDVQ5ZtKVIuTMzchygbNNQK219Aa/g Z/IF9Mw255ilFFdlLhia5bJZO2OZG7xePpANOU+aWS9scLVttXyM -----END CERTIFICATE-----Generated at Wed Apr 24 16:34:08 2024 by rpki-client on console-fra.rpki-client.org