$ rpki-client -vvf repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/323030313a6466333a666438303a3a2f34382d3438203d3e20313430343432.roa File: 323030313a6466333a666438303a3a2f34382d3438203d3e20313430343432.roa (raw, json) Hash identifier: glO/q6t/VHtKrQFv3BraQ+K89UP/iSQWMu5Yq34Jedw= Subject key identifier: 52:86:6D:7D:C9:D7:2E:2D:12:4E:EC:50:59:FE:ED:19:BB:C2:61:AA Certificate issuer: /CN=DBE91560EBE58F31F01F543D751B03FC02EA7D9E Certificate serial: 63D544C07F18C0739E78B2913A61A5A37BCF0908 Authority key identifier: DB:E9:15:60:EB:E5:8F:31:F0:1F:54:3D:75:1B:03:FC:02:EA:7D:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/323030313a6466333a666438303a3a2f34382d3438203d3e20313430343432.roa Signing time: Mon 31 Jul 2023 00:05:49 +0000 ROA not before: Mon 31 Jul 2023 00:00:49 +0000 ROA not after: Mon 29 Jul 2024 00:05:49 +0000 asID: 140442 IP address blocks: 2001:df3:fd80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.crl rsync://repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 16:16:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:d5:44:c0:7f:18:c0:73:9e:78:b2:91:3a:61:a5:a3:7b:cf:09:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DBE91560EBE58F31F01F543D751B03FC02EA7D9E Validity Not Before: Jul 31 00:00:49 2023 GMT Not After : Jul 29 00:05:49 2024 GMT Subject: CN=52866D7DC9D72E2D124EEC5059FEED19BBC261AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ee:08:fe:5c:7b:41:f4:c0:0d:db:0d:f2:ef: 8f:a5:37:01:b4:db:1f:de:0a:d5:7f:7e:77:b5:57: 74:e1:13:a4:42:20:13:a1:c9:d2:f6:27:aa:5d:1e: b7:4e:2d:05:73:87:f9:d7:fe:72:db:6a:f4:e9:6d: ce:a8:cc:99:10:6a:14:fc:bb:bd:92:6e:f8:b7:6b: 84:c1:e3:80:11:d6:c0:ef:8d:9a:57:56:6f:29:34: 5f:f0:86:e3:b3:64:c4:04:6f:75:df:d6:84:75:e2: c1:c9:21:73:72:44:f7:d9:5a:81:63:0e:df:59:af: c0:ab:44:3e:f1:f3:16:b4:ab:b2:3d:86:73:79:8a: a4:09:42:4d:5c:d3:af:a6:a1:af:f7:a0:d5:a8:3b: a8:b3:14:90:16:76:ff:49:2c:8b:cb:ea:b1:9f:a4: 69:28:47:0c:20:93:ab:64:ce:95:78:be:28:12:5f: cd:2d:30:5a:ea:4d:ad:ee:69:ce:e7:1b:c6:e4:7c: e9:51:23:62:7f:66:25:25:1c:97:38:4c:49:3c:34: f4:fe:01:60:56:07:d6:a4:99:80:9b:1d:5e:db:c7: ba:21:37:a7:83:7e:8c:ea:21:75:3d:1a:65:7e:17: f8:38:f9:2a:03:73:a3:67:29:c2:4d:06:8a:5f:95: 29:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:86:6D:7D:C9:D7:2E:2D:12:4E:EC:50:59:FE:ED:19:BB:C2:61:AA X509v3 Authority Key Identifier: keyid:DB:E9:15:60:EB:E5:8F:31:F0:1F:54:3D:75:1B:03:FC:02:EA:7D:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/323030313a6466333a666438303a3a2f34382d3438203d3e20313430343432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:fd80::/48 Signature Algorithm: sha256WithRSAEncryption 60:cc:00:29:06:12:1c:3c:d3:b3:dc:0a:6a:7b:fb:35:ef:08: d3:15:51:2f:b8:cc:a2:7b:83:a1:5d:96:56:e6:9e:14:dd:63: 72:c7:f6:83:35:17:5a:01:db:3c:98:f9:24:15:3d:15:55:8b: 3d:25:ad:16:db:88:08:22:cf:c5:7c:f7:41:bf:ff:b6:c8:a4: 19:78:7f:15:21:37:eb:be:3a:3e:ad:8c:2d:ff:dd:0b:b0:68: 4d:80:ed:0d:59:1a:6b:22:38:3f:b7:5a:44:41:15:a5:84:1a: f0:6b:9e:bf:80:db:1e:9e:4f:53:37:61:06:6a:fc:a3:1b:66: 0f:0a:6b:7c:1d:37:44:12:2a:df:65:05:05:2b:20:87:22:4e: 58:5c:a3:62:72:8b:fb:c9:e8:7a:e9:44:97:74:98:d4:07:fe: f2:e4:78:2a:06:54:c1:d1:da:89:20:65:33:5c:03:58:40:c9: 06:c7:1e:67:30:65:ef:60:17:2e:98:3b:af:01:4a:3e:be:ab: dd:f0:1a:ff:4c:d0:18:2f:ed:c0:c2:95:2c:04:0f:08:58:be: 3b:37:aa:93:23:49:35:ff:0f:ab:7c:cd:c3:8c:45:79:dc:22: e8:86:9a:ac:fe:62:91:c0:38:3a:59:2f:12:41:00:69:92:c7: 22:be:8b:d2 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUY9VEwH8YwHOeeLKROmGlo3vPCQgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREJFOTE1NjBFQkU1OEYzMUYwMUY1NDNENzUxQjAzRkMw MkVBN0Q5RTAeFw0yMzA3MzEwMDAwNDlaFw0yNDA3MjkwMDA1NDlaMDMxMTAvBgNV BAMTKDUyODY2RDdEQzlENzJFMkQxMjRFRUM1MDU5RkVFRDE5QkJDMjYxQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ7gj+XHtB9MAN2w3y74+lNwG0 2x/eCtV/fne1V3ThE6RCIBOhydL2J6pdHrdOLQVzh/nX/nLbavTpbc6ozJkQahT8 u72Sbvi3a4TB44AR1sDvjZpXVm8pNF/whuOzZMQEb3Xf1oR14sHJIXNyRPfZWoFj Dt9Zr8CrRD7x8xa0q7I9hnN5iqQJQk1c06+moa/3oNWoO6izFJAWdv9JLIvL6rGf pGkoRwwgk6tkzpV4vigSX80tMFrqTa3uac7nG8bkfOlRI2J/ZiUlHJc4TEk8NPT+ AWBWB9akmYCbHV7bx7ohN6eDfozqIXU9GmV+F/g4+SoDc6NnKcJNBopflSmDAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUUoZtfcnXLi0STuxQWf7tGbvCYaowHwYDVR0j BBgwFoAU2+kVYOvljzHwH1Q9dRsD/ALqfZ4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NzI4Yzc3Yi0yMTAwLTRmMmEtOTBkOS0wOGM1M2U4NDFlMWIvMC9EQkU5MTU2MEVC RTU4RjMxRjAxRjU0M0Q3NTFCMDNGQzAyRUE3RDlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREJFOTE1NjBFQkU1OEYzMUYwMUY1NDNENzUxQjAzRkMwMkVB N0Q5RS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY3MjhjNzdiLTIxMDAtNGYyYS05 MGQ5LTA4YzUzZTg0MWUxYi8wLzMyMzAzMDMxM2E2NDY2MzMzYTY2NjQzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMwMzQzNDMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8/2AMA0GCSqGSIb3DQEBCwUAA4IBAQBgzAApBhIcPNOz3Apqe/s17wjTFVEvuMyi e4OhXZZW5p4U3WNyx/aDNRdaAds8mPkkFT0VVYs9Ja0W24gIIs/FfPdBv/+2yKQZ eH8VITfrvjo+rYwt/90LsGhNgO0NWRprIjg/t1pEQRWlhBrwa56/gNsenk9TN2EG avyjG2YPCmt8HTdEEirfZQUFKyCHIk5YXKNicov7yeh66USXdJjUB/7y5HgqBlTB 0dqJIGUzXANYQMkGxx5nMGXvYBcumDuvAUo+vqvd8Br/TNAYL+3AwpUsBA8IWL47 N6qTI0k1/w+rfM3DjEV53CLohpqs/mKRwDg6WS8SQQBpkscivovS -----END CERTIFICATE-----Generated at Thu Apr 25 10:22:58 2024 by rpki-client on console-fra.rpki-client.org