$ rpki-client -vvf repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/323030313a6466323a653838303a3a2f34382d3438203d3e20313339393938.roa File: 323030313a6466323a653838303a3a2f34382d3438203d3e20313339393938.roa (raw, json) Hash identifier: JOHlwd9MSwCeyp6MGNc9rCFZxBgd3Hr7PcC9+iyEblg= Subject key identifier: 83:70:D7:0A:6B:81:4C:B9:04:89:0F:CB:E4:2E:F9:5C:24:A1:42:2E Certificate issuer: /CN=08D07F010DA28112A94E8800C317B8DF7F1ABF43 Certificate serial: 2A6FB6F7EB276E11276E83FE21870CE4E92575F3 Authority key identifier: 08:D0:7F:01:0D:A2:81:12:A9:4E:88:00:C3:17:B8:DF:7F:1A:BF:43 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/323030313a6466323a653838303a3a2f34382d3438203d3e20313339393938.roa Signing time: Mon 31 Jul 2023 00:13:36 +0000 ROA not before: Mon 31 Jul 2023 00:08:36 +0000 ROA not after: Mon 29 Jul 2024 00:13:36 +0000 asID: 139998 IP address blocks: 2001:df2:e880::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.crl rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Apr 2024 22:02:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:6f:b6:f7:eb:27:6e:11:27:6e:83:fe:21:87:0c:e4:e9:25:75:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08D07F010DA28112A94E8800C317B8DF7F1ABF43 Validity Not Before: Jul 31 00:08:36 2023 GMT Not After : Jul 29 00:13:36 2024 GMT Subject: CN=8370D70A6B814CB904890FCBE42EF95C24A1422E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:67:b7:84:90:40:00:74:c1:77:46:f4:2c:f7: 41:f0:ce:04:fc:7d:69:3b:1b:a4:19:46:17:3b:3c: c6:1a:61:e0:7e:9c:7a:bc:1c:ea:3b:3e:f6:cf:07: a4:5d:21:a2:e3:77:ad:de:c7:79:61:ad:a0:17:04: ee:77:79:11:c6:00:ce:4d:cd:55:b5:69:cf:11:0a: 16:71:7d:78:9c:37:14:e1:12:4c:e9:5d:66:97:ae: ba:c1:c7:57:ae:d9:9a:83:a6:1e:39:65:75:9c:b0: 03:83:ce:fd:ce:9f:dd:06:1a:2c:de:f2:f6:51:ae: 50:73:56:5d:23:4b:82:21:d7:2d:bf:05:a1:50:5b: 10:43:6f:27:6b:1f:d9:89:a7:ff:b2:02:32:7c:d5: 02:a6:a1:b0:56:59:d7:ed:ca:12:06:36:3d:db:75: d7:45:fa:61:09:8b:40:71:2e:5e:ad:e1:73:43:f8: e1:83:7c:0c:27:f9:20:37:60:85:be:56:71:57:e6: 25:10:61:16:12:3e:a6:ad:01:15:3f:ad:68:40:fa: a6:47:09:d2:8b:67:38:7f:c4:05:53:9a:08:62:39: 00:aa:c4:00:06:65:4a:9e:f8:db:d2:66:33:00:be: 84:02:ef:58:15:d6:cb:60:e8:42:64:bb:3d:3e:11: 6d:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:70:D7:0A:6B:81:4C:B9:04:89:0F:CB:E4:2E:F9:5C:24:A1:42:2E X509v3 Authority Key Identifier: keyid:08:D0:7F:01:0D:A2:81:12:A9:4E:88:00:C3:17:B8:DF:7F:1A:BF:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/323030313a6466323a653838303a3a2f34382d3438203d3e20313339393938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:e880::/48 Signature Algorithm: sha256WithRSAEncryption 02:7b:af:71:69:c2:f7:6c:41:67:a0:00:8f:a8:4e:09:58:2d: b5:0d:1b:21:62:e6:59:ad:60:5b:c4:f8:af:af:3d:5b:3e:7d: 14:22:a5:e7:e9:7e:5e:b5:5e:d3:97:54:5b:b1:34:78:7c:fb: 29:cd:90:b4:fd:97:0e:3a:5b:58:01:e3:46:b4:30:33:33:fa: 56:37:30:56:9e:11:85:eb:91:31:4e:c7:79:50:49:3e:16:72: 61:6b:33:94:ef:fe:bf:e9:4e:99:8e:a0:0c:f9:98:cd:3d:70: 27:b4:9a:4a:9b:05:28:f2:57:93:12:01:aa:9a:24:98:98:04: 11:d0:ec:04:36:f8:49:8c:23:5b:b7:30:87:3f:55:21:5d:e1: 9a:00:8a:90:4c:a1:1c:18:7d:8c:35:7f:0b:50:fe:76:63:50: 35:5d:3b:47:87:61:ad:f7:04:a8:3e:3e:52:e0:98:dd:18:51: 58:3a:7b:40:91:bf:c4:9c:d7:0a:d9:0b:85:70:32:6f:78:87: d6:52:e9:cb:86:a5:c9:4f:c6:a3:9f:ae:c7:ad:8d:78:1d:93: f9:6c:23:a0:b1:45:53:04:e2:fa:95:2d:ec:fd:67:b1:8c:f6: 0c:bf:b8:b3:8c:a8:92:fb:44:82:be:95:fe:d7:b4:ad:49:24: be:66:a1:03 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUKm+29+snbhEnboP+IYcM5OkldfMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDhEMDdGMDEwREEyODExMkE5NEU4ODAwQzMxN0I4REY3 RjFBQkY0MzAeFw0yMzA3MzEwMDA4MzZaFw0yNDA3MjkwMDEzMzZaMDMxMTAvBgNV BAMTKDgzNzBENzBBNkI4MTRDQjkwNDg5MEZDQkU0MkVGOTVDMjRBMTQyMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClZ7eEkEAAdMF3RvQs90HwzgT8 fWk7G6QZRhc7PMYaYeB+nHq8HOo7PvbPB6RdIaLjd63ex3lhraAXBO53eRHGAM5N zVW1ac8RChZxfXicNxThEkzpXWaXrrrBx1eu2ZqDph45ZXWcsAODzv3On90GGize 8vZRrlBzVl0jS4Ih1y2/BaFQWxBDbydrH9mJp/+yAjJ81QKmobBWWdftyhIGNj3b dddF+mEJi0BxLl6t4XND+OGDfAwn+SA3YIW+VnFX5iUQYRYSPqatARU/rWhA+qZH CdKLZzh/xAVTmghiOQCqxAAGZUqe+NvSZjMAvoQC71gV1stg6EJkuz0+EW3BAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUg3DXCmuBTLkEiQ/L5C75XCShQi4wHwYDVR0j BBgwFoAUCNB/AQ2igRKpTogAwxe4338av0MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGMyYTEzYi0xZjQwLTRjMDMtYmMzNS1mNjk2MTUxNmQ0ZDkvMC8wOEQwN0YwMTBE QTI4MTEyQTk0RTg4MDBDMzE3QjhERjdGMUFCRjQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDhEMDdGMDEwREEyODExMkE5NEU4ODAwQzMxN0I4REY3RjFB QkY0My5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwYzJhMTNiLTFmNDAtNGMwMy1i YzM1LWY2OTYxNTE2ZDRkOS8wLzMyMzAzMDMxM2E2NDY2MzIzYTY1MzgzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzkzOTM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8uiAMA0GCSqGSIb3DQEBCwUAA4IBAQACe69xacL3bEFnoACPqE4JWC21DRshYuZZ rWBbxPivrz1bPn0UIqXn6X5etV7Tl1RbsTR4fPspzZC0/ZcOOltYAeNGtDAzM/pW NzBWnhGF65ExTsd5UEk+FnJhazOU7/6/6U6ZjqAM+ZjNPXAntJpKmwUo8leTEgGq miSYmAQR0OwENvhJjCNbtzCHP1UhXeGaAIqQTKEcGH2MNX8LUP52Y1A1XTtHh2Gt 9wSoPj5S4JjdGFFYOntAkb/EnNcK2QuFcDJveIfWUunLhqXJT8ajn67HrY14HZP5 bCOgsUVTBOL6lS3s/WexjPYMv7izjKiS+0SCvpX+17StSSS+ZqED -----END CERTIFICATE-----Generated at Thu Apr 18 23:07:30 2024 by rpki-client on console-ams.rpki-client.org