$ rpki-client -vvf repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/323030313a6466333a333438303a3a2f34382d3438203d3e20313430343433.roa File: 323030313a6466333a333438303a3a2f34382d3438203d3e20313430343433.roa (raw, json) Hash identifier: F0bZlP/oSco55m1wo347cTLMEMzy7RGB8NEP8HsDDZU= Subject key identifier: D4:32:9B:0F:9F:CB:DE:3B:0C:8C:C9:29:2C:EC:60:90:DB:BC:D2:0A Certificate issuer: /CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Certificate serial: 1E29BF6668B1256332D193CCECB7FB8E97F3367D Authority key identifier: 74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/323030313a6466333a333438303a3a2f34382d3438203d3e20313430343433.roa Signing time: Mon 19 Jun 2023 04:00:00 +0000 ROA not before: Mon 19 Jun 2023 03:55:00 +0000 ROA not after: Mon 17 Jun 2024 04:00:00 +0000 asID: 140443 IP address blocks: 2001:df3:3480::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:29:bf:66:68:b1:25:63:32:d1:93:cc:ec:b7:fb:8e:97:f3:36:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Validity Not Before: Jun 19 03:55:00 2023 GMT Not After : Jun 17 04:00:00 2024 GMT Subject: CN=D4329B0F9FCBDE3B0C8CC9292CEC6090DBBCD20A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b3:e4:ba:ca:7b:3f:0f:58:23:da:7e:6a:60: 02:65:7e:6d:0f:6e:a0:3b:cf:21:0c:30:6b:4b:75: f0:80:1d:73:10:60:b7:40:56:ce:9e:26:e7:8c:6e: b5:6c:48:8e:0a:f0:3b:7a:5a:aa:2c:14:11:e2:9e: e3:70:70:4f:f5:7e:14:3b:72:35:eb:99:0c:e5:59: aa:ee:da:0c:68:64:40:82:f7:8a:0d:69:3a:d1:19: 2f:4f:e9:5c:a2:51:b5:00:7f:02:1c:bb:2d:46:aa: f3:07:f8:92:50:38:ac:df:0c:35:b0:c6:88:3d:3c: ee:76:67:58:73:88:2e:78:b8:b4:25:e8:d8:a1:82: d9:d4:37:1c:74:bb:bc:93:7a:39:39:de:9d:f3:5e: 46:5f:b9:db:95:99:ae:93:4b:04:f4:de:a7:15:08: a8:d9:e7:08:8e:07:fb:ec:af:be:6e:38:74:17:13: b2:98:9c:4a:16:5d:16:dc:8b:c6:f4:b7:77:da:54: e1:e7:da:94:1e:4e:12:8c:e2:f4:d2:78:30:a0:5b: 51:78:e1:7e:d5:5d:d1:3c:f2:7f:eb:1b:17:fe:56: 8b:f7:19:53:d2:eb:2e:40:71:f6:41:57:bb:62:92: 96:46:5e:16:d3:25:05:0b:78:29:2c:e5:27:28:05: 26:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:32:9B:0F:9F:CB:DE:3B:0C:8C:C9:29:2C:EC:60:90:DB:BC:D2:0A X509v3 Authority Key Identifier: keyid:74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/323030313a6466333a333438303a3a2f34382d3438203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:3480::/48 Signature Algorithm: sha256WithRSAEncryption 57:db:ad:1f:95:d3:4c:62:bc:31:d0:6c:38:6c:d4:77:b4:e7: 0d:b7:68:9b:6e:b8:63:e3:f0:68:f7:64:ea:81:8f:07:9a:e3: 67:f5:99:f0:ea:5b:3b:68:cb:0d:e9:a2:9c:23:6e:69:08:80: 39:e7:99:4f:9c:9c:4d:24:97:8e:ed:42:5b:ef:4d:0a:28:1f: cb:08:be:9f:e7:c7:a2:6b:5a:05:ee:49:45:72:31:b8:f6:81: 29:b7:c9:61:ec:70:e7:94:9c:1c:96:63:1b:f3:df:17:c4:5c: 32:a6:1f:d9:6b:f8:d5:75:a7:77:26:02:18:df:f3:0b:f1:bf: a1:6b:a5:01:e6:18:4f:59:a9:48:58:dd:93:8f:18:37:93:f3: 38:6a:ba:0e:1f:ee:b7:c7:1e:d8:70:29:f7:dc:0a:f4:80:a1: d1:2e:50:eb:c0:5c:ce:8d:7f:f9:28:bd:04:64:fd:c8:d2:b1: e0:e4:d8:0c:2a:7b:49:92:21:83:07:f1:bc:34:47:fc:c0:5a: ab:86:31:23:d7:8f:62:3d:41:e3:93:50:91:9f:80:a2:00:88: a9:7e:c4:40:29:ee:1a:db:f4:cd:ff:28:6e:b3:e3:62:01:ca: f0:57:c6:9a:b8:ad:d5:69:46:56:35:50:fa:a4:01:42:77:cc: 9e:4d:f4:18 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUHim/ZmixJWMy0ZPM7Lf7jpfzNn0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVDRDNF QTI3NjM1QzAeFw0yMzA2MTkwMzU1MDBaFw0yNDA2MTcwNDAwMDBaMDMxMTAvBgNV BAMTKEQ0MzI5QjBGOUZDQkRFM0IwQzhDQzkyOTJDRUM2MDkwREJCQ0QyMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxs+S6yns/D1gj2n5qYAJlfm0P bqA7zyEMMGtLdfCAHXMQYLdAVs6eJueMbrVsSI4K8Dt6WqosFBHinuNwcE/1fhQ7 cjXrmQzlWaru2gxoZECC94oNaTrRGS9P6VyiUbUAfwIcuy1GqvMH+JJQOKzfDDWw xog9PO52Z1hziC54uLQl6NihgtnUNxx0u7yTejk53p3zXkZfuduVma6TSwT03qcV CKjZ5wiOB/vsr75uOHQXE7KYnEoWXRbci8b0t3faVOHn2pQeThKM4vTSeDCgW1F4 4X7VXdE88n/rGxf+Vov3GVPS6y5AcfZBV7tikpZGXhbTJQULeCks5ScoBSbTAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU1DKbD5/L3jsMjMkpLOxgkNu80gowHwYDVR0j BBgwFoAUdJ6PbF8i0YpwtoL4bGXs0+onY1wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YWU4ZGIzOC02M2E4LTQxM2MtYTlmNi1jYzIyM2FmYTRhNzUvMC83NDlFOEY2QzVG MjJEMThBNzBCNjgyRjg2QzY1RUNEM0VBMjc2MzVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVDRDNFQTI3 NjM1Qy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhhZThkYjM4LTYzYTgtNDEzYy1h OWY2LWNjMjIzYWZhNGE3NS8wLzMyMzAzMDMxM2E2NDY2MzMzYTMzMzQzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMwMzQzNDMzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8zSAMA0GCSqGSIb3DQEBCwUAA4IBAQBX260fldNMYrwx0Gw4bNR3tOcNt2ibbrhj 4/Bo92TqgY8HmuNn9Znw6ls7aMsN6aKcI25pCIA555lPnJxNJJeO7UJb700KKB/L CL6f58eia1oF7klFcjG49oEpt8lh7HDnlJwclmMb898XxFwyph/Za/jVdad3JgIY 3/ML8b+ha6UB5hhPWalIWN2Tjxg3k/M4aroOH+63xx7YcCn33Ar0gKHRLlDrwFzO jX/5KL0EZP3I0rHg5NgMKntJkiGDB/G8NEf8wFqrhjEj149iPUHjk1CRn4CiAIip fsRAKe4a2/TN/yhus+NiAcrwV8aauK3VaUZWNVD6pAFCd8yeTfQY -----END CERTIFICATE-----Generated at Fri May 3 20:32:18 2024 by rpki-client on console-fra.rpki-client.org