$ rpki-client -vvf repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/323030313a6466333a6330303a3a2f34382d3438203d3e203633383732.roa File: 323030313a6466333a6330303a3a2f34382d3438203d3e203633383732.roa (raw, json) Hash identifier: sJM1tk0bgY60YrBlTqbx4HpKcfkHSDctJiMtwl8QaNY= Subject key identifier: 5F:2B:F1:B1:00:37:2F:B4:FE:52:52:C8:7E:22:BF:8E:A3:27:F3:46 Certificate issuer: /CN=6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19 Certificate serial: 1F83FE4AB3896CEE20401DD12D0AEBD411B7B968 Authority key identifier: 6D:6B:AE:DB:FD:BB:AA:46:BF:3D:A2:18:55:70:77:16:27:BE:7B:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/323030313a6466333a6330303a3a2f34382d3438203d3e203633383732.roa Signing time: Mon 31 Jul 2023 00:13:33 +0000 ROA not before: Mon 31 Jul 2023 00:08:33 +0000 ROA not after: Mon 29 Jul 2024 00:13:33 +0000 asID: 63872 IP address blocks: 2001:df3:c00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.crl rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 17:22:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:83:fe:4a:b3:89:6c:ee:20:40:1d:d1:2d:0a:eb:d4:11:b7:b9:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19 Validity Not Before: Jul 31 00:08:33 2023 GMT Not After : Jul 29 00:13:33 2024 GMT Subject: CN=5F2BF1B100372FB4FE5252C87E22BF8EA327F346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:b2:0a:78:3b:84:a7:2f:60:a9:a1:ce:f4:11: ee:0a:8d:c8:03:c3:fd:95:97:98:9c:4a:7d:f8:b7: 49:f9:6d:db:b1:20:bb:07:da:66:c1:7d:a9:a9:38: c6:75:5e:9d:dc:b8:28:b5:b0:5f:1c:95:ac:a8:42: 61:d6:ab:77:44:04:d8:97:46:48:11:64:6e:26:de: 45:fe:14:12:f4:0b:48:64:c0:7a:25:1d:84:4a:02: b0:b8:ec:77:b4:f9:cd:b9:ab:08:00:fa:0d:cd:ee: 21:d2:08:99:9d:33:90:0e:43:d3:10:e3:9c:f1:ab: 7a:be:69:a7:05:bb:fc:73:7d:51:09:1d:1d:56:b7: e6:76:c9:81:b7:fb:c3:b1:11:48:1a:2d:81:d9:ff: 2f:22:7e:06:19:73:73:dd:f7:00:39:d5:8a:52:90: 23:fb:ae:a3:26:9a:d7:d0:fa:b4:d2:2e:76:ff:47: 2c:ea:d9:71:4a:8f:31:1b:7b:d6:ad:ac:7f:d7:37: e7:26:66:9b:6b:18:e7:2a:85:52:c6:06:87:70:76: 4a:97:3b:94:2b:51:5f:0a:6b:af:15:b5:ae:9b:bc: 55:6a:1f:fb:bf:08:03:fc:e9:c1:30:7d:7f:70:15: c0:17:9d:5e:4f:cb:5e:1f:cc:fb:76:ff:4f:a8:c8: 32:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:2B:F1:B1:00:37:2F:B4:FE:52:52:C8:7E:22:BF:8E:A3:27:F3:46 X509v3 Authority Key Identifier: keyid:6D:6B:AE:DB:FD:BB:AA:46:BF:3D:A2:18:55:70:77:16:27:BE:7B:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/323030313a6466333a6330303a3a2f34382d3438203d3e203633383732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:c00::/48 Signature Algorithm: sha256WithRSAEncryption 0c:89:03:34:29:05:2f:62:88:c4:f8:72:61:fe:fa:b4:44:5a: a7:38:a6:d7:ab:32:af:97:1c:85:32:3f:7e:2e:66:68:99:8c: 16:5d:c9:3a:e6:15:d2:92:25:88:41:52:98:5f:6e:aa:ce:95: 64:fe:ab:94:1e:c2:e2:54:8a:b8:7c:ce:53:65:d8:a5:ef:db: 36:84:da:01:f7:c5:0f:c1:86:df:b0:6c:f7:0a:c5:f0:be:16: ff:e7:69:4f:ec:a6:58:86:fd:55:a6:11:2d:9d:25:92:70:81: 17:df:d4:a5:51:57:b0:53:27:7e:d4:63:95:78:7b:f9:23:69: 53:16:37:85:3b:c5:ad:7c:89:8c:57:dc:a6:43:79:c2:7e:ed: 08:ad:e0:35:50:5a:c6:7c:1b:bd:e5:31:51:13:5d:1b:60:3a: c9:ab:c9:43:55:41:a7:04:7e:ce:fa:74:b2:db:86:9e:f8:15: aa:40:90:fc:fc:2a:a0:ed:56:f8:3b:4f:f1:8b:b9:d2:50:ca: 92:3a:69:6b:c9:20:f5:81:e5:44:d7:27:01:8f:cf:38:de:e6: d4:40:27:43:85:cf:61:9c:95:29:f6:15:15:8b:2f:25:1f:f6: c7:8b:e8:fd:3e:9e:29:f8:42:a0:e8:e3:ea:6d:2b:5a:fc:f1: 31:a2:69:f6 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUH4P+SrOJbO4gQB3RLQrr1BG3uWgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkQ2QkFFREJGREJCQUE0NkJGM0RBMjE4NTU3MDc3MTYy N0JFN0IxOTAeFw0yMzA3MzEwMDA4MzNaFw0yNDA3MjkwMDEzMzNaMDMxMTAvBgNV BAMTKDVGMkJGMUIxMDAzNzJGQjRGRTUyNTJDODdFMjJCRjhFQTMyN0YzNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwsgp4O4SnL2Cpoc70Ee4KjcgD w/2Vl5icSn34t0n5bduxILsH2mbBfampOMZ1Xp3cuCi1sF8clayoQmHWq3dEBNiX RkgRZG4m3kX+FBL0C0hkwHolHYRKArC47He0+c25qwgA+g3N7iHSCJmdM5AOQ9MQ 45zxq3q+aacFu/xzfVEJHR1Wt+Z2yYG3+8OxEUgaLYHZ/y8ifgYZc3Pd9wA51YpS kCP7rqMmmtfQ+rTSLnb/Ryzq2XFKjzEbe9atrH/XN+cmZptrGOcqhVLGBodwdkqX O5QrUV8Ka68Vta6bvFVqH/u/CAP86cEwfX9wFcAXnV5Py14fzPt2/0+oyDIzAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUXyvxsQA3L7T+UlLIfiK/jqMn80YwHwYDVR0j BBgwFoAUbWuu2/27qka/PaIYVXB3Fie+exkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NmJiMzMzYy05ODJiLTRmY2UtYWM4MS1iYzA2OTIyOWUyNDMvMC82RDZCQUVEQkZE QkJBQTQ2QkYzREEyMTg1NTcwNzcxNjI3QkU3QjE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkQ2QkFFREJGREJCQUE0NkJGM0RBMjE4NTU3MDc3MTYyN0JF N0IxOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2YmIzMzNjLTk4MmItNGZjZS1h YzgxLWJjMDY5MjI5ZTI0My8wLzMyMzAzMDMxM2E2NDY2MzMzYTYzMzAzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM2MzMzODM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ3zDAAw DQYJKoZIhvcNAQELBQADggEBAAyJAzQpBS9iiMT4cmH++rREWqc4pterMq+XHIUy P34uZmiZjBZdyTrmFdKSJYhBUphfbqrOlWT+q5QewuJUirh8zlNl2KXv2zaE2gH3 xQ/Bht+wbPcKxfC+Fv/naU/spliG/VWmES2dJZJwgRff1KVRV7BTJ37UY5V4e/kj aVMWN4U7xa18iYxX3KZDecJ+7Qit4DVQWsZ8G73lMVETXRtgOsmryUNVQacEfs76 dLLbhp74FapAkPz8KqDtVvg7T/GLudJQypI6aWvJIPWB5UTXJwGPzzje5tRAJ0OF z2GclSn2FRWLLyUf9seL6P0+nin4QqDo4+ptK1r88TGiafY= -----END CERTIFICATE-----Generated at Thu Apr 25 16:38:54 2024 by rpki-client on console-ams.rpki-client.org