$ rpki-client -vvf repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/323030313a6466363a313330303a3a2f34382d3438203d3e20313338313137.roa File: 323030313a6466363a313330303a3a2f34382d3438203d3e20313338313137.roa (raw, json) Hash identifier: oMAibsF/HSF01HB9Mc9eDrDFN2BAhTYv/0qePxd7r6o= Subject key identifier: 62:DD:36:D3:D0:7F:94:17:00:CF:45:77:D5:9D:B3:AE:56:61:1F:D5 Certificate issuer: /CN=989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748 Certificate serial: 7F45A5DFDB0B4D72217AA3E0A20710A6CEA2AB60 Authority key identifier: 98:9B:87:D4:0F:7C:9F:1B:A5:4A:BC:AE:9B:C7:97:A3:E6:B2:57:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/323030313a6466363a313330303a3a2f34382d3438203d3e20313338313137.roa Signing time: Tue 15 Aug 2023 09:00:55 +0000 ROA not before: Tue 15 Aug 2023 08:55:55 +0000 ROA not after: Tue 13 Aug 2024 09:00:55 +0000 asID: 138117 IP address blocks: 2001:df6:1300::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.crl rsync://repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 22:45:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:45:a5:df:db:0b:4d:72:21:7a:a3:e0:a2:07:10:a6:ce:a2:ab:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748 Validity Not Before: Aug 15 08:55:55 2023 GMT Not After : Aug 13 09:00:55 2024 GMT Subject: CN=62DD36D3D07F941700CF4577D59DB3AE56611FD5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:70:d1:e1:10:39:56:11:cc:49:74:5f:e2:36: 2e:5f:1a:48:06:ad:b1:9a:f2:cf:83:17:5f:30:dc: 73:d9:d5:6c:a5:97:1a:d9:bf:f0:4a:07:d9:51:6c: 18:cd:a3:f5:4c:35:6e:ab:23:2b:e5:7b:5c:86:42: 84:ea:28:8e:b3:d8:0f:e0:bc:18:c3:08:ab:ea:a8: fe:ff:63:8d:95:0b:46:4d:2d:e9:fa:68:52:bd:a8: 0c:bd:a4:68:75:73:7a:b0:fe:cc:2e:f8:a4:62:dd: 35:ba:86:9d:f1:6c:c2:d4:f6:3e:7b:f6:e7:2a:2c: cc:46:58:18:25:50:a6:13:8e:e4:f2:15:3d:a7:18: 16:df:9c:68:5d:14:5a:14:5a:c4:68:cc:49:9a:4b: 8e:d8:a2:a7:1e:59:93:fa:0f:61:71:20:3c:80:01: 4c:ee:37:c7:81:13:5b:da:8e:dd:13:8a:f3:46:a5: 97:c2:d6:1e:1d:0a:fc:e6:9b:91:39:84:66:e2:cc: 7c:81:bd:42:8a:2c:e8:a5:9d:23:ed:31:84:30:c6: 3e:6c:7b:87:38:53:c4:6d:b5:f6:84:20:74:bf:20: 53:36:fc:95:a9:60:48:cb:db:e8:7a:68:a9:ff:50: ad:61:c2:e6:11:dc:65:75:d5:48:05:56:64:c2:c7: 2b:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:DD:36:D3:D0:7F:94:17:00:CF:45:77:D5:9D:B3:AE:56:61:1F:D5 X509v3 Authority Key Identifier: keyid:98:9B:87:D4:0F:7C:9F:1B:A5:4A:BC:AE:9B:C7:97:A3:E6:B2:57:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/323030313a6466363a313330303a3a2f34382d3438203d3e20313338313137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:1300::/48 Signature Algorithm: sha256WithRSAEncryption 9a:9f:63:8b:32:fa:26:32:8a:d3:37:2e:ce:d9:5d:cf:d4:a8: 16:21:de:6c:57:31:ba:01:ee:f0:20:da:fc:d4:87:ac:73:89: 47:13:82:85:76:70:13:d3:cf:7f:30:3e:77:f6:5b:57:f0:e2: f0:3f:8f:a1:b0:28:67:4e:87:39:29:aa:86:ac:8b:d2:ae:15: 30:ff:fd:70:aa:87:57:e1:a8:62:1c:0a:46:ab:1d:50:97:50: bf:64:f3:1f:80:b6:8f:02:c4:1d:4b:cf:e9:b3:8c:43:8d:e2: 94:b8:b8:60:e5:60:b7:8d:cc:c1:ec:43:e5:62:85:8b:f1:05: e2:c3:2c:1a:3b:a4:47:af:d5:43:46:77:62:5f:c6:fd:87:3c: 0c:ae:4c:91:f5:0a:ed:c8:fa:50:fc:70:33:93:0f:1f:b7:dd: b3:46:66:5f:13:3f:ca:33:2f:d8:73:50:11:49:bb:3c:33:84: 46:22:36:90:b3:32:1f:67:a3:63:53:61:47:21:60:eb:8c:c3: 18:3a:61:05:49:af:da:50:67:24:c3:3e:7a:05:8e:84:7d:7b: 76:64:2a:2f:0e:b3:6d:b7:13:7e:bb:f8:c0:e8:d1:e8:99:ca: 5c:b6:db:6b:d9:ad:22:ef:b2:31:40:50:5a:04:6e:71:9c:7a: ea:50:85:89 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUf0Wl39sLTXIheqPgogcQps6iq2AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTg5Qjg3RDQwRjdDOUYxQkE1NEFCQ0FFOUJDNzk3QTNF NkIyNTc0ODAeFw0yMzA4MTUwODU1NTVaFw0yNDA4MTMwOTAwNTVaMDMxMTAvBgNV BAMTKDYyREQzNkQzRDA3Rjk0MTcwMENGNDU3N0Q1OURCM0FFNTY2MTFGRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8cNHhEDlWEcxJdF/iNi5fGkgG rbGa8s+DF18w3HPZ1WyllxrZv/BKB9lRbBjNo/VMNW6rIyvle1yGQoTqKI6z2A/g vBjDCKvqqP7/Y42VC0ZNLen6aFK9qAy9pGh1c3qw/swu+KRi3TW6hp3xbMLU9j57 9ucqLMxGWBglUKYTjuTyFT2nGBbfnGhdFFoUWsRozEmaS47YoqceWZP6D2FxIDyA AUzuN8eBE1vajt0TivNGpZfC1h4dCvzmm5E5hGbizHyBvUKKLOilnSPtMYQwxj5s e4c4U8RttfaEIHS/IFM2/JWpYEjL2+h6aKn/UK1hwuYR3GV11UgFVmTCxytfAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUYt0209B/lBcAz0V31Z2zrlZhH9UwHwYDVR0j BBgwFoAUmJuH1A98nxulSryum8eXo+ayV0gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZTUwNjBiOC1mNTcwLTQyZDYtODZmZi0zM2VhN2ZkZjI1MTUvMC85ODlCODdENDBG N0M5RjFCQTU0QUJDQUU5QkM3OTdBM0U2QjI1NzQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTg5Qjg3RDQwRjdDOUYxQkE1NEFCQ0FFOUJDNzk3QTNFNkIy NTc0OC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzllNTA2MGI4LWY1NzAtNDJkNi04 NmZmLTMzZWE3ZmRmMjUxNS8wLzMyMzAzMDMxM2E2NDY2MzYzYTMxMzMzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzEzMTM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9hMAMA0GCSqGSIb3DQEBCwUAA4IBAQCan2OLMvomMorTNy7O2V3P1KgWId5sVzG6 Ae7wINr81Iesc4lHE4KFdnAT089/MD539ltX8OLwP4+hsChnToc5KaqGrIvSrhUw //1wqodX4ahiHApGqx1Ql1C/ZPMfgLaPAsQdS8/ps4xDjeKUuLhg5WC3jczB7EPl YoWL8QXiwywaO6RHr9VDRndiX8b9hzwMrkyR9QrtyPpQ/HAzkw8ft92zRmZfEz/K My/Yc1ARSbs8M4RGIjaQszIfZ6NjU2FHIWDrjMMYOmEFSa/aUGckwz56BY6EfXt2 ZCovDrNttxN+u/jA6NHomcpctttr2a0i77IxQFBaBG5xnHrqUIWJ -----END CERTIFICATE-----Generated at Thu May 2 01:04:46 2024 by rpki-client on console-fra.rpki-client.org