$ rpki-client -vvf repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/323030313a6466323a346238303a3a2f34382d3438203d3e20313339343537.roa File: 323030313a6466323a346238303a3a2f34382d3438203d3e20313339343537.roa (raw, json) Hash identifier: sa5tZRwsGRVnGF2AkxFN+SCmRNxhz+OixHwP5PGmIRw= Subject key identifier: FF:ED:3E:1B:60:24:9B:96:A7:AD:89:C2:73:96:E4:BE:44:D8:E9:A8 Certificate issuer: /CN=B89398BA603C43BDF711A2B31FADC8CDFFC9CC16 Certificate serial: 7B3AF2938DC5B704992263AD0C1AD37055E9451A Authority key identifier: B8:93:98:BA:60:3C:43:BD:F7:11:A2:B3:1F:AD:C8:CD:FF:C9:CC:16 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/323030313a6466323a346238303a3a2f34382d3438203d3e20313339343537.roa Signing time: Mon 31 Jul 2023 00:09:01 +0000 ROA not before: Mon 31 Jul 2023 00:04:01 +0000 ROA not after: Mon 29 Jul 2024 00:09:01 +0000 asID: 139457 IP address blocks: 2001:df2:4b80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.crl rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 09:43:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:3a:f2:93:8d:c5:b7:04:99:22:63:ad:0c:1a:d3:70:55:e9:45:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B89398BA603C43BDF711A2B31FADC8CDFFC9CC16 Validity Not Before: Jul 31 00:04:01 2023 GMT Not After : Jul 29 00:09:01 2024 GMT Subject: CN=FFED3E1B60249B96A7AD89C27396E4BE44D8E9A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:44:ed:f6:d4:5c:c2:8d:78:dc:c9:ad:cc:40: 89:10:7d:a0:ef:00:ad:f7:b2:a0:a1:d6:1f:ac:1d: 97:8d:9b:78:46:87:bd:33:55:04:80:71:63:8f:6f: 38:b1:68:cf:9c:24:15:ae:32:30:ca:eb:5d:7a:fe: b7:3f:d5:3e:af:4e:7f:cd:3f:d6:2a:d5:4a:a2:8e: b8:ed:8f:8b:78:14:e2:7a:e3:e4:5c:8b:58:4a:da: d6:01:c8:6e:b3:ba:64:3b:6f:7a:d6:b9:72:53:ae: e0:df:95:de:3a:e1:c1:05:96:b4:46:8d:81:51:5e: f0:0d:2d:2f:6d:b2:2d:29:6d:5a:40:43:dc:1e:d4: 0c:39:eb:0c:f7:88:a1:54:bd:41:af:1b:a2:6b:2e: 12:6a:cd:38:90:c5:56:be:e6:16:5c:e7:f0:a6:04: 15:15:88:bf:40:1d:1b:86:32:41:87:5d:32:ee:e9: f2:ea:f8:bc:ef:d6:d6:11:93:4b:d5:88:13:a3:d0: 88:aa:72:11:d7:b3:33:4b:12:e1:b1:50:c7:c9:27: 82:b3:aa:2c:69:73:e4:80:2a:21:73:d6:62:4a:49: e0:f4:38:54:94:2a:22:e7:02:4a:45:e6:71:56:2a: df:ad:65:49:67:24:82:10:f1:64:e2:f1:3f:6c:0b: a3:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:ED:3E:1B:60:24:9B:96:A7:AD:89:C2:73:96:E4:BE:44:D8:E9:A8 X509v3 Authority Key Identifier: keyid:B8:93:98:BA:60:3C:43:BD:F7:11:A2:B3:1F:AD:C8:CD:FF:C9:CC:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/323030313a6466323a346238303a3a2f34382d3438203d3e20313339343537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:4b80::/48 Signature Algorithm: sha256WithRSAEncryption 8c:bb:c5:ae:69:b8:c0:2a:d3:e2:70:81:62:98:ca:e9:fd:9e: c2:e3:ec:ae:f3:4a:02:bf:d4:8a:0d:25:07:7d:60:c4:f7:93: ac:9a:30:64:e8:3d:69:e2:e6:c0:99:4f:3b:e4:f6:82:c5:eb: de:16:88:79:ec:97:d3:80:15:21:0e:5c:3b:9b:50:96:92:80: 77:fa:07:2e:d6:e5:e6:91:ed:c4:2a:3b:d2:cf:8e:28:4e:a7: 65:f2:f7:b2:56:94:07:f3:d9:a7:63:ea:44:3d:3c:3a:c8:89: 3e:db:26:18:e9:c2:4b:df:a4:c9:3e:5f:ec:e2:29:fb:16:85: 75:72:4c:f9:e6:4f:86:b7:69:42:f3:84:71:f9:41:29:97:ca: 63:e4:08:2e:dd:48:66:cf:c9:78:35:84:fe:28:ae:86:d0:4d: c2:22:dc:5f:33:15:4f:91:3c:7f:c9:40:63:e9:43:6d:32:86: 90:c1:b3:18:3c:80:9b:5c:30:c6:04:46:d3:9f:89:16:69:9e: 96:68:51:e1:8e:50:35:10:86:62:79:9d:c1:38:e4:14:4f:59: 4a:28:06:ce:4c:2e:26:b5:2a:b3:6d:50:39:e1:02:8f:52:0f: 1f:78:ee:56:dc:5f:04:45:90:ee:9b:99:77:d3:37:f9:4c:de: f5:ae:9a:be -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUezryk43FtwSZImOtDBrTcFXpRRowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg5Mzk4QkE2MDNDNDNCREY3MTFBMkIzMUZBREM4Q0RG RkM5Q0MxNjAeFw0yMzA3MzEwMDA0MDFaFw0yNDA3MjkwMDA5MDFaMDMxMTAvBgNV BAMTKEZGRUQzRTFCNjAyNDlCOTZBN0FEODlDMjczOTZFNEJFNDREOEU5QTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvRO321FzCjXjcya3MQIkQfaDv AK33sqCh1h+sHZeNm3hGh70zVQSAcWOPbzixaM+cJBWuMjDK6116/rc/1T6vTn/N P9Yq1Uqijrjtj4t4FOJ64+Rci1hK2tYByG6zumQ7b3rWuXJTruDfld464cEFlrRG jYFRXvANLS9tsi0pbVpAQ9we1Aw56wz3iKFUvUGvG6JrLhJqzTiQxVa+5hZc5/Cm BBUViL9AHRuGMkGHXTLu6fLq+Lzv1tYRk0vViBOj0IiqchHXszNLEuGxUMfJJ4Kz qixpc+SAKiFz1mJKSeD0OFSUKiLnAkpF5nFWKt+tZUlnJIIQ8WTi8T9sC6OFAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU/+0+G2Akm5anrYnCc5bkvkTY6agwHwYDVR0j BBgwFoAUuJOYumA8Q733EaKzH63Izf/JzBYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZWE3OTM0MC00ZGIyLTQ1OGQtOTVkZC1hZjIwYjRmY2RiM2QvMC9CODkzOThCQTYw M0M0M0JERjcxMUEyQjMxRkFEQzhDREZGQzlDQzE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjg5Mzk4QkE2MDNDNDNCREY3MTFBMkIzMUZBREM4Q0RGRkM5 Q0MxNi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RlYTc5MzQwLTRkYjItNDU4ZC05 NWRkLWFmMjBiNGZjZGIzZC8wLzMyMzAzMDMxM2E2NDY2MzIzYTM0NjIzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzQzNTM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8kuAMA0GCSqGSIb3DQEBCwUAA4IBAQCMu8WuabjAKtPicIFimMrp/Z7C4+yu80oC v9SKDSUHfWDE95OsmjBk6D1p4ubAmU875PaCxeveFoh57JfTgBUhDlw7m1CWkoB3 +gcu1uXmke3EKjvSz44oTqdl8veyVpQH89mnY+pEPTw6yIk+2yYY6cJL36TJPl/s 4in7FoV1ckz55k+Gt2lC84Rx+UEpl8pj5Agu3Uhmz8l4NYT+KK6G0E3CItxfMxVP kTx/yUBj6UNtMoaQwbMYPICbXDDGBEbTn4kWaZ6WaFHhjlA1EIZieZ3BOOQUT1lK KAbOTC4mtSqzbVA54QKPUg8feO5W3F8ERZDum5l30zf5TN71rpq+ -----END CERTIFICATE-----Generated at Fri Apr 19 07:38:50 2024 by rpki-client on console-ams.rpki-client.org