$ rpki-client -vvf repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a313030303a3a2f33362d3438203d3e2039383735.roa File: 323030313a6632303a313030303a3a2f33362d3438203d3e2039383735.roa (raw, json) Hash identifier: NdgX8reegawNTBs4qk4qIAh5sp/MwNIcZRD+0zN0rXk= Subject key identifier: 2B:FD:2F:2A:AA:27:5E:D5:F9:77:85:83:92:7E:3A:80:6B:1F:51:92 Certificate issuer: /CN=F33127B2252454B491C5DC9FE3937C56F28F8066 Certificate serial: 4EC322F9CAC4ED4F9E7ABFA78568A2031641EAC2 Authority key identifier: F3:31:27:B2:25:24:54:B4:91:C5:DC:9F:E3:93:7C:56:F2:8F:80:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a313030303a3a2f33362d3438203d3e2039383735.roa Signing time: Fri 01 Mar 2024 11:00:02 +0000 ROA not before: Fri 01 Mar 2024 10:55:02 +0000 ROA not after: Fri 28 Feb 2025 11:00:02 +0000 asID: 9875 IP address blocks: 2001:f20:1000::/36 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.crl rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:c3:22:f9:ca:c4:ed:4f:9e:7a:bf:a7:85:68:a2:03:16:41:ea:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33127B2252454B491C5DC9FE3937C56F28F8066 Validity Not Before: Mar 1 10:55:02 2024 GMT Not After : Feb 28 11:00:02 2025 GMT Subject: CN=2BFD2F2AAA275ED5F9778583927E3A806B1F5192 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:27:d4:d2:3f:31:bf:14:42:4d:ce:d7:0c:d8: ab:f2:8e:fc:97:c4:29:c2:92:07:51:7b:87:af:f7: eb:d2:0b:d0:8b:c8:a7:92:18:85:89:80:4b:21:2c: 66:0c:80:31:b2:ff:c9:4c:41:91:c2:47:44:b2:61: 3a:fc:e3:b5:00:61:d5:2b:ec:df:29:0d:ea:67:e7: 54:ac:22:3f:eb:fc:ad:0a:5a:b3:81:94:8e:99:ca: f6:7c:28:8e:a2:1b:ca:21:e7:44:c2:1d:b4:91:ea: 1c:c7:32:56:9d:65:d5:22:42:be:17:5a:93:c2:b5: a6:90:98:77:9a:98:47:de:9f:2c:9b:1f:52:59:a2: dc:9c:bf:e9:d9:3c:0c:99:fd:03:0c:13:e5:b1:f6: dd:2a:a1:38:12:6f:2e:48:d6:0b:22:82:f1:38:12: 22:06:91:2c:72:84:8d:99:95:d0:40:f7:90:c1:a9: 27:8d:84:00:86:66:c5:7e:95:c0:3e:e0:04:2a:14: 0d:4b:e8:db:ee:e0:f9:c3:e6:6d:bc:f9:15:b8:e3: b1:fd:62:93:6a:16:30:fd:c6:0e:df:2c:24:bb:ad: af:e1:72:ed:37:f9:b9:91:f1:29:26:3b:8d:4f:fe: 09:e5:eb:4d:00:ad:ae:1c:56:97:02:48:44:73:4b: a7:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:FD:2F:2A:AA:27:5E:D5:F9:77:85:83:92:7E:3A:80:6B:1F:51:92 X509v3 Authority Key Identifier: keyid:F3:31:27:B2:25:24:54:B4:91:C5:DC:9F:E3:93:7C:56:F2:8F:80:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a313030303a3a2f33362d3438203d3e2039383735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:f20:1000::/36 Signature Algorithm: sha256WithRSAEncryption 13:24:92:cd:5f:87:a9:e9:b2:87:65:bd:6e:08:f3:1f:ca:96: ad:90:1f:e6:21:68:1c:1f:51:22:25:2b:97:ec:61:be:26:05: 51:33:08:7a:4d:ff:6e:28:19:cd:98:8e:33:84:46:01:d0:fd: 32:5d:0e:00:5d:f7:6d:e9:cd:85:27:f3:dc:4a:b3:fd:6c:0b: 7e:b5:5a:a1:f2:31:76:01:e5:7c:31:38:37:e6:49:f0:cf:c8: a1:c9:ba:90:34:4b:80:ac:10:48:8b:31:12:ad:72:06:07:58: 34:d4:1b:ea:4d:29:4d:54:aa:19:96:70:56:2d:f6:b2:5d:73: 34:fc:e1:69:52:3e:89:7a:6a:f9:98:d8:e4:dc:a5:e4:5c:9c: ec:b7:a3:43:d2:65:2e:a1:42:28:0d:6b:85:5a:47:d5:6c:d0: ae:37:8e:8f:5c:95:b9:9f:13:95:40:eb:36:7a:7c:27:02:40: fb:43:51:14:3a:72:cb:20:b6:b0:4a:5e:d0:14:05:6b:92:f3: 7c:42:61:46:b1:e2:b1:a6:69:6c:b4:52:2f:fa:29:a6:38:ce: a4:07:78:1d:1c:87:b3:56:06:4b:25:df:d6:d3:df:25:f1:50: 8f:d8:cb:dc:1b:39:75:0d:f3:53:a8:39:e4:e0:46:f1:6f:49: d2:41:83:56 -----BEGIN CERTIFICATE----- MIIFLjCCBBagAwIBAgIUTsMi+crE7U+eer+nhWiiAxZB6sIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjMzMTI3QjIyNTI0NTRCNDkxQzVEQzlGRTM5MzdDNTZG MjhGODA2NjAeFw0yNDAzMDExMDU1MDJaFw0yNTAyMjgxMTAwMDJaMDMxMTAvBgNV BAMTKDJCRkQyRjJBQUEyNzVFRDVGOTc3ODU4MzkyN0UzQTgwNkIxRjUxOTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2J9TSPzG/FEJNztcM2KvyjvyX xCnCkgdRe4ev9+vSC9CLyKeSGIWJgEshLGYMgDGy/8lMQZHCR0SyYTr847UAYdUr 7N8pDepn51SsIj/r/K0KWrOBlI6ZyvZ8KI6iG8oh50TCHbSR6hzHMladZdUiQr4X WpPCtaaQmHeamEfenyybH1JZotycv+nZPAyZ/QMME+Wx9t0qoTgSby5I1gsigvE4 EiIGkSxyhI2ZldBA95DBqSeNhACGZsV+lcA+4AQqFA1L6Nvu4PnD5m28+RW447H9 YpNqFjD9xg7fLCS7ra/hcu03+bmR8SkmO41P/gnl600Ara4cVpcCSERzS6drAgMB AAGjggI4MIICNDAdBgNVHQ4EFgQUK/0vKqonXtX5d4WDkn46gGsfUZIwHwYDVR0j BBgwFoAU8zEnsiUkVLSRxdyf45N8VvKPgGYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YmJmZTc3Ni0wMGEzLTQ3NzYtYmYzZi01MjExOTQ2MTAxYzMvMC9GMzMxMjdCMjI1 MjQ1NEI0OTFDNURDOUZFMzkzN0M1NkYyOEY4MDY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjMzMTI3QjIyNTI0NTRCNDkxQzVEQzlGRTM5MzdDNTZGMjhG ODA2Ni5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ViYmZlNzc2LTAwYTMtNDc3Ni1i ZjNmLTUyMTE5NDYxMDFjMy8wLzMyMzAzMDMxM2E2NjMyMzAzYTMxMzAzMDMwM2Ez YTJmMzMzNjJkMzQzODIwM2QzZTIwMzkzODM3MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQgAQ8gEDAN BgkqhkiG9w0BAQsFAAOCAQEAEySSzV+Hqemyh2W9bgjzH8qWrZAf5iFoHB9RIiUr l+xhviYFUTMIek3/bigZzZiOM4RGAdD9Ml0OAF33benNhSfz3Eqz/WwLfrVaofIx dgHlfDE4N+ZJ8M/Iocm6kDRLgKwQSIsxEq1yBgdYNNQb6k0pTVSqGZZwVi32sl1z NPzhaVI+iXpq+ZjY5Nyl5Fyc7LejQ9JlLqFCKA1rhVpH1WzQrjeOj1yVuZ8TlUDr Nnp8JwJA+0NRFDpyyyC2sEpe0BQFa5LzfEJhRrHisaZpbLRSL/oppjjOpAd4HRyH s1YGSyXf1tPfJfFQj9jL3Bs5dQ3zU6g55OBG8W9J0kGDVg== -----END CERTIFICATE-----Generated at Sat May 4 01:50:56 2024 by rpki-client on console-ams.rpki-client.org