$ rpki-client -vvf repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a323030303a3a2f33362d3438203d3e2039383735.roa File: 323030313a6632303a323030303a3a2f33362d3438203d3e2039383735.roa (raw, json) Hash identifier: lPlPy9oFyUG1+9iNhY3ct3ivaIOrDdJq91hzJWx82hk= Subject key identifier: FF:7A:66:84:FE:28:0A:92:B3:96:51:DF:17:01:9B:0D:C0:6F:4F:E7 Certificate issuer: /CN=F33127B2252454B491C5DC9FE3937C56F28F8066 Certificate serial: 333EE7565595A3F9A0610E1EEDBBEEC6A5E4A266 Authority key identifier: F3:31:27:B2:25:24:54:B4:91:C5:DC:9F:E3:93:7C:56:F2:8F:80:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a323030303a3a2f33362d3438203d3e2039383735.roa Signing time: Fri 01 Mar 2024 11:00:01 +0000 ROA not before: Fri 01 Mar 2024 10:55:01 +0000 ROA not after: Fri 28 Feb 2025 11:00:01 +0000 asID: 9875 IP address blocks: 2001:f20:2000::/36 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.crl rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 10:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:3e:e7:56:55:95:a3:f9:a0:61:0e:1e:ed:bb:ee:c6:a5:e4:a2:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33127B2252454B491C5DC9FE3937C56F28F8066 Validity Not Before: Mar 1 10:55:01 2024 GMT Not After : Feb 28 11:00:01 2025 GMT Subject: CN=FF7A6684FE280A92B39651DF17019B0DC06F4FE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:03:7d:79:4d:fd:a6:b2:4d:7d:c6:14:30:99: 57:5a:35:a9:f7:06:a2:97:1a:cf:07:a8:04:37:72: 67:c0:aa:de:36:21:89:e1:ad:ec:2d:91:37:d8:ea: 33:c7:2d:b7:65:63:77:63:75:6d:2f:f3:99:93:ef: 4c:fd:55:56:fa:8e:f2:ea:de:25:31:25:90:5c:ff: b0:e2:b9:c6:7f:de:bf:e5:d9:b0:5b:e7:7a:dd:50: 73:fb:de:6b:6c:4d:f7:08:1b:05:bd:ec:7c:06:da: ca:ee:e2:e5:46:a4:18:d8:17:47:03:5f:81:64:3f: 6a:8c:50:da:bc:64:fb:ed:d8:9a:15:b6:df:9a:d9: b8:cd:46:12:b5:8f:53:fc:38:a7:f9:ba:15:2a:3b: 75:c9:2e:d4:b6:6c:60:d6:7b:03:2c:00:de:c7:29: f9:3c:33:d7:3f:d0:ba:94:e3:eb:b1:a2:01:da:2f: 0c:ad:6c:ad:7c:4f:d9:b5:bc:4b:ba:4f:6c:0e:33: 87:ea:ac:03:ba:44:09:f0:b3:f4:c0:80:a7:c2:88: e6:e3:01:77:40:69:d7:b5:29:e6:d6:a2:a4:b7:1a: 5f:33:76:d8:b9:b4:01:42:c5:f0:d0:e9:94:1b:f4: 5b:92:92:5e:5b:5b:eb:c8:f5:db:90:61:39:7d:57: ad:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:7A:66:84:FE:28:0A:92:B3:96:51:DF:17:01:9B:0D:C0:6F:4F:E7 X509v3 Authority Key Identifier: keyid:F3:31:27:B2:25:24:54:B4:91:C5:DC:9F:E3:93:7C:56:F2:8F:80:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a323030303a3a2f33362d3438203d3e2039383735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:f20:2000::/36 Signature Algorithm: sha256WithRSAEncryption 94:c2:09:22:89:f1:18:7d:36:23:fe:b6:c1:ce:86:c8:d5:2a: 3f:27:1a:87:95:c8:d9:88:3c:f1:66:4e:fa:8e:b0:be:a2:ab: 49:6e:76:62:1c:52:2c:a4:07:5d:bf:ee:09:7d:62:92:a8:45: 86:fc:f7:1c:2a:20:f0:cb:db:53:ae:96:20:71:47:65:19:e4: 45:0c:0e:ae:95:a5:9c:21:8b:db:d3:4e:5f:9e:ba:08:74:bb: e7:39:ed:59:14:0c:97:0a:07:3a:33:fb:fa:a5:91:a1:17:bb: 75:25:87:a3:d4:b0:c0:85:ce:4f:7e:5e:9d:f8:cd:01:5e:d2: be:2d:0d:63:1c:ab:0a:ad:08:12:6f:54:ae:2f:72:f3:61:cd: e8:a5:ee:09:01:00:bb:c1:6b:6c:ed:ae:a3:2a:a4:8f:49:65: 9c:8e:51:5c:61:37:59:d5:71:11:5c:e4:5a:ec:46:28:7f:0a: fc:a8:43:3c:c0:3b:36:ad:75:4b:bb:37:a6:59:1b:9f:0d:c2: 41:79:d0:6c:c7:df:7c:54:37:46:6a:3a:f3:ea:3a:68:49:35: 68:83:05:90:de:a3:b9:8a:ed:74:6d:b7:47:9e:88:5d:9f:94: 43:0d:d8:71:39:ce:ff:09:2c:2f:12:d4:ab:17:47:dd:9c:f4: a4:35:d4:6c -----BEGIN CERTIFICATE----- MIIFLjCCBBagAwIBAgIUMz7nVlWVo/mgYQ4e7bvuxqXkomYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjMzMTI3QjIyNTI0NTRCNDkxQzVEQzlGRTM5MzdDNTZG MjhGODA2NjAeFw0yNDAzMDExMDU1MDFaFw0yNTAyMjgxMTAwMDFaMDMxMTAvBgNV BAMTKEZGN0E2Njg0RkUyODBBOTJCMzk2NTFERjE3MDE5QjBEQzA2RjRGRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrA315Tf2msk19xhQwmVdaNan3 BqKXGs8HqAQ3cmfAqt42IYnhrewtkTfY6jPHLbdlY3djdW0v85mT70z9VVb6jvLq 3iUxJZBc/7DiucZ/3r/l2bBb53rdUHP73mtsTfcIGwW97HwG2sru4uVGpBjYF0cD X4FkP2qMUNq8ZPvt2JoVtt+a2bjNRhK1j1P8OKf5uhUqO3XJLtS2bGDWewMsAN7H Kfk8M9c/0LqU4+uxogHaLwytbK18T9m1vEu6T2wOM4fqrAO6RAnws/TAgKfCiObj AXdAade1KebWoqS3Gl8zdti5tAFCxfDQ6ZQb9FuSkl5bW+vI9duQYTl9V63hAgMB AAGjggI4MIICNDAdBgNVHQ4EFgQU/3pmhP4oCpKzllHfFwGbDcBvT+cwHwYDVR0j BBgwFoAU8zEnsiUkVLSRxdyf45N8VvKPgGYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YmJmZTc3Ni0wMGEzLTQ3NzYtYmYzZi01MjExOTQ2MTAxYzMvMC9GMzMxMjdCMjI1 MjQ1NEI0OTFDNURDOUZFMzkzN0M1NkYyOEY4MDY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjMzMTI3QjIyNTI0NTRCNDkxQzVEQzlGRTM5MzdDNTZGMjhG ODA2Ni5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ViYmZlNzc2LTAwYTMtNDc3Ni1i ZjNmLTUyMTE5NDYxMDFjMy8wLzMyMzAzMDMxM2E2NjMyMzAzYTMyMzAzMDMwM2Ez YTJmMzMzNjJkMzQzODIwM2QzZTIwMzkzODM3MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQgAQ8gIDAN BgkqhkiG9w0BAQsFAAOCAQEAlMIJIonxGH02I/62wc6GyNUqPycah5XI2Yg88WZO +o6wvqKrSW52YhxSLKQHXb/uCX1ikqhFhvz3HCog8MvbU66WIHFHZRnkRQwOrpWl nCGL29NOX566CHS75zntWRQMlwoHOjP7+qWRoRe7dSWHo9SwwIXOT35enfjNAV7S vi0NYxyrCq0IEm9Uri9y82HN6KXuCQEAu8FrbO2uoyqkj0llnI5RXGE3WdVxEVzk WuxGKH8K/KhDPMA7Nq11S7s3plkbnw3CQXnQbMfffFQ3Rmo68+o6aEk1aIMFkN6j uYrtdG23R56IXZ+UQw3YcTnO/wksLxLUqxdH3Zz0pDXUbA== -----END CERTIFICATE-----Generated at Mon May 6 12:36:44 2024 by rpki-client on console-ams.rpki-client.org