$ rpki-client -vvf repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a333030303a3a2f33362d3438203d3e2039383735.roa File: 323030313a6632303a333030303a3a2f33362d3438203d3e2039383735.roa (raw, json) Hash identifier: wKV0fKrYjslv5KVItX5SXOSNd6zRZ+Evy3isiwgIvvY= Subject key identifier: A5:E3:A6:21:0A:D2:A4:B9:1E:8B:C0:A8:A4:ED:F2:5A:D5:DB:A8:3F Certificate issuer: /CN=F33127B2252454B491C5DC9FE3937C56F28F8066 Certificate serial: 458E0759B57877587EED3BA90CAF71538E267EA2 Authority key identifier: F3:31:27:B2:25:24:54:B4:91:C5:DC:9F:E3:93:7C:56:F2:8F:80:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a333030303a3a2f33362d3438203d3e2039383735.roa Signing time: Fri 01 Mar 2024 11:00:01 +0000 ROA not before: Fri 01 Mar 2024 10:55:01 +0000 ROA not after: Fri 28 Feb 2025 11:00:01 +0000 asID: 9875 IP address blocks: 2001:f20:3000::/36 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.crl rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 10:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:8e:07:59:b5:78:77:58:7e:ed:3b:a9:0c:af:71:53:8e:26:7e:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33127B2252454B491C5DC9FE3937C56F28F8066 Validity Not Before: Mar 1 10:55:01 2024 GMT Not After : Feb 28 11:00:01 2025 GMT Subject: CN=A5E3A6210AD2A4B91E8BC0A8A4EDF25AD5DBA83F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:ec:83:c3:a3:ae:7e:9d:f0:98:ee:d4:00:2a: 1c:25:0c:d0:8f:98:d0:2b:37:ef:c1:44:03:c6:e3: 34:07:6c:8f:a2:9e:c2:f5:63:b6:43:61:62:28:82: 26:83:6d:f5:44:a9:1a:d1:e1:e7:d6:b1:c9:5c:cd: 01:cb:7c:b2:4c:49:35:28:ac:f2:c6:a4:17:87:a8: 01:33:f8:48:6f:e9:3c:91:6a:72:b3:7b:c7:d9:f5: 3a:c9:bf:9f:d5:19:d7:2c:37:28:3c:22:a5:3f:69: ff:78:f8:1a:cf:bc:9a:b8:54:77:a9:be:a6:ba:94: 48:9f:2e:0b:1f:54:de:5a:02:a5:72:14:15:3b:15: ae:70:8f:1e:4d:73:bf:e2:cd:3e:40:8e:b2:53:62: 63:97:62:fe:19:aa:e0:41:01:92:50:7a:9f:d9:e4: 82:5d:c3:ef:02:3c:f7:b4:05:8d:66:e9:c1:21:3b: 8f:5f:ac:25:73:01:09:82:e5:e6:79:71:0f:4e:03: 63:3e:8c:05:8c:6a:06:94:aa:26:7d:f5:d0:42:e5: 9e:3a:65:81:59:25:fb:56:55:08:78:19:b7:b0:b0: 8d:5b:7c:c7:a4:56:a8:d4:d9:a2:bb:5f:ea:11:65: ab:88:e4:e0:82:ab:2a:20:22:7a:ea:59:fd:f8:ed: 20:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:E3:A6:21:0A:D2:A4:B9:1E:8B:C0:A8:A4:ED:F2:5A:D5:DB:A8:3F X509v3 Authority Key Identifier: keyid:F3:31:27:B2:25:24:54:B4:91:C5:DC:9F:E3:93:7C:56:F2:8F:80:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a333030303a3a2f33362d3438203d3e2039383735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:f20:3000::/36 Signature Algorithm: sha256WithRSAEncryption 0e:91:5d:c9:32:94:34:b1:3c:d7:10:de:10:7f:b8:c5:8c:24: c8:e7:0c:a2:2e:b8:09:c5:81:c9:5c:6f:48:1d:d4:81:df:a6: af:30:50:22:a6:6f:e8:71:be:4e:46:d9:21:61:1c:89:6e:6b: 8c:cb:c9:5b:1c:e8:d5:24:cc:37:0c:06:13:a6:fe:b5:09:90: ce:07:09:cd:6b:3c:11:29:dd:dd:31:ba:c1:82:82:a6:ab:ce: a4:8f:f9:fd:96:9e:82:14:3d:c6:65:7c:e9:70:ed:d3:77:b5: 35:73:45:08:11:a5:92:b7:2f:33:16:fe:1f:df:f9:b9:44:cc: fb:28:ff:ef:72:25:e3:2f:f7:55:eb:91:53:cb:1f:44:5f:6e: a8:3e:0f:9b:ce:55:08:25:ef:c9:ec:17:11:d0:69:1a:c3:4b: b1:22:d1:7c:45:08:00:9d:b4:65:3a:64:c6:33:a2:e3:6e:95: 50:8a:bc:14:c6:1d:ac:0f:80:2d:4e:5d:c1:bf:22:b5:2e:f1: a3:0a:5c:22:f7:ff:d0:50:23:2f:dd:a3:f9:03:25:24:87:09: 7d:f3:50:0a:fc:18:ca:d3:b7:e8:f8:38:91:8f:0f:55:2a:12: bb:09:d4:01:e7:ff:01:b4:05:41:d4:6f:2a:bb:89:6f:86:99: dc:51:20:83 -----BEGIN CERTIFICATE----- MIIFLjCCBBagAwIBAgIURY4HWbV4d1h+7TupDK9xU44mfqIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjMzMTI3QjIyNTI0NTRCNDkxQzVEQzlGRTM5MzdDNTZG MjhGODA2NjAeFw0yNDAzMDExMDU1MDFaFw0yNTAyMjgxMTAwMDFaMDMxMTAvBgNV BAMTKEE1RTNBNjIxMEFEMkE0QjkxRThCQzBBOEE0RURGMjVBRDVEQkE4M0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCY7IPDo65+nfCY7tQAKhwlDNCP mNArN+/BRAPG4zQHbI+insL1Y7ZDYWIogiaDbfVEqRrR4efWsclczQHLfLJMSTUo rPLGpBeHqAEz+Ehv6TyRanKze8fZ9TrJv5/VGdcsNyg8IqU/af94+BrPvJq4VHep vqa6lEifLgsfVN5aAqVyFBU7Fa5wjx5Nc7/izT5AjrJTYmOXYv4ZquBBAZJQep/Z 5IJdw+8CPPe0BY1m6cEhO49frCVzAQmC5eZ5cQ9OA2M+jAWMagaUqiZ99dBC5Z46 ZYFZJftWVQh4GbewsI1bfMekVqjU2aK7X+oRZauI5OCCqyogInrqWf347SCTAgMB AAGjggI4MIICNDAdBgNVHQ4EFgQUpeOmIQrSpLkei8CopO3yWtXbqD8wHwYDVR0j BBgwFoAU8zEnsiUkVLSRxdyf45N8VvKPgGYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YmJmZTc3Ni0wMGEzLTQ3NzYtYmYzZi01MjExOTQ2MTAxYzMvMC9GMzMxMjdCMjI1 MjQ1NEI0OTFDNURDOUZFMzkzN0M1NkYyOEY4MDY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjMzMTI3QjIyNTI0NTRCNDkxQzVEQzlGRTM5MzdDNTZGMjhG ODA2Ni5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ViYmZlNzc2LTAwYTMtNDc3Ni1i ZjNmLTUyMTE5NDYxMDFjMy8wLzMyMzAzMDMxM2E2NjMyMzAzYTMzMzAzMDMwM2Ez YTJmMzMzNjJkMzQzODIwM2QzZTIwMzkzODM3MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQgAQ8gMDAN BgkqhkiG9w0BAQsFAAOCAQEADpFdyTKUNLE81xDeEH+4xYwkyOcMoi64CcWByVxv SB3Ugd+mrzBQIqZv6HG+TkbZIWEciW5rjMvJWxzo1STMNwwGE6b+tQmQzgcJzWs8 ESnd3TG6wYKCpqvOpI/5/ZaeghQ9xmV86XDt03e1NXNFCBGlkrcvMxb+H9/5uUTM +yj/73Il4y/3VeuRU8sfRF9uqD4Pm85VCCXvyewXEdBpGsNLsSLRfEUIAJ20ZTpk xjOi426VUIq8FMYdrA+ALU5dwb8itS7xowpcIvf/0FAjL92j+QMlJIcJffNQCvwY ytO36Pg4kY8PVSoSuwnUAef/AbQFQdRvKruJb4aZ3FEggw== -----END CERTIFICATE-----Generated at Mon May 6 11:49:28 2024 by rpki-client on console-fra.rpki-client.org