$ rpki-client -vvf repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/323030313a6466323a666534303a3a2f34382d3438203d3e20313531353836.roa File: 323030313a6466323a666534303a3a2f34382d3438203d3e20313531353836.roa (raw, json) Hash identifier: Eo7Wpkba0BbwxInICJgffTluSoygmGDbF7R5uRDlTHQ= Subject key identifier: 86:90:E0:42:3F:FC:00:31:7E:01:C1:D2:C8:DF:25:D2:63:CB:72:E2 Certificate issuer: /CN=7825A9C30D5AEA4144740E9B12A3C0BC60E73499 Certificate serial: 29B501562E99A0EC4709D8263EBCDDAA5D2B447F Authority key identifier: 78:25:A9:C3:0D:5A:EA:41:44:74:0E:9B:12:A3:C0:BC:60:E7:34:99 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/323030313a6466323a666534303a3a2f34382d3438203d3e20313531353836.roa Signing time: Thu 02 Nov 2023 13:02:24 +0000 ROA not before: Thu 02 Nov 2023 12:57:24 +0000 ROA not after: Thu 31 Oct 2024 13:02:24 +0000 asID: 151586 IP address blocks: 2001:df2:fe40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.crl rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:b5:01:56:2e:99:a0:ec:47:09:d8:26:3e:bc:dd:aa:5d:2b:44:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7825A9C30D5AEA4144740E9B12A3C0BC60E73499 Validity Not Before: Nov 2 12:57:24 2023 GMT Not After : Oct 31 13:02:24 2024 GMT Subject: CN=8690E0423FFC00317E01C1D2C8DF25D263CB72E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:9d:e3:24:96:de:2b:bd:59:ad:9c:c8:cd:ed: 5c:66:ce:d6:0a:f7:68:62:64:95:e5:14:d7:a9:08: a6:7d:e7:8f:9a:47:f4:76:2f:0f:48:31:7f:b7:74: d4:2d:d2:60:87:f9:67:2e:dd:f4:97:0c:c1:80:19: 57:3e:35:ae:ef:00:7c:90:87:d6:a0:e2:60:8f:88: 5d:30:b0:67:f1:28:ca:45:f5:d1:76:74:8d:3d:7a: dd:c4:f8:0e:d2:2d:bd:da:1e:ce:04:ff:eb:7b:91: 8d:aa:db:ba:ae:09:dc:2e:86:18:c0:22:50:2c:b3: d9:77:d3:4c:cf:11:4e:f5:62:25:b6:37:87:ab:ee: f7:36:d6:f4:40:e3:c4:12:db:09:ad:4a:26:86:64: dc:4c:11:7b:a7:03:77:a0:89:dd:07:f6:f9:df:78: 79:ac:68:36:12:c6:16:82:5b:8a:45:ad:7a:35:3b: 86:f1:52:2a:44:72:48:89:a6:18:31:84:fd:51:e0: d1:04:60:d0:cd:c2:c5:3c:66:72:ab:69:57:13:cb: 64:f6:38:36:c2:7e:02:c5:54:78:75:4b:4a:14:94: 39:cb:86:d5:1f:71:69:28:8c:cf:67:9a:f1:89:55: 83:65:ec:4b:ca:e5:7d:1d:52:d2:79:2a:f4:9d:41: b4:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:90:E0:42:3F:FC:00:31:7E:01:C1:D2:C8:DF:25:D2:63:CB:72:E2 X509v3 Authority Key Identifier: keyid:78:25:A9:C3:0D:5A:EA:41:44:74:0E:9B:12:A3:C0:BC:60:E7:34:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/323030313a6466323a666534303a3a2f34382d3438203d3e20313531353836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:fe40::/48 Signature Algorithm: sha256WithRSAEncryption 59:d2:3a:16:0d:7c:1e:52:1a:5a:64:ed:b9:93:28:82:f4:01: 4c:60:9b:ff:3e:9c:43:75:5e:fb:56:ff:33:41:64:fa:cf:a9: 1a:5a:a0:a5:79:10:e2:40:7f:31:02:81:e4:da:13:11:93:e0: 1b:fe:92:c6:27:b0:d0:ad:e2:4e:0b:71:2a:40:6a:b2:1a:c9: 83:65:76:7d:7e:1d:8b:d3:53:eb:04:26:09:48:a9:ad:0d:8d: fa:a6:86:41:be:0c:cb:d5:c5:9f:05:35:9a:c5:c2:8e:0a:04: 5e:de:5c:5d:f6:28:4b:1e:df:69:bb:ca:c8:d5:db:59:a3:cc: 04:f0:95:0d:e2:9b:95:9d:12:03:45:37:51:1b:39:0b:2b:7c: 81:ec:ef:c3:68:42:71:9b:c2:3d:74:96:67:b3:34:80:81:66: 1c:c9:e1:87:c7:82:8b:f6:ea:67:0f:e0:62:69:c9:9b:36:a7: da:a8:9f:2f:97:8b:ce:c0:3a:3a:c8:ae:1d:61:2f:d5:8f:a9: 9c:f0:97:a9:8a:41:0a:18:3a:bb:8e:34:b0:22:fd:9a:d9:d9: 35:3e:e6:85:3c:be:4e:0d:89:66:b3:9a:a2:d8:59:34:c4:5b: 55:e8:3d:71:f4:e0:55:63:e7:b4:52:a5:9b:d8:31:35:29:6b: 80:fb:e0:95 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUKbUBVi6ZoOxHCdgmPrzdql0rRH8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzgyNUE5QzMwRDVBRUE0MTQ0NzQwRTlCMTJBM0MwQkM2 MEU3MzQ5OTAeFw0yMzExMDIxMjU3MjRaFw0yNDEwMzExMzAyMjRaMDMxMTAvBgNV BAMTKDg2OTBFMDQyM0ZGQzAwMzE3RTAxQzFEMkM4REYyNUQyNjNDQjcyRTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIneMklt4rvVmtnMjN7VxmztYK 92hiZJXlFNepCKZ954+aR/R2Lw9IMX+3dNQt0mCH+Wcu3fSXDMGAGVc+Na7vAHyQ h9ag4mCPiF0wsGfxKMpF9dF2dI09et3E+A7SLb3aHs4E/+t7kY2q27quCdwuhhjA IlAss9l300zPEU71YiW2N4er7vc21vRA48QS2wmtSiaGZNxMEXunA3egid0H9vnf eHmsaDYSxhaCW4pFrXo1O4bxUipEckiJphgxhP1R4NEEYNDNwsU8ZnKraVcTy2T2 ODbCfgLFVHh1S0oUlDnLhtUfcWkojM9nmvGJVYNl7EvK5X0dUtJ5KvSdQbRTAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUhpDgQj/8ADF+AcHSyN8l0mPLcuIwHwYDVR0j BBgwFoAUeCWpww1a6kFEdA6bEqPAvGDnNJkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MDAwYjBjMi03ZWZkLTQyNzgtOThlNC1kNGY3YzI3M2VlYzIvMC83ODI1QTlDMzBE NUFFQTQxNDQ3NDBFOUIxMkEzQzBCQzYwRTczNDk5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzgyNUE5QzMwRDVBRUE0MTQ0NzQwRTlCMTJBM0MwQkM2MEU3 MzQ5OS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwMDBiMGMyLTdlZmQtNDI3OC05 OGU0LWQ0ZjdjMjczZWVjMi8wLzMyMzAzMDMxM2E2NDY2MzIzYTY2NjUzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMxMzUzODM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8v5AMA0GCSqGSIb3DQEBCwUAA4IBAQBZ0joWDXweUhpaZO25kyiC9AFMYJv/PpxD dV77Vv8zQWT6z6kaWqCleRDiQH8xAoHk2hMRk+Ab/pLGJ7DQreJOC3EqQGqyGsmD ZXZ9fh2L01PrBCYJSKmtDY36poZBvgzL1cWfBTWaxcKOCgRe3lxd9ihLHt9pu8rI 1dtZo8wE8JUN4puVnRIDRTdRGzkLK3yB7O/DaEJxm8I9dJZnszSAgWYcyeGHx4KL 9upnD+BiacmbNqfaqJ8vl4vOwDo6yK4dYS/Vj6mc8JepikEKGDq7jjSwIv2a2dk1 PuaFPL5ODYlms5qi2Fk0xFtV6D1x9OBVY+e0UqWb2DE1KWuA++CV -----END CERTIFICATE-----Generated at Sat Jun 22 13:58:56 2024 by rpki-client on console-fra.rpki-client.org