$ rpki-client -vvf repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/323030313a6466323a383163303a3a2f34382d3438203d3e20313432333839.roa File: 323030313a6466323a383163303a3a2f34382d3438203d3e20313432333839.roa (raw, json) Hash identifier: wWOC4qVv75zldoWfk5DIcBe77XqyH/Gv8KHjXBL3DKU= Subject key identifier: 5F:E4:84:CF:9C:F6:79:BD:86:32:32:64:56:F2:19:EE:2F:B8:D4:37 Certificate issuer: /CN=A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC Certificate serial: 5DA3BFE6E69C14749B08E8C92B832B57D49D6286 Authority key identifier: A9:CC:42:A0:5B:0D:6C:A3:79:60:F7:C2:AB:E4:B4:64:DB:56:AC:AC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/323030313a6466323a383163303a3a2f34382d3438203d3e20313432333839.roa Signing time: Fri 07 Jul 2023 07:52:54 +0000 ROA not before: Fri 07 Jul 2023 07:47:54 +0000 ROA not after: Fri 05 Jul 2024 07:52:54 +0000 asID: 142389 IP address blocks: 2001:df2:81c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.crl rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:a3:bf:e6:e6:9c:14:74:9b:08:e8:c9:2b:83:2b:57:d4:9d:62:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC Validity Not Before: Jul 7 07:47:54 2023 GMT Not After : Jul 5 07:52:54 2024 GMT Subject: CN=5FE484CF9CF679BD8632326456F219EE2FB8D437 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:86:eb:22:e4:15:d9:8c:20:d9:64:12:f6:3d: 88:76:11:f7:5a:5a:12:3c:7e:ce:4d:cc:45:16:82: dd:85:56:dd:1a:b9:7b:47:2c:2d:32:86:31:2f:9a: b3:e1:5f:73:da:ae:58:cf:25:12:e8:fc:09:d6:58: 20:94:2c:a5:af:1c:70:39:7c:02:73:de:12:54:45: 24:c3:37:0a:33:43:28:cd:0a:0a:a1:e1:d0:0a:4e: d6:a0:87:ab:a7:92:ed:0a:fa:71:f9:32:54:e4:70: 2b:21:eb:94:77:bc:cd:6a:24:5b:b2:25:41:87:8e: c7:5c:a6:98:e8:51:e6:1c:b6:77:e9:93:e1:f0:c8: 7a:b4:13:88:20:2a:3d:0d:03:6f:06:00:52:43:f5: b7:be:00:23:33:a9:4e:72:50:e6:33:d1:f0:d5:f3: 7d:1d:16:74:fa:04:2a:76:8f:0f:de:5f:ad:fc:16: d2:c5:72:b3:c4:57:c7:3c:45:7b:29:31:1c:ac:f0: 0f:66:a1:38:65:be:04:2f:ff:b3:7b:f5:04:2d:d8: 16:cd:f8:3b:a0:d8:89:ed:4a:f6:87:1f:e5:58:e1: 4f:e0:31:3f:45:cb:66:a8:b2:5e:68:dd:f4:5d:2b: bb:b8:ca:59:7a:44:5a:b3:47:5d:ef:cc:fe:83:0d: 97:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:E4:84:CF:9C:F6:79:BD:86:32:32:64:56:F2:19:EE:2F:B8:D4:37 X509v3 Authority Key Identifier: keyid:A9:CC:42:A0:5B:0D:6C:A3:79:60:F7:C2:AB:E4:B4:64:DB:56:AC:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/323030313a6466323a383163303a3a2f34382d3438203d3e20313432333839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:81c0::/48 Signature Algorithm: sha256WithRSAEncryption be:6c:eb:47:4e:19:6c:57:29:4b:71:3f:60:4d:b4:cc:8a:c7: 4c:77:7c:4e:4f:f7:05:e7:ce:45:84:a6:0b:8e:69:bb:85:c3: 43:d8:17:f9:4a:68:f8:41:a7:36:1c:68:1f:2e:fb:f2:9d:f0: f9:db:ce:e7:c1:4f:7c:e7:f0:53:9d:d4:8f:37:ac:d2:ce:b0: 0c:6c:d3:e2:b8:f4:27:0c:1a:c3:c1:e9:ee:36:59:32:64:93: 0a:c1:1e:a9:b4:4b:ca:84:29:ec:c9:6a:c8:e1:29:e7:43:96: 10:7e:40:b8:a9:73:56:18:c9:a1:f1:dd:02:d3:e9:cf:1a:f0: e3:d2:03:d4:90:c7:5c:d8:78:8b:06:2c:c3:1a:89:e9:98:c5: 59:df:57:e8:54:14:ee:76:32:f3:ca:90:d9:50:c1:b5:a1:df: 56:97:6e:14:de:c5:0d:08:2b:84:cf:76:af:bc:8f:94:0f:05: 1c:be:d2:f9:23:7b:ac:aa:05:d0:be:97:de:6f:f5:55:04:f7: db:cc:f1:77:6f:54:f3:df:ba:69:4b:89:55:d4:cb:92:4f:df: aa:a2:72:e0:a9:2a:dd:64:61:2e:97:12:d8:cb:43:54:c1:26: 09:d4:d9:36:7f:ce:d5:fc:4b:33:0c:1c:f8:d2:83:ec:89:74: 71:13:e2:b9 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUXaO/5uacFHSbCOjJK4MrV9SdYoYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlDQzQyQTA1QjBENkNBMzc5NjBGN0MyQUJFNEI0NjRE QjU2QUNBQzAeFw0yMzA3MDcwNzQ3NTRaFw0yNDA3MDUwNzUyNTRaMDMxMTAvBgNV BAMTKDVGRTQ4NENGOUNGNjc5QkQ4NjMyMzI2NDU2RjIxOUVFMkZCOEQ0MzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDahusi5BXZjCDZZBL2PYh2Efda WhI8fs5NzEUWgt2FVt0auXtHLC0yhjEvmrPhX3ParljPJRLo/AnWWCCULKWvHHA5 fAJz3hJURSTDNwozQyjNCgqh4dAKTtagh6unku0K+nH5MlTkcCsh65R3vM1qJFuy JUGHjsdcppjoUeYctnfpk+HwyHq0E4ggKj0NA28GAFJD9be+ACMzqU5yUOYz0fDV 830dFnT6BCp2jw/eX638FtLFcrPEV8c8RXspMRys8A9moThlvgQv/7N79QQt2BbN +Dug2IntSvaHH+VY4U/gMT9Fy2aosl5o3fRdK7u4yll6RFqzR13vzP6DDZfHAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUX+SEz5z2eb2GMjJkVvIZ7i+41DcwHwYDVR0j BBgwFoAUqcxCoFsNbKN5YPfCq+S0ZNtWrKwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZDc5ZTdhNy0xYWFlLTRlNTItYmFjMy04ZjdjNjdhZTBhMDQvMC9BOUNDNDJBMDVC MEQ2Q0EzNzk2MEY3QzJBQkU0QjQ2NERCNTZBQ0FDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTlDQzQyQTA1QjBENkNBMzc5NjBGN0MyQUJFNEI0NjREQjU2 QUNBQy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkNzllN2E3LTFhYWUtNGU1Mi1i YWMzLThmN2M2N2FlMGEwNC8wLzMyMzAzMDMxM2E2NDY2MzIzYTM4MzE2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMyMzMzODM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8oHAMA0GCSqGSIb3DQEBCwUAA4IBAQC+bOtHThlsVylLcT9gTbTMisdMd3xOT/cF 585FhKYLjmm7hcND2Bf5Smj4Qac2HGgfLvvynfD5287nwU985/BTndSPN6zSzrAM bNPiuPQnDBrDwenuNlkyZJMKwR6ptEvKhCnsyWrI4SnnQ5YQfkC4qXNWGMmh8d0C 0+nPGvDj0gPUkMdc2HiLBizDGonpmMVZ31foVBTudjLzypDZUMG1od9Wl24U3sUN CCuEz3avvI+UDwUcvtL5I3usqgXQvpfeb/VVBPfbzPF3b1Tz37ppS4lV1MuST9+q onLgqSrdZGEulxLYy0NUwSYJ1Nk2f87V/EszDBz40oPsiXRxE+K5 -----END CERTIFICATE-----Generated at Sat Jun 1 16:24:13 2024 by rpki-client on console-fra.rpki-client.org