$ rpki-client -vvf repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/323030313a6466313a316563303a3a2f34382d3438203d3e20313439393531.roa File: 323030313a6466313a316563303a3a2f34382d3438203d3e20313439393531.roa (raw, json) Hash identifier: S7oTczC4SBHdcQyw/kSxOjZDmDBrdI4OEYoVk/hE3wI= Subject key identifier: 85:C8:1B:93:07:E2:A2:B9:94:2C:BE:3B:76:83:A1:1F:F1:39:40:9D Certificate issuer: /CN=CA14F96C33329D8CA42315C2B500AB2D57B1E35B Certificate serial: 24125B80AFB093FBC59AB93B248E53CCA97771FC Authority key identifier: CA:14:F9:6C:33:32:9D:8C:A4:23:15:C2:B5:00:AB:2D:57:B1:E3:5B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/323030313a6466313a316563303a3a2f34382d3438203d3e20313439393531.roa Signing time: Fri 25 Aug 2023 05:00:00 +0000 ROA not before: Fri 25 Aug 2023 04:55:00 +0000 ROA not after: Fri 23 Aug 2024 05:00:00 +0000 asID: 149951 IP address blocks: 2001:df1:1ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.crl rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:12:5b:80:af:b0:93:fb:c5:9a:b9:3b:24:8e:53:cc:a9:77:71:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA14F96C33329D8CA42315C2B500AB2D57B1E35B Validity Not Before: Aug 25 04:55:00 2023 GMT Not After : Aug 23 05:00:00 2024 GMT Subject: CN=85C81B9307E2A2B9942CBE3B7683A11FF139409D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:dd:61:b8:07:9b:1e:9b:c0:85:87:42:f9:b4: a9:67:01:f7:56:09:82:73:45:db:2d:7a:96:8a:8c: 36:68:24:17:eb:c9:d7:c1:50:37:d2:57:c3:86:a3: 27:39:4c:e5:83:6f:f4:bc:0a:9e:bd:19:0f:b2:c0: 44:f9:94:98:9e:76:e6:59:45:ed:11:4d:40:48:36: 0f:03:9f:28:57:64:36:fe:02:e6:fd:b5:94:76:b9: e9:30:62:35:3b:ff:57:53:57:9a:cf:73:0f:26:af: a8:82:86:38:54:b4:5a:33:9c:5b:74:ba:15:e4:ed: 98:50:c8:d5:38:dd:31:20:ca:f7:b1:e6:27:09:3b: d6:f6:36:82:f9:ea:74:9f:e5:a9:81:f3:85:1d:0a: 71:dc:c0:1b:91:cb:40:13:a2:98:4b:6f:ef:59:fe: 3b:e5:be:c1:37:8b:79:f7:f6:31:6b:66:4e:77:fb: d7:8b:15:69:77:fc:f7:30:e0:ec:3c:a5:1c:46:30: a5:f8:d0:2d:26:66:6a:5f:41:6e:ef:47:05:cd:1d: 18:75:db:dc:1a:77:b0:86:20:20:ba:bc:5c:28:36: a6:d6:7b:a2:67:25:36:4b:e6:50:3a:f4:5b:1d:ea: cc:73:1d:b2:5e:c0:c1:9a:ec:b8:31:53:05:f3:46: 18:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:C8:1B:93:07:E2:A2:B9:94:2C:BE:3B:76:83:A1:1F:F1:39:40:9D X509v3 Authority Key Identifier: keyid:CA:14:F9:6C:33:32:9D:8C:A4:23:15:C2:B5:00:AB:2D:57:B1:E3:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/323030313a6466313a316563303a3a2f34382d3438203d3e20313439393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:1ec0::/48 Signature Algorithm: sha256WithRSAEncryption 44:c9:26:11:49:1c:e5:c8:d7:96:b1:94:3c:8f:58:bb:93:8b: e8:72:86:45:f3:19:21:4b:87:70:29:c0:e3:ae:0e:d8:e6:81: fa:d5:72:27:9f:7a:60:14:a6:60:89:78:7c:41:10:8b:9a:a7: 16:87:b7:d8:f3:ed:a3:6d:5b:e5:39:be:27:cd:f1:f1:70:be: bb:25:2b:c4:ab:a4:73:17:ce:a6:d9:57:e6:94:64:4f:af:90: e3:de:54:5f:85:3c:b6:bb:54:f4:3d:fc:31:f0:7b:55:95:8b: b6:9d:f0:8a:6e:2f:69:2a:3c:57:ae:20:90:de:6d:10:14:0d: f0:cb:b9:a8:fe:12:bd:be:94:3c:07:66:f8:4f:66:d0:bc:0b: 2c:33:7d:f8:25:2b:dc:d2:08:73:a5:18:a2:5a:f2:c7:48:de: 9c:56:a8:5b:9e:da:3d:cf:6e:6d:f8:22:2d:08:e9:e6:69:6f: 0c:38:3b:b2:0d:2e:28:57:aa:15:13:45:6f:84:01:c0:09:fd: 29:14:65:00:20:71:03:88:1e:d5:94:93:2f:28:55:17:06:a4: ea:8e:84:70:6a:e9:32:d2:db:2b:e2:b5:3c:da:78:1f:9a:f9: 1e:d9:10:8a:07:9e:02:d5:02:66:7a:45:61:5c:38:f1:4e:d7: d6:c3:f3:69 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUJBJbgK+wk/vFmrk7JI5TzKl3cfwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0ExNEY5NkMzMzMyOUQ4Q0E0MjMxNUMyQjUwMEFCMkQ1 N0IxRTM1QjAeFw0yMzA4MjUwNDU1MDBaFw0yNDA4MjMwNTAwMDBaMDMxMTAvBgNV BAMTKDg1QzgxQjkzMDdFMkEyQjk5NDJDQkUzQjc2ODNBMTFGRjEzOTQwOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK3WG4B5sem8CFh0L5tKlnAfdW CYJzRdstepaKjDZoJBfrydfBUDfSV8OGoyc5TOWDb/S8Cp69GQ+ywET5lJieduZZ Re0RTUBINg8DnyhXZDb+Aub9tZR2uekwYjU7/1dTV5rPcw8mr6iChjhUtFoznFt0 uhXk7ZhQyNU43TEgyvex5icJO9b2NoL56nSf5amB84UdCnHcwBuRy0ATophLb+9Z /jvlvsE3i3n39jFrZk53+9eLFWl3/Pcw4Ow8pRxGMKX40C0mZmpfQW7vRwXNHRh1 29wad7CGICC6vFwoNqbWe6JnJTZL5lA69Fsd6sxzHbJewMGa7LgxUwXzRhj/AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUhcgbkwfiormULL47doOhH/E5QJ0wHwYDVR0j BBgwFoAUyhT5bDMynYykIxXCtQCrLVex41swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MWYxNmM0NS05NmZiLTRjOTItODA0ZS02NGIwYmYyODAzMDIvMC9DQTE0Rjk2QzMz MzI5RDhDQTQyMzE1QzJCNTAwQUIyRDU3QjFFMzVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0ExNEY5NkMzMzMyOUQ4Q0E0MjMxNUMyQjUwMEFCMkQ1N0Ix RTM1Qi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxZjE2YzQ1LTk2ZmItNGM5Mi04 MDRlLTY0YjBiZjI4MDMwMi8wLzMyMzAzMDMxM2E2NDY2MzEzYTMxNjU2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDM5MzkzNTMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8R7AMA0GCSqGSIb3DQEBCwUAA4IBAQBEySYRSRzlyNeWsZQ8j1i7k4vocoZF8xkh S4dwKcDjrg7Y5oH61XInn3pgFKZgiXh8QRCLmqcWh7fY8+2jbVvlOb4nzfHxcL67 JSvEq6RzF86m2VfmlGRPr5Dj3lRfhTy2u1T0Pfwx8HtVlYu2nfCKbi9pKjxXriCQ 3m0QFA3wy7mo/hK9vpQ8B2b4T2bQvAssM334JSvc0ghzpRiiWvLHSN6cVqhbnto9 z25t+CItCOnmaW8MODuyDS4oV6oVE0VvhAHACf0pFGUAIHEDiB7VlJMvKFUXBqTq joRwauky0tsr4rU82ngfmvke2RCKB54C1QJmekVhXDjxTtfWw/Np -----END CERTIFICATE-----Generated at Sun Jun 2 11:53:51 2024 by rpki-client on console-fra.rpki-client.org