$ rpki-client -vvf repo-rpki.idnic.net/repo/64aae3f0-9c70-42fc-ae3e-bb590046b0fe/0/323030313a6466323a323263303a3a2f34382d3438203d3e20313431393337.roa File: 323030313a6466323a323263303a3a2f34382d3438203d3e20313431393337.roa (raw, json) Hash identifier: MSkQfcYU3SnewBMuI4uBKRwMpwB80w2zmqcLiTZMOhE= Subject key identifier: D8:6C:A2:E9:D3:14:8B:84:BB:FA:44:B0:79:67:46:CB:69:F5:B2:A0 Certificate issuer: /CN=601D123430DAF9288A7DFD628F892DB5691B88F3 Certificate serial: 41CBF27914E5E2A5A9652CC93B5C31226461798A Authority key identifier: 60:1D:12:34:30:DA:F9:28:8A:7D:FD:62:8F:89:2D:B5:69:1B:88:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/601D123430DAF9288A7DFD628F892DB5691B88F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/64aae3f0-9c70-42fc-ae3e-bb590046b0fe/0/323030313a6466323a323263303a3a2f34382d3438203d3e20313431393337.roa Signing time: Tue 27 Feb 2024 05:01:03 +0000 ROA not before: Tue 27 Feb 2024 04:56:03 +0000 ROA not after: Tue 25 Feb 2025 05:01:03 +0000 asID: 141937 IP address blocks: 2001:df2:22c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/64aae3f0-9c70-42fc-ae3e-bb590046b0fe/0/601D123430DAF9288A7DFD628F892DB5691B88F3.crl rsync://repo-rpki.idnic.net/repo/64aae3f0-9c70-42fc-ae3e-bb590046b0fe/0/601D123430DAF9288A7DFD628F892DB5691B88F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/601D123430DAF9288A7DFD628F892DB5691B88F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 19:47:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:cb:f2:79:14:e5:e2:a5:a9:65:2c:c9:3b:5c:31:22:64:61:79:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=601D123430DAF9288A7DFD628F892DB5691B88F3 Validity Not Before: Feb 27 04:56:03 2024 GMT Not After : Feb 25 05:01:03 2025 GMT Subject: CN=D86CA2E9D3148B84BBFA44B0796746CB69F5B2A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ad:3d:88:eb:de:0d:38:0a:b7:13:73:18:c6: 34:82:c7:b5:b5:a8:56:40:7d:2b:73:c5:16:bc:a4: f5:c3:05:57:3e:5a:f9:dd:9f:a7:66:6b:44:8d:46: ac:e5:20:17:95:bc:19:b7:26:0b:17:60:a2:a0:68: 05:c8:6c:3d:f0:c7:b7:58:c0:70:da:02:06:cb:a2: a7:0f:0b:d7:8b:b2:2d:f3:8e:8c:c4:45:21:bd:30: b7:c7:b9:f5:cf:df:b6:5e:fe:8b:46:c3:e6:11:f2: 9e:53:3a:0d:35:ca:59:ef:36:db:54:3c:30:10:12: b5:6a:9b:70:51:1e:72:31:3c:55:46:8f:b3:6f:2d: 3b:30:dd:df:80:3b:1b:9a:54:9d:75:5e:e3:61:e5: 41:58:c4:5c:5c:9c:90:01:9b:49:16:34:48:2e:11: 67:61:81:f8:08:c5:1c:2f:6e:2f:b6:2a:cb:6c:fb: c9:08:85:3c:3b:6a:18:36:60:11:dd:e1:62:c2:9d: 88:b6:f5:fc:66:fe:18:ab:a4:c7:e7:b2:5b:6d:9a: f2:ce:59:0d:18:5f:9d:d0:74:a3:cd:3d:22:1c:d9: 0f:16:8f:ad:5b:14:48:9a:aa:0e:7a:25:4b:c7:0a: 48:3d:c1:8f:f4:67:a8:a5:c7:01:06:65:87:c9:c9: 41:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:6C:A2:E9:D3:14:8B:84:BB:FA:44:B0:79:67:46:CB:69:F5:B2:A0 X509v3 Authority Key Identifier: keyid:60:1D:12:34:30:DA:F9:28:8A:7D:FD:62:8F:89:2D:B5:69:1B:88:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/64aae3f0-9c70-42fc-ae3e-bb590046b0fe/0/601D123430DAF9288A7DFD628F892DB5691B88F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/601D123430DAF9288A7DFD628F892DB5691B88F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/64aae3f0-9c70-42fc-ae3e-bb590046b0fe/0/323030313a6466323a323263303a3a2f34382d3438203d3e20313431393337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:22c0::/48 Signature Algorithm: sha256WithRSAEncryption 62:39:c9:f5:d8:84:bf:a9:bc:4d:10:87:2e:97:86:23:01:c8: 71:09:3c:87:aa:2a:11:2e:ce:3d:df:41:7a:7e:96:1c:4e:7d: 88:25:f6:99:cc:32:97:f9:69:a5:ec:4b:20:86:91:e3:16:b2: 2f:4a:52:8b:24:c1:12:58:d9:24:b2:c7:cb:fe:dd:9e:9e:c0: 97:e6:14:ef:11:87:dc:78:b0:5c:bc:a6:49:f8:a3:0d:16:33: 1e:70:80:10:e2:18:85:17:dc:f5:d9:12:1a:9d:ed:7a:d5:a9: 4a:30:89:94:2e:53:1f:8c:af:ff:3f:7c:00:07:3b:e4:cc:14: ae:b1:60:9d:31:f6:2d:59:fa:77:9d:f1:b3:af:fc:88:d3:24: 32:4c:11:b6:52:03:2a:1b:1c:ab:94:ba:e4:4b:1d:b3:a8:10: 89:d2:88:cb:11:53:a6:88:e6:77:6c:9f:f2:73:af:db:a7:86: 86:ee:7c:f1:c4:1b:96:39:a2:96:0f:91:4c:11:de:ce:ef:ef: 08:b9:2a:8f:b7:03:43:7a:ff:e3:f8:06:65:9a:6b:12:b6:7c: af:9f:60:f4:14:b0:e9:4b:0d:fa:fd:10:f6:07:ca:0d:b3:6e: de:e6:2d:20:1d:64:f7:54:41:eb:50:ca:ce:27:b8:39:ee:95: af:01:1a:9c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUQcvyeRTl4qWpZSzJO1wxImRheYowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjAxRDEyMzQzMERBRjkyODhBN0RGRDYyOEY4OTJEQjU2 OTFCODhGMzAeFw0yNDAyMjcwNDU2MDNaFw0yNTAyMjUwNTAxMDNaMDMxMTAvBgNV BAMTKEQ4NkNBMkU5RDMxNDhCODRCQkZBNDRCMDc5Njc0NkNCNjlGNUIyQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5rT2I694NOAq3E3MYxjSCx7W1 qFZAfStzxRa8pPXDBVc+Wvndn6dma0SNRqzlIBeVvBm3JgsXYKKgaAXIbD3wx7dY wHDaAgbLoqcPC9eLsi3zjozERSG9MLfHufXP37Ze/otGw+YR8p5TOg01ylnvNttU PDAQErVqm3BRHnIxPFVGj7NvLTsw3d+AOxuaVJ11XuNh5UFYxFxcnJABm0kWNEgu EWdhgfgIxRwvbi+2Ksts+8kIhTw7ahg2YBHd4WLCnYi29fxm/hirpMfnslttmvLO WQ0YX53QdKPNPSIc2Q8Wj61bFEiaqg56JUvHCkg9wY/0Z6ilxwEGZYfJyUGpAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU2Gyi6dMUi4S7+kSweWdGy2n1sqAwHwYDVR0j BBgwFoAUYB0SNDDa+SiKff1ij4kttWkbiPMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NGFhZTNmMC05YzcwLTQyZmMtYWUzZS1iYjU5MDA0NmIwZmUvMC82MDFEMTIzNDMw REFGOTI4OEE3REZENjI4Rjg5MkRCNTY5MUI4OEYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjAxRDEyMzQzMERBRjkyODhBN0RGRDYyOEY4OTJEQjU2OTFC ODhGMy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0YWFlM2YwLTljNzAtNDJmYy1h ZTNlLWJiNTkwMDQ2YjBmZS8wLzMyMzAzMDMxM2E2NDY2MzIzYTMyMzI2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMxMzkzMzM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8iLAMA0GCSqGSIb3DQEBCwUAA4IBAQBiOcn12IS/qbxNEIcul4YjAchxCTyHqioR Ls4930F6fpYcTn2IJfaZzDKX+Wml7EsghpHjFrIvSlKLJMESWNkkssfL/t2ensCX 5hTvEYfceLBcvKZJ+KMNFjMecIAQ4hiFF9z12RIane161alKMImULlMfjK//P3wA BzvkzBSusWCdMfYtWfp3nfGzr/yI0yQyTBG2UgMqGxyrlLrkSx2zqBCJ0ojLEVOm iOZ3bJ/yc6/bp4aG7nzxxBuWOaKWD5FMEd7O7+8IuSqPtwNDev/j+AZlmmsStnyv n2D0FLDpSw36/RD2B8oNs27e5i0gHWT3VEHrUMrOJ7g57pWvARqc -----END CERTIFICATE-----Generated at Thu May 2 11:32:09 2024 by rpki-client on console-fra.rpki-client.org