$ rpki-client -vvf repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/323030313a6466303a3266633a3a2f34382d3438203d3e203538343034.roa File: 323030313a6466303a3266633a3a2f34382d3438203d3e203538343034.roa (raw, json) Hash identifier: ZuvrSecsDpPHhtDYv++FNUvAYFbNWQ7mE+i4fAbhYz0= Subject key identifier: 88:C8:6C:C5:A0:16:3A:1F:5D:C4:7C:BE:5D:ED:B4:B4:54:58:24:A3 Certificate issuer: /CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A Certificate serial: 480117C49851966302F21479EC5A7FF9E8C2454E Authority key identifier: C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/323030313a6466303a3266633a3a2f34382d3438203d3e203538343034.roa Signing time: Wed 09 Aug 2023 08:00:00 +0000 ROA not before: Wed 09 Aug 2023 07:55:00 +0000 ROA not after: Wed 07 Aug 2024 08:00:00 +0000 asID: 58404 IP address blocks: 2001:df0:2fc::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 06:31:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:01:17:c4:98:51:96:63:02:f2:14:79:ec:5a:7f:f9:e8:c2:45:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A Validity Not Before: Aug 9 07:55:00 2023 GMT Not After : Aug 7 08:00:00 2024 GMT Subject: CN=88C86CC5A0163A1F5DC47CBE5DEDB4B4545824A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b4:6b:7b:22:22:8d:6b:9d:b4:25:62:51:10: ad:a3:5b:f0:a4:7e:5e:be:dc:bb:c8:a2:56:cc:b2: 31:a8:a5:70:c9:43:a1:ee:ae:2d:83:20:37:c0:21: c3:62:50:37:d3:9a:cb:5e:db:e1:01:02:fc:13:ca: f2:a9:a1:70:8f:21:81:7c:88:72:c4:fa:44:1d:17: 9f:02:6b:0b:a9:01:21:77:77:0d:28:f6:06:9e:35: 86:27:cf:23:cf:33:22:45:77:34:dc:72:43:a8:b3: 3e:b0:52:97:40:2e:ab:17:07:9b:cf:b0:e3:89:06: c5:a0:d9:00:76:9c:aa:e6:ff:c4:f0:7e:2f:0b:d0: 4e:67:16:da:3c:ee:56:bc:73:3b:dd:67:49:59:d7: 1b:d5:4a:cc:48:76:ca:ca:f5:a0:aa:ea:5b:98:30: 2c:a7:df:86:53:53:2d:d0:66:aa:ba:50:0e:ff:8c: 2b:f7:e9:4a:60:26:6d:fb:07:d7:b9:dc:b7:aa:66: 3b:58:d7:22:d5:71:e3:99:9b:f3:c0:05:67:05:5b: 23:2b:5b:4e:1b:a3:4a:98:12:dd:a5:51:9f:5e:00: d8:7b:da:eb:24:44:d0:10:ea:91:c2:59:81:53:c7: c7:e1:ff:31:9d:8e:59:f7:c6:c5:c1:f3:98:3b:12: 0f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:C8:6C:C5:A0:16:3A:1F:5D:C4:7C:BE:5D:ED:B4:B4:54:58:24:A3 X509v3 Authority Key Identifier: keyid:C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/323030313a6466303a3266633a3a2f34382d3438203d3e203538343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:2fc::/48 Signature Algorithm: sha256WithRSAEncryption 9d:a0:b2:91:33:a8:51:1f:8f:2d:95:01:31:38:fd:0d:e2:1f: d4:86:8d:0d:a8:5a:bb:71:92:5b:f1:b3:c0:e5:82:d2:93:ea: d4:cd:75:24:fd:65:2c:ee:38:75:50:b4:02:d3:37:42:06:06: 71:be:9c:4a:3f:00:29:ca:d5:c8:6d:bb:d2:42:9f:54:e9:18: 83:9b:33:33:2e:6f:63:85:d6:21:cc:be:da:19:e7:b0:77:a7: 35:9e:82:35:86:13:92:37:b9:6d:7a:8a:2c:1c:fa:cb:a1:1a: 73:e8:22:e2:d6:fb:b3:04:f5:5c:4d:a1:d2:fe:4a:1b:ad:3f: 5a:62:fe:45:20:65:ab:25:ce:bc:4b:50:71:bf:6d:28:a1:61: 75:d6:d4:d0:fe:a1:53:c6:f4:c9:68:4f:be:74:68:9b:d3:b6: 99:dc:55:e1:d2:91:d5:68:d3:63:bd:c1:b3:57:64:5b:d8:84: 18:dd:ee:f0:b7:6b:63:ae:4d:19:dd:00:d0:2f:9c:70:9f:41: 98:30:03:67:20:21:90:01:13:1c:45:8f:dc:2a:91:e6:d7:58: a6:05:19:2a:47:92:3f:2f:41:70:4d:87:e5:ad:9d:52:5e:a2: dd:fe:9b:39:b3:55:4b:a2:d7:6a:1c:f4:d0:91:cc:ec:8a:e8: 03:c3:76:5a -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUSAEXxJhRlmMC8hR57Fp/+ejCRU4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZG QjQ4ODcxQTAeFw0yMzA4MDkwNzU1MDBaFw0yNDA4MDcwODAwMDBaMDMxMTAvBgNV BAMTKDg4Qzg2Q0M1QTAxNjNBMUY1REM0N0NCRTVERURCNEI0NTQ1ODI0QTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7tGt7IiKNa520JWJREK2jW/Ck fl6+3LvIolbMsjGopXDJQ6Huri2DIDfAIcNiUDfTmste2+EBAvwTyvKpoXCPIYF8 iHLE+kQdF58CawupASF3dw0o9gaeNYYnzyPPMyJFdzTcckOosz6wUpdALqsXB5vP sOOJBsWg2QB2nKrm/8Twfi8L0E5nFto87la8czvdZ0lZ1xvVSsxIdsrK9aCq6luY MCyn34ZTUy3QZqq6UA7/jCv36UpgJm37B9e53LeqZjtY1yLVceOZm/PABWcFWyMr W04bo0qYEt2lUZ9eANh72uskRNAQ6pHCWYFTx8fh/zGdjln3xsXB85g7Eg9xAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUiMhsxaAWOh9dxHy+Xe20tFRYJKMwHwYDVR0j BBgwFoAUwlRKDB7oq/naBhRQCTABL/tIhxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTBmOTE2My0zZTVhLTRlZmEtOGJkOS00YWM0YmM2MzA0MTQvMC9DMjU0NEEwQzFF RThBQkY5REEwNjE0NTAwOTMwMDEyRkZCNDg4NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZGQjQ4 ODcxQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlMGY5MTYzLTNlNWEtNGVmYS04 YmQ5LTRhYzRiYzYzMDQxNC8wLzMyMzAzMDMxM2E2NDY2MzAzYTMyNjY2MzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNDMwMzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ3wAvww DQYJKoZIhvcNAQELBQADggEBAJ2gspEzqFEfjy2VATE4/Q3iH9SGjQ2oWrtxklvx s8DlgtKT6tTNdST9ZSzuOHVQtALTN0IGBnG+nEo/ACnK1chtu9JCn1TpGIObMzMu b2OF1iHMvtoZ57B3pzWegjWGE5I3uW16iiwc+suhGnPoIuLW+7ME9VxNodL+Shut P1pi/kUgZaslzrxLUHG/bSihYXXW1ND+oVPG9MloT750aJvTtpncVeHSkdVo02O9 wbNXZFvYhBjd7vC3a2OuTRndANAvnHCfQZgwA2cgIZABExxFj9wqkebXWKYFGSpH kj8vQXBNh+WtnVJeot3+mzmzVUui12oc9NCRzOyK6APDdlo= -----END CERTIFICATE-----Generated at Tue Apr 30 21:36:09 2024 by rpki-client on console-fra.rpki-client.org