$ rpki-client -vvf repo-rpki.idnic.net/repo/7b3eabb4-4db3-4373-a348-fb1ed7055651/0/323030313a6466333a356238303a3a2f34382d3438203d3e20313430333839.roa File: 323030313a6466333a356238303a3a2f34382d3438203d3e20313430333839.roa (raw, json) Hash identifier: ptqfddn+LmGBR0sbHJsF6b8Kh9RzspUjeHivKr6YmXg= Subject key identifier: CD:E8:E8:FF:5D:50:79:F3:5D:07:D1:52:5A:9A:E4:31:B9:04:08:A6 Certificate issuer: /CN=5C413D56294D9D20E64978B7296A9DA893C32CAB Certificate serial: 1DE7E873BE68483DB3089A7A4285FB5353C02F05 Authority key identifier: 5C:41:3D:56:29:4D:9D:20:E6:49:78:B7:29:6A:9D:A8:93:C3:2C:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C413D56294D9D20E64978B7296A9DA893C32CAB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7b3eabb4-4db3-4373-a348-fb1ed7055651/0/323030313a6466333a356238303a3a2f34382d3438203d3e20313430333839.roa Signing time: Tue 06 Feb 2024 04:00:48 +0000 ROA not before: Tue 06 Feb 2024 03:55:48 +0000 ROA not after: Tue 04 Feb 2025 04:00:48 +0000 asID: 140389 IP address blocks: 2001:df3:5b80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7b3eabb4-4db3-4373-a348-fb1ed7055651/0/5C413D56294D9D20E64978B7296A9DA893C32CAB.crl rsync://repo-rpki.idnic.net/repo/7b3eabb4-4db3-4373-a348-fb1ed7055651/0/5C413D56294D9D20E64978B7296A9DA893C32CAB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C413D56294D9D20E64978B7296A9DA893C32CAB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:e7:e8:73:be:68:48:3d:b3:08:9a:7a:42:85:fb:53:53:c0:2f:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5C413D56294D9D20E64978B7296A9DA893C32CAB Validity Not Before: Feb 6 03:55:48 2024 GMT Not After : Feb 4 04:00:48 2025 GMT Subject: CN=CDE8E8FF5D5079F35D07D1525A9AE431B90408A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:2c:cb:01:d1:31:b8:8a:7a:a2:58:ac:c8:28: 82:0b:49:d2:57:84:67:1d:24:70:68:be:f0:82:59: 44:28:a5:22:29:34:ae:6f:33:e6:24:13:46:2d:a2: dc:b5:45:cc:4a:ef:1b:ab:00:50:de:ca:5e:2d:59: 11:98:98:5a:85:e3:37:7f:5a:08:fd:3d:7a:cd:c1: fe:37:38:f1:b1:32:7c:e2:e2:58:87:0a:8d:d4:24: e4:5f:7a:fc:26:39:c4:69:45:03:e4:fe:f7:65:48: 4a:12:a7:c4:61:3c:3d:34:7e:99:ee:41:d7:04:79: 8a:36:42:ca:b0:e1:2f:3a:0c:af:5c:5e:3e:93:3d: e2:9b:7f:7e:76:7a:65:1f:df:c9:e0:9d:aa:66:e9: aa:db:e3:a1:14:33:dc:6d:3d:fd:f7:bc:84:c4:fb: 2f:8f:7e:79:35:f5:26:d0:1a:c5:b5:a4:b5:5d:fd: 6b:08:ee:2f:eb:56:e2:60:96:64:68:62:e0:8c:7a: 48:cc:d5:e7:3e:bb:ee:e8:36:20:ea:9f:bc:7e:db: 96:70:f7:df:74:ee:8c:3b:c7:d1:8e:ea:ad:54:30: 64:0e:14:22:e3:88:36:f8:ce:13:1c:86:f0:20:6b: 0f:3e:fa:03:34:90:ea:68:17:9a:94:8a:d8:fb:c1: 0c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:E8:E8:FF:5D:50:79:F3:5D:07:D1:52:5A:9A:E4:31:B9:04:08:A6 X509v3 Authority Key Identifier: keyid:5C:41:3D:56:29:4D:9D:20:E6:49:78:B7:29:6A:9D:A8:93:C3:2C:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7b3eabb4-4db3-4373-a348-fb1ed7055651/0/5C413D56294D9D20E64978B7296A9DA893C32CAB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C413D56294D9D20E64978B7296A9DA893C32CAB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b3eabb4-4db3-4373-a348-fb1ed7055651/0/323030313a6466333a356238303a3a2f34382d3438203d3e20313430333839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:5b80::/48 Signature Algorithm: sha256WithRSAEncryption c3:62:c2:86:3c:f9:37:79:f3:43:5a:0c:e8:c7:e4:ac:eb:b3: 49:aa:19:ed:50:71:5e:2a:78:b2:42:58:67:05:d7:c7:e2:0a: 9d:7a:27:83:f7:96:61:01:ed:68:e8:78:7d:d7:37:a2:1d:5d: 84:c7:fd:c2:d9:c1:c5:0d:f4:0b:29:c7:88:11:f1:36:40:75: 5e:b3:15:8d:f1:c4:54:07:e5:5e:05:aa:65:0c:27:d3:8d:33: 8f:ce:3e:fc:ee:0f:fd:24:4b:8a:a3:ea:47:53:57:82:82:ac: 12:91:bb:0c:22:9e:19:42:a9:30:77:b2:a4:36:65:b8:c2:14: 3b:29:5c:55:d4:8b:35:21:13:c3:7b:31:81:8f:6c:a7:3f:59: f2:99:bf:70:b9:ef:95:ac:d5:d1:e8:03:df:dc:09:c4:cf:32: f5:b1:cb:dc:31:13:63:ef:67:1e:cf:81:44:7f:bc:bf:9b:89: 32:a0:96:82:c4:02:49:8b:72:00:20:ba:61:c4:f5:9e:ae:25: 6f:1d:62:a2:a0:6b:d0:71:10:65:ca:eb:95:d1:9f:2b:c6:70: 92:e6:8f:c5:08:12:c5:38:eb:6f:e3:e6:5c:c3:72:81:8d:fb: 9c:50:5a:88:a8:b9:ab:0f:55:f9:10:6a:49:c7:89:c8:3e:d5: de:ff:d1:95 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUHefoc75oSD2zCJp6QoX7U1PALwUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUM0MTNENTYyOTREOUQyMEU2NDk3OEI3Mjk2QTlEQTg5 M0MzMkNBQjAeFw0yNDAyMDYwMzU1NDhaFw0yNTAyMDQwNDAwNDhaMDMxMTAvBgNV BAMTKENERThFOEZGNUQ1MDc5RjM1RDA3RDE1MjVBOUFFNDMxQjkwNDA4QTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjLMsB0TG4inqiWKzIKIILSdJX hGcdJHBovvCCWUQopSIpNK5vM+YkE0Ytoty1RcxK7xurAFDeyl4tWRGYmFqF4zd/ Wgj9PXrNwf43OPGxMnzi4liHCo3UJORfevwmOcRpRQPk/vdlSEoSp8RhPD00fpnu QdcEeYo2Qsqw4S86DK9cXj6TPeKbf352emUf38ngnapm6arb46EUM9xtPf33vITE +y+Pfnk19SbQGsW1pLVd/WsI7i/rVuJglmRoYuCMekjM1ec+u+7oNiDqn7x+25Zw 99907ow7x9GO6q1UMGQOFCLjiDb4zhMchvAgaw8++gM0kOpoF5qUitj7wQwLAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUzejo/11QefNdB9FSWprkMbkECKYwHwYDVR0j BBgwFoAUXEE9VilNnSDmSXi3KWqdqJPDLKswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YjNlYWJiNC00ZGIzLTQzNzMtYTM0OC1mYjFlZDcwNTU2NTEvMC81QzQxM0Q1NjI5 NEQ5RDIwRTY0OTc4QjcyOTZBOURBODkzQzMyQ0FCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUM0MTNENTYyOTREOUQyMEU2NDk3OEI3Mjk2QTlEQTg5M0Mz MkNBQi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdiM2VhYmI0LTRkYjMtNDM3My1h MzQ4LWZiMWVkNzA1NTY1MS8wLzMyMzAzMDMxM2E2NDY2MzMzYTM1NjIzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMwMzMzODM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 81uAMA0GCSqGSIb3DQEBCwUAA4IBAQDDYsKGPPk3efNDWgzox+Ss67NJqhntUHFe KniyQlhnBdfH4gqdeieD95ZhAe1o6Hh91zeiHV2Ex/3C2cHFDfQLKceIEfE2QHVe sxWN8cRUB+VeBaplDCfTjTOPzj787g/9JEuKo+pHU1eCgqwSkbsMIp4ZQqkwd7Kk NmW4whQ7KVxV1Is1IRPDezGBj2ynP1nymb9wue+VrNXR6APf3AnEzzL1scvcMRNj 72cez4FEf7y/m4kyoJaCxAJJi3IAILphxPWeriVvHWKioGvQcRBlyuuV0Z8rxnCS 5o/FCBLFOOtv4+Zcw3KBjfucUFqIqLmrD1X5EGpJx4nIPtXe/9GV -----END CERTIFICATE-----Generated at Fri Jun 21 19:32:09 2024 by rpki-client on console-ams.rpki-client.org