$ rpki-client -vvf repo-rpki.idnic.net/repo/918ad7a6-c907-4359-aba5-d5748ba16176/0/323030313a6466303a333330303a3a2f34382d3438203d3e20313333383339.roa File: 323030313a6466303a333330303a3a2f34382d3438203d3e20313333383339.roa (raw, json) Hash identifier: U57TvsyeYe3656uo7bc4KAppgcpFT0EDBzBYlxfq6sA= Subject key identifier: D8:D2:63:A8:33:15:4B:3A:E2:C3:69:1C:91:61:D4:F1:33:32:37:3F Certificate issuer: /CN=C7D4D30314160FDACB9582CF972E90EC10AE206F Certificate serial: 35A23D8D6383748BA4FBA52CF6DC96951E527BF3 Authority key identifier: C7:D4:D3:03:14:16:0F:DA:CB:95:82:CF:97:2E:90:EC:10:AE:20:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7D4D30314160FDACB9582CF972E90EC10AE206F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/918ad7a6-c907-4359-aba5-d5748ba16176/0/323030313a6466303a333330303a3a2f34382d3438203d3e20313333383339.roa Signing time: Mon 31 Jul 2023 00:08:16 +0000 ROA not before: Mon 31 Jul 2023 00:03:16 +0000 ROA not after: Mon 29 Jul 2024 00:08:16 +0000 asID: 133839 IP address blocks: 2001:df0:3300::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/918ad7a6-c907-4359-aba5-d5748ba16176/0/C7D4D30314160FDACB9582CF972E90EC10AE206F.crl rsync://repo-rpki.idnic.net/repo/918ad7a6-c907-4359-aba5-d5748ba16176/0/C7D4D30314160FDACB9582CF972E90EC10AE206F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7D4D30314160FDACB9582CF972E90EC10AE206F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:36:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:a2:3d:8d:63:83:74:8b:a4:fb:a5:2c:f6:dc:96:95:1e:52:7b:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C7D4D30314160FDACB9582CF972E90EC10AE206F Validity Not Before: Jul 31 00:03:16 2023 GMT Not After : Jul 29 00:08:16 2024 GMT Subject: CN=D8D263A833154B3AE2C3691C9161D4F13332373F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:eb:b4:97:ab:38:14:8e:ef:96:b6:a5:e6:53: c7:0a:9c:cd:4b:82:e6:ff:d1:64:be:42:e9:e0:01: a0:39:13:8f:65:51:cb:1b:29:80:a2:7a:ea:b8:93: fa:3b:b1:5b:94:0d:ab:07:4b:54:78:24:20:19:41: 5b:ab:54:c7:bd:35:a7:30:66:fb:f0:8f:10:f8:ea: 36:fe:39:98:77:7f:f3:f4:03:e5:84:78:fa:62:87: 23:b6:96:cb:39:18:73:34:4f:61:ce:18:68:c6:d0: 90:91:76:0a:1f:86:a6:91:4c:65:1c:6d:94:e8:a4: 07:f9:1d:7c:05:d1:15:2b:ac:46:a3:ca:13:98:97: e8:54:d3:93:f0:f0:c2:0a:f9:4d:01:00:9d:3b:9b: 83:d9:c9:4d:f2:9d:ef:32:33:dc:c5:df:0e:4a:a8: 9a:bd:68:d3:48:67:71:67:37:de:31:1c:85:68:50: 11:b9:af:cb:74:84:07:50:3d:67:66:94:1f:97:a6: 33:40:84:69:b4:e8:58:d3:ed:40:56:29:62:5c:56: a8:16:7e:b1:b0:00:77:1a:86:82:53:12:83:5b:fc: 92:4a:12:4b:b0:3f:8b:2e:93:52:0b:dd:8c:2b:33: 45:57:ed:c8:1e:91:44:25:94:c0:8a:d1:c3:32:c6: 74:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:D2:63:A8:33:15:4B:3A:E2:C3:69:1C:91:61:D4:F1:33:32:37:3F X509v3 Authority Key Identifier: keyid:C7:D4:D3:03:14:16:0F:DA:CB:95:82:CF:97:2E:90:EC:10:AE:20:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/918ad7a6-c907-4359-aba5-d5748ba16176/0/C7D4D30314160FDACB9582CF972E90EC10AE206F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7D4D30314160FDACB9582CF972E90EC10AE206F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/918ad7a6-c907-4359-aba5-d5748ba16176/0/323030313a6466303a333330303a3a2f34382d3438203d3e20313333383339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:3300::/48 Signature Algorithm: sha256WithRSAEncryption 45:f8:26:0b:6a:61:32:8f:8c:09:04:e3:ef:ea:18:05:ff:fe: d5:45:1d:21:78:2b:b0:73:36:5a:88:29:4e:a2:87:52:fc:66: 7c:dc:4f:eb:19:65:d0:f2:f6:63:94:8a:5a:75:7b:e7:8f:42: 68:37:c0:7e:6d:84:8a:a3:b7:29:c5:f4:b3:89:c2:89:18:0f: 96:44:89:5c:4b:62:c0:11:dc:ce:d6:6a:37:80:a7:20:09:db: 48:2b:a8:30:dc:5d:d1:96:ff:07:b4:96:e2:1d:b9:b6:10:48: b4:a9:bb:05:5d:48:8d:d6:ce:b2:e7:df:76:12:64:3c:ab:1a: 89:d1:e1:39:f2:69:52:b9:64:d9:05:41:a3:8d:ee:36:88:5b: 7e:85:4f:0b:a1:6f:d4:bf:c7:01:19:80:aa:b1:55:e4:69:88: 12:94:fb:b0:a4:e8:3a:82:54:99:2c:c9:09:a6:d0:7c:35:6b: df:8d:65:13:7c:8d:2e:ed:25:50:9f:b8:7a:66:9b:78:6b:e6: aa:75:08:a9:78:d1:dc:6c:42:b6:66:33:ee:4a:47:1e:55:4f: cd:ca:2f:7b:16:16:19:d6:76:88:a3:aa:e0:d1:a6:28:89:a3: fe:3f:dc:ee:c0:2d:ef:7d:89:86:d6:08:17:f4:c1:74:55:78: 68:00:94:a1 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUNaI9jWODdIuk+6Us9tyWlR5Se/MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzdENEQzMDMxNDE2MEZEQUNCOTU4MkNGOTcyRTkwRUMx MEFFMjA2RjAeFw0yMzA3MzEwMDAzMTZaFw0yNDA3MjkwMDA4MTZaMDMxMTAvBgNV BAMTKEQ4RDI2M0E4MzMxNTRCM0FFMkMzNjkxQzkxNjFENEYxMzMzMjM3M0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN67SXqzgUju+WtqXmU8cKnM1L gub/0WS+QungAaA5E49lUcsbKYCieuq4k/o7sVuUDasHS1R4JCAZQVurVMe9Nacw ZvvwjxD46jb+OZh3f/P0A+WEePpihyO2lss5GHM0T2HOGGjG0JCRdgofhqaRTGUc bZTopAf5HXwF0RUrrEajyhOYl+hU05Pw8MIK+U0BAJ07m4PZyU3yne8yM9zF3w5K qJq9aNNIZ3FnN94xHIVoUBG5r8t0hAdQPWdmlB+XpjNAhGm06FjT7UBWKWJcVqgW frGwAHcahoJTEoNb/JJKEkuwP4suk1IL3YwrM0VX7cgekUQllMCK0cMyxnT9AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU2NJjqDMVSzriw2kckWHU8TMyNz8wHwYDVR0j BBgwFoAUx9TTAxQWD9rLlYLPly6Q7BCuIG8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MThhZDdhNi1jOTA3LTQzNTktYWJhNS1kNTc0OGJhMTYxNzYvMC9DN0Q0RDMwMzE0 MTYwRkRBQ0I5NTgyQ0Y5NzJFOTBFQzEwQUUyMDZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzdENEQzMDMxNDE2MEZEQUNCOTU4MkNGOTcyRTkwRUMxMEFF MjA2Ri5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxOGFkN2E2LWM5MDctNDM1OS1h YmE1LWQ1NzQ4YmExNjE3Ni8wLzMyMzAzMDMxM2E2NDY2MzAzYTMzMzMzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMzMzgzMzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8DMAMA0GCSqGSIb3DQEBCwUAA4IBAQBF+CYLamEyj4wJBOPv6hgF//7VRR0heCuw czZaiClOoodS/GZ83E/rGWXQ8vZjlIpadXvnj0JoN8B+bYSKo7cpxfSzicKJGA+W RIlcS2LAEdzO1mo3gKcgCdtIK6gw3F3Rlv8HtJbiHbm2EEi0qbsFXUiN1s6y5992 EmQ8qxqJ0eE58mlSuWTZBUGjje42iFt+hU8LoW/Uv8cBGYCqsVXkaYgSlPuwpOg6 glSZLMkJptB8NWvfjWUTfI0u7SVQn7h6Zpt4a+aqdQipeNHcbEK2ZjPuSkceVU/N yi97FhYZ1naIo6rg0aYoiaP+P9zuwC3vfYmG1ggX9MF0VXhoAJSh -----END CERTIFICATE-----Generated at Sat Jun 1 22:59:26 2024 by rpki-client on console-fra.rpki-client.org