$ rpki-client -vvf repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a31303a3a2f34382d3438203d3e203338373539.roa File: 323030313a6436383a31303a3a2f34382d3438203d3e203338373539.roa (raw, json) Hash identifier: 5j74INw5X5Y3shm7BtJzBJ2P8kjDp1NYQcLdh80Tczc= Subject key identifier: 1F:F7:9E:12:2D:38:C9:09:ED:FF:4A:E5:6F:BE:72:78:7F:CE:9C:2E Certificate issuer: /CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Certificate serial: 0F706D804982BD1464D9D5865DD75D67BDFA4595 Authority key identifier: 42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a31303a3a2f34382d3438203d3e203338373539.roa Signing time: Thu 17 Aug 2023 09:00:00 +0000 ROA not before: Thu 17 Aug 2023 08:55:00 +0000 ROA not after: Thu 15 Aug 2024 09:00:00 +0000 asID: 38759 IP address blocks: 2001:d68:10::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:70:6d:80:49:82:bd:14:64:d9:d5:86:5d:d7:5d:67:bd:fa:45:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Validity Not Before: Aug 17 08:55:00 2023 GMT Not After : Aug 15 09:00:00 2024 GMT Subject: CN=1FF79E122D38C909EDFF4AE56FBE72787FCE9C2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:5a:a9:dd:71:9c:53:c8:32:3e:54:f4:08:50: fa:14:89:70:9b:f0:15:27:76:50:b8:f9:99:b9:4f: bb:78:ec:ac:8f:11:1a:f2:66:48:c1:a9:5c:f4:82: 7b:53:77:0c:56:a9:4e:c6:ba:02:e0:5e:50:12:64: 9a:2f:32:28:69:08:05:3f:ad:7e:47:ff:62:d0:28: b0:d9:8a:e7:d5:50:59:1b:c2:17:e8:28:f0:eb:bd: 75:30:f9:75:02:50:fe:cb:02:d4:50:6c:f4:f0:01: ca:85:8f:88:0e:ab:7f:7a:61:e3:29:64:f8:8f:57: 4f:e9:57:61:64:a9:31:0d:8f:8a:e5:49:80:d0:ca: 11:5f:c7:b7:a2:33:ca:46:fc:97:38:9e:e7:da:ae: a0:1b:17:59:e8:5f:76:f3:16:dd:8f:53:cd:a3:89: 65:a7:42:8f:f3:4b:a4:a9:1a:d1:f2:b7:64:44:80: 2d:d7:e8:12:82:ed:02:96:c3:36:b6:7a:b9:7c:fa: 26:ba:71:c0:88:04:44:e8:35:da:69:e2:c7:9f:33: 9d:eb:09:70:1d:60:78:b6:26:f1:38:de:55:f4:e9: 6e:57:0c:bf:e0:59:ec:d6:da:ce:bf:31:c9:9a:ed: fa:c2:c4:e9:42:34:ae:6e:28:df:bd:69:f1:42:4d: 05:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:F7:9E:12:2D:38:C9:09:ED:FF:4A:E5:6F:BE:72:78:7F:CE:9C:2E X509v3 Authority Key Identifier: keyid:42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a31303a3a2f34382d3438203d3e203338373539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:d68:10::/48 Signature Algorithm: sha256WithRSAEncryption 70:59:2d:68:77:35:bf:66:76:50:a3:2f:b1:82:0d:ea:e2:47: 50:27:ec:05:bf:01:d8:c0:f9:f3:9b:79:63:03:b3:a5:03:d5: 96:b1:66:9b:9a:5d:d7:eb:f5:ac:f0:ad:f9:5d:05:94:fd:a5: 42:82:00:c0:c5:67:29:c6:10:c9:e8:d2:24:e4:94:02:54:37: 22:9d:49:c7:f1:86:00:dc:5c:07:db:ce:1a:35:3c:5d:81:ce: 44:55:3d:e1:96:a9:84:bb:c5:c7:54:3a:3c:bf:60:d1:10:8e: 25:51:df:f0:89:2c:e6:a9:44:d9:73:43:a8:1a:95:0f:86:76: bd:dd:90:57:c5:4b:16:01:6b:4b:83:70:32:76:1d:81:2c:76: d9:27:9f:7c:0b:59:11:21:26:05:1f:1b:88:1f:32:d9:25:a0: a9:1c:8b:c4:cb:f2:79:b6:03:b5:2c:50:e2:a8:48:6a:d6:dc: 7d:8f:cf:68:5f:c4:16:41:01:bf:38:47:66:6d:64:f4:86:8e: 58:46:85:51:c8:7d:63:bc:90:6d:ad:9c:8a:db:4c:11:da:2b: 24:8e:b9:79:3d:16:dd:99:68:ae:4b:a4:b2:3b:d2:77:49:e2: fa:be:4d:b6:ff:ec:86:5e:72:dd:9a:5c:02:a2:f3:0c:a7:3b: 76:cb:94:67 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUD3BtgEmCvRRk2dWGXdddZ736RZUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFF QzdDQTMwNjAeFw0yMzA4MTcwODU1MDBaFw0yNDA4MTUwOTAwMDBaMDMxMTAvBgNV BAMTKDFGRjc5RTEyMkQzOEM5MDlFREZGNEFFNTZGQkU3Mjc4N0ZDRTlDMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbWqndcZxTyDI+VPQIUPoUiXCb 8BUndlC4+Zm5T7t47KyPERryZkjBqVz0gntTdwxWqU7GugLgXlASZJovMihpCAU/ rX5H/2LQKLDZiufVUFkbwhfoKPDrvXUw+XUCUP7LAtRQbPTwAcqFj4gOq396YeMp ZPiPV0/pV2FkqTENj4rlSYDQyhFfx7eiM8pG/Jc4nufarqAbF1noX3bzFt2PU82j iWWnQo/zS6SpGtHyt2REgC3X6BKC7QKWwza2erl8+ia6ccCIBEToNdpp4sefM53r CXAdYHi2JvE43lX06W5XDL/gWezW2s6/Mcma7frCxOlCNK5uKN+9afFCTQURAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUH/eeEi04yQnt/0rlb75yeH/OnC4wHwYDVR0j BBgwFoAUQgQuZytojDBy/UdDs+fdgex8owYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTJmMjI4Yy1kZjIwLTQ3MjgtOWY5Ni04ZmFhMTM0MDAxN2EvMC80MjA0MkU2NzJC Njg4QzMwNzJGRDQ3NDNCM0U3REQ4MUVDN0NBMzA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFFQzdD QTMwNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExMmYyMjhjLWRmMjAtNDcyOC05 Zjk2LThmYWExMzQwMDE3YS8wLzMyMzAzMDMxM2E2NDM2MzgzYTMxMzAzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzczNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAENaAAQMA0G CSqGSIb3DQEBCwUAA4IBAQBwWS1odzW/ZnZQoy+xgg3q4kdQJ+wFvwHYwPnzm3lj A7OlA9WWsWabml3X6/Ws8K35XQWU/aVCggDAxWcpxhDJ6NIk5JQCVDcinUnH8YYA 3FwH284aNTxdgc5EVT3hlqmEu8XHVDo8v2DREI4lUd/wiSzmqUTZc0OoGpUPhna9 3ZBXxUsWAWtLg3Aydh2BLHbZJ598C1kRISYFHxuIHzLZJaCpHIvEy/J5tgO1LFDi qEhq1tx9j89oX8QWQQG/OEdmbWT0ho5YRoVRyH1jvJBtrZyK20wR2iskjrl5PRbd mWiuS6SyO9J3SeL6vk22/+yGXnLdmlwCovMMpzt2y5Rn -----END CERTIFICATE-----Generated at Sat Jun 1 14:35:01 2024 by rpki-client on console-fra.rpki-client.org