$ rpki-client -vvf repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/323030313a6466333a623838303a3a2f34382d3438203d3e203137353338.roa File: 323030313a6466333a623838303a3a2f34382d3438203d3e203137353338.roa (raw, json) Hash identifier: LCO+PN58OXb5KEAvyi8FYebcsQyEdjlfbYHjVqcT7vM= Subject key identifier: CF:7B:2A:AC:52:96:DF:F3:02:F5:16:6F:81:F2:7D:D8:81:8E:69:C1 Certificate issuer: /CN=6A75F95EA11C3F984C5C610FE9222026394BA8E9 Certificate serial: 2EF91167F9F34BABB144A9C5E5EA20390CE5D9AC Authority key identifier: 6A:75:F9:5E:A1:1C:3F:98:4C:5C:61:0F:E9:22:20:26:39:4B:A8:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A75F95EA11C3F984C5C610FE9222026394BA8E9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/323030313a6466333a623838303a3a2f34382d3438203d3e203137353338.roa Signing time: Mon 31 Jul 2023 00:08:29 +0000 ROA not before: Mon 31 Jul 2023 00:03:29 +0000 ROA not after: Mon 29 Jul 2024 00:08:29 +0000 asID: 17538 IP address blocks: 2001:df3:b880::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/6A75F95EA11C3F984C5C610FE9222026394BA8E9.crl rsync://repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/6A75F95EA11C3F984C5C610FE9222026394BA8E9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A75F95EA11C3F984C5C610FE9222026394BA8E9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 12:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:f9:11:67:f9:f3:4b:ab:b1:44:a9:c5:e5:ea:20:39:0c:e5:d9:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A75F95EA11C3F984C5C610FE9222026394BA8E9 Validity Not Before: Jul 31 00:03:29 2023 GMT Not After : Jul 29 00:08:29 2024 GMT Subject: CN=CF7B2AAC5296DFF302F5166F81F27DD8818E69C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:03:54:be:58:bc:c9:73:96:81:1e:46:aa:71: 27:de:07:4f:04:14:ad:40:d1:85:70:4f:af:d8:57: 36:b1:83:cf:95:cd:4a:9e:9a:62:bb:4e:85:9e:37: 41:07:cb:39:fb:f1:6b:09:99:47:af:9f:23:e4:01: 0f:42:d3:c5:84:9b:35:a0:c0:67:f0:90:d0:2f:28: 5e:45:a2:28:1c:07:91:d8:47:89:e3:9b:96:11:54: ca:d7:4b:1d:ad:92:04:5a:3e:f5:8a:31:8d:19:df: 4a:dd:20:fe:a2:e0:09:99:99:2b:b5:db:d6:0d:1d: c6:40:ac:e7:85:80:00:61:43:13:1f:f8:5a:09:7e: 23:72:2b:39:68:5a:a6:a8:e5:92:0c:06:f5:46:2e: 33:f3:38:fa:a6:a5:8d:4c:f6:aa:51:9b:6a:f6:d0: 62:54:cc:89:72:ba:68:9b:d6:3d:12:9a:82:4d:ef: f2:08:21:ca:af:9a:a7:8f:eb:4b:ca:f8:53:41:8f: 92:2f:6c:fb:99:29:7e:fe:b6:cc:fd:db:a3:75:34: 66:f3:a8:18:03:72:be:9c:9e:4e:08:36:da:05:9f: 03:00:4c:98:0b:70:1b:64:6c:5e:43:a6:98:f7:ac: 04:b1:42:21:8f:f0:39:40:93:d2:c4:83:b0:e0:0d: 03:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:7B:2A:AC:52:96:DF:F3:02:F5:16:6F:81:F2:7D:D8:81:8E:69:C1 X509v3 Authority Key Identifier: keyid:6A:75:F9:5E:A1:1C:3F:98:4C:5C:61:0F:E9:22:20:26:39:4B:A8:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/6A75F95EA11C3F984C5C610FE9222026394BA8E9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A75F95EA11C3F984C5C610FE9222026394BA8E9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/323030313a6466333a623838303a3a2f34382d3438203d3e203137353338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:b880::/48 Signature Algorithm: sha256WithRSAEncryption 71:70:98:39:c5:03:f2:83:9f:51:b3:d3:06:81:d8:b2:bc:32: 6e:b9:4a:00:60:6b:81:c1:13:e6:d1:5e:af:79:5e:cf:7a:10: 8c:8e:ce:f3:0a:f8:ce:bc:b3:c3:12:52:ba:6c:7e:d8:3a:37: ac:e2:f8:71:f8:00:18:6d:d0:82:a6:ae:d0:38:fb:f3:60:8c: 0e:4c:af:30:64:b5:99:2c:28:fe:1a:6d:b7:23:8c:b8:1e:eb: e2:63:31:2e:18:7b:dd:9d:c7:b1:e5:14:e5:61:a4:74:f5:f0: 1d:72:bb:26:84:c2:a3:b6:d8:ed:2f:71:09:5a:ac:f4:57:60: 84:07:4c:02:c2:4b:31:fe:a0:e6:e9:02:14:b3:85:42:fc:fe: ec:9e:75:a1:ce:24:e4:0d:3a:fe:0c:e0:b5:b0:1b:02:05:11: 7e:56:1c:1c:9b:ba:e3:ab:68:69:66:ce:84:53:9e:75:61:ba: 3e:19:98:cf:8a:6f:7c:d4:8e:66:a2:d5:b8:9c:18:f6:d7:01: 9e:77:5e:c9:f0:23:3f:e3:7d:06:d6:b0:09:33:47:48:c8:1d: f5:01:02:16:92:ca:dc:8f:fe:c6:3f:0b:8e:6a:f2:c5:12:ea: 09:ec:f0:cb:7a:87:90:8b:92:93:54:a6:63:89:37:2f:fe:0b: cd:25:ab:db -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIULvkRZ/nzS6uxRKnF5eogOQzl2awwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkE3NUY5NUVBMTFDM0Y5ODRDNUM2MTBGRTkyMjIwMjYz OTRCQThFOTAeFw0yMzA3MzEwMDAzMjlaFw0yNDA3MjkwMDA4MjlaMDMxMTAvBgNV BAMTKENGN0IyQUFDNTI5NkRGRjMwMkY1MTY2RjgxRjI3REQ4ODE4RTY5QzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuA1S+WLzJc5aBHkaqcSfeB08E FK1A0YVwT6/YVzaxg8+VzUqemmK7ToWeN0EHyzn78WsJmUevnyPkAQ9C08WEmzWg wGfwkNAvKF5FoigcB5HYR4njm5YRVMrXSx2tkgRaPvWKMY0Z30rdIP6i4AmZmSu1 29YNHcZArOeFgABhQxMf+FoJfiNyKzloWqao5ZIMBvVGLjPzOPqmpY1M9qpRm2r2 0GJUzIlyumib1j0SmoJN7/IIIcqvmqeP60vK+FNBj5IvbPuZKX7+tsz926N1NGbz qBgDcr6cnk4INtoFnwMATJgLcBtkbF5Dppj3rASxQiGP8DlAk9LEg7DgDQOpAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUz3sqrFKW3/MC9RZvgfJ92IGOacEwHwYDVR0j BBgwFoAUanX5XqEcP5hMXGEP6SIgJjlLqOkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YTQzMzkzNC0zODQ0LTQ2NTMtOGZhYy0xODU4YjI4MjNkMWMvMC82QTc1Rjk1RUEx MUMzRjk4NEM1QzYxMEZFOTIyMjAyNjM5NEJBOEU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkE3NUY5NUVBMTFDM0Y5ODRDNUM2MTBGRTkyMjIwMjYzOTRC QThFOS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhNDMzOTM0LTM4NDQtNDY1My04 ZmFjLTE4NThiMjgyM2QxYy8wLzMyMzAzMDMxM2E2NDY2MzMzYTYyMzgzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNzM1MzMzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfO4 gDANBgkqhkiG9w0BAQsFAAOCAQEAcXCYOcUD8oOfUbPTBoHYsrwybrlKAGBrgcET 5tFer3lez3oQjI7O8wr4zryzwxJSumx+2Do3rOL4cfgAGG3Qgqau0Dj782CMDkyv MGS1mSwo/hpttyOMuB7r4mMxLhh73Z3HseUU5WGkdPXwHXK7JoTCo7bY7S9xCVqs 9FdghAdMAsJLMf6g5ukCFLOFQvz+7J51oc4k5A06/gzgtbAbAgURflYcHJu646to aWbOhFOedWG6PhmYz4pvfNSOZqLVuJwY9tcBnndeyfAjP+N9BtawCTNHSMgd9QEC FpLK3I/+xj8LjmryxRLqCezwy3qHkIuSk1SmY4k3L/4LzSWr2w== -----END CERTIFICATE-----Generated at Sun May 5 23:29:27 2024 by rpki-client on console-ams.rpki-client.org