$ rpki-client -vvf repo-rpki.idnic.net/repo/acc637bd-5971-4264-997a-749d804a6858/0/323030313a6466353a653238303a3a2f34382d3438203d3e20313431363430.roa File: 323030313a6466353a653238303a3a2f34382d3438203d3e20313431363430.roa (raw, json) Hash identifier: /uvl9pjeVYmL1FlVb/wR85XKjqZYHuy6fNq/P2tU4aM= Subject key identifier: BB:D7:A1:D1:92:02:9C:77:83:60:E9:CF:98:AD:30:79:C4:73:8D:0A Certificate issuer: /CN=2B69EA508DC62D34C2B3CA4FBA57BF3AFFFD4994 Certificate serial: 119E50F28C6D0EEDEFD828D2DD1CD5A86B97E64A Authority key identifier: 2B:69:EA:50:8D:C6:2D:34:C2:B3:CA:4F:BA:57:BF:3A:FF:FD:49:94 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B69EA508DC62D34C2B3CA4FBA57BF3AFFFD4994.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acc637bd-5971-4264-997a-749d804a6858/0/323030313a6466353a653238303a3a2f34382d3438203d3e20313431363430.roa Signing time: Sat 18 Nov 2023 05:00:02 +0000 ROA not before: Sat 18 Nov 2023 04:55:02 +0000 ROA not after: Sat 16 Nov 2024 05:00:02 +0000 asID: 141640 IP address blocks: 2001:df5:e280::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acc637bd-5971-4264-997a-749d804a6858/0/2B69EA508DC62D34C2B3CA4FBA57BF3AFFFD4994.crl rsync://repo-rpki.idnic.net/repo/acc637bd-5971-4264-997a-749d804a6858/0/2B69EA508DC62D34C2B3CA4FBA57BF3AFFFD4994.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B69EA508DC62D34C2B3CA4FBA57BF3AFFFD4994.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:9e:50:f2:8c:6d:0e:ed:ef:d8:28:d2:dd:1c:d5:a8:6b:97:e6:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B69EA508DC62D34C2B3CA4FBA57BF3AFFFD4994 Validity Not Before: Nov 18 04:55:02 2023 GMT Not After : Nov 16 05:00:02 2024 GMT Subject: CN=BBD7A1D192029C778360E9CF98AD3079C4738D0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f6:ec:6b:17:19:7b:42:83:c7:14:2a:2a:af: b8:64:c2:db:b1:84:3e:31:88:2b:4b:34:1f:e1:f1: 30:1e:94:06:f3:be:2c:89:59:f1:2b:72:7e:53:f2: 8d:0a:8f:00:9d:9d:c3:a5:dd:c0:bc:92:15:67:65: b1:ba:da:c3:dd:88:0d:87:e6:33:1a:b0:13:ef:96: bd:67:6c:bf:a6:40:2c:25:58:fb:50:d2:39:37:3f: 6d:20:b2:ad:67:8c:6c:c0:dc:e4:2f:09:e8:a6:77: c5:63:95:1a:50:07:f9:8a:04:61:d2:81:f1:32:0a: eb:31:8c:d5:31:ce:4a:8b:7f:8c:6f:10:7b:9d:2d: 87:87:e5:39:1c:b3:32:8e:b2:3f:4d:87:70:e7:d5: ce:b0:78:0d:0e:5d:2a:b9:7d:66:cb:2e:bb:31:5d: 49:20:4e:23:55:36:84:22:02:0d:7a:27:af:a1:0a: eb:ef:74:2c:45:3d:79:b8:d7:31:85:86:f4:82:63: 74:af:3c:c9:76:26:78:cc:ba:e2:40:d0:1c:94:bb: db:22:2c:a4:53:d6:c4:54:2d:0e:80:83:4a:58:51: 93:37:5b:ed:93:e7:f8:c8:23:9c:65:01:08:9b:9e: 14:a2:04:ea:f9:8a:7b:78:17:ab:3d:45:41:d7:e7: e6:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:D7:A1:D1:92:02:9C:77:83:60:E9:CF:98:AD:30:79:C4:73:8D:0A X509v3 Authority Key Identifier: keyid:2B:69:EA:50:8D:C6:2D:34:C2:B3:CA:4F:BA:57:BF:3A:FF:FD:49:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acc637bd-5971-4264-997a-749d804a6858/0/2B69EA508DC62D34C2B3CA4FBA57BF3AFFFD4994.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B69EA508DC62D34C2B3CA4FBA57BF3AFFFD4994.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acc637bd-5971-4264-997a-749d804a6858/0/323030313a6466353a653238303a3a2f34382d3438203d3e20313431363430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df5:e280::/48 Signature Algorithm: sha256WithRSAEncryption 0f:b2:d7:d1:9b:88:af:d4:6b:92:f2:0d:8a:11:5d:46:8a:6b: 98:d4:bb:f3:a5:a1:f5:f4:52:73:dc:04:7c:1b:16:5a:08:90: d5:db:9a:7c:8b:84:a7:fa:bc:76:20:c3:d9:f8:81:d2:48:33: ec:f9:15:a8:8e:76:89:e4:b7:10:12:c9:0d:46:f8:23:ba:fa: 13:0a:96:07:2a:44:71:38:f7:58:77:4e:ef:dc:59:7a:48:a5: 6d:92:a9:1f:34:09:e6:bc:b4:5f:ee:17:0a:0f:36:af:90:91: ca:a9:53:3a:9c:6e:a3:87:fb:45:f9:0d:0d:f8:75:97:3d:fc: eb:c3:d8:7b:10:84:bd:12:51:65:46:e2:c6:9b:bd:65:d2:f5: c8:c1:5b:a2:ec:5d:10:73:86:97:b1:1c:52:e1:e4:80:43:e0: 74:98:cc:35:67:fb:aa:aa:98:2d:5e:a6:f4:67:4d:84:63:e5: a0:da:6e:af:f9:24:fa:be:ec:a2:a9:51:4d:76:1c:8a:ca:24: 13:61:c3:06:74:2c:ee:29:50:9c:4a:b4:10:37:56:2a:be:a0: 05:2c:fa:25:1d:7a:28:24:d7:dd:00:31:82:8e:b9:cd:b4:a5: b0:d7:7e:4a:ef:2f:ae:be:3e:05:bf:75:95:24:84:d7:9c:56: 30:3c:66:68 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUEZ5Q8oxtDu3v2CjS3RzVqGuX5kowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkI2OUVBNTA4REM2MkQzNEMyQjNDQTRGQkE1N0JGM0FG RkZENDk5NDAeFw0yMzExMTgwNDU1MDJaFw0yNDExMTYwNTAwMDJaMDMxMTAvBgNV BAMTKEJCRDdBMUQxOTIwMjlDNzc4MzYwRTlDRjk4QUQzMDc5QzQ3MzhEMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCe9uxrFxl7QoPHFCoqr7hkwtux hD4xiCtLNB/h8TAelAbzviyJWfErcn5T8o0KjwCdncOl3cC8khVnZbG62sPdiA2H 5jMasBPvlr1nbL+mQCwlWPtQ0jk3P20gsq1njGzA3OQvCeimd8VjlRpQB/mKBGHS gfEyCusxjNUxzkqLf4xvEHudLYeH5TkcszKOsj9Nh3Dn1c6weA0OXSq5fWbLLrsx XUkgTiNVNoQiAg16J6+hCuvvdCxFPXm41zGFhvSCY3SvPMl2JnjMuuJA0ByUu9si LKRT1sRULQ6Ag0pYUZM3W+2T5/jII5xlAQibnhSiBOr5int4F6s9RUHX5+YzAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUu9eh0ZICnHeDYOnPmK0wecRzjQowHwYDVR0j BBgwFoAUK2nqUI3GLTTCs8pPule/Ov/9SZQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2M2MzdiZC01OTcxLTQyNjQtOTk3YS03NDlkODA0YTY4NTgvMC8yQjY5RUE1MDhE QzYyRDM0QzJCM0NBNEZCQTU3QkYzQUZGRkQ0OTk0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkI2OUVBNTA4REM2MkQzNEMyQjNDQTRGQkE1N0JGM0FGRkZE NDk5NC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYzYzN2JkLTU5NzEtNDI2NC05 OTdhLTc0OWQ4MDRhNjg1OC8wLzMyMzAzMDMxM2E2NDY2MzUzYTY1MzIzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMxMzYzNDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9eKAMA0GCSqGSIb3DQEBCwUAA4IBAQAPstfRm4iv1GuS8g2KEV1GimuY1LvzpaH1 9FJz3AR8GxZaCJDV25p8i4Sn+rx2IMPZ+IHSSDPs+RWojnaJ5LcQEskNRvgjuvoT CpYHKkRxOPdYd07v3Fl6SKVtkqkfNAnmvLRf7hcKDzavkJHKqVM6nG6jh/tF+Q0N +HWXPfzrw9h7EIS9ElFlRuLGm71l0vXIwVui7F0Qc4aXsRxS4eSAQ+B0mMw1Z/uq qpgtXqb0Z02EY+Wg2m6v+ST6vuyiqVFNdhyKyiQTYcMGdCzuKVCcSrQQN1YqvqAF LPolHXooJNfdADGCjrnNtKWw135K7y+uvj4Fv3WVJITXnFYwPGZo -----END CERTIFICATE-----Generated at Sun Jun 2 21:13:19 2024 by rpki-client on console-ams.rpki-client.org