$ rpki-client -vvf repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/323030313a6466333a623938303a3a2f34382d3438203d3e203137353338.roa File: 323030313a6466333a623938303a3a2f34382d3438203d3e203137353338.roa (raw, json) Hash identifier: TPb9sPuiNvRLuDGDwtPWdoqzKN3tFVPD5c0Ec8szSFw= Subject key identifier: E5:CC:BB:1A:9E:BB:80:C2:C8:92:E7:30:2B:9C:4E:B9:88:68:F6:96 Certificate issuer: /CN=95D9136845FAFA0795735D4A9B0FF9F746461AB3 Certificate serial: 771BBEE0DBD517F7AA7058376248EED9C7F6C531 Authority key identifier: 95:D9:13:68:45:FA:FA:07:95:73:5D:4A:9B:0F:F9:F7:46:46:1A:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95D9136845FAFA0795735D4A9B0FF9F746461AB3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/323030313a6466333a623938303a3a2f34382d3438203d3e203137353338.roa Signing time: Mon 31 Jul 2023 00:08:37 +0000 ROA not before: Mon 31 Jul 2023 00:03:37 +0000 ROA not after: Mon 29 Jul 2024 00:08:37 +0000 asID: 17538 IP address blocks: 2001:df3:b980::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/95D9136845FAFA0795735D4A9B0FF9F746461AB3.crl rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/95D9136845FAFA0795735D4A9B0FF9F746461AB3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95D9136845FAFA0795735D4A9B0FF9F746461AB3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 00:51:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:1b:be:e0:db:d5:17:f7:aa:70:58:37:62:48:ee:d9:c7:f6:c5:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95D9136845FAFA0795735D4A9B0FF9F746461AB3 Validity Not Before: Jul 31 00:03:37 2023 GMT Not After : Jul 29 00:08:37 2024 GMT Subject: CN=E5CCBB1A9EBB80C2C892E7302B9C4EB98868F696 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:79:59:c3:8f:fd:8b:b5:dd:d2:17:de:b2:97: cb:c0:73:5a:cb:8e:ac:b3:99:e9:a9:9d:7b:4a:70: ae:b1:4e:41:60:45:11:ba:2b:ea:93:58:c9:fc:17: 5b:b6:8b:72:e7:13:ea:0f:3d:40:b3:65:69:88:51: 51:2d:ac:bb:dc:ad:dd:a3:3e:98:53:01:8c:e6:f5: b4:1f:f1:79:e3:8f:8d:0c:76:25:50:e1:48:8e:f8: f6:a8:45:94:5a:c1:13:07:c8:c1:22:87:65:09:80: c6:b2:8b:84:11:bf:1a:6b:5b:b5:4d:d2:c6:b8:45: 43:59:cd:40:f1:ad:d3:6f:49:01:65:1c:11:36:5b: f1:77:10:89:ee:49:2e:66:fc:27:d1:37:28:eb:ca: c8:93:ec:01:24:4d:59:dd:b1:4b:a8:7f:bc:71:84: cf:f3:f8:96:fb:82:9c:6f:89:b0:ad:c6:0f:4f:12: 69:0a:9e:1e:3f:7d:72:53:f6:23:cd:b1:59:e6:7b: 3e:f6:62:da:f2:ad:fc:27:93:5f:a7:28:7f:50:a5: fd:cf:a1:32:ef:cf:48:d5:76:6c:42:b3:5c:af:f2: 38:91:f6:de:09:bc:89:93:07:ea:b9:9c:1c:28:08: d1:10:8f:de:74:98:32:de:cd:97:c8:72:df:1c:b0: f1:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:CC:BB:1A:9E:BB:80:C2:C8:92:E7:30:2B:9C:4E:B9:88:68:F6:96 X509v3 Authority Key Identifier: keyid:95:D9:13:68:45:FA:FA:07:95:73:5D:4A:9B:0F:F9:F7:46:46:1A:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/95D9136845FAFA0795735D4A9B0FF9F746461AB3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95D9136845FAFA0795735D4A9B0FF9F746461AB3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/323030313a6466333a623938303a3a2f34382d3438203d3e203137353338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:b980::/48 Signature Algorithm: sha256WithRSAEncryption 6c:1d:3a:66:5d:2c:6d:e3:6b:e8:af:12:03:91:57:40:89:1d: 0b:ce:af:87:26:6b:18:c4:75:6a:54:9f:24:6e:33:3c:c7:7e: 4f:a6:ec:3c:a9:5d:5d:47:c5:e8:3e:57:13:2c:f0:47:9c:42: 23:56:8d:f8:ce:36:3d:5f:ef:46:e8:56:10:b9:9a:d0:d1:49: 31:7e:29:dd:82:61:64:b4:da:1e:e5:9a:ab:55:b4:6b:8a:c5: 3b:63:68:e6:42:5e:eb:4f:f0:a6:70:71:be:ef:d4:36:20:d1: 9d:a2:bf:48:3d:ad:dd:c8:fc:a9:a1:c2:4b:a0:70:5e:06:72: 79:03:61:83:4e:78:8a:bc:92:ef:c5:f8:0a:2c:e5:84:14:ee: 5f:02:72:8c:10:9b:27:0f:cb:c5:22:b5:8d:c8:42:60:0d:21: fc:00:8a:ce:3e:5c:d7:4e:db:e6:5c:03:11:0d:3e:c5:43:d9: 27:92:c9:4b:74:87:89:a9:78:00:3f:ca:27:f7:e5:8f:ea:a8: a5:cb:0b:d2:92:ad:38:4d:9a:e3:50:ef:ec:9b:6e:b0:57:0a: cd:d0:88:22:de:03:30:62:78:c1:f8:8c:f1:a0:39:75:7b:27: 96:f0:f8:66:9e:26:8c:7c:93:b6:d3:43:94:33:6a:76:46:b3: ab:36:bd:68 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUdxu+4NvVF/eqcFg3Ykju2cf2xTEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVEOTEzNjg0NUZBRkEwNzk1NzM1RDRBOUIwRkY5Rjc0 NjQ2MUFCMzAeFw0yMzA3MzEwMDAzMzdaFw0yNDA3MjkwMDA4MzdaMDMxMTAvBgNV BAMTKEU1Q0NCQjFBOUVCQjgwQzJDODkyRTczMDJCOUM0RUI5ODg2OEY2OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdeVnDj/2Ltd3SF96yl8vAc1rL jqyzmempnXtKcK6xTkFgRRG6K+qTWMn8F1u2i3LnE+oPPUCzZWmIUVEtrLvcrd2j PphTAYzm9bQf8Xnjj40MdiVQ4UiO+PaoRZRawRMHyMEih2UJgMayi4QRvxprW7VN 0sa4RUNZzUDxrdNvSQFlHBE2W/F3EInuSS5m/CfRNyjrysiT7AEkTVndsUuof7xx hM/z+Jb7gpxvibCtxg9PEmkKnh4/fXJT9iPNsVnmez72Ytryrfwnk1+nKH9Qpf3P oTLvz0jVdmxCs1yv8jiR9t4JvImTB+q5nBwoCNEQj950mDLezZfIct8csPFfAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU5cy7Gp67gMLIkucwK5xOuYho9pYwHwYDVR0j BBgwFoAUldkTaEX6+geVc11Kmw/590ZGGrMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i Mzc4NWU2NS01MWUyLTRiMWItODJmOS1lNzUzYWQ0YjI0MGYvMC85NUQ5MTM2ODQ1 RkFGQTA3OTU3MzVENEE5QjBGRjlGNzQ2NDYxQUIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVEOTEzNjg0NUZBRkEwNzk1NzM1RDRBOUIwRkY5Rjc0NjQ2 MUFCMy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzNzg1ZTY1LTUxZTItNGIxYi04 MmY5LWU3NTNhZDRiMjQwZi8wLzMyMzAzMDMxM2E2NDY2MzMzYTYyMzkzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNzM1MzMzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfO5 gDANBgkqhkiG9w0BAQsFAAOCAQEAbB06Zl0sbeNr6K8SA5FXQIkdC86vhyZrGMR1 alSfJG4zPMd+T6bsPKldXUfF6D5XEyzwR5xCI1aN+M42PV/vRuhWELma0NFJMX4p 3YJhZLTaHuWaq1W0a4rFO2No5kJe60/wpnBxvu/UNiDRnaK/SD2t3cj8qaHCS6Bw XgZyeQNhg054iryS78X4CizlhBTuXwJyjBCbJw/LxSK1jchCYA0h/ACKzj5c107b 5lwDEQ0+xUPZJ5LJS3SHial4AD/KJ/flj+qopcsL0pKtOE2a41Dv7JtusFcKzdCI It4DMGJ4wfiM8aA5dXsnlvD4Zp4mjHyTttNDlDNqdkazqza9aA== -----END CERTIFICATE-----Generated at Sun May 5 01:19:54 2024 by rpki-client on console-fra.rpki-client.org