$ rpki-client -vvf repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/323030313a6466343a366330303a3a2f34382d3438203d3e20313333383032.roa File: 323030313a6466343a366330303a3a2f34382d3438203d3e20313333383032.roa (raw, json) Hash identifier: TMNFzpXPlotO6pYFBzJ/OSfWMPP6SAx4dFGBVVo9KWE= Subject key identifier: E4:4C:BB:15:E0:BF:3B:E8:45:E3:A2:6C:E2:A3:49:3B:14:BC:54:20 Certificate issuer: /CN=BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D Certificate serial: 628E6035337AD8244C182D827662A839FC5F33FD Authority key identifier: BD:8C:DE:6F:E3:DF:9F:A1:ED:A6:CE:A4:62:F7:7E:F6:04:78:99:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/323030313a6466343a366330303a3a2f34382d3438203d3e20313333383032.roa Signing time: Mon 31 Jul 2023 00:08:18 +0000 ROA not before: Mon 31 Jul 2023 00:03:18 +0000 ROA not after: Mon 29 Jul 2024 00:08:18 +0000 asID: 133802 IP address blocks: 2001:df4:6c00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.crl rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:19:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:8e:60:35:33:7a:d8:24:4c:18:2d:82:76:62:a8:39:fc:5f:33:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D Validity Not Before: Jul 31 00:03:18 2023 GMT Not After : Jul 29 00:08:18 2024 GMT Subject: CN=E44CBB15E0BF3BE845E3A26CE2A3493B14BC5420 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:1b:f8:67:2b:ee:65:d5:50:8f:03:9b:a6:90: 3f:89:a5:a4:87:10:68:56:13:7b:75:24:f8:bc:6b: 63:cb:5e:ba:37:2a:7f:96:c8:8a:25:1e:21:07:db: 34:3f:27:21:2c:d2:b3:09:26:7d:e3:15:f1:75:b3: a5:e5:5b:53:00:0f:ca:c6:36:ca:c2:e4:ef:aa:00: 66:24:bb:1d:dd:25:0e:68:fc:9f:5b:7c:08:16:fd: b7:43:a7:2e:80:f6:de:b0:12:79:d9:e3:9d:f7:b2: 55:c8:15:da:11:cc:1e:1f:3f:95:76:3e:f3:dd:71: b0:7a:2d:4c:1f:48:ae:34:ca:10:84:67:eb:5a:6f: 32:2f:82:2d:65:c6:2b:e4:50:d7:be:36:6a:51:88: b1:1f:be:8d:06:4e:ec:eb:2c:51:a5:4f:26:68:4a: d6:a1:e3:97:b3:e0:38:d0:34:8d:92:ac:32:11:e4: 28:44:b8:db:dc:d4:e5:da:d7:2e:20:94:c2:a5:85: 38:23:04:bf:3d:4d:75:27:9c:2c:62:3c:28:47:9c: c8:ac:33:2b:3d:86:60:94:8d:c7:2e:8d:97:89:f7: 09:dc:90:d0:0b:ee:af:f6:02:9c:1d:ab:75:75:fe: c1:9d:e4:ea:84:04:c9:ad:26:d8:99:6f:36:4e:5d: 74:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:4C:BB:15:E0:BF:3B:E8:45:E3:A2:6C:E2:A3:49:3B:14:BC:54:20 X509v3 Authority Key Identifier: keyid:BD:8C:DE:6F:E3:DF:9F:A1:ED:A6:CE:A4:62:F7:7E:F6:04:78:99:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/323030313a6466343a366330303a3a2f34382d3438203d3e20313333383032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:6c00::/48 Signature Algorithm: sha256WithRSAEncryption 47:4a:c3:55:4b:4e:e0:87:53:93:26:97:a1:8a:f4:6a:01:3b: ed:07:34:75:2f:97:58:24:c2:6e:f5:1a:73:87:7d:75:be:f1: 69:fc:df:15:ec:5e:52:3d:1e:f8:ea:13:9f:16:0c:ce:cd:06: fc:a8:96:b6:8d:7e:b7:c9:7e:bb:14:6d:9f:31:76:83:be:0b: 17:e4:d6:39:1f:5c:58:c7:1d:72:3a:8a:f3:09:29:5c:32:03: 37:b6:6d:cd:dd:2c:5f:d8:b9:c3:dc:2d:35:83:98:2c:a1:63: 57:ea:fb:65:30:25:66:b6:2e:fc:0b:86:71:18:b9:08:f3:11: 42:27:0b:95:dd:78:cd:5a:21:56:9c:81:43:f9:6d:99:09:4b: 3a:c3:f9:1a:e9:9d:ff:cf:6f:0a:db:29:a6:07:02:91:76:2d: c0:2e:a3:a7:fc:d8:37:a3:0c:2c:b1:ea:c4:a0:d3:29:e0:31: 2c:eb:96:6d:5c:fd:32:77:ec:1d:20:ec:c7:cb:39:42:96:a5: f0:ed:2b:1d:65:78:e8:d5:2e:72:a3:fc:98:5d:3a:b2:89:01: af:75:d5:70:3c:b7:25:6c:51:d8:3b:5b:be:44:21:44:36:bb: 27:48:95:62:f0:d7:fc:2e:0c:2c:67:9f:14:8f:06:3c:83:43: 95:00:7d:ad -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUYo5gNTN62CRMGC2CdmKoOfxfM/0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ4Q0RFNkZFM0RGOUZBMUVEQTZDRUE0NjJGNzdFRjYw NDc4OTkwRDAeFw0yMzA3MzEwMDAzMThaFw0yNDA3MjkwMDA4MThaMDMxMTAvBgNV BAMTKEU0NENCQjE1RTBCRjNCRTg0NUUzQTI2Q0UyQTM0OTNCMTRCQzU0MjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3G/hnK+5l1VCPA5umkD+JpaSH EGhWE3t1JPi8a2PLXro3Kn+WyIolHiEH2zQ/JyEs0rMJJn3jFfF1s6XlW1MAD8rG NsrC5O+qAGYkux3dJQ5o/J9bfAgW/bdDpy6A9t6wEnnZ4533slXIFdoRzB4fP5V2 PvPdcbB6LUwfSK40yhCEZ+tabzIvgi1lxivkUNe+NmpRiLEfvo0GTuzrLFGlTyZo Stah45ez4DjQNI2SrDIR5ChEuNvc1OXa1y4glMKlhTgjBL89TXUnnCxiPChHnMis Mys9hmCUjccujZeJ9wnckNAL7q/2Apwdq3V1/sGd5OqEBMmtJtiZbzZOXXQLAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU5Ey7FeC/O+hF46Js4qNJOxS8VCAwHwYDVR0j BBgwFoAUvYzeb+Pfn6Htps6kYvd+9gR4mQ0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTljZmQwNC02OWQwLTRkNGMtOGQwOS0yZDIyMTM4NDJjMmMvMC9CRDhDREU2RkUz REY5RkExRURBNkNFQTQ2MkY3N0VGNjA0Nzg5OTBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ4Q0RFNkZFM0RGOUZBMUVEQTZDRUE0NjJGNzdFRjYwNDc4 OTkwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1OWNmZDA0LTY5ZDAtNGQ0Yy04 ZDA5LTJkMjIxMzg0MmMyYy8wLzMyMzAzMDMxM2E2NDY2MzQzYTM2NjMzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMzMzgzMDMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9GwAMA0GCSqGSIb3DQEBCwUAA4IBAQBHSsNVS07gh1OTJpehivRqATvtBzR1L5dY JMJu9Rpzh311vvFp/N8V7F5SPR746hOfFgzOzQb8qJa2jX63yX67FG2fMXaDvgsX 5NY5H1xYxx1yOorzCSlcMgM3tm3N3Sxf2LnD3C01g5gsoWNX6vtlMCVmti78C4Zx GLkI8xFCJwuV3XjNWiFWnIFD+W2ZCUs6w/ka6Z3/z28K2ymmBwKRdi3ALqOn/Ng3 owwsserEoNMp4DEs65ZtXP0yd+wdIOzHyzlClqXw7SsdZXjo1S5yo/yYXTqyiQGv ddVwPLclbFHYO1u+RCFENrsnSJVi8Nf8LgwsZ58UjwY8g0OVAH2t -----END CERTIFICATE-----Generated at Fri May 31 22:12:42 2024 by rpki-client on console-fra.rpki-client.org