$ rpki-client -vvf repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/323030313a6466303a336538303a3a2f34382d3438203d3e20313338383531.roa File: 323030313a6466303a336538303a3a2f34382d3438203d3e20313338383531.roa (raw, json) Hash identifier: XwiR68340nYdpKBLg8yvNVZeXGF9NfUMfZUro0TSB9Y= Subject key identifier: 02:17:58:FF:FF:C3:D8:A4:D3:DB:F0:8C:3B:00:CE:B8:40:CE:BF:82 Certificate issuer: /CN=586FE8D27FF4D6BD4FA839FC58844A4B03D535DF Certificate serial: 0BB20F529E7E636B9957179CBA3E09E0DC353AF1 Authority key identifier: 58:6F:E8:D2:7F:F4:D6:BD:4F:A8:39:FC:58:84:4A:4B:03:D5:35:DF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/323030313a6466303a336538303a3a2f34382d3438203d3e20313338383531.roa Signing time: Fri 08 Sep 2023 06:01:10 +0000 ROA not before: Fri 08 Sep 2023 05:56:10 +0000 ROA not after: Fri 06 Sep 2024 06:01:10 +0000 asID: 138851 IP address blocks: 2001:df0:3e80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.crl rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:b2:0f:52:9e:7e:63:6b:99:57:17:9c:ba:3e:09:e0:dc:35:3a:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=586FE8D27FF4D6BD4FA839FC58844A4B03D535DF Validity Not Before: Sep 8 05:56:10 2023 GMT Not After : Sep 6 06:01:10 2024 GMT Subject: CN=021758FFFFC3D8A4D3DBF08C3B00CEB840CEBF82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:6d:ee:b6:47:02:7e:06:94:4c:a9:33:47:0e: e2:01:d6:df:fa:df:fc:b1:9d:a0:09:4c:42:38:6a: ae:aa:22:1a:6c:ed:c6:a1:10:48:57:24:b9:bc:04: 34:5b:fd:bf:46:12:70:13:0b:6c:9c:3e:77:c7:ee: a6:e7:ed:1f:03:ad:2d:ff:77:d5:cd:63:23:3a:ee: 9e:1d:f4:69:ac:2a:90:64:49:38:02:16:ef:57:e0: 1e:eb:3f:d4:fa:56:0c:13:62:99:94:df:5d:82:c3: 14:20:14:0b:ba:ec:b6:3d:1e:65:42:1f:72:bb:25: 5c:91:85:7d:6b:68:5c:c8:a7:d2:59:6f:8d:fc:b8: 21:6d:d6:92:40:43:6d:a8:ea:80:17:a1:ba:2d:c2: 37:c1:ca:f2:00:19:b3:2b:d6:51:b7:d9:ae:e1:89: 89:70:74:b9:03:3e:40:ef:46:c2:55:5d:74:89:ec: 68:a1:22:8e:49:35:e5:4b:3a:97:b8:2f:7e:59:25: c9:20:3d:b6:71:61:4a:69:76:ac:6c:19:a7:9c:89: 05:28:1b:40:a3:10:12:06:42:4c:8e:4e:82:fe:c0: 8e:e0:18:5c:84:86:fd:9e:87:a3:4d:9c:78:fc:0b: 5e:af:4c:ff:36:e4:32:af:c6:fe:b8:10:52:ab:ea: f8:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:17:58:FF:FF:C3:D8:A4:D3:DB:F0:8C:3B:00:CE:B8:40:CE:BF:82 X509v3 Authority Key Identifier: keyid:58:6F:E8:D2:7F:F4:D6:BD:4F:A8:39:FC:58:84:4A:4B:03:D5:35:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/323030313a6466303a336538303a3a2f34382d3438203d3e20313338383531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:3e80::/48 Signature Algorithm: sha256WithRSAEncryption 00:ad:f7:d4:2b:22:ae:62:e4:88:78:e4:ce:04:21:d4:f6:c2: ff:f1:9c:6f:ed:2d:ca:0b:83:0e:43:41:e9:39:21:5a:45:c6: 97:89:75:6a:e0:8d:68:13:2b:2e:f5:7e:a1:d0:da:74:4f:fc: 26:8f:ff:bc:ce:6d:a2:35:4c:22:21:f0:6b:bc:de:67:df:18: 5d:6f:80:7f:a1:d6:23:0d:14:98:d3:7f:d7:32:ac:e5:94:54: e1:e4:93:97:d3:75:fc:0f:d0:0f:95:4e:92:32:2d:94:32:2a: ea:66:aa:42:9d:fe:b2:f8:4e:d4:02:8e:72:71:fe:af:d4:5d: b2:31:26:c2:05:92:a0:41:46:fa:71:2b:cc:2b:23:c2:0e:f7: 7f:ea:48:42:47:9c:da:d8:b7:0f:20:b8:58:20:fa:62:13:c5: 5d:b5:86:4d:f2:77:1e:76:7d:99:5d:ee:ac:8d:fb:6b:c1:19: 5c:58:31:18:c7:df:c5:5a:c5:f9:18:27:d1:fe:5f:8a:6c:5b: 80:7c:bd:3c:3c:71:18:67:23:0e:52:4f:2f:6e:aa:cd:97:8e: 4c:f8:42:21:95:4d:18:2c:d8:0e:30:c9:38:bb:72:b9:95:78: 92:b9:57:a0:d0:73:1c:54:71:a0:34:59:8e:44:d8:61:78:24: 89:55:50:6f -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUC7IPUp5+Y2uZVxecuj4J4Nw1OvEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTg2RkU4RDI3RkY0RDZCRDRGQTgzOUZDNTg4NDRBNEIw M0Q1MzVERjAeFw0yMzA5MDgwNTU2MTBaFw0yNDA5MDYwNjAxMTBaMDMxMTAvBgNV BAMTKDAyMTc1OEZGRkZDM0Q4QTREM0RCRjA4QzNCMDBDRUI4NDBDRUJGODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDabe62RwJ+BpRMqTNHDuIB1t/6 3/yxnaAJTEI4aq6qIhps7cahEEhXJLm8BDRb/b9GEnATC2ycPnfH7qbn7R8DrS3/ d9XNYyM67p4d9GmsKpBkSTgCFu9X4B7rP9T6VgwTYpmU312CwxQgFAu67LY9HmVC H3K7JVyRhX1raFzIp9JZb438uCFt1pJAQ22o6oAXobotwjfByvIAGbMr1lG32a7h iYlwdLkDPkDvRsJVXXSJ7GihIo5JNeVLOpe4L35ZJckgPbZxYUppdqxsGaeciQUo G0CjEBIGQkyOToL+wI7gGFyEhv2eh6NNnHj8C16vTP825DKvxv64EFKr6vhRAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUAhdY///D2KTT2/CMOwDOuEDOv4IwHwYDVR0j BBgwFoAUWG/o0n/01r1PqDn8WIRKSwPVNd8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YzA3MmRiNy0wMTI3LTQ1NjQtOGQyMC1iY2VkNTI1YTE0YjgvMC81ODZGRThEMjdG RjRENkJENEZBODM5RkM1ODg0NEE0QjAzRDUzNURGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTg2RkU4RDI3RkY0RDZCRDRGQTgzOUZDNTg4NDRBNEIwM0Q1 MzVERi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JjMDcyZGI3LTAxMjctNDU2NC04 ZDIwLWJjZWQ1MjVhMTRiOC8wLzMyMzAzMDMxM2E2NDY2MzAzYTMzNjUzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzgzNTMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8D6AMA0GCSqGSIb3DQEBCwUAA4IBAQAArffUKyKuYuSIeOTOBCHU9sL/8Zxv7S3K C4MOQ0HpOSFaRcaXiXVq4I1oEysu9X6h0Np0T/wmj/+8zm2iNUwiIfBrvN5n3xhd b4B/odYjDRSY03/XMqzllFTh5JOX03X8D9APlU6SMi2UMirqZqpCnf6y+E7UAo5y cf6v1F2yMSbCBZKgQUb6cSvMKyPCDvd/6khCR5za2LcPILhYIPpiE8VdtYZN8nce dn2ZXe6sjftrwRlcWDEYx9/FWsX5GCfR/l+KbFuAfL08PHEYZyMOUk8vbqrNl45M +EIhlU0YLNgOMMk4u3K5lXiSuVeg0HMcVHGgNFmORNhheCSJVVBv -----END CERTIFICATE-----Generated at Sat Jun 1 15:44:22 2024 by rpki-client on console-fra.rpki-client.org