$ rpki-client -vvf repo-rpki.idnic.net/repo/be0cb630-636a-4b6a-93df-b5d908fe6ee7/0/323030313a6466333a356334303a3a2f34382d3438203d3e20313431313236.roa File: 323030313a6466333a356334303a3a2f34382d3438203d3e20313431313236.roa (raw, json) Hash identifier: TFYD1CE4VrU6UeF3oz6q40JKQCwyClymW3Ju2Wc/9x8= Subject key identifier: 9B:2D:AA:17:D8:75:FB:EC:0D:F0:5E:13:D8:8C:77:54:C4:15:DD:F9 Certificate issuer: /CN=6BFD656A9FA63FB89816B17CCED2832B43FE41CD Certificate serial: 20B031C2D0406CE88B4CDA9E9F7B70C77C15DFCA Authority key identifier: 6B:FD:65:6A:9F:A6:3F:B8:98:16:B1:7C:CE:D2:83:2B:43:FE:41:CD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6BFD656A9FA63FB89816B17CCED2832B43FE41CD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/be0cb630-636a-4b6a-93df-b5d908fe6ee7/0/323030313a6466333a356334303a3a2f34382d3438203d3e20313431313236.roa Signing time: Mon 15 Jan 2024 05:25:59 +0000 ROA not before: Mon 15 Jan 2024 05:20:59 +0000 ROA not after: Mon 13 Jan 2025 05:25:59 +0000 asID: 141126 IP address blocks: 2001:df3:5c40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/be0cb630-636a-4b6a-93df-b5d908fe6ee7/0/6BFD656A9FA63FB89816B17CCED2832B43FE41CD.crl rsync://repo-rpki.idnic.net/repo/be0cb630-636a-4b6a-93df-b5d908fe6ee7/0/6BFD656A9FA63FB89816B17CCED2832B43FE41CD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6BFD656A9FA63FB89816B17CCED2832B43FE41CD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 12:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:b0:31:c2:d0:40:6c:e8:8b:4c:da:9e:9f:7b:70:c7:7c:15:df:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6BFD656A9FA63FB89816B17CCED2832B43FE41CD Validity Not Before: Jan 15 05:20:59 2024 GMT Not After : Jan 13 05:25:59 2025 GMT Subject: CN=9B2DAA17D875FBEC0DF05E13D88C7754C415DDF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3f:b0:c2:c8:31:1c:dd:0f:5d:46:8f:46:4a: 2c:b0:16:03:bc:cf:a3:90:35:ed:be:95:31:65:ab: bc:34:17:50:cb:01:a3:02:db:6f:b5:d0:27:21:d5: 85:d0:58:3c:45:cf:bd:c4:fa:45:81:2d:1f:7f:81: 2b:12:48:51:70:ed:f3:5d:0d:dc:9a:e9:6a:d7:1c: f9:c7:5e:97:20:65:62:68:41:e5:f2:31:d6:8d:73: f0:6a:7d:62:c3:eb:b8:1e:c0:4d:bc:48:ff:dc:66: 42:b8:e5:12:8c:dd:f5:78:ed:f7:10:c7:12:ca:7f: 57:87:3f:e5:64:ee:5d:5c:e0:30:b2:40:2d:be:e9: c8:eb:e9:14:f6:21:bb:95:37:51:fc:ba:fb:07:e6: 49:53:fe:1f:44:a4:05:f9:bd:8b:62:06:a1:29:5c: 4c:42:2c:be:ec:b8:cd:e3:b3:a2:e4:ee:8c:ef:c6: f1:2a:64:50:2e:80:00:95:04:50:90:af:5d:e3:52: b0:ca:aa:4e:ca:08:99:d8:df:73:6f:b2:b6:b3:27: 03:c4:54:42:46:c0:8d:cf:48:89:67:df:1d:e1:c0: 00:9e:c4:b1:bd:22:1e:70:d6:63:fd:1a:15:e7:b4: 52:8f:b1:de:b3:bd:b1:b0:88:98:74:54:d6:f0:a0: 1b:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:2D:AA:17:D8:75:FB:EC:0D:F0:5E:13:D8:8C:77:54:C4:15:DD:F9 X509v3 Authority Key Identifier: keyid:6B:FD:65:6A:9F:A6:3F:B8:98:16:B1:7C:CE:D2:83:2B:43:FE:41:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/be0cb630-636a-4b6a-93df-b5d908fe6ee7/0/6BFD656A9FA63FB89816B17CCED2832B43FE41CD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6BFD656A9FA63FB89816B17CCED2832B43FE41CD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/be0cb630-636a-4b6a-93df-b5d908fe6ee7/0/323030313a6466333a356334303a3a2f34382d3438203d3e20313431313236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:5c40::/48 Signature Algorithm: sha256WithRSAEncryption 50:40:a4:9d:6d:28:bd:10:a0:1f:15:17:2e:fe:c5:b3:2c:09: 09:49:04:c8:aa:35:3b:d9:3f:85:ae:0b:ba:29:7d:6d:4b:b1: f2:68:a5:c3:82:af:61:55:2c:f9:7d:68:fd:30:4e:3a:69:cc: b3:bd:e3:81:b1:7f:22:1e:75:62:e2:42:7c:4e:da:6b:d6:ba: 83:44:6f:7d:02:fd:20:f6:d4:8f:02:52:51:be:0d:d0:e1:d6: df:22:6e:47:f4:a6:d7:4b:cc:f1:99:54:eb:36:0c:4c:c4:a3: 04:74:f2:18:42:c5:25:ee:bd:8c:66:45:d2:cb:d3:99:69:84: cf:e0:62:33:ae:9b:7e:88:93:3f:92:e0:69:81:d1:6e:7b:05: 6b:9d:a5:53:1f:bc:3d:fd:50:05:10:46:4b:15:b3:c7:7a:32: 82:62:c7:a5:b0:35:83:b0:5e:ef:85:56:e2:cc:f7:7f:4f:ff: 4d:7c:5a:d5:97:f8:ad:e4:c3:6d:6d:dd:5b:2b:3f:d7:fc:30: 6c:a5:59:fa:2d:5f:be:17:66:53:86:9f:1f:42:6b:14:38:99: 6c:5e:59:d3:91:f8:95:66:e8:58:6d:63:78:b8:50:ad:ef:d1: c9:3f:8e:f8:c0:2c:a0:57:4b:3c:bc:e4:ff:55:26:14:7e:56: 1f:81:4a:e3 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUILAxwtBAbOiLTNqen3twx3wV38owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkJGRDY1NkE5RkE2M0ZCODk4MTZCMTdDQ0VEMjgzMkI0 M0ZFNDFDRDAeFw0yNDAxMTUwNTIwNTlaFw0yNTAxMTMwNTI1NTlaMDMxMTAvBgNV BAMTKDlCMkRBQTE3RDg3NUZCRUMwREYwNUUxM0Q4OEM3NzU0QzQxNURERjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/P7DCyDEc3Q9dRo9GSiywFgO8 z6OQNe2+lTFlq7w0F1DLAaMC22+10Cch1YXQWDxFz73E+kWBLR9/gSsSSFFw7fNd Ddya6WrXHPnHXpcgZWJoQeXyMdaNc/BqfWLD67gewE28SP/cZkK45RKM3fV47fcQ xxLKf1eHP+Vk7l1c4DCyQC2+6cjr6RT2IbuVN1H8uvsH5klT/h9EpAX5vYtiBqEp XExCLL7suM3js6Lk7ozvxvEqZFAugACVBFCQr13jUrDKqk7KCJnY33NvsrazJwPE VEJGwI3PSIln3x3hwACexLG9Ih5w1mP9GhXntFKPsd6zvbGwiJh0VNbwoBuDAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUmy2qF9h1++wN8F4T2Ix3VMQV3fkwHwYDVR0j BBgwFoAUa/1lap+mP7iYFrF8ztKDK0P+Qc0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZTBjYjYzMC02MzZhLTRiNmEtOTNkZi1iNWQ5MDhmZTZlZTcvMC82QkZENjU2QTlG QTYzRkI4OTgxNkIxN0NDRUQyODMyQjQzRkU0MUNELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkJGRDY1NkE5RkE2M0ZCODk4MTZCMTdDQ0VEMjgzMkI0M0ZF NDFDRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JlMGNiNjMwLTYzNmEtNGI2YS05 M2RmLWI1ZDkwOGZlNmVlNy8wLzMyMzAzMDMxM2E2NDY2MzMzYTM1NjMzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMxMzEzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 81xAMA0GCSqGSIb3DQEBCwUAA4IBAQBQQKSdbSi9EKAfFRcu/sWzLAkJSQTIqjU7 2T+Frgu6KX1tS7HyaKXDgq9hVSz5fWj9ME46acyzveOBsX8iHnVi4kJ8Ttpr1rqD RG99Av0g9tSPAlJRvg3Q4dbfIm5H9KbXS8zxmVTrNgxMxKMEdPIYQsUl7r2MZkXS y9OZaYTP4GIzrpt+iJM/kuBpgdFuewVrnaVTH7w9/VAFEEZLFbPHejKCYselsDWD sF7vhVbizPd/T/9NfFrVl/it5MNtbd1bKz/X/DBspVn6LV++F2ZThp8fQmsUOJls XlnTkfiVZuhYbWN4uFCt79HJP474wCygV0s8vOT/VSYUflYfgUrj -----END CERTIFICATE-----Generated at Mon May 6 00:10:07 2024 by rpki-client on console-fra.rpki-client.org