$ rpki-client -vvf repo-rpki.idnic.net/repo/c2be4f18-ceed-4f23-a0a4-e24e04d320d3/0/323030313a6466373a663130303a3a2f34382d3438203d3e20313338383731.roa File: 323030313a6466373a663130303a3a2f34382d3438203d3e20313338383731.roa (raw, json) Hash identifier: LwwwZE9HTFwYXN3ESq2loU9cleYaBhPhXoBbdFAQwno= Subject key identifier: 5B:99:78:03:C1:F8:4C:F0:8D:CB:D9:F2:C9:2B:15:7E:1C:7A:5F:C1 Certificate issuer: /CN=9AD8AEF8362DD03EACC7B7DEE20F5D3F6DFF5D49 Certificate serial: 3794BDBDE7C585BE5289C1FC048A9553650A313D Authority key identifier: 9A:D8:AE:F8:36:2D:D0:3E:AC:C7:B7:DE:E2:0F:5D:3F:6D:FF:5D:49 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9AD8AEF8362DD03EACC7B7DEE20F5D3F6DFF5D49.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2be4f18-ceed-4f23-a0a4-e24e04d320d3/0/323030313a6466373a663130303a3a2f34382d3438203d3e20313338383731.roa Signing time: Sat 02 Dec 2023 02:00:00 +0000 ROA not before: Sat 02 Dec 2023 01:55:00 +0000 ROA not after: Sat 30 Nov 2024 02:00:00 +0000 asID: 138871 IP address blocks: 2001:df7:f100::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2be4f18-ceed-4f23-a0a4-e24e04d320d3/0/9AD8AEF8362DD03EACC7B7DEE20F5D3F6DFF5D49.crl rsync://repo-rpki.idnic.net/repo/c2be4f18-ceed-4f23-a0a4-e24e04d320d3/0/9AD8AEF8362DD03EACC7B7DEE20F5D3F6DFF5D49.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9AD8AEF8362DD03EACC7B7DEE20F5D3F6DFF5D49.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:94:bd:bd:e7:c5:85:be:52:89:c1:fc:04:8a:95:53:65:0a:31:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9AD8AEF8362DD03EACC7B7DEE20F5D3F6DFF5D49 Validity Not Before: Dec 2 01:55:00 2023 GMT Not After : Nov 30 02:00:00 2024 GMT Subject: CN=5B997803C1F84CF08DCBD9F2C92B157E1C7A5FC1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:45:07:a8:42:e3:89:0b:8a:e0:13:8b:f0:b4: 53:17:00:8b:d0:e5:3a:43:96:76:55:fa:e4:08:5e: 26:bb:e9:ce:b0:ae:97:85:f7:57:37:ca:5d:21:64: 32:8c:45:a8:b1:22:95:28:02:d4:be:31:14:62:df: 54:21:04:7a:1c:ad:95:71:c0:cd:0a:df:fa:cb:c9: 94:26:1f:85:c1:60:2d:fc:4c:b3:6a:a8:a5:9a:72: 8b:36:49:54:e1:5e:05:0e:38:81:eb:b8:34:9d:59: d3:4a:7b:2f:a4:8d:57:68:2e:8e:76:00:1c:01:6f: 9d:6c:c1:75:b3:81:48:e1:08:28:3d:6e:73:d7:3a: 8d:17:6b:f1:97:1d:d4:76:82:bd:05:9b:59:d9:70: 9b:3c:ed:0c:d7:c8:a6:10:a2:4c:68:49:3c:9a:bf: 10:bb:6b:9e:08:de:c9:d5:d7:62:05:99:19:d0:6e: c2:46:4b:0c:c1:2d:31:ae:68:f4:63:36:74:ed:fc: 50:5b:cd:01:46:38:88:b7:b1:23:8f:42:26:19:6f: fb:8e:93:6c:ca:63:97:ba:05:c8:4b:b5:6f:fe:4b: 48:dc:ea:51:8c:a8:36:7e:cc:43:3f:62:a0:f2:ef: 1a:10:92:52:23:1a:ab:9f:5b:a1:b1:82:37:9c:4c: ca:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:99:78:03:C1:F8:4C:F0:8D:CB:D9:F2:C9:2B:15:7E:1C:7A:5F:C1 X509v3 Authority Key Identifier: keyid:9A:D8:AE:F8:36:2D:D0:3E:AC:C7:B7:DE:E2:0F:5D:3F:6D:FF:5D:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2be4f18-ceed-4f23-a0a4-e24e04d320d3/0/9AD8AEF8362DD03EACC7B7DEE20F5D3F6DFF5D49.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9AD8AEF8362DD03EACC7B7DEE20F5D3F6DFF5D49.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2be4f18-ceed-4f23-a0a4-e24e04d320d3/0/323030313a6466373a663130303a3a2f34382d3438203d3e20313338383731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:f100::/48 Signature Algorithm: sha256WithRSAEncryption 3e:87:cf:e5:52:18:e5:96:34:94:46:ab:d2:eb:67:59:13:2d: 0e:23:8b:17:47:6b:96:9d:18:b8:5c:19:e5:3d:86:06:98:fb: 4c:28:5e:ed:c8:6d:96:47:65:b7:7f:f5:16:4e:ed:b4:49:cd: 18:9c:03:e6:7a:51:40:cb:12:2b:ae:1e:3e:4b:de:ed:15:2c: b5:ad:29:84:39:94:f0:ed:25:8b:5f:9d:88:ec:30:25:00:25: 5e:ed:8b:04:77:71:eb:21:7c:cf:09:41:93:16:29:c2:63:15: 5b:f9:e7:3d:6f:11:bb:9e:c2:03:85:3b:20:c3:30:49:54:c3: 3d:56:0d:36:92:c2:f4:9f:04:3f:a2:91:68:ff:04:38:e8:c2: a2:ef:48:0b:82:62:00:a5:d3:91:78:6f:f6:ad:ae:57:e5:66: 1f:b5:27:a1:93:df:af:5c:05:8e:c3:ae:77:30:ed:56:38:e8: 0d:ef:73:ab:8b:f9:6f:10:89:5f:a0:00:d3:da:a5:10:5d:27: 11:30:74:9d:3d:4b:71:dd:1c:55:e4:aa:ef:64:d0:a9:39:fb: 62:82:b6:41:00:26:f7:b9:d6:ad:e3:fa:19:9e:e7:7f:bf:e9: 03:f1:fa:09:b1:dd:82:ca:0f:eb:cd:75:d2:f6:70:70:05:37: c3:cc:25:db -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUN5S9vefFhb5SicH8BIqVU2UKMT0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUFEOEFFRjgzNjJERDAzRUFDQzdCN0RFRTIwRjVEM0Y2 REZGNUQ0OTAeFw0yMzEyMDIwMTU1MDBaFw0yNDExMzAwMjAwMDBaMDMxMTAvBgNV BAMTKDVCOTk3ODAzQzFGODRDRjA4RENCRDlGMkM5MkIxNTdFMUM3QTVGQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGRQeoQuOJC4rgE4vwtFMXAIvQ 5TpDlnZV+uQIXia76c6wrpeF91c3yl0hZDKMRaixIpUoAtS+MRRi31QhBHocrZVx wM0K3/rLyZQmH4XBYC38TLNqqKWacos2SVThXgUOOIHruDSdWdNKey+kjVdoLo52 ABwBb51swXWzgUjhCCg9bnPXOo0Xa/GXHdR2gr0Fm1nZcJs87QzXyKYQokxoSTya vxC7a54I3snV12IFmRnQbsJGSwzBLTGuaPRjNnTt/FBbzQFGOIi3sSOPQiYZb/uO k2zKY5e6BchLtW/+S0jc6lGMqDZ+zEM/YqDy7xoQklIjGqufW6GxgjecTMoZAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUW5l4A8H4TPCNy9nyySsVfhx6X8EwHwYDVR0j BBgwFoAUmtiu+DYt0D6sx7fe4g9dP23/XUkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MmJlNGYxOC1jZWVkLTRmMjMtYTBhNC1lMjRlMDRkMzIwZDMvMC85QUQ4QUVGODM2 MkREMDNFQUNDN0I3REVFMjBGNUQzRjZERkY1RDQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUFEOEFFRjgzNjJERDAzRUFDQzdCN0RFRTIwRjVEM0Y2REZG NUQ0OS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyYmU0ZjE4LWNlZWQtNGYyMy1h MGE0LWUyNGUwNGQzMjBkMy8wLzMyMzAzMDMxM2E2NDY2MzczYTY2MzEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzgzNzMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9/EAMA0GCSqGSIb3DQEBCwUAA4IBAQA+h8/lUhjlljSURqvS62dZEy0OI4sXR2uW nRi4XBnlPYYGmPtMKF7tyG2WR2W3f/UWTu20Sc0YnAPmelFAyxIrrh4+S97tFSy1 rSmEOZTw7SWLX52I7DAlACVe7YsEd3HrIXzPCUGTFinCYxVb+ec9bxG7nsIDhTsg wzBJVMM9Vg02ksL0nwQ/opFo/wQ46MKi70gLgmIApdOReG/2ra5X5WYftSehk9+v XAWOw653MO1WOOgN73Ori/lvEIlfoADT2qUQXScRMHSdPUtx3RxV5KrvZNCpOfti grZBACb3udat4/oZnud/v+kD8foJsd2Cyg/rzXXS9nBwBTfDzCXb -----END CERTIFICATE-----Generated at Sun Jun 2 17:59:29 2024 by rpki-client on console-fra.rpki-client.org