$ rpki-client -vvf repo-rpki.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/323030313a6466313a383530303a3a2f34382d3438203d3e20313336313131.roa File: 323030313a6466313a383530303a3a2f34382d3438203d3e20313336313131.roa (raw, json) Hash identifier: RgjsrCu5XRLIiqwTlO9EDEJ2PdEmlJNzR7db0HMTVzE= Subject key identifier: 0A:45:5F:FA:1D:1A:40:B4:10:44:9C:90:3B:F8:4A:5D:86:FC:4A:E7 Certificate issuer: /CN=399315B18BA7D0DD666DCA8C3DBBE013575AF7D1 Certificate serial: 48A251C694A7EB3B9750A9A5493E9C1986B3E79B Authority key identifier: 39:93:15:B1:8B:A7:D0:DD:66:6D:CA:8C:3D:BB:E0:13:57:5A:F7:D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/399315B18BA7D0DD666DCA8C3DBBE013575AF7D1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/323030313a6466313a383530303a3a2f34382d3438203d3e20313336313131.roa Signing time: Wed 06 Sep 2023 03:58:09 +0000 ROA not before: Wed 06 Sep 2023 03:53:09 +0000 ROA not after: Wed 04 Sep 2024 03:58:09 +0000 asID: 136111 IP address blocks: 2001:df1:8500::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/399315B18BA7D0DD666DCA8C3DBBE013575AF7D1.crl rsync://repo-rpki.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/399315B18BA7D0DD666DCA8C3DBBE013575AF7D1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/399315B18BA7D0DD666DCA8C3DBBE013575AF7D1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:a2:51:c6:94:a7:eb:3b:97:50:a9:a5:49:3e:9c:19:86:b3:e7:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=399315B18BA7D0DD666DCA8C3DBBE013575AF7D1 Validity Not Before: Sep 6 03:53:09 2023 GMT Not After : Sep 4 03:58:09 2024 GMT Subject: CN=0A455FFA1D1A40B410449C903BF84A5D86FC4AE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:aa:c6:5c:60:36:76:8d:b5:bd:17:5d:1a:1a: 5e:31:0c:e0:94:76:75:91:fe:57:f2:23:94:f4:d8: 6b:4f:33:af:8d:ad:b7:bd:6b:96:40:44:20:e2:d4: d3:92:a0:33:29:cd:b7:37:a3:d0:68:bb:6e:48:f7: 1a:54:9f:4a:97:ea:ba:15:6e:11:13:e7:56:10:cf: c2:3e:1b:74:7a:51:54:36:e9:34:2d:03:da:3a:1c: 64:0c:6f:75:cf:56:c2:cc:15:4a:3d:df:a3:7d:76: 74:69:cc:f1:9c:42:77:39:f9:71:40:05:06:50:17: 8c:69:f4:f4:7a:30:61:24:ad:96:9f:63:8e:02:ec: 91:1b:12:c5:6d:08:09:4b:75:df:8a:45:65:e5:39: b9:3b:45:64:0b:16:75:fd:e1:78:90:6f:99:30:a4: bf:66:8d:ea:0f:41:17:20:0a:90:12:e1:5b:4f:2b: d8:fe:e5:0d:6f:45:e9:6f:ff:ac:12:50:f2:f8:05: 79:7a:e8:e6:2b:f1:76:89:c4:06:25:2d:31:cf:fb: 2d:2a:1d:7f:92:48:94:f6:26:7c:23:2d:e0:a9:66: fb:4c:37:40:a6:96:c1:f4:b1:67:1e:3b:93:1c:62: 4f:d0:2f:3d:5e:71:49:75:88:9e:a8:de:fe:2b:93: 77:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:45:5F:FA:1D:1A:40:B4:10:44:9C:90:3B:F8:4A:5D:86:FC:4A:E7 X509v3 Authority Key Identifier: keyid:39:93:15:B1:8B:A7:D0:DD:66:6D:CA:8C:3D:BB:E0:13:57:5A:F7:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/399315B18BA7D0DD666DCA8C3DBBE013575AF7D1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/399315B18BA7D0DD666DCA8C3DBBE013575AF7D1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/323030313a6466313a383530303a3a2f34382d3438203d3e20313336313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:8500::/48 Signature Algorithm: sha256WithRSAEncryption 71:e1:40:cc:eb:a0:f4:1c:87:3d:cf:65:7f:43:fd:eb:e7:63: b0:71:33:39:d1:a6:94:1c:38:86:31:1b:84:58:db:88:6a:56: 94:99:fa:f8:a6:7a:95:60:07:20:45:9b:08:86:8d:98:ef:67: 66:2d:b2:ea:4a:97:83:02:52:1b:9e:34:70:2b:42:7e:34:de: f5:d1:ff:f6:16:76:2b:1d:f0:8d:1c:2a:01:0b:bf:ea:c7:80: b2:02:57:b6:59:59:96:ea:82:57:10:ec:8f:0c:3e:ad:3f:93: a2:88:c2:8f:bf:58:b8:2e:e1:81:22:d6:65:7e:45:1e:37:99: c6:6b:ca:4c:e5:36:60:c7:0f:76:2c:c7:fa:d6:43:f2:62:77: f3:64:ec:c1:ba:74:99:6e:79:b9:a8:2b:e4:e0:f3:12:b1:70: 41:05:b5:be:16:67:00:7d:70:51:a9:3f:fa:c8:3c:ab:68:63: b1:0f:7d:ef:f4:a9:88:ea:0c:a4:76:d2:7a:fc:cc:a8:5b:4e: 3d:08:a8:0d:ac:fc:d7:e8:d9:19:dc:34:bc:0f:a8:80:2d:0e: cd:00:87:6f:79:75:1f:51:56:5d:2c:6f:fd:95:56:1d:71:81: 1e:59:f5:71:ff:3c:17:c3:02:1b:47:1d:f7:f4:17:9c:2e:e2: cc:42:2f:4e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUSKJRxpSn6zuXUKmlST6cGYaz55swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzk5MzE1QjE4QkE3RDBERDY2NkRDQThDM0RCQkUwMTM1 NzVBRjdEMTAeFw0yMzA5MDYwMzUzMDlaFw0yNDA5MDQwMzU4MDlaMDMxMTAvBgNV BAMTKDBBNDU1RkZBMUQxQTQwQjQxMDQ0OUM5MDNCRjg0QTVEODZGQzRBRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrqsZcYDZ2jbW9F10aGl4xDOCU dnWR/lfyI5T02GtPM6+Nrbe9a5ZARCDi1NOSoDMpzbc3o9Bou25I9xpUn0qX6roV bhET51YQz8I+G3R6UVQ26TQtA9o6HGQMb3XPVsLMFUo936N9dnRpzPGcQnc5+XFA BQZQF4xp9PR6MGEkrZafY44C7JEbEsVtCAlLdd+KRWXlObk7RWQLFnX94XiQb5kw pL9mjeoPQRcgCpAS4VtPK9j+5Q1vRelv/6wSUPL4BXl66OYr8XaJxAYlLTHP+y0q HX+SSJT2JnwjLeCpZvtMN0CmlsH0sWceO5McYk/QLz1ecUl1iJ6o3v4rk3clAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUCkVf+h0aQLQQRJyQO/hKXYb8SucwHwYDVR0j BBgwFoAUOZMVsYun0N1mbcqMPbvgE1da99EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MmYyODg3OS00ODQ0LTQyZGUtYjJkOS1hOTY2NmRlMjgyZWEvMC8zOTkzMTVCMThC QTdEMERENjY2RENBOEMzREJCRTAxMzU3NUFGN0QxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzk5MzE1QjE4QkE3RDBERDY2NkRDQThDM0RCQkUwMTM1NzVB RjdEMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyZjI4ODc5LTQ4NDQtNDJkZS1i MmQ5LWE5NjY2ZGUyODJlYS8wLzMyMzAzMDMxM2E2NDY2MzEzYTM4MzUzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzEzMTMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8YUAMA0GCSqGSIb3DQEBCwUAA4IBAQBx4UDM66D0HIc9z2V/Q/3r52OwcTM50aaU HDiGMRuEWNuIalaUmfr4pnqVYAcgRZsIho2Y72dmLbLqSpeDAlIbnjRwK0J+NN71 0f/2FnYrHfCNHCoBC7/qx4CyAle2WVmW6oJXEOyPDD6tP5OiiMKPv1i4LuGBItZl fkUeN5nGa8pM5TZgxw92LMf61kPyYnfzZOzBunSZbnm5qCvk4PMSsXBBBbW+FmcA fXBRqT/6yDyraGOxD33v9KmI6gykdtJ6/MyoW049CKgNrPzX6NkZ3DS8D6iALQ7N AIdveXUfUVZdLG/9lVYdcYEeWfVx/zwXwwIbRx339BecLuLMQi9O -----END CERTIFICATE-----Generated at Fri Jun 21 19:32:10 2024 by rpki-client on console-ams.rpki-client.org