$ rpki-client -vvf repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/323030313a6466363a636330303a3a2f34382d3438203d3e203535363833.roa File: 323030313a6466363a636330303a3a2f34382d3438203d3e203535363833.roa (raw, json) Hash identifier: 34BvxPyaFuhgbSVnyk20wGUlcHgXfBXV5OB/eN6wufI= Subject key identifier: 43:94:1A:B9:3D:D7:4C:B1:38:0B:8C:36:FF:59:F4:F3:99:18:C6:74 Certificate issuer: /CN=3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28 Certificate serial: 7847FD748D218B7E49A8FE326A9BF4A2AB4CFA60 Authority key identifier: 35:66:B6:CF:00:D7:B0:B6:73:F8:B5:26:C5:6A:EB:DC:B5:AD:BD:28 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/323030313a6466363a636330303a3a2f34382d3438203d3e203535363833.roa Signing time: Mon 31 Jul 2023 00:06:28 +0000 ROA not before: Mon 31 Jul 2023 00:01:28 +0000 ROA not after: Mon 29 Jul 2024 00:06:28 +0000 asID: 55683 IP address blocks: 2001:df6:cc00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.crl rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Jun 2024 03:42:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:47:fd:74:8d:21:8b:7e:49:a8:fe:32:6a:9b:f4:a2:ab:4c:fa:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28 Validity Not Before: Jul 31 00:01:28 2023 GMT Not After : Jul 29 00:06:28 2024 GMT Subject: CN=43941AB93DD74CB1380B8C36FF59F4F39918C674 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:29:2b:6e:6c:02:6f:bc:9c:68:f9:ca:12:1e: 0d:de:89:e8:5f:7c:f1:b8:33:38:db:af:aa:bc:dd: 12:99:f2:55:93:77:76:b2:52:56:8c:05:0d:64:22: a8:aa:5b:90:61:0d:3c:d1:e8:cf:60:13:18:17:44: 3a:1e:dc:30:9f:1e:73:c5:9d:87:d1:70:b3:01:45: b5:5d:b8:99:ab:bf:46:80:fd:81:24:67:2d:9b:d6: 5f:c8:ad:e9:3f:80:78:e9:09:74:15:3b:3b:c8:7d: 8e:9b:31:c3:67:71:0f:4c:c4:a7:99:6e:93:ef:52: ab:d7:bd:17:a9:8d:49:0a:54:10:96:24:fc:4a:be: 90:eb:5d:ac:7d:d2:18:15:40:46:04:2b:27:87:2a: 65:ef:8c:8b:a0:ef:f5:f9:d7:31:df:e5:8d:22:47: 63:e7:27:c3:66:09:d2:f0:52:e6:d9:e3:8a:3b:58: 6e:db:9a:40:d4:51:d8:e7:4c:8e:f3:cf:10:23:a5: 22:fa:0f:bb:dd:36:66:62:0b:3a:2a:e1:b9:03:c3: 16:8c:71:0a:08:10:40:71:b8:e4:06:a4:15:3c:b9: a9:d0:5a:5b:17:a0:3b:b9:2c:70:7b:a9:91:ee:f2: e9:1a:f0:85:5c:3c:6d:7b:5f:90:ce:ad:84:4a:4f: c3:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:94:1A:B9:3D:D7:4C:B1:38:0B:8C:36:FF:59:F4:F3:99:18:C6:74 X509v3 Authority Key Identifier: keyid:35:66:B6:CF:00:D7:B0:B6:73:F8:B5:26:C5:6A:EB:DC:B5:AD:BD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/323030313a6466363a636330303a3a2f34382d3438203d3e203535363833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:cc00::/48 Signature Algorithm: sha256WithRSAEncryption 7d:c7:b0:82:ea:b0:02:be:5b:b0:41:6b:6a:04:dd:e9:3d:7d: 71:97:8a:ec:f2:83:cc:55:00:5d:62:6b:4a:bb:5d:cc:94:93: be:16:11:87:17:48:04:b6:50:df:15:f7:88:92:6c:50:9b:f1: a0:ee:fd:50:e2:6f:e8:f1:a4:ad:77:79:be:96:34:40:28:36: ae:42:77:ff:a8:65:ec:0f:71:db:61:6b:ed:52:c7:0e:43:8e: 19:fa:3b:c3:9e:64:3e:e4:df:27:2f:88:ee:24:b3:de:69:32: e4:4d:8e:c9:2f:69:13:01:38:a9:68:a1:17:b8:08:07:5c:d5: b8:41:4e:80:72:cf:54:92:19:7d:16:63:aa:99:b3:f3:8d:3e: 51:eb:09:98:d6:49:94:5d:2a:42:be:58:7a:1f:20:bc:d9:4e: dc:1f:03:41:d0:5d:38:5c:27:89:e0:9e:d0:dc:03:58:9a:5d: 3d:0f:5a:8d:cc:30:df:29:e1:16:eb:89:d6:e2:5c:f7:f5:57: 04:9d:41:57:4d:c5:28:1b:62:65:26:4e:b6:ca:2a:6e:79:46: 9b:8f:4c:7a:90:62:6f:56:0b:fa:1c:57:fe:01:2c:66:88:47: ec:1b:f2:e5:6d:8c:4a:82:17:ce:14:60:65:b6:93:9a:78:fa: 1f:67:e1:c9 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUeEf9dI0hi35JqP4yapv0oqtM+mAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzU2NkI2Q0YwMEQ3QjBCNjczRjhCNTI2QzU2QUVCRENC NUFEQkQyODAeFw0yMzA3MzEwMDAxMjhaFw0yNDA3MjkwMDA2MjhaMDMxMTAvBgNV BAMTKDQzOTQxQUI5M0RENzRDQjEzODBCOEMzNkZGNTlGNEYzOTkxOEM2NzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5KStubAJvvJxo+coSHg3eiehf fPG4Mzjbr6q83RKZ8lWTd3ayUlaMBQ1kIqiqW5BhDTzR6M9gExgXRDoe3DCfHnPF nYfRcLMBRbVduJmrv0aA/YEkZy2b1l/Irek/gHjpCXQVOzvIfY6bMcNncQ9MxKeZ bpPvUqvXvRepjUkKVBCWJPxKvpDrXax90hgVQEYEKyeHKmXvjIug7/X51zHf5Y0i R2PnJ8NmCdLwUubZ44o7WG7bmkDUUdjnTI7zzxAjpSL6D7vdNmZiCzoq4bkDwxaM cQoIEEBxuOQGpBU8uanQWlsXoDu5LHB7qZHu8uka8IVcPG17X5DOrYRKT8PzAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUQ5QauT3XTLE4C4w2/1n085kYxnQwHwYDVR0j BBgwFoAUNWa2zwDXsLZz+LUmxWrr3LWtvSgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k M2I4YWU5Ny02ODE4LTQ4YTktYWJlNC1lZGI5NjA0OWYzYzgvMC8zNTY2QjZDRjAw RDdCMEI2NzNGOEI1MjZDNTZBRUJEQ0I1QURCRDI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzU2NkI2Q0YwMEQ3QjBCNjczRjhCNTI2QzU2QUVCRENCNUFE QkQyOC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzYjhhZTk3LTY4MTgtNDhhOS1h YmU0LWVkYjk2MDQ5ZjNjOC8wLzMyMzAzMDMxM2E2NDY2MzYzYTYzNjMzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzNTM2MzgzMy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfbM ADANBgkqhkiG9w0BAQsFAAOCAQEAfcewguqwAr5bsEFragTd6T19cZeK7PKDzFUA XWJrSrtdzJSTvhYRhxdIBLZQ3xX3iJJsUJvxoO79UOJv6PGkrXd5vpY0QCg2rkJ3 /6hl7A9x22Fr7VLHDkOOGfo7w55kPuTfJy+I7iSz3mky5E2OyS9pEwE4qWihF7gI B1zVuEFOgHLPVJIZfRZjqpmz840+UesJmNZJlF0qQr5Yeh8gvNlO3B8DQdBdOFwn ieCe0NwDWJpdPQ9ajcww3ynhFuuJ1uJc9/VXBJ1BV03FKBtiZSZOtsoqbnlGm49M epBib1YL+hxX/gEsZohH7Bvy5W2MSoIXzhRgZbaTmnj6H2fhyQ== -----END CERTIFICATE-----Generated at Sun Jun 23 14:00:37 2024 by rpki-client on console-fra.rpki-client.org