$ rpki-client -vvf repo-rpki.idnic.net/repo/d67fb837-1b2f-4c4e-b999-6e990ddc1499/0/323030313a6466313a353638303a3a2f34382d3438203d3e20313339333738.roa File: 323030313a6466313a353638303a3a2f34382d3438203d3e20313339333738.roa (raw, json) Hash identifier: S/IQ6/p8jFfJ9ee5AubUKIh7kblnktplc/ZFUgxkeUA= Subject key identifier: 37:23:6C:0B:39:31:99:5C:5C:2B:A0:91:EC:BF:65:CA:7A:F7:87:2B Certificate issuer: /CN=C5CA2999FE7612F56CCCB7441743B05181458ED0 Certificate serial: 64860FDFF539C3A62B150D57CE6E038489ADDA11 Authority key identifier: C5:CA:29:99:FE:76:12:F5:6C:CC:B7:44:17:43:B0:51:81:45:8E:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C5CA2999FE7612F56CCCB7441743B05181458ED0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d67fb837-1b2f-4c4e-b999-6e990ddc1499/0/323030313a6466313a353638303a3a2f34382d3438203d3e20313339333738.roa Signing time: Mon 31 Jul 2023 00:08:01 +0000 ROA not before: Mon 31 Jul 2023 00:03:01 +0000 ROA not after: Mon 29 Jul 2024 00:08:01 +0000 asID: 139378 IP address blocks: 2001:df1:5680::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d67fb837-1b2f-4c4e-b999-6e990ddc1499/0/C5CA2999FE7612F56CCCB7441743B05181458ED0.crl rsync://repo-rpki.idnic.net/repo/d67fb837-1b2f-4c4e-b999-6e990ddc1499/0/C5CA2999FE7612F56CCCB7441743B05181458ED0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C5CA2999FE7612F56CCCB7441743B05181458ED0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:86:0f:df:f5:39:c3:a6:2b:15:0d:57:ce:6e:03:84:89:ad:da:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C5CA2999FE7612F56CCCB7441743B05181458ED0 Validity Not Before: Jul 31 00:03:01 2023 GMT Not After : Jul 29 00:08:01 2024 GMT Subject: CN=37236C0B3931995C5C2BA091ECBF65CA7AF7872B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:a1:01:35:31:6e:dc:3e:1b:d1:41:cc:0e:55: 20:01:36:50:ef:16:0b:64:6f:29:0e:e6:f5:be:6a: 0e:db:03:d1:5c:04:22:1c:f8:9d:2c:b2:d2:dd:10: d5:b6:55:d5:15:f1:a7:ab:28:cb:d6:94:00:b1:47: 5b:25:4f:13:6b:fc:9e:4a:61:10:f7:03:31:2d:ef: 16:1b:55:c9:a5:89:7f:27:2a:d0:6f:4f:2f:ef:29: 4d:67:b1:6e:90:27:de:37:7d:26:ce:39:b8:8e:f3: a9:47:8f:3e:e1:84:7b:07:8c:0d:4d:c1:fc:aa:8b: bf:13:31:8e:b4:22:3c:e3:36:48:ea:47:92:95:3f: cc:ee:3f:21:e5:d2:8f:c0:9f:3e:6b:c5:99:3c:8d: 2c:bb:ea:8d:5a:c4:dc:44:85:cf:3c:79:16:94:e9: 7d:fc:72:2b:65:0b:4d:ba:c6:6c:70:c0:e0:37:a8: 6e:10:fe:1f:84:34:db:46:51:02:8f:43:81:01:9e: ab:c7:0c:69:8a:ae:a4:48:7f:01:aa:e5:17:27:f2: 24:de:b9:04:84:30:3c:e5:1f:1f:4b:e7:0e:1d:6f: 75:89:50:cd:7b:8f:e6:eb:25:3f:34:8a:7c:2b:2f: 44:d6:6d:4a:f2:bb:0c:ca:49:67:13:be:71:99:31: f8:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:23:6C:0B:39:31:99:5C:5C:2B:A0:91:EC:BF:65:CA:7A:F7:87:2B X509v3 Authority Key Identifier: keyid:C5:CA:29:99:FE:76:12:F5:6C:CC:B7:44:17:43:B0:51:81:45:8E:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d67fb837-1b2f-4c4e-b999-6e990ddc1499/0/C5CA2999FE7612F56CCCB7441743B05181458ED0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C5CA2999FE7612F56CCCB7441743B05181458ED0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d67fb837-1b2f-4c4e-b999-6e990ddc1499/0/323030313a6466313a353638303a3a2f34382d3438203d3e20313339333738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:5680::/48 Signature Algorithm: sha256WithRSAEncryption af:f1:ac:48:47:2c:30:82:e4:4d:9f:bf:0a:b4:58:ee:23:41: 35:20:99:07:1d:24:71:f1:ba:9b:04:df:e0:32:72:61:13:88: 2c:ff:95:ca:1f:6a:eb:a3:51:9f:1b:12:ab:87:d1:db:80:3b: c2:fb:e4:a7:ee:38:e0:e6:57:32:aa:e3:c5:33:98:dd:86:9c: d5:f0:5f:81:63:f9:a9:e3:69:9d:d4:a5:57:cf:14:27:4e:6b: d7:43:e5:2d:a4:a2:bc:59:aa:02:ef:39:81:a0:b2:f5:5b:e9: 47:a7:c3:05:09:e3:41:c0:f8:e9:8f:d9:a2:2b:ab:5f:ba:b4: 7b:d2:8e:d8:68:1c:5a:62:27:d0:18:ba:b3:f1:54:c3:c3:ef: 02:21:24:2d:f2:88:1d:24:00:a2:5b:a1:45:dc:e3:aa:8e:e3: a8:46:33:30:03:c3:34:6c:f7:24:89:1e:4b:24:8f:65:0b:f9: a2:a8:41:ff:6d:6e:e1:da:69:9c:29:17:d4:f2:23:9d:1c:00: d5:b9:e5:61:69:8f:f0:c9:6e:5b:ae:25:9a:4c:b2:42:7c:99: 4c:c5:38:51:c1:d3:4f:e0:58:c9:14:40:b1:52:65:31:39:46: 4f:f1:d1:f6:cb:02:49:c4:50:f6:95:83:c9:7b:37:a9:85:3e: 0e:24:2a:87 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUZIYP3/U5w6YrFQ1Xzm4DhImt2hEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzVDQTI5OTlGRTc2MTJGNTZDQ0NCNzQ0MTc0M0IwNTE4 MTQ1OEVEMDAeFw0yMzA3MzEwMDAzMDFaFw0yNDA3MjkwMDA4MDFaMDMxMTAvBgNV BAMTKDM3MjM2QzBCMzkzMTk5NUM1QzJCQTA5MUVDQkY2NUNBN0FGNzg3MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgoQE1MW7cPhvRQcwOVSABNlDv FgtkbykO5vW+ag7bA9FcBCIc+J0sstLdENW2VdUV8aerKMvWlACxR1slTxNr/J5K YRD3AzEt7xYbVcmliX8nKtBvTy/vKU1nsW6QJ943fSbOObiO86lHjz7hhHsHjA1N wfyqi78TMY60IjzjNkjqR5KVP8zuPyHl0o/Anz5rxZk8jSy76o1axNxEhc88eRaU 6X38citlC026xmxwwOA3qG4Q/h+ENNtGUQKPQ4EBnqvHDGmKrqRIfwGq5Rcn8iTe uQSEMDzlHx9L5w4db3WJUM17j+brJT80inwrL0TWbUryuwzKSWcTvnGZMfgBAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUNyNsCzkxmVxcK6CR7L9lynr3hyswHwYDVR0j BBgwFoAUxcopmf52EvVszLdEF0OwUYFFjtAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NjdmYjgzNy0xYjJmLTRjNGUtYjk5OS02ZTk5MGRkYzE0OTkvMC9DNUNBMjk5OUZF NzYxMkY1NkNDQ0I3NDQxNzQzQjA1MTgxNDU4RUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzVDQTI5OTlGRTc2MTJGNTZDQ0NCNzQ0MTc0M0IwNTE4MTQ1 OEVEMC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q2N2ZiODM3LTFiMmYtNGM0ZS1i OTk5LTZlOTkwZGRjMTQ5OS8wLzMyMzAzMDMxM2E2NDY2MzEzYTM1MzYzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzMzNzM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8VaAMA0GCSqGSIb3DQEBCwUAA4IBAQCv8axIRywwguRNn78KtFjuI0E1IJkHHSRx 8bqbBN/gMnJhE4gs/5XKH2rro1GfGxKrh9HbgDvC++Sn7jjg5lcyquPFM5jdhpzV 8F+BY/mp42md1KVXzxQnTmvXQ+UtpKK8WaoC7zmBoLL1W+lHp8MFCeNBwPjpj9mi K6tfurR70o7YaBxaYifQGLqz8VTDw+8CISQt8ogdJACiW6FF3OOqjuOoRjMwA8M0 bPckiR5LJI9lC/miqEH/bW7h2mmcKRfU8iOdHADVueVhaY/wyW5briWaTLJCfJlM xThRwdNP4FjJFECxUmUxOUZP8dH2ywJJxFD2lYPJezephT4OJCqH -----END CERTIFICATE-----Generated at Sat Jun 1 11:46:17 2024 by rpki-client on console-ams.rpki-client.org