$ rpki-client -vvf repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a343030303a3a2f33362d3438203d3e2039383735.roa File: 323030313a6632303a343030303a3a2f33362d3438203d3e2039383735.roa (raw, json) Hash identifier: NumSvNHx9thWuFW2Nqi5YRhJsI96uTacWKFAMgSGFkA= Subject key identifier: F7:65:FB:72:51:AF:19:D8:98:89:5C:A2:32:63:11:86:37:4B:2E:BB Certificate issuer: /CN=F33127B2252454B491C5DC9FE3937C56F28F8066 Certificate serial: 3AF8BD7CE479AB37253B3A83971AD3639AC4B3CE Authority key identifier: F3:31:27:B2:25:24:54:B4:91:C5:DC:9F:E3:93:7C:56:F2:8F:80:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a343030303a3a2f33362d3438203d3e2039383735.roa Signing time: Fri 01 Mar 2024 11:00:02 +0000 ROA not before: Fri 01 Mar 2024 10:55:02 +0000 ROA not after: Fri 28 Feb 2025 11:00:02 +0000 asID: 9875 IP address blocks: 2001:f20:4000::/36 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.crl rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:f8:bd:7c:e4:79:ab:37:25:3b:3a:83:97:1a:d3:63:9a:c4:b3:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33127B2252454B491C5DC9FE3937C56F28F8066 Validity Not Before: Mar 1 10:55:02 2024 GMT Not After : Feb 28 11:00:02 2025 GMT Subject: CN=F765FB7251AF19D898895CA232631186374B2EBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:38:10:43:1c:32:e4:54:1a:3d:d1:6e:7c:f9: af:51:7e:aa:cf:1b:1d:43:64:ca:fe:ca:92:9f:b3: 10:65:38:54:8f:27:55:c5:18:c1:fa:45:f6:f3:14: c3:ae:7a:74:63:d5:33:ca:7d:13:ff:e9:3c:7c:03: 50:43:b7:a2:97:33:b4:85:bf:f9:e6:25:b8:d6:0c: a3:85:a6:89:89:cb:f7:8a:cd:78:7e:0c:3e:3a:ff: 12:34:01:c9:ae:2b:f4:e4:f5:e5:15:8b:a4:2f:1c: de:87:52:48:44:ef:aa:f0:9f:b2:5f:3b:41:5b:01: cf:9c:ae:f8:8a:aa:62:91:9d:d1:f9:fb:0e:af:46: ad:b4:07:41:2f:9e:af:77:1e:d4:e4:1f:83:33:8f: dc:eb:9d:6b:f3:c6:cf:93:27:ca:7e:70:ef:75:7e: c6:36:ab:6d:f1:0a:c3:f4:37:3b:33:b5:e3:81:f5: 2d:1b:ed:10:07:48:00:d8:43:b6:b8:5c:f4:2a:81: 16:7b:2f:75:0f:92:ca:0a:d9:31:a8:84:c2:e5:8a: 79:c6:44:6d:d0:db:43:e4:34:5b:a5:7c:ba:55:3c: 57:b5:79:a3:39:79:f9:45:1a:64:c0:37:70:f0:df: 9c:30:65:cd:b3:24:a1:c0:0b:98:41:74:57:d7:7d: ee:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:65:FB:72:51:AF:19:D8:98:89:5C:A2:32:63:11:86:37:4B:2E:BB X509v3 Authority Key Identifier: keyid:F3:31:27:B2:25:24:54:B4:91:C5:DC:9F:E3:93:7C:56:F2:8F:80:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a343030303a3a2f33362d3438203d3e2039383735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:f20:4000::/36 Signature Algorithm: sha256WithRSAEncryption be:e6:1e:25:ae:9c:34:01:df:08:6f:af:19:78:74:b3:d1:9f: 79:92:33:ea:ab:d0:03:e5:3d:94:04:35:1f:61:e3:6f:2a:8c: 91:78:db:bd:7a:f6:c4:da:f3:1f:63:c3:90:3a:96:61:1a:ae: c9:8e:72:a6:2f:bf:1e:37:f8:5e:0a:99:bc:02:65:b3:d9:0a: b9:5c:30:50:77:0c:7a:14:8d:9b:0f:7e:55:7c:a5:cd:78:97: d2:87:09:6e:34:66:3d:7c:4b:b6:d0:b5:11:67:22:a0:ea:07: c5:8f:a6:41:c5:27:9f:dd:c3:83:81:e2:91:2d:35:15:5b:d6: 79:31:fc:e7:be:2f:20:5a:f1:a3:a9:3c:74:7d:99:50:cd:22: ab:1a:2c:c5:20:b8:8e:15:77:a4:8b:ea:11:78:87:ce:a8:58: 7c:91:3f:a7:da:5c:c4:76:a9:14:83:7e:47:86:c5:53:b4:f1: b7:60:bd:49:74:20:d7:03:1b:4a:92:b8:99:de:da:37:68:5d: bc:16:77:f4:ab:bc:fc:54:5e:1a:5f:97:c3:e0:a5:1c:46:47: bd:f0:4a:3e:43:9f:e3:5b:c6:22:f3:f8:24:4b:28:a1:78:c9: 87:54:86:2b:1c:58:dd:6e:99:6d:12:10:ec:b7:61:da:d8:a8: f7:6c:f9:49 -----BEGIN CERTIFICATE----- MIIFLjCCBBagAwIBAgIUOvi9fOR5qzclOzqDlxrTY5rEs84wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjMzMTI3QjIyNTI0NTRCNDkxQzVEQzlGRTM5MzdDNTZG MjhGODA2NjAeFw0yNDAzMDExMDU1MDJaFw0yNTAyMjgxMTAwMDJaMDMxMTAvBgNV BAMTKEY3NjVGQjcyNTFBRjE5RDg5ODg5NUNBMjMyNjMxMTg2Mzc0QjJFQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxOBBDHDLkVBo90W58+a9RfqrP Gx1DZMr+ypKfsxBlOFSPJ1XFGMH6RfbzFMOuenRj1TPKfRP/6Tx8A1BDt6KXM7SF v/nmJbjWDKOFpomJy/eKzXh+DD46/xI0AcmuK/Tk9eUVi6QvHN6HUkhE76rwn7Jf O0FbAc+crviKqmKRndH5+w6vRq20B0Evnq93HtTkH4Mzj9zrnWvzxs+TJ8p+cO91 fsY2q23xCsP0NzszteOB9S0b7RAHSADYQ7a4XPQqgRZ7L3UPksoK2TGohMLlinnG RG3Q20PkNFulfLpVPFe1eaM5eflFGmTAN3Dw35wwZc2zJKHAC5hBdFfXfe4pAgMB AAGjggI4MIICNDAdBgNVHQ4EFgQU92X7clGvGdiYiVyiMmMRhjdLLrswHwYDVR0j BBgwFoAU8zEnsiUkVLSRxdyf45N8VvKPgGYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YmJmZTc3Ni0wMGEzLTQ3NzYtYmYzZi01MjExOTQ2MTAxYzMvMC9GMzMxMjdCMjI1 MjQ1NEI0OTFDNURDOUZFMzkzN0M1NkYyOEY4MDY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjMzMTI3QjIyNTI0NTRCNDkxQzVEQzlGRTM5MzdDNTZGMjhG ODA2Ni5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ViYmZlNzc2LTAwYTMtNDc3Ni1i ZjNmLTUyMTE5NDYxMDFjMy8wLzMyMzAzMDMxM2E2NjMyMzAzYTM0MzAzMDMwM2Ez YTJmMzMzNjJkMzQzODIwM2QzZTIwMzkzODM3MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQgAQ8gQDAN BgkqhkiG9w0BAQsFAAOCAQEAvuYeJa6cNAHfCG+vGXh0s9GfeZIz6qvQA+U9lAQ1 H2HjbyqMkXjbvXr2xNrzH2PDkDqWYRquyY5ypi+/Hjf4XgqZvAJls9kKuVwwUHcM ehSNmw9+VXylzXiX0ocJbjRmPXxLttC1EWcioOoHxY+mQcUnn93Dg4HikS01FVvW eTH8574vIFrxo6k8dH2ZUM0iqxosxSC4jhV3pIvqEXiHzqhYfJE/p9pcxHapFIN+ R4bFU7Txt2C9SXQg1wMbSpK4md7aN2hdvBZ39Ku8/FReGl+Xw+ClHEZHvfBKPkOf 41vGIvP4JEsooXjJh1SGKxxY3W6ZbRIQ7Ldh2tio92z5SQ== -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:26 2024 by rpki-client on console-fra.rpki-client.org