$ rpki-client -vvf repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a663030303a3a2f33362d3438203d3e203338313534.roa File: 323030313a6632303a663030303a3a2f33362d3438203d3e203338313534.roa (raw, json) Hash identifier: A1bTEMg+JuHlkDZcdD7yjvnHaj2MsNh5cw0GOVe9S+M= Subject key identifier: 10:BF:B5:8E:47:C0:FC:33:3E:60:FA:B3:B8:79:89:01:C5:76:AA:72 Certificate issuer: /CN=F33127B2252454B491C5DC9FE3937C56F28F8066 Certificate serial: 0224CEE5B037971011DF1C698814E9C7FB8D41A2 Authority key identifier: F3:31:27:B2:25:24:54:B4:91:C5:DC:9F:E3:93:7C:56:F2:8F:80:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a663030303a3a2f33362d3438203d3e203338313534.roa Signing time: Fri 01 Mar 2024 11:00:02 +0000 ROA not before: Fri 01 Mar 2024 10:55:02 +0000 ROA not after: Fri 28 Feb 2025 11:00:02 +0000 asID: 38154 IP address blocks: 2001:f20:f000::/36 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.crl rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:24:ce:e5:b0:37:97:10:11:df:1c:69:88:14:e9:c7:fb:8d:41:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33127B2252454B491C5DC9FE3937C56F28F8066 Validity Not Before: Mar 1 10:55:02 2024 GMT Not After : Feb 28 11:00:02 2025 GMT Subject: CN=10BFB58E47C0FC333E60FAB3B8798901C576AA72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a1:3f:65:54:0c:0c:75:9d:65:25:5c:75:c7: 8e:67:d3:e3:45:4b:80:ff:37:d0:f6:81:05:d1:91: 2f:cb:7f:5f:f2:5a:89:c0:73:c2:47:12:da:1e:61: a5:81:d0:c9:f9:49:9c:79:04:b2:3a:75:01:a3:82: 94:f8:38:77:9c:5c:ff:b7:91:58:7d:9f:ae:27:d8: 3b:58:8d:6f:f6:a5:77:e0:b6:b2:10:53:52:ea:82: 73:df:06:80:e6:b4:34:61:71:a7:57:01:d2:63:5d: cf:f2:cc:bd:c0:ff:f9:ed:4e:d6:17:fa:f0:33:81: a7:0f:75:66:9d:1a:39:5e:53:bd:49:08:5a:1f:0c: 8c:b7:c9:f5:90:35:5b:82:53:5c:a0:c9:ef:1a:5b: 10:9c:69:3d:99:86:0b:b6:0f:7f:19:f8:db:60:1c: 3e:ca:e9:f0:c5:e6:47:6f:95:49:d7:4c:e9:b9:d6: 69:4f:a6:20:e3:de:40:6b:33:ff:49:eb:29:86:df: b8:b1:52:61:b1:2b:65:9c:30:e8:d8:ad:71:f0:16: e2:15:46:64:c5:47:2c:0b:93:31:07:1b:c8:32:6e: 58:e5:8f:77:fa:42:52:fe:d1:c4:ad:22:51:4d:39: 8d:69:8f:71:d6:19:87:27:dc:25:6d:41:ce:a9:1a: 96:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:BF:B5:8E:47:C0:FC:33:3E:60:FA:B3:B8:79:89:01:C5:76:AA:72 X509v3 Authority Key Identifier: keyid:F3:31:27:B2:25:24:54:B4:91:C5:DC:9F:E3:93:7C:56:F2:8F:80:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a663030303a3a2f33362d3438203d3e203338313534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:f20:f000::/36 Signature Algorithm: sha256WithRSAEncryption 95:1a:62:f8:97:5f:1f:42:fb:d4:71:20:e8:a6:c1:3e:58:df: ba:a1:36:e0:f4:93:60:d4:a5:82:ed:1a:a4:f1:71:65:79:31: 8c:96:74:00:5c:74:7f:93:b9:92:1c:7c:49:d4:f0:e2:83:d3: 39:71:ad:a7:3a:ba:48:f4:75:1a:af:09:4d:09:ef:41:0c:3a: 06:53:d2:1b:1d:7a:b8:1d:1e:0d:b0:41:c2:0b:0e:a1:ee:9c: 7f:c1:44:72:0e:7c:d2:e3:4c:fb:db:51:60:f1:34:a8:0c:47: fe:55:91:ef:19:45:06:f1:d4:90:47:ce:a4:29:06:67:a3:14: 74:41:16:05:b8:1c:fb:e9:cc:10:5f:e3:ed:c2:9d:02:7b:ac: db:69:9b:ec:e6:11:d8:a8:3f:37:fd:97:2e:58:43:0c:b0:a0: c4:a1:74:69:e2:1a:25:0d:0c:9e:04:70:58:35:69:19:f7:5e: 22:66:92:2f:a8:cd:9c:89:58:37:f0:7c:7e:91:50:f5:14:3e: 85:c6:64:da:84:29:ee:8e:91:ce:b2:69:85:85:36:b9:22:a0: d5:70:eb:08:4c:3e:4b:82:dc:cd:c5:5f:4a:0d:28:72:fa:23: a3:c6:b8:4d:9d:e8:8d:9e:41:68:b2:e9:07:93:4e:a6:54:cb: 0b:84:21:e7 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUAiTO5bA3lxAR3xxpiBTpx/uNQaIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjMzMTI3QjIyNTI0NTRCNDkxQzVEQzlGRTM5MzdDNTZG MjhGODA2NjAeFw0yNDAzMDExMDU1MDJaFw0yNTAyMjgxMTAwMDJaMDMxMTAvBgNV BAMTKDEwQkZCNThFNDdDMEZDMzMzRTYwRkFCM0I4Nzk4OTAxQzU3NkFBNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNoT9lVAwMdZ1lJVx1x45n0+NF S4D/N9D2gQXRkS/Lf1/yWonAc8JHEtoeYaWB0Mn5SZx5BLI6dQGjgpT4OHecXP+3 kVh9n64n2DtYjW/2pXfgtrIQU1LqgnPfBoDmtDRhcadXAdJjXc/yzL3A//ntTtYX +vAzgacPdWadGjleU71JCFofDIy3yfWQNVuCU1ygye8aWxCcaT2Zhgu2D38Z+Ntg HD7K6fDF5kdvlUnXTOm51mlPpiDj3kBrM/9J6ymG37ixUmGxK2WcMOjYrXHwFuIV RmTFRywLkzEHG8gybljlj3f6QlL+0cStIlFNOY1pj3HWGYcn3CVtQc6pGpaHAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQUEL+1jkfA/DM+YPqzuHmJAcV2qnIwHwYDVR0j BBgwFoAU8zEnsiUkVLSRxdyf45N8VvKPgGYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YmJmZTc3Ni0wMGEzLTQ3NzYtYmYzZi01MjExOTQ2MTAxYzMvMC9GMzMxMjdCMjI1 MjQ1NEI0OTFDNURDOUZFMzkzN0M1NkYyOEY4MDY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjMzMTI3QjIyNTI0NTRCNDkxQzVEQzlGRTM5MzdDNTZGMjhG ODA2Ni5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ViYmZlNzc2LTAwYTMtNDc3Ni1i ZjNmLTUyMTE5NDYxMDFjMy8wLzMyMzAzMDMxM2E2NjMyMzAzYTY2MzAzMDMwM2Ez YTJmMzMzNjJkMzQzODIwM2QzZTIwMzMzODMxMzUzNC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCABDyDw MA0GCSqGSIb3DQEBCwUAA4IBAQCVGmL4l18fQvvUcSDopsE+WN+6oTbg9JNg1KWC 7Rqk8XFleTGMlnQAXHR/k7mSHHxJ1PDig9M5ca2nOrpI9HUarwlNCe9BDDoGU9Ib HXq4HR4NsEHCCw6h7px/wURyDnzS40z721Fg8TSoDEf+VZHvGUUG8dSQR86kKQZn oxR0QRYFuBz76cwQX+Ptwp0Ce6zbaZvs5hHYqD83/ZcuWEMMsKDEoXRp4holDQye BHBYNWkZ914iZpIvqM2ciVg38Hx+kVD1FD6FxmTahCnujpHOsmmFhTa5IqDVcOsI TD5LgtzNxV9KDShy+iOjxrhNneiNnkFosukHk06mVMsLhCHn -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:26 2024 by rpki-client on console-fra.rpki-client.org