$ rpki-client -vvf repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/323030313a6466303a666230303a3a2f34382d3438203d3e20313336313035.roa File: 323030313a6466303a666230303a3a2f34382d3438203d3e20313336313035.roa (raw, json) Hash identifier: vGlTFDm85jw/H6QUE2lsygNRtCd7oXn0kLjm1KgmSA0= Subject key identifier: 9D:51:57:05:9A:CC:99:35:4C:56:95:55:A7:2F:A4:7F:AE:60:53:B3 Certificate issuer: /CN=CE0CD1353A42A0A99EE768F3FAF235E38F6C1189 Certificate serial: 2DD19960643537664E700957633B7EEE00BCB6E3 Authority key identifier: CE:0C:D1:35:3A:42:A0:A9:9E:E7:68:F3:FA:F2:35:E3:8F:6C:11:89 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE0CD1353A42A0A99EE768F3FAF235E38F6C1189.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/323030313a6466303a666230303a3a2f34382d3438203d3e20313336313035.roa Signing time: Mon 31 Jul 2023 00:06:51 +0000 ROA not before: Mon 31 Jul 2023 00:01:51 +0000 ROA not after: Mon 29 Jul 2024 00:06:51 +0000 asID: 136105 IP address blocks: 2001:df0:fb00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/CE0CD1353A42A0A99EE768F3FAF235E38F6C1189.crl rsync://repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/CE0CD1353A42A0A99EE768F3FAF235E38F6C1189.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE0CD1353A42A0A99EE768F3FAF235E38F6C1189.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:d1:99:60:64:35:37:66:4e:70:09:57:63:3b:7e:ee:00:bc:b6:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE0CD1353A42A0A99EE768F3FAF235E38F6C1189 Validity Not Before: Jul 31 00:01:51 2023 GMT Not After : Jul 29 00:06:51 2024 GMT Subject: CN=9D5157059ACC99354C569555A72FA47FAE6053B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d1:ba:fb:13:3e:43:ed:79:0c:67:91:89:cc: 83:7f:1f:16:65:f2:2a:eb:ac:b6:44:c5:6a:ed:f5: ba:e5:b5:7c:f4:f5:ab:43:fb:e7:d6:af:2d:9e:8c: 79:8d:4d:38:0e:af:d1:82:1f:a4:5d:a3:25:2e:d2: 28:0c:a4:a1:f6:b1:c2:ea:2f:b0:73:84:03:cd:df: 9a:50:49:f7:4b:52:e4:96:66:fb:36:35:1c:5b:66: 54:2d:8c:98:a5:3c:53:98:be:ec:1c:64:cd:1d:86: 39:9c:8c:6b:e8:a2:c5:db:8e:f0:fb:7c:11:ac:f7: 62:73:8a:1c:a8:f5:fa:ad:1d:46:a2:b8:07:36:c4: e1:9e:ba:c9:1a:ae:bc:62:b1:5b:85:ce:26:fc:f3: 22:7f:8e:25:70:49:18:43:78:a3:f5:12:08:5b:64: 5a:b9:42:93:ae:e2:9f:e9:55:8c:0f:93:d4:96:e9: ed:99:7a:01:93:0e:71:3a:54:79:dc:b8:a6:36:84: 72:3a:85:b3:8c:88:c2:b3:fc:cf:b1:26:6c:be:3c: 4b:58:40:40:bc:1e:dd:0f:f8:e7:b7:82:72:e0:3c: 98:64:fa:dc:1f:2b:e3:b7:89:b0:95:bc:47:64:3d: e9:f9:c3:3b:ef:2c:dd:c0:24:3b:24:85:68:3e:d4: 57:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:51:57:05:9A:CC:99:35:4C:56:95:55:A7:2F:A4:7F:AE:60:53:B3 X509v3 Authority Key Identifier: keyid:CE:0C:D1:35:3A:42:A0:A9:9E:E7:68:F3:FA:F2:35:E3:8F:6C:11:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/CE0CD1353A42A0A99EE768F3FAF235E38F6C1189.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE0CD1353A42A0A99EE768F3FAF235E38F6C1189.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/323030313a6466303a666230303a3a2f34382d3438203d3e20313336313035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:fb00::/48 Signature Algorithm: sha256WithRSAEncryption 4f:84:f6:e9:8f:e6:3e:e5:d5:5f:5d:31:40:31:63:fd:09:ac: 33:fd:3a:ce:02:64:eb:de:5b:8c:60:93:d0:63:f5:37:ee:55: 65:03:ca:ac:42:f4:91:34:c4:20:f9:0d:86:52:63:df:6b:b2: d1:1d:82:f4:aa:12:df:c9:04:57:6f:c5:89:03:0a:36:f1:6a: 98:8a:33:29:32:a7:4e:cf:84:fb:3b:91:f9:96:01:25:d3:f8: 29:b4:85:da:42:06:2b:df:1b:7f:c7:3e:83:ca:16:3f:60:d9: d1:92:6f:8c:f1:03:40:19:2a:cf:19:b5:9e:8e:48:0d:03:d8: d7:91:53:b4:37:62:f8:3e:5d:35:91:97:c9:39:c3:84:bd:e5: 03:09:5f:fe:d4:9b:e0:e0:77:24:60:da:4a:c8:db:92:62:f6: 5a:b6:00:e2:53:f5:52:b7:0d:a0:44:ec:6a:9a:ad:2b:15:f6: 0c:22:a5:dc:26:d6:8e:f7:a7:04:56:d0:97:9d:f2:fd:11:44: 87:4b:77:d1:a6:fa:d9:f7:0c:c8:9c:f1:85:41:cf:62:10:ed: b0:4d:1b:42:6e:0c:d3:a1:2a:18:99:69:56:d4:08:d8:30:cc: 7b:69:a1:c0:9d:8f:0b:2e:04:75:4b:6c:22:a4:2f:83:4b:ed: 0e:4e:eb:55 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIULdGZYGQ1N2ZOcAlXYzt+7gC8tuMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0UwQ0QxMzUzQTQyQTBBOTlFRTc2OEYzRkFGMjM1RTM4 RjZDMTE4OTAeFw0yMzA3MzEwMDAxNTFaFw0yNDA3MjkwMDA2NTFaMDMxMTAvBgNV BAMTKDlENTE1NzA1OUFDQzk5MzU0QzU2OTU1NUE3MkZBNDdGQUU2MDUzQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp0br7Ez5D7XkMZ5GJzIN/HxZl 8irrrLZExWrt9brltXz09atD++fWry2ejHmNTTgOr9GCH6RdoyUu0igMpKH2scLq L7BzhAPN35pQSfdLUuSWZvs2NRxbZlQtjJilPFOYvuwcZM0dhjmcjGvoosXbjvD7 fBGs92Jzihyo9fqtHUaiuAc2xOGeuskarrxisVuFzib88yJ/jiVwSRhDeKP1Eghb ZFq5QpOu4p/pVYwPk9SW6e2ZegGTDnE6VHncuKY2hHI6hbOMiMKz/M+xJmy+PEtY QEC8Ht0P+Oe3gnLgPJhk+twfK+O3ibCVvEdkPen5wzvvLN3AJDskhWg+1FcrAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUnVFXBZrMmTVMVpVVpy+kf65gU7MwHwYDVR0j BBgwFoAUzgzRNTpCoKme52jz+vI1449sEYkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzczYmM2MS1jNWY5LTQxNTktOThiYy1hMDUzMGI0ZGQ4YjQvMC9DRTBDRDEzNTNB NDJBMEE5OUVFNzY4RjNGQUYyMzVFMzhGNkMxMTg5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0UwQ0QxMzUzQTQyQTBBOTlFRTc2OEYzRkFGMjM1RTM4RjZD MTE4OS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNzNiYzYxLWM1ZjktNDE1OS05 OGJjLWEwNTMwYjRkZDhiNC8wLzMyMzAzMDMxM2E2NDY2MzAzYTY2NjIzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzEzMDM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8PsAMA0GCSqGSIb3DQEBCwUAA4IBAQBPhPbpj+Y+5dVfXTFAMWP9Cawz/TrOAmTr 3luMYJPQY/U37lVlA8qsQvSRNMQg+Q2GUmPfa7LRHYL0qhLfyQRXb8WJAwo28WqY ijMpMqdOz4T7O5H5lgEl0/gptIXaQgYr3xt/xz6DyhY/YNnRkm+M8QNAGSrPGbWe jkgNA9jXkVO0N2L4Pl01kZfJOcOEveUDCV/+1Jvg4HckYNpKyNuSYvZatgDiU/VS tw2gROxqmq0rFfYMIqXcJtaO96cEVtCXnfL9EUSHS3fRpvrZ9wzInPGFQc9iEO2w TRtCbgzToSoYmWlW1AjYMMx7aaHAnY8LLgR1S2wipC+DS+0OTutV -----END CERTIFICATE-----Generated at Sat Jun 1 06:27:30 2024 by rpki-client on console-fra.rpki-client.org