$ rpki-client -vvf repo-rpki.idnic.net/repo/12c511be-67a2-44c9-b182-a911ba95be00/0/323030313a6466353a353238303a3a2f34382d3438203d3e20313431313237.roa File: 323030313a6466353a353238303a3a2f34382d3438203d3e20313431313237.roa (raw, json) Hash identifier: GxZEcsbi8cFWVUxAdOsXDFYA3dvzUVR7mB9re8Rs6eI= Subject key identifier: AF:C5:3B:DD:02:E5:D4:12:27:01:6A:CA:F6:D5:44:14:6C:F5:7E:60 Certificate issuer: /CN=4412C369832E86CF255C7255EB1ECA7938910246 Certificate serial: 6D655019F47A7C265C6BEAD9919E6D5EAEB0BFBF Authority key identifier: 44:12:C3:69:83:2E:86:CF:25:5C:72:55:EB:1E:CA:79:38:91:02:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4412C369832E86CF255C7255EB1ECA7938910246.cer Subject info access: rsync://repo-rpki.idnic.net/repo/12c511be-67a2-44c9-b182-a911ba95be00/0/323030313a6466353a353238303a3a2f34382d3438203d3e20313431313237.roa Signing time: Wed 20 Dec 2023 06:00:01 +0000 ROA not before: Wed 20 Dec 2023 05:55:01 +0000 ROA not after: Wed 18 Dec 2024 06:00:01 +0000 asID: 141127 IP address blocks: 2001:df5:5280::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/12c511be-67a2-44c9-b182-a911ba95be00/0/4412C369832E86CF255C7255EB1ECA7938910246.crl rsync://repo-rpki.idnic.net/repo/12c511be-67a2-44c9-b182-a911ba95be00/0/4412C369832E86CF255C7255EB1ECA7938910246.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4412C369832E86CF255C7255EB1ECA7938910246.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 09:45:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:65:50:19:f4:7a:7c:26:5c:6b:ea:d9:91:9e:6d:5e:ae:b0:bf:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4412C369832E86CF255C7255EB1ECA7938910246 Validity Not Before: Dec 20 05:55:01 2023 GMT Not After : Dec 18 06:00:01 2024 GMT Subject: CN=AFC53BDD02E5D41227016ACAF6D544146CF57E60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:28:f5:b5:3f:64:ce:c5:5e:13:17:05:40:57: aa:e0:32:1f:d3:fc:e9:1d:22:26:cc:d4:11:1d:ea: e6:64:d0:51:46:7c:1e:5e:44:d6:a9:ad:e7:2f:0c: 25:61:d6:43:cc:4e:06:c0:07:46:a7:3c:66:97:bc: df:30:7f:32:62:06:dd:1b:be:5e:ce:43:30:58:95: 9f:eb:88:05:08:73:89:1d:c0:db:17:40:00:3e:55: f9:ed:c2:6b:05:9d:ba:5d:ce:d5:26:58:d7:bd:82: 0f:7a:d9:75:fa:87:92:33:fa:a4:70:a3:ce:ee:de: 31:41:cb:79:0c:63:48:61:4a:7a:f6:9b:60:26:4c: b1:db:ad:5d:1e:a5:1a:25:5a:c7:3f:af:6b:5e:a3: 98:03:f4:81:13:86:cf:22:fc:70:66:58:dd:88:8f: ec:10:0a:00:fd:71:23:e9:3f:d3:d0:ae:96:84:bc: c9:5f:91:75:64:b0:f5:2c:7f:d6:1c:46:d0:07:27: 8d:79:f4:9d:68:60:f3:76:48:7a:4e:88:d4:f1:ef: b6:6a:69:e3:87:f4:c3:9b:61:67:de:b3:a1:fc:70: 13:c5:04:df:ae:5a:bc:a0:68:7d:4b:27:f5:8e:8c: 14:5e:2d:df:d7:dc:7b:13:24:fc:a5:81:ec:f0:f4: 38:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:C5:3B:DD:02:E5:D4:12:27:01:6A:CA:F6:D5:44:14:6C:F5:7E:60 X509v3 Authority Key Identifier: keyid:44:12:C3:69:83:2E:86:CF:25:5C:72:55:EB:1E:CA:79:38:91:02:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/12c511be-67a2-44c9-b182-a911ba95be00/0/4412C369832E86CF255C7255EB1ECA7938910246.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4412C369832E86CF255C7255EB1ECA7938910246.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/12c511be-67a2-44c9-b182-a911ba95be00/0/323030313a6466353a353238303a3a2f34382d3438203d3e20313431313237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df5:5280::/48 Signature Algorithm: sha256WithRSAEncryption b1:ed:3b:2a:2f:84:eb:a6:dc:ba:36:da:34:74:dd:3c:00:20: 11:7e:57:d4:4e:7d:12:87:d0:81:a8:85:74:72:3b:af:fc:46: 8b:25:00:46:5d:4f:f0:f5:ee:f7:b5:49:1a:69:6d:19:5e:52: 9d:f7:44:50:f5:4d:40:c7:cb:6a:ff:71:96:8f:99:c9:25:f3: da:8c:7d:16:36:f2:82:af:0b:2b:74:f4:bd:f3:9f:b3:f9:3d: 9e:5f:14:61:4d:95:1a:78:90:5d:71:ec:b8:7d:49:1d:79:bd: 38:87:58:47:27:8d:a0:e5:5e:0b:0f:47:b8:a4:23:92:eb:2b: 09:fa:8e:5a:7d:cc:a9:b0:9b:c7:bb:ec:b6:a4:54:57:a3:c4: a1:43:d1:0f:6a:f4:4c:22:cd:15:ca:b3:be:0b:ec:f0:65:89: da:04:66:29:db:40:54:cd:53:2f:ce:1e:ca:28:93:f1:16:00: 07:21:88:4d:f0:53:d0:92:6e:3d:95:e9:06:eb:86:da:45:91: 46:ef:a8:43:a0:11:7e:a1:b9:4d:cf:0f:44:d4:f0:8d:f2:89: eb:04:c8:b5:4e:ff:06:20:fd:78:81:d9:fd:c3:c5:ed:9f:0d: bb:fe:f2:3d:fa:57:7d:d0:1a:d3:2c:a9:16:a5:a7:f7:15:e4: c2:22:64:05 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUbWVQGfR6fCZca+rZkZ5tXq6wv78wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDQxMkMzNjk4MzJFODZDRjI1NUM3MjU1RUIxRUNBNzkz ODkxMDI0NjAeFw0yMzEyMjAwNTU1MDFaFw0yNDEyMTgwNjAwMDFaMDMxMTAvBgNV BAMTKEFGQzUzQkREMDJFNUQ0MTIyNzAxNkFDQUY2RDU0NDE0NkNGNTdFNjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrKPW1P2TOxV4TFwVAV6rgMh/T /OkdIibM1BEd6uZk0FFGfB5eRNaprecvDCVh1kPMTgbAB0anPGaXvN8wfzJiBt0b vl7OQzBYlZ/riAUIc4kdwNsXQAA+VfntwmsFnbpdztUmWNe9gg962XX6h5Iz+qRw o87u3jFBy3kMY0hhSnr2m2AmTLHbrV0epRolWsc/r2teo5gD9IEThs8i/HBmWN2I j+wQCgD9cSPpP9PQrpaEvMlfkXVksPUsf9YcRtAHJ4159J1oYPN2SHpOiNTx77Zq aeOH9MObYWfes6H8cBPFBN+uWrygaH1LJ/WOjBReLd/X3HsTJPylgezw9DhHAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUr8U73QLl1BInAWrK9tVEFGz1fmAwHwYDVR0j BBgwFoAURBLDaYMuhs8lXHJV6x7KeTiRAkYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MmM1MTFiZS02N2EyLTQ0YzktYjE4Mi1hOTExYmE5NWJlMDAvMC80NDEyQzM2OTgz MkU4NkNGMjU1QzcyNTVFQjFFQ0E3OTM4OTEwMjQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDQxMkMzNjk4MzJFODZDRjI1NUM3MjU1RUIxRUNBNzkzODkx MDI0Ni5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEyYzUxMWJlLTY3YTItNDRjOS1i MTgyLWE5MTFiYTk1YmUwMC8wLzMyMzAzMDMxM2E2NDY2MzUzYTM1MzIzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMxMzEzMjM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9VKAMA0GCSqGSIb3DQEBCwUAA4IBAQCx7TsqL4Trpty6Nto0dN08ACARflfUTn0S h9CBqIV0cjuv/EaLJQBGXU/w9e73tUkaaW0ZXlKd90RQ9U1Ax8tq/3GWj5nJJfPa jH0WNvKCrwsrdPS985+z+T2eXxRhTZUaeJBdcey4fUkdeb04h1hHJ42g5V4LD0e4 pCOS6ysJ+o5afcypsJvHu+y2pFRXo8ShQ9EPavRMIs0VyrO+C+zwZYnaBGYp20BU zVMvzh7KKJPxFgAHIYhN8FPQkm49lekG64baRZFG76hDoBF+oblNzw9E1PCN8onr BMi1Tv8GIP14gdn9w8Xtnw27/vI9+ld90BrTLKkWpaf3FeTCImQF -----END CERTIFICATE-----Generated at Mon May 6 01:45:58 2024 by rpki-client on console-ams.rpki-client.org