$ rpki-client -vvf repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/323030313a6466343a333638303a3a2f34382d3438203d3e20313430343536.roa File: 323030313a6466343a333638303a3a2f34382d3438203d3e20313430343536.roa (raw, json) Hash identifier: NkGE7egrmKZH4727pm6vWntt61gvK28kS+95VzPF7gY= Subject key identifier: C4:90:39:A9:53:ED:7B:01:E7:C7:A7:EC:33:FB:CA:59:CE:AB:37:7A Certificate issuer: /CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Certificate serial: 23351EE894081B995B33E8029D72BC034A10F951 Authority key identifier: 52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/323030313a6466343a333638303a3a2f34382d3438203d3e20313430343536.roa Signing time: Mon 31 Jul 2023 00:02:39 +0000 ROA not before: Sun 30 Jul 2023 23:57:39 +0000 ROA not after: Mon 29 Jul 2024 00:02:39 +0000 asID: 140456 IP address blocks: 2001:df4:3680::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 09:49:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:35:1e:e8:94:08:1b:99:5b:33:e8:02:9d:72:bc:03:4a:10:f9:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Validity Not Before: Jul 30 23:57:39 2023 GMT Not After : Jul 29 00:02:39 2024 GMT Subject: CN=C49039A953ED7B01E7C7A7EC33FBCA59CEAB377A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:67:2c:ae:7d:3a:8c:1e:a8:34:b4:0b:60:6c: b6:c5:62:30:87:6b:0e:35:9f:18:ff:ef:76:7e:32: 95:71:8f:4e:d5:60:74:79:67:7f:3b:63:5f:17:3c: 71:ed:75:ee:d3:42:06:4b:fc:3d:f8:be:b9:a3:69: f7:80:3a:42:d8:81:ce:ec:6e:83:04:dc:b8:69:3f: 0e:75:9d:b8:19:76:f3:17:92:61:59:c7:59:46:25: 52:c3:8d:84:5e:85:b7:3c:ea:16:2d:32:54:22:d4: 77:bc:9b:e5:03:00:fc:5a:f9:ad:0a:b8:ea:9c:26: b3:1e:fc:6e:80:11:52:a4:db:3e:a7:97:9d:f9:3d: af:0b:50:3d:2e:36:79:4a:80:50:cd:74:9a:e9:3a: fc:19:ac:98:6a:5a:0d:c4:0c:8f:cb:05:15:4e:5a: 96:2f:f3:ab:44:22:f9:21:91:73:2c:6e:67:e0:86: 94:36:5b:95:fb:a6:e3:32:cb:9b:c9:df:e6:4f:80: 62:42:09:41:27:ae:bd:23:87:87:2c:b6:9d:1f:af: 83:08:31:86:1f:2c:bb:68:c3:b9:91:34:b3:45:b0: 71:49:4e:8b:d9:05:ac:45:06:4a:a6:6d:8e:51:2a: 08:80:ed:48:45:7c:fb:99:f4:73:4e:09:3c:28:12: bd:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:90:39:A9:53:ED:7B:01:E7:C7:A7:EC:33:FB:CA:59:CE:AB:37:7A X509v3 Authority Key Identifier: keyid:52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/323030313a6466343a333638303a3a2f34382d3438203d3e20313430343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:3680::/48 Signature Algorithm: sha256WithRSAEncryption 68:82:b1:d4:fe:1d:5d:32:3c:57:6d:95:46:34:e7:36:1e:1d: 4c:8a:3f:c9:f6:47:4b:8e:e0:57:1c:f3:ba:54:4c:bb:1f:80: f9:dd:91:30:6c:4e:8d:5e:ab:cf:e9:ea:e7:d0:2c:f6:9d:0e: c9:4d:be:35:eb:8f:f5:81:a7:66:f0:48:33:c0:50:29:dc:9e: 22:66:ba:2f:05:6d:c1:d7:9a:74:1e:fd:0d:b5:ef:ae:19:32: a3:9e:6a:b9:a5:94:0e:08:0a:da:a7:94:00:b9:bd:34:b1:55: c3:75:77:1e:ec:03:9e:b8:de:ed:fb:6d:45:c7:cb:ce:6c:0c: c3:27:e6:f5:89:1f:ef:1e:9a:fa:4a:5a:65:cc:de:0b:ec:57: b4:a4:61:b0:d2:09:94:48:9d:11:f2:cf:13:2f:55:51:0f:b8: d7:40:9a:55:92:45:07:da:30:5a:41:1f:d4:9f:99:42:0a:47: c2:3f:3b:2a:cf:d2:be:7b:3e:7b:5d:31:c7:a8:76:9a:07:63: 92:0f:b1:44:fa:f1:31:13:c3:d4:d8:e0:e5:76:99:e6:2b:8f: e0:5a:ed:c1:ac:7d:f1:83:96:9f:12:2b:04:6a:24:f8:d7:9d: 9f:59:14:c5:14:76:d7:15:a0:6c:96:1c:4c:ae:d4:46:16:b2: a1:02:ce:97 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUIzUe6JQIG5lbM+gCnXK8A0oQ+VEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFB REY3NDE0ODAeFw0yMzA3MzAyMzU3MzlaFw0yNDA3MjkwMDAyMzlaMDMxMTAvBgNV BAMTKEM0OTAzOUE5NTNFRDdCMDFFN0M3QTdFQzMzRkJDQTU5Q0VBQjM3N0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuZyyufTqMHqg0tAtgbLbFYjCH aw41nxj/73Z+MpVxj07VYHR5Z387Y18XPHHtde7TQgZL/D34vrmjafeAOkLYgc7s boME3LhpPw51nbgZdvMXkmFZx1lGJVLDjYRehbc86hYtMlQi1He8m+UDAPxa+a0K uOqcJrMe/G6AEVKk2z6nl535Pa8LUD0uNnlKgFDNdJrpOvwZrJhqWg3EDI/LBRVO WpYv86tEIvkhkXMsbmfghpQ2W5X7puMyy5vJ3+ZPgGJCCUEnrr0jh4cstp0fr4MI MYYfLLtow7mRNLNFsHFJTovZBaxFBkqmbY5RKgiA7UhFfPuZ9HNOCTwoEr0ZAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUxJA5qVPtewHnx6fsM/vKWc6rN3owHwYDVR0j BBgwFoAUUj7jh9PACoe341Wr8e5SSq33QUgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTk1MjBmZC04ZGU1LTRhNjktODVmMS1jNDQ4OTdhZTYxMjEvMC81MjNFRTM4N0Qz QzAwQTg3QjdFMzU1QUJGMUVFNTI0QUFERjc0MTQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFBREY3 NDE0OC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFhOTUyMGZkLThkZTUtNGE2OS04 NWYxLWM0NDg5N2FlNjEyMS8wLzMyMzAzMDMxM2E2NDY2MzQzYTMzMzYzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMwMzQzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9DaAMA0GCSqGSIb3DQEBCwUAA4IBAQBogrHU/h1dMjxXbZVGNOc2Hh1Mij/J9kdL juBXHPO6VEy7H4D53ZEwbE6NXqvP6ern0Cz2nQ7JTb4164/1gadm8EgzwFAp3J4i ZrovBW3B15p0Hv0Nte+uGTKjnmq5pZQOCArap5QAub00sVXDdXce7AOeuN7t+21F x8vObAzDJ+b1iR/vHpr6SlplzN4L7Fe0pGGw0gmUSJ0R8s8TL1VRD7jXQJpVkkUH 2jBaQR/Un5lCCkfCPzsqz9K+ez57XTHHqHaaB2OSD7FE+vExE8PU2ODldpnmK4/g Wu3BrH3xg5afEisEaiT4152fWRTFFHbXFaBslhxMrtRGFrKhAs6X -----END CERTIFICATE-----Generated at Tue Apr 23 18:27:33 2024 by rpki-client on console-fra.rpki-client.org