$ rpki-client -vvf repo-rpki.idnic.net/repo/2410fa43-0be3-471a-9c20-81046291ca11/0/323030313a6466303a3434613a3a2f34382d3438203d3e203436303536.roa File: 323030313a6466303a3434613a3a2f34382d3438203d3e203436303536.roa (raw, json) Hash identifier: ZuvFKOhEYhPI4UjTn9RnjZ5Np6+LrbBOag3o5U6IqVU= Subject key identifier: E6:CE:57:CE:14:92:C3:08:9B:96:7B:E3:01:83:3A:81:30:DD:F8:06 Certificate issuer: /CN=AB58721182B4EAA8FECD4AD8808CEEF5CDDD1B06 Certificate serial: 71379241B1A13898DD554DAE4ECC4D107F74F230 Authority key identifier: AB:58:72:11:82:B4:EA:A8:FE:CD:4A:D8:80:8C:EE:F5:CD:DD:1B:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AB58721182B4EAA8FECD4AD8808CEEF5CDDD1B06.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2410fa43-0be3-471a-9c20-81046291ca11/0/323030313a6466303a3434613a3a2f34382d3438203d3e203436303536.roa Signing time: Mon 31 Jul 2023 00:14:27 +0000 ROA not before: Mon 31 Jul 2023 00:09:27 +0000 ROA not after: Mon 29 Jul 2024 00:14:27 +0000 asID: 46056 IP address blocks: 2001:df0:44a::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2410fa43-0be3-471a-9c20-81046291ca11/0/AB58721182B4EAA8FECD4AD8808CEEF5CDDD1B06.crl rsync://repo-rpki.idnic.net/repo/2410fa43-0be3-471a-9c20-81046291ca11/0/AB58721182B4EAA8FECD4AD8808CEEF5CDDD1B06.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AB58721182B4EAA8FECD4AD8808CEEF5CDDD1B06.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 08:53:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:37:92:41:b1:a1:38:98:dd:55:4d:ae:4e:cc:4d:10:7f:74:f2:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AB58721182B4EAA8FECD4AD8808CEEF5CDDD1B06 Validity Not Before: Jul 31 00:09:27 2023 GMT Not After : Jul 29 00:14:27 2024 GMT Subject: CN=E6CE57CE1492C3089B967BE301833A8130DDF806 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:e7:59:2e:3d:a2:2a:cc:51:b2:f5:a7:2d:1c: 62:87:87:8c:72:54:5e:f6:73:45:01:a4:c0:cf:6a: 4f:9b:c8:5f:c6:61:30:f4:28:42:28:47:60:f2:bf: e5:de:fe:88:49:b0:da:08:76:c3:68:20:fd:0f:39: d1:03:e3:dd:c4:25:12:28:a0:91:56:68:85:ec:fb: 90:92:b5:c9:fe:7b:86:62:82:10:c9:84:22:ba:6f: 50:44:c6:f3:ca:ba:41:8c:1b:dc:d8:ac:60:0e:6c: b2:92:af:08:07:22:15:43:8b:ad:88:da:90:58:7f: ac:03:db:0d:f9:16:a5:d5:3e:c7:3e:2d:2b:d2:fc: 9c:31:64:1c:c6:a3:38:e8:0b:c7:fe:b3:82:21:a0: be:ea:21:d4:ee:91:97:58:e7:57:b6:7b:50:46:54: 8a:bf:48:03:d8:38:91:fe:05:11:02:4b:f8:75:7b: 5b:4a:96:00:7e:1d:1d:cb:2c:62:08:fe:07:65:01: 6b:79:e2:bc:07:a4:81:b7:c1:18:38:aa:44:cc:e8: ca:0b:56:4e:97:5b:b8:a1:23:73:33:0e:33:7d:39: 35:2b:4a:4a:2b:57:5d:a3:23:f0:f0:71:78:53:62: 23:13:00:40:72:01:91:6b:1c:66:3e:fd:18:90:ed: 5b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:CE:57:CE:14:92:C3:08:9B:96:7B:E3:01:83:3A:81:30:DD:F8:06 X509v3 Authority Key Identifier: keyid:AB:58:72:11:82:B4:EA:A8:FE:CD:4A:D8:80:8C:EE:F5:CD:DD:1B:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2410fa43-0be3-471a-9c20-81046291ca11/0/AB58721182B4EAA8FECD4AD8808CEEF5CDDD1B06.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AB58721182B4EAA8FECD4AD8808CEEF5CDDD1B06.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2410fa43-0be3-471a-9c20-81046291ca11/0/323030313a6466303a3434613a3a2f34382d3438203d3e203436303536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:44a::/48 Signature Algorithm: sha256WithRSAEncryption 6c:c5:c3:3b:42:87:53:67:58:27:2f:0e:2a:e3:b3:a5:8d:bf: 0d:7b:b9:02:26:a2:aa:21:99:c8:2c:50:28:5d:82:29:3d:c7: 84:94:97:66:8f:39:89:3f:01:65:7d:30:f2:01:9b:d9:ff:a9: 57:c5:fa:e1:22:a1:3a:02:11:7d:d6:38:1e:00:62:88:2b:e3: e3:d3:cb:85:1c:77:81:e9:bc:e5:c2:81:7a:ed:39:36:39:9a: c0:60:93:85:de:d4:6c:ac:59:64:89:de:88:93:1f:7d:4e:30: 45:48:91:5d:fd:dc:4d:f8:6b:47:67:6e:ef:5b:2e:24:94:e3: d4:bc:02:d0:fe:17:e7:c9:26:58:8e:4f:33:15:37:0f:2e:4a: 88:ae:d4:eb:0a:00:da:c4:dd:19:a6:77:48:f8:96:5a:d3:b7: c6:c4:88:19:00:5b:34:23:4d:0e:76:e8:72:62:63:10:86:1d: 77:2e:09:ce:ec:cc:e2:5f:9a:80:aa:9d:1c:a0:e8:f2:82:4b: 51:40:51:5e:9a:93:4c:d6:4e:fd:31:4a:46:4d:b2:78:7d:15: 80:86:85:07:e5:2e:8b:a2:75:b0:52:be:00:16:ea:67:48:ed: b4:72:be:27:25:f7:8e:a7:e3:db:e9:b3:f0:b6:b9:19:1e:43: ac:3c:c3:25 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUcTeSQbGhOJjdVU2uTsxNEH908jAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUI1ODcyMTE4MkI0RUFBOEZFQ0Q0QUQ4ODA4Q0VFRjVD REREMUIwNjAeFw0yMzA3MzEwMDA5MjdaFw0yNDA3MjkwMDE0MjdaMDMxMTAvBgNV BAMTKEU2Q0U1N0NFMTQ5MkMzMDg5Qjk2N0JFMzAxODMzQTgxMzBEREY4MDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDd51kuPaIqzFGy9actHGKHh4xy VF72c0UBpMDPak+byF/GYTD0KEIoR2Dyv+Xe/ohJsNoIdsNoIP0POdED493EJRIo oJFWaIXs+5CStcn+e4ZighDJhCK6b1BExvPKukGMG9zYrGAObLKSrwgHIhVDi62I 2pBYf6wD2w35FqXVPsc+LSvS/JwxZBzGozjoC8f+s4IhoL7qIdTukZdY51e2e1BG VIq/SAPYOJH+BRECS/h1e1tKlgB+HR3LLGII/gdlAWt54rwHpIG3wRg4qkTM6MoL Vk6XW7ihI3MzDjN9OTUrSkorV12jI/DwcXhTYiMTAEByAZFrHGY+/RiQ7VuvAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU5s5XzhSSwwiblnvjAYM6gTDd+AYwHwYDVR0j BBgwFoAUq1hyEYK06qj+zUrYgIzu9c3dGwYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NDEwZmE0My0wYmUzLTQ3MWEtOWMyMC04MTA0NjI5MWNhMTEvMC9BQjU4NzIxMTgy QjRFQUE4RkVDRDRBRDg4MDhDRUVGNUNEREQxQjA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUI1ODcyMTE4MkI0RUFBOEZFQ0Q0QUQ4ODA4Q0VFRjVDRERE MUIwNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0MTBmYTQzLTBiZTMtNDcxYS05 YzIwLTgxMDQ2MjkxY2ExMS8wLzMyMzAzMDMxM2E2NDY2MzAzYTM0MzQ2MTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM0MzYzMDM1MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ3wBEow DQYJKoZIhvcNAQELBQADggEBAGzFwztCh1NnWCcvDirjs6WNvw17uQImoqohmcgs UChdgik9x4SUl2aPOYk/AWV9MPIBm9n/qVfF+uEioToCEX3WOB4AYogr4+PTy4Uc d4HpvOXCgXrtOTY5msBgk4Xe1GysWWSJ3oiTH31OMEVIkV393E34a0dnbu9bLiSU 49S8AtD+F+fJJliOTzMVNw8uSoiu1OsKANrE3Rmmd0j4llrTt8bEiBkAWzQjTQ52 6HJiYxCGHXcuCc7szOJfmoCqnRyg6PKCS1FAUV6ak0zWTv0xSkZNsnh9FYCGhQfl LouidbBSvgAW6mdI7bRyvicl946n49vps/C2uRkeQ6w8wyU= -----END CERTIFICATE-----Generated at Tue Apr 23 18:35:52 2024 by rpki-client on console-ams.rpki-client.org