$ rpki-client -vvf repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/323030313a6466323a363030303a3a2f34382d3438203d3e203538333932.roa File: 323030313a6466323a363030303a3a2f34382d3438203d3e203538333932.roa (raw, json) Hash identifier: MPgX6nSUwbH9FphBMR6NJG2BDqcA3cj8QC+544KXSvk= Subject key identifier: 08:4F:0C:E5:00:FB:93:76:79:01:A3:E7:8F:E0:EF:A5:5F:53:FC:A4 Certificate issuer: /CN=AF504C4E6E3831F756E3BE07469483DFED452516 Certificate serial: 4FDBB52ACE1E0F452FB0F01AFDC2EEC366B233D6 Authority key identifier: AF:50:4C:4E:6E:38:31:F7:56:E3:BE:07:46:94:83:DF:ED:45:25:16 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF504C4E6E3831F756E3BE07469483DFED452516.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/323030313a6466323a363030303a3a2f34382d3438203d3e203538333932.roa Signing time: Mon 31 Jul 2023 00:06:23 +0000 ROA not before: Mon 31 Jul 2023 00:01:23 +0000 ROA not after: Mon 29 Jul 2024 00:06:23 +0000 asID: 58392 IP address blocks: 2001:df2:6000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/AF504C4E6E3831F756E3BE07469483DFED452516.crl rsync://repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/AF504C4E6E3831F756E3BE07469483DFED452516.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF504C4E6E3831F756E3BE07469483DFED452516.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Apr 2024 22:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:db:b5:2a:ce:1e:0f:45:2f:b0:f0:1a:fd:c2:ee:c3:66:b2:33:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF504C4E6E3831F756E3BE07469483DFED452516 Validity Not Before: Jul 31 00:01:23 2023 GMT Not After : Jul 29 00:06:23 2024 GMT Subject: CN=084F0CE500FB93767901A3E78FE0EFA55F53FCA4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:73:54:78:bb:c1:e0:e0:5e:e1:df:ea:8f:2e: 89:46:7b:ef:9d:33:0c:f9:14:aa:20:3c:88:d5:3d: 47:b0:d1:32:4b:17:d4:7a:f9:7c:91:5b:da:7a:56: 96:84:22:6a:97:77:f8:4f:35:f6:75:1e:98:45:1d: 0e:25:41:e9:9a:88:75:f3:9e:74:26:80:2f:99:d9: 74:a8:09:5d:11:e1:16:96:81:e5:04:37:d8:66:76: 76:60:90:72:ed:e5:ed:ae:e5:dd:26:a2:61:f9:78: 6a:c7:dd:5b:cb:c2:c9:32:e3:13:96:3a:df:0a:69: ea:7a:88:6c:75:ca:81:66:6c:88:07:26:f2:21:5f: 4d:fa:14:8c:29:13:2e:be:7e:c9:31:e9:01:26:cd: 45:f7:ac:b6:5e:39:4d:2a:40:8e:41:46:ea:5c:cc: 03:1a:cf:bd:b8:2b:80:39:67:2e:87:5e:fe:07:ee: aa:97:a5:b7:ec:7f:63:02:14:27:47:76:a2:17:fe: e0:86:d2:25:97:ae:91:a2:4a:81:ab:17:5a:22:6f: 96:0c:7e:70:20:85:ae:63:3b:a9:ae:b3:a1:1a:8f: 0b:fe:f4:34:a8:d8:1e:2e:8e:d8:e0:c3:f0:2d:a4: ea:53:75:8a:2e:75:a9:8e:04:23:ef:41:46:54:19: 6c:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:4F:0C:E5:00:FB:93:76:79:01:A3:E7:8F:E0:EF:A5:5F:53:FC:A4 X509v3 Authority Key Identifier: keyid:AF:50:4C:4E:6E:38:31:F7:56:E3:BE:07:46:94:83:DF:ED:45:25:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/AF504C4E6E3831F756E3BE07469483DFED452516.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF504C4E6E3831F756E3BE07469483DFED452516.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/323030313a6466323a363030303a3a2f34382d3438203d3e203538333932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:6000::/48 Signature Algorithm: sha256WithRSAEncryption 48:d6:a9:c0:49:47:af:e3:32:f3:98:18:29:3e:71:34:e4:cc: 4e:87:15:11:e8:e2:b1:54:17:af:fa:72:a0:51:4c:75:5d:62: 7c:c1:09:4b:65:a1:95:f0:24:b8:60:02:d7:e9:2b:11:4f:4d: 1e:40:ab:db:0f:0c:eb:a3:95:63:90:19:66:67:77:a0:2c:17: 77:89:7e:68:35:6c:49:19:e8:77:91:b1:ce:ba:12:94:d3:53: c8:e5:3b:62:af:3b:e3:27:2a:4b:b0:64:99:b9:ae:df:e0:df: d2:55:4e:a7:1e:02:17:3e:89:6a:ee:88:36:57:87:50:de:6c: 23:b3:1c:d5:b4:cf:59:01:e2:7a:40:49:5b:6d:fa:8b:96:4f: fa:ce:76:15:42:21:bd:0c:e5:af:86:98:31:9a:ba:fc:f5:98: 71:04:bb:c7:53:4b:8f:ac:aa:7c:48:1c:ec:43:74:ba:12:9a: 7c:a3:f2:e9:e5:55:2b:99:db:aa:8b:09:a9:13:5a:20:c2:56: da:40:d4:99:a7:00:09:f8:6d:4d:f3:85:70:53:c3:d6:44:fe: 97:75:0e:c2:31:5c:28:78:56:ca:c1:a1:45:02:4b:fd:72:a0: 0c:8b:16:58:b4:68:f8:57:80:c0:b2:32:88:ad:3d:34:b8:94: 30:39:7b:1a -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUT9u1Ks4eD0UvsPAa/cLuw2ayM9YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY1MDRDNEU2RTM4MzFGNzU2RTNCRTA3NDY5NDgzREZF RDQ1MjUxNjAeFw0yMzA3MzEwMDAxMjNaFw0yNDA3MjkwMDA2MjNaMDMxMTAvBgNV BAMTKDA4NEYwQ0U1MDBGQjkzNzY3OTAxQTNFNzhGRTBFRkE1NUY1M0ZDQTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyc1R4u8Hg4F7h3+qPLolGe++d Mwz5FKogPIjVPUew0TJLF9R6+XyRW9p6VpaEImqXd/hPNfZ1HphFHQ4lQemaiHXz nnQmgC+Z2XSoCV0R4RaWgeUEN9hmdnZgkHLt5e2u5d0momH5eGrH3VvLwsky4xOW Ot8Kaep6iGx1yoFmbIgHJvIhX036FIwpEy6+fskx6QEmzUX3rLZeOU0qQI5BRupc zAMaz724K4A5Zy6HXv4H7qqXpbfsf2MCFCdHdqIX/uCG0iWXrpGiSoGrF1oib5YM fnAgha5jO6mus6Eajwv+9DSo2B4ujtjgw/AtpOpTdYoudamOBCPvQUZUGWwlAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUCE8M5QD7k3Z5AaPnj+DvpV9T/KQwHwYDVR0j BBgwFoAUr1BMTm44MfdW474HRpSD3+1FJRYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZmZiNzc2Ny0zZGU5LTQ4MzMtYjRlNy1iMWI2MmVlM2NkOTkvMC9BRjUwNEM0RTZF MzgzMUY3NTZFM0JFMDc0Njk0ODNERkVENDUyNTE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY1MDRDNEU2RTM4MzFGNzU2RTNCRTA3NDY5NDgzREZFRDQ1 MjUxNi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmZmI3NzY3LTNkZTktNDgzMy1i NGU3LWIxYjYyZWUzY2Q5OS8wLzMyMzAzMDMxM2E2NDY2MzIzYTM2MzAzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzODMzMzkzMi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfJg ADANBgkqhkiG9w0BAQsFAAOCAQEASNapwElHr+My85gYKT5xNOTMTocVEejisVQX r/pyoFFMdV1ifMEJS2WhlfAkuGAC1+krEU9NHkCr2w8M66OVY5AZZmd3oCwXd4l+ aDVsSRnod5GxzroSlNNTyOU7Yq874ycqS7Bkmbmu3+Df0lVOpx4CFz6Jau6INleH UN5sI7Mc1bTPWQHiekBJW236i5ZP+s52FUIhvQzlr4aYMZq6/PWYcQS7x1NLj6yq fEgc7EN0uhKafKPy6eVVK5nbqosJqRNaIMJW2kDUmacACfhtTfOFcFPD1kT+l3UO wjFcKHhWysGhRQJL/XKgDIsWWLRo+FeAwLIyiK09NLiUMDl7Gg== -----END CERTIFICATE-----Generated at Thu Apr 18 20:08:36 2024 by rpki-client on console-fra.rpki-client.org