$ rpki-client -vvf repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/323030313a6466343a333638303a3a2f34382d3438203d3e20313430343536.roa File: 323030313a6466343a333638303a3a2f34382d3438203d3e20313430343536.roa (raw, json) Hash identifier: UWqkjfovjwl/QKGqzpJlq4xcCareXuzDyb/5yleHEFU= Subject key identifier: 14:24:67:F4:72:8A:CE:05:0F:6D:DF:5F:1E:D0:E7:36:54:A3:C5:E3 Certificate issuer: /CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Certificate serial: 32772F1A6DBACF698BD2FA78E06D3CE228460238 Authority key identifier: 52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/323030313a6466343a333638303a3a2f34382d3438203d3e20313430343536.roa Signing time: Mon 01 Jul 2024 01:02:31 +0000 ROA not before: Mon 01 Jul 2024 00:57:31 +0000 ROA not after: Mon 30 Jun 2025 01:02:31 +0000 asID: 140456 IP address blocks: 2001:df4:3680::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:77:2f:1a:6d:ba:cf:69:8b:d2:fa:78:e0:6d:3c:e2:28:46:02:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Validity Not Before: Jul 1 00:57:31 2024 GMT Not After : Jun 30 01:02:31 2025 GMT Subject: CN=142467F4728ACE050F6DDF5F1ED0E73654A3C5E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:67:68:c9:05:9e:ac:6e:17:42:f8:53:38:80: 80:9c:20:ba:0e:4a:06:cd:03:53:9c:0c:20:33:76: b3:9f:2b:f3:48:1d:d7:54:e7:72:39:fe:21:ef:d6: cb:e8:3d:dd:8b:e9:a4:b8:d3:21:77:e0:00:74:0c: 73:a6:d9:d8:2c:9f:52:c0:0d:40:90:85:19:79:5f: 61:44:ff:44:7d:60:e2:3d:6e:4a:92:24:d1:91:17: 2d:78:73:1d:1d:ef:15:73:af:d6:a6:c7:0d:58:f7: d3:63:97:a1:8c:37:22:1e:81:05:c0:75:86:e4:b1: 21:17:b6:a9:d0:ed:1c:b5:5a:5b:68:bb:45:e0:fa: 80:27:2c:9a:81:ac:76:c2:66:57:d5:bb:00:0e:95: 7a:5c:f4:dc:c3:1a:cb:a5:77:72:83:09:08:02:fe: db:0f:6e:b0:f5:be:32:37:79:c3:c8:d8:f0:5d:9b: 58:cd:2c:3d:1d:a2:25:e6:2c:0b:55:34:cb:8d:3b: a7:69:17:f2:57:13:7f:f1:84:59:96:fa:27:94:d7: d5:cb:13:0d:cd:91:be:d2:44:fc:e1:8d:ae:17:88: 62:ee:76:80:d2:69:58:03:31:97:e4:77:33:a6:05: e0:c1:56:f6:7d:e3:22:4f:44:2e:30:a7:13:fc:83: 66:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:24:67:F4:72:8A:CE:05:0F:6D:DF:5F:1E:D0:E7:36:54:A3:C5:E3 X509v3 Authority Key Identifier: keyid:52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/323030313a6466343a333638303a3a2f34382d3438203d3e20313430343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:3680::/48 Signature Algorithm: sha256WithRSAEncryption 3f:ac:0d:56:b3:ec:9f:ff:a4:d1:62:89:79:c0:52:8b:c4:4f: 85:b8:fc:70:4c:b4:93:82:ce:f5:78:df:6c:fc:6c:47:07:d6: fc:90:c0:94:e0:3c:d3:e8:ef:f7:6e:ee:17:c8:f3:69:5f:49: 10:02:09:a6:04:8e:c4:c6:53:4d:76:b3:8e:7d:b8:5c:cb:6d: 36:79:f9:ca:1b:03:52:2b:19:1c:2c:71:eb:9a:13:95:0e:6a: a3:53:ac:18:4b:63:e6:23:f0:bf:b2:b6:70:68:36:83:31:b9: 46:8f:1e:b5:34:bd:95:3b:11:d2:1a:24:89:2c:59:e9:58:75: 7d:64:5d:e4:1d:09:8f:d3:ec:c1:ec:08:a1:00:6d:62:42:eb: 83:5d:97:01:8d:ec:9d:2d:63:82:ba:94:92:6f:ec:bc:80:8d: 3e:1f:68:ae:fc:bb:1b:1d:80:34:c1:92:d2:e6:a4:bf:45:97: 19:98:9c:55:08:03:ba:93:c8:c3:09:4b:93:6c:79:6a:7e:c9: b0:15:4e:26:2e:fb:84:c4:a0:04:ed:e9:c5:18:93:14:4e:fc: b6:4f:a9:6e:4a:e0:3d:09:e1:7e:20:41:6d:1f:33:26:69:93: 63:d0:2b:de:f1:b5:2e:bf:63:07:0b:bf:68:2f:65:33:5a:41: e5:4f:1f:3e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUMncvGm26z2mL0vp44G084ihGAjgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFB REY3NDE0ODAeFw0yNDA3MDEwMDU3MzFaFw0yNTA2MzAwMTAyMzFaMDMxMTAvBgNV BAMTKDE0MjQ2N0Y0NzI4QUNFMDUwRjZEREY1RjFFRDBFNzM2NTRBM0M1RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMZ2jJBZ6sbhdC+FM4gICcILoO SgbNA1OcDCAzdrOfK/NIHddU53I5/iHv1svoPd2L6aS40yF34AB0DHOm2dgsn1LA DUCQhRl5X2FE/0R9YOI9bkqSJNGRFy14cx0d7xVzr9amxw1Y99Njl6GMNyIegQXA dYbksSEXtqnQ7Ry1Wltou0Xg+oAnLJqBrHbCZlfVuwAOlXpc9NzDGsuld3KDCQgC /tsPbrD1vjI3ecPI2PBdm1jNLD0doiXmLAtVNMuNO6dpF/JXE3/xhFmW+ieU19XL Ew3Nkb7SRPzhja4XiGLudoDSaVgDMZfkdzOmBeDBVvZ94yJPRC4wpxP8g2aPAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUFCRn9HKKzgUPbd9fHtDnNlSjxeMwHwYDVR0j BBgwFoAUUj7jh9PACoe341Wr8e5SSq33QUgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTk1MjBmZC04ZGU1LTRhNjktODVmMS1jNDQ4OTdhZTYxMjEvMC81MjNFRTM4N0Qz QzAwQTg3QjdFMzU1QUJGMUVFNTI0QUFERjc0MTQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFBREY3 NDE0OC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFhOTUyMGZkLThkZTUtNGE2OS04 NWYxLWM0NDg5N2FlNjEyMS8wLzMyMzAzMDMxM2E2NDY2MzQzYTMzMzYzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMwMzQzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9DaAMA0GCSqGSIb3DQEBCwUAA4IBAQA/rA1Ws+yf/6TRYol5wFKLxE+FuPxwTLST gs71eN9s/GxHB9b8kMCU4DzT6O/3bu4XyPNpX0kQAgmmBI7ExlNNdrOOfbhcy202 efnKGwNSKxkcLHHrmhOVDmqjU6wYS2PmI/C/srZwaDaDMblGjx61NL2VOxHSGiSJ LFnpWHV9ZF3kHQmP0+zB7AihAG1iQuuDXZcBjeydLWOCupSSb+y8gI0+H2iu/Lsb HYA0wZLS5qS/RZcZmJxVCAO6k8jDCUuTbHlqfsmwFU4mLvuExKAE7enFGJMUTvy2 T6luSuA9CeF+IEFtHzMmaZNj0Cve8bUuv2MHC79oL2UzWkHlTx8+ -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:03 2024 by rpki-client on console-fra.rpki-client.org