$ rpki-client -vvf repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/323030313a6466323a363030303a3a2f34382d3438203d3e203538333932.roa File: 323030313a6466323a363030303a3a2f34382d3438203d3e203538333932.roa (raw, json) Hash identifier: 1/KGFTQyobxhAVI8Z6Ox8PIFy70waImQe4L6pe/5zlY= Subject key identifier: F3:D2:AB:34:95:E1:7C:7C:0A:DF:EF:C5:2F:0A:F7:F4:1A:40:D8:1F Certificate issuer: /CN=AF504C4E6E3831F756E3BE07469483DFED452516 Certificate serial: 161261F94FEE07CF034274BC3108D18D44B7A360 Authority key identifier: AF:50:4C:4E:6E:38:31:F7:56:E3:BE:07:46:94:83:DF:ED:45:25:16 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF504C4E6E3831F756E3BE07469483DFED452516.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/323030313a6466323a363030303a3a2f34382d3438203d3e203538333932.roa Signing time: Mon 01 Jul 2024 01:04:10 +0000 ROA not before: Mon 01 Jul 2024 00:59:10 +0000 ROA not after: Mon 30 Jun 2025 01:04:10 +0000 asID: 58392 IP address blocks: 2001:df2:6000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/AF504C4E6E3831F756E3BE07469483DFED452516.crl rsync://repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/AF504C4E6E3831F756E3BE07469483DFED452516.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF504C4E6E3831F756E3BE07469483DFED452516.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:41:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:12:61:f9:4f:ee:07:cf:03:42:74:bc:31:08:d1:8d:44:b7:a3:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF504C4E6E3831F756E3BE07469483DFED452516 Validity Not Before: Jul 1 00:59:10 2024 GMT Not After : Jun 30 01:04:10 2025 GMT Subject: CN=F3D2AB3495E17C7C0ADFEFC52F0AF7F41A40D81F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:a3:cb:5a:bd:97:f4:17:83:6c:fe:c2:cc:18: 14:77:a1:e3:91:75:10:df:9f:f4:5b:88:72:df:ef: 80:f2:09:c9:06:40:bc:ab:84:bb:c6:c7:85:85:40: 61:19:c5:1f:d6:35:38:59:5f:8d:ee:32:df:1b:99: b3:d9:eb:c9:ea:62:a7:6a:ae:f0:ce:f2:96:82:84: 20:fa:90:1f:09:38:18:84:93:db:31:e4:22:f6:ee: 6d:35:a1:95:12:fe:1e:53:cc:40:6d:fc:06:ec:7e: f3:29:83:81:f3:77:31:ba:6f:d8:77:6f:63:6a:39: ee:89:9a:da:a4:50:a6:54:13:d3:d1:f0:1c:a4:d2: f0:7c:8f:fa:95:b3:4b:d0:92:cf:1e:30:71:17:10: b9:ea:7e:16:a8:a8:5b:89:7e:09:55:00:6d:83:a1: d6:06:66:2b:70:66:81:8c:34:61:15:cb:6a:a9:13: 79:e7:34:c0:66:c9:31:40:e2:93:72:32:8d:25:95: 28:5e:d8:fa:86:01:92:c0:85:5c:7d:43:f7:74:2d: 9a:e0:33:7f:26:ee:71:4c:01:b2:43:ca:17:5f:1d: 4d:ff:41:d5:4d:d7:ba:e8:92:e9:10:07:21:10:56: 19:b6:f6:5a:3b:67:58:c8:f4:05:e8:ef:f9:72:74: e3:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:D2:AB:34:95:E1:7C:7C:0A:DF:EF:C5:2F:0A:F7:F4:1A:40:D8:1F X509v3 Authority Key Identifier: keyid:AF:50:4C:4E:6E:38:31:F7:56:E3:BE:07:46:94:83:DF:ED:45:25:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/AF504C4E6E3831F756E3BE07469483DFED452516.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF504C4E6E3831F756E3BE07469483DFED452516.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/323030313a6466323a363030303a3a2f34382d3438203d3e203538333932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:6000::/48 Signature Algorithm: sha256WithRSAEncryption 33:8c:63:ac:48:90:10:67:58:46:1d:68:71:72:ef:5d:25:3f: a8:24:e3:fc:fd:95:7f:65:9a:bf:60:07:14:ce:93:00:d1:9a: 73:75:15:e2:dc:0f:61:dc:ee:ff:d5:a3:61:b6:fd:59:f8:11: b5:ed:19:05:0e:fd:39:6d:d5:07:5e:71:2b:ac:d9:9c:43:b6: ae:34:04:e0:6a:ff:c9:94:08:a6:f0:01:19:31:bd:6a:85:33: 59:2e:03:8d:d6:b0:cf:21:80:da:b2:79:d1:56:d9:66:5f:37: 32:ee:09:8f:4c:60:d6:e2:ab:96:00:20:2c:78:60:46:7c:fa: b3:9a:b5:0a:ee:4f:a7:a7:15:aa:18:21:f2:56:6a:cc:a1:ea: 19:9d:66:63:9a:29:a5:c2:40:f8:e5:21:06:ee:ee:ff:ad:03: ae:f2:3a:18:26:9b:d3:24:47:b8:1a:7e:28:d2:da:0d:5c:8c: 2a:9c:9b:c4:2e:d4:a7:d9:26:e4:90:16:21:78:5f:d4:83:89: 5b:fb:f7:3d:b7:57:53:49:ed:a6:c1:97:30:6a:21:ab:2a:95: 98:b8:d7:66:75:d8:d4:be:f9:02:12:43:08:10:21:12:a4:d0: 39:14:12:2d:2e:ee:8e:64:db:3e:bd:fd:ac:22:95:6a:91:bd: 8d:ae:ef:c3 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUFhJh+U/uB88DQnS8MQjRjUS3o2AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY1MDRDNEU2RTM4MzFGNzU2RTNCRTA3NDY5NDgzREZF RDQ1MjUxNjAeFw0yNDA3MDEwMDU5MTBaFw0yNTA2MzAwMTA0MTBaMDMxMTAvBgNV BAMTKEYzRDJBQjM0OTVFMTdDN0MwQURGRUZDNTJGMEFGN0Y0MUE0MEQ4MUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDho8tavZf0F4Ns/sLMGBR3oeOR dRDfn/RbiHLf74DyCckGQLyrhLvGx4WFQGEZxR/WNThZX43uMt8bmbPZ68nqYqdq rvDO8paChCD6kB8JOBiEk9sx5CL27m01oZUS/h5TzEBt/AbsfvMpg4HzdzG6b9h3 b2NqOe6JmtqkUKZUE9PR8Byk0vB8j/qVs0vQks8eMHEXELnqfhaoqFuJfglVAG2D odYGZitwZoGMNGEVy2qpE3nnNMBmyTFA4pNyMo0llShe2PqGAZLAhVx9Q/d0LZrg M38m7nFMAbJDyhdfHU3/QdVN17rokukQByEQVhm29lo7Z1jI9AXo7/lydONdAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU89KrNJXhfHwK3+/FLwr39BpA2B8wHwYDVR0j BBgwFoAUr1BMTm44MfdW474HRpSD3+1FJRYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZmZiNzc2Ny0zZGU5LTQ4MzMtYjRlNy1iMWI2MmVlM2NkOTkvMC9BRjUwNEM0RTZF MzgzMUY3NTZFM0JFMDc0Njk0ODNERkVENDUyNTE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY1MDRDNEU2RTM4MzFGNzU2RTNCRTA3NDY5NDgzREZFRDQ1 MjUxNi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmZmI3NzY3LTNkZTktNDgzMy1i NGU3LWIxYjYyZWUzY2Q5OS8wLzMyMzAzMDMxM2E2NDY2MzIzYTM2MzAzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzODMzMzkzMi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfJg ADANBgkqhkiG9w0BAQsFAAOCAQEAM4xjrEiQEGdYRh1ocXLvXSU/qCTj/P2Vf2Wa v2AHFM6TANGac3UV4twPYdzu/9WjYbb9WfgRte0ZBQ79OW3VB15xK6zZnEO2rjQE 4Gr/yZQIpvABGTG9aoUzWS4DjdawzyGA2rJ50VbZZl83Mu4Jj0xg1uKrlgAgLHhg Rnz6s5q1Cu5Pp6cVqhgh8lZqzKHqGZ1mY5oppcJA+OUhBu7u/60DrvI6GCab0yRH uBp+KNLaDVyMKpybxC7Up9km5JAWIXhf1IOJW/v3PbdXU0ntpsGXMGohqyqVmLjX ZnXY1L75AhJDCBAhEqTQORQSLS7ujmTbPr39rCKVapG9ja7vww== -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:36 2024 by rpki-client on console-ams.rpki-client.org