$ rpki-client -vvf repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/323030313a6466373a373430303a3a2f34382d3438203d3e20313336303532.roa File: 323030313a6466373a373430303a3a2f34382d3438203d3e20313336303532.roa (raw, json) Hash identifier: OB875uh6wOTciQxrqkHO/20nRAiPbyWsP8F9+D/60rc= Subject key identifier: E8:A8:8C:B5:30:90:A5:12:BC:CE:38:F4:72:6C:E8:DF:F8:14:C8:CF Certificate issuer: /CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Certificate serial: 57421E316B1B39E736DA6B41C53D821F6130B5DE Authority key identifier: AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/323030313a6466373a373430303a3a2f34382d3438203d3e20313336303532.roa Signing time: Fri 24 Nov 2023 16:00:01 +0000 ROA not before: Fri 24 Nov 2023 15:55:01 +0000 ROA not after: Fri 22 Nov 2024 16:00:01 +0000 asID: 136052 IP address blocks: 2001:df7:7400::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:42:1e:31:6b:1b:39:e7:36:da:6b:41:c5:3d:82:1f:61:30:b5:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Validity Not Before: Nov 24 15:55:01 2023 GMT Not After : Nov 22 16:00:01 2024 GMT Subject: CN=E8A88CB53090A512BCCE38F4726CE8DFF814C8CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:70:cf:ae:20:0f:a1:2e:25:14:f7:c1:b5:54: 02:f2:ab:4e:d7:55:f3:13:1a:0c:92:0e:71:06:28: a6:61:47:00:6f:88:16:b3:68:c1:59:2e:59:1c:47: b2:d2:e0:ab:e5:a6:78:09:65:73:04:69:b1:4d:fb: 33:6e:31:9f:6b:c3:e2:6e:f3:dc:62:58:39:27:c4: e8:8d:28:57:90:65:93:51:55:db:7f:cd:45:22:cd: 5e:cc:cd:ef:5b:84:f8:79:2b:41:30:c8:62:64:ca: 0f:fb:66:15:f2:cc:5a:90:35:be:7e:12:79:cf:e9: 03:21:d5:81:80:81:6c:a3:b7:58:dd:fd:1a:bd:1b: fb:d6:f6:44:09:cc:f0:5c:ba:54:f1:8a:21:82:0b: 96:38:db:bb:f8:2f:b0:ba:bf:c1:d4:3f:21:c5:7c: ab:89:70:d0:47:3f:6c:3d:84:a3:3b:b4:e6:ca:13: 69:d9:e1:86:8e:2c:34:14:ac:db:90:b9:e5:2f:2d: 81:fc:43:c4:b8:5c:2e:2b:e6:2d:e9:a8:3b:e8:d8: f7:60:26:4e:89:06:8d:40:bb:6c:40:47:8d:c5:f8: a4:c6:e9:f8:38:26:4b:1f:c6:e3:15:77:5c:d0:dd: 77:a0:49:78:b4:d4:47:6d:1d:22:f7:a3:53:56:02: 34:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:A8:8C:B5:30:90:A5:12:BC:CE:38:F4:72:6C:E8:DF:F8:14:C8:CF X509v3 Authority Key Identifier: keyid:AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/323030313a6466373a373430303a3a2f34382d3438203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:7400::/48 Signature Algorithm: sha256WithRSAEncryption 82:4c:6f:0e:94:1f:9c:65:6f:b3:0d:e6:8b:8f:86:26:ec:eb: 9e:dd:85:02:2a:29:ad:78:7b:7d:14:32:ce:bb:1a:a9:fb:2b: 43:e2:d4:1a:41:a1:55:b7:ac:63:c0:99:1c:16:a4:cd:cc:78: 97:ac:1e:e5:9f:80:40:ca:57:a2:63:25:61:10:3a:10:a4:d8: a3:e5:58:fd:b1:21:0c:62:82:ad:68:75:11:65:5b:9d:59:d3: 0d:b9:85:b2:1e:64:dc:42:db:bc:93:85:da:3b:f1:17:de:86: 43:77:5c:cf:09:d5:db:a4:43:0f:1f:3c:03:11:76:a7:0f:c0: 49:16:78:ec:99:b7:00:a1:b7:66:38:ab:ad:d1:3f:a6:5b:a1: ef:22:03:6d:16:a1:5a:9c:f9:d9:a5:f3:e4:f0:2e:a9:bb:c2: 34:10:4c:54:0a:7a:81:91:80:39:fb:49:2d:ca:3c:c8:93:91: 0e:07:7c:14:e2:0c:a5:df:7c:ae:5e:85:74:b5:49:67:87:c8: b6:ee:eb:a8:b2:73:0d:73:4e:a0:be:33:c7:8a:29:3f:08:9b: 1c:81:8b:fc:34:52:2f:57:b4:e5:af:a8:cb:12:68:b9:86:80: 4a:56:ad:7f:31:3f:8b:43:80:06:a1:3a:e3:aa:6d:ac:62:3e: 05:43:06:1d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUV0IeMWsbOec22mtBxT2CH2Ewtd4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIx MDZBNTk0QzAeFw0yMzExMjQxNTU1MDFaFw0yNDExMjIxNjAwMDFaMDMxMTAvBgNV BAMTKEU4QTg4Q0I1MzA5MEE1MTJCQ0NFMzhGNDcyNkNFOERGRjgxNEM4Q0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3cM+uIA+hLiUU98G1VALyq07X VfMTGgySDnEGKKZhRwBviBazaMFZLlkcR7LS4KvlpngJZXMEabFN+zNuMZ9rw+Ju 89xiWDknxOiNKFeQZZNRVdt/zUUizV7Mze9bhPh5K0EwyGJkyg/7ZhXyzFqQNb5+ EnnP6QMh1YGAgWyjt1jd/Rq9G/vW9kQJzPBculTxiiGCC5Y427v4L7C6v8HUPyHF fKuJcNBHP2w9hKM7tObKE2nZ4YaOLDQUrNuQueUvLYH8Q8S4XC4r5i3pqDvo2Pdg Jk6JBo1Au2xAR43F+KTG6fg4JksfxuMVd1zQ3XegSXi01EdtHSL3o1NWAjTRAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU6KiMtTCQpRK8zjj0cmzo3/gUyM8wHwYDVR0j BBgwFoAUr1LnFt5x7qk1P+qS+/ctohBqWUwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MmFjMGNhNS01Y2U3LTRlNmUtOWZmZi03MjEzZWYxZWYzNjQvMC9BRjUyRTcxNkRF NzFFRUE5MzUzRkVBOTJGQkY3MkRBMjEwNkE1OTRDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIxMDZB NTk0Qy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyYWMwY2E1LTVjZTctNGU2ZS05 ZmZmLTcyMTNlZjFlZjM2NC8wLzMyMzAzMDMxM2E2NDY2MzczYTM3MzQzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzAzNTMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 93QAMA0GCSqGSIb3DQEBCwUAA4IBAQCCTG8OlB+cZW+zDeaLj4Ym7Oue3YUCKimt eHt9FDLOuxqp+ytD4tQaQaFVt6xjwJkcFqTNzHiXrB7ln4BAyleiYyVhEDoQpNij 5Vj9sSEMYoKtaHURZVudWdMNuYWyHmTcQtu8k4XaO/EX3oZDd1zPCdXbpEMPHzwD EXanD8BJFnjsmbcAobdmOKut0T+mW6HvIgNtFqFanPnZpfPk8C6pu8I0EExUCnqB kYA5+0ktyjzIk5EOB3wU4gyl33yuXoV0tUlnh8i27uuosnMNc06gvjPHiik/CJsc gYv8NFIvV7Tlr6jLEmi5hoBKVq1/MT+LQ4AGoTrjqm2sYj4FQwYd -----END CERTIFICATE-----Generated at Fri May 3 17:55:17 2024 by rpki-client on console-ams.rpki-client.org