$ rpki-client -vvf repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/323030313a6466373a373430303a3a2f34382d3438203d3e20313336303532.roa File: 323030313a6466373a373430303a3a2f34382d3438203d3e20313336303532.roa (raw, json) Hash identifier: Y4jHaeY4QidDK/340ECCQ/4I5FQ55qG4YZL2AdrbzPk= Subject key identifier: 6F:51:4B:D8:73:BC:E6:89:E9:CB:70:99:EB:52:1E:5B:44:B3:DE:79 Certificate issuer: /CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Certificate serial: 46F487644B5F48638F75DC1304414FEB6A363B2A Authority key identifier: AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/323030313a6466373a373430303a3a2f34382d3438203d3e20313336303532.roa Signing time: Fri 25 Oct 2024 16:00:02 +0000 ROA not before: Fri 25 Oct 2024 15:55:02 +0000 ROA not after: Fri 24 Oct 2025 16:00:02 +0000 asID: 136052 IP address blocks: 2001:df7:7400::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:f4:87:64:4b:5f:48:63:8f:75:dc:13:04:41:4f:eb:6a:36:3b:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Validity Not Before: Oct 25 15:55:02 2024 GMT Not After : Oct 24 16:00:02 2025 GMT Subject: CN=6F514BD873BCE689E9CB7099EB521E5B44B3DE79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:bd:70:06:8e:76:73:67:72:8c:e4:9c:7f:4f: 6b:fb:e2:01:3b:ae:23:29:8f:91:85:38:62:16:7f: 22:3b:bc:e9:4b:89:e9:ab:31:d5:75:56:4c:ae:52: 50:76:22:dd:d7:7e:b0:c1:cd:9f:6f:cf:09:fb:c6: ef:2a:80:16:dc:47:24:44:94:28:c0:be:74:0e:97: 45:01:21:d0:f7:18:de:b3:5e:f2:38:2c:54:96:fb: 75:75:17:95:85:ca:b1:a0:c6:d6:a3:76:f9:a1:3c: b0:1b:2f:02:c8:77:b6:1f:69:c1:bd:d1:34:92:51: dc:d8:c6:ca:f0:e5:aa:cd:27:35:93:d3:c5:db:d5: 5e:60:d9:d5:5e:02:05:4f:eb:55:71:91:6d:ad:cd: 7b:2d:f3:c8:09:b1:dc:07:97:56:d6:43:19:85:a9: 67:ad:93:8f:da:ea:04:2c:0a:d4:d5:31:5a:2e:46: 76:37:4d:13:cc:07:14:7d:2e:1a:a6:a5:b6:27:7d: 8b:0d:81:fb:29:2b:01:45:af:79:7a:b2:a0:0e:31: 49:d4:f6:a2:16:34:ca:a0:7b:0e:a5:dc:d7:d0:e8: 34:a1:ae:47:ad:45:37:f3:e2:bb:e5:3e:4d:3a:13: 47:8b:b7:23:a6:e3:a7:7b:d2:69:d8:cf:2b:67:0b: b5:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:51:4B:D8:73:BC:E6:89:E9:CB:70:99:EB:52:1E:5B:44:B3:DE:79 X509v3 Authority Key Identifier: keyid:AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/323030313a6466373a373430303a3a2f34382d3438203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:7400::/48 Signature Algorithm: sha256WithRSAEncryption 60:d4:01:18:a1:85:21:b1:ce:e3:d3:88:c6:43:66:36:10:0c: 51:87:b6:87:14:32:66:38:9d:16:c2:1d:08:4d:4d:c6:89:22: 92:41:84:f2:03:cb:48:2d:db:e4:62:fe:3f:dc:57:04:37:03: 84:46:d5:d6:ef:66:09:ad:be:90:22:52:ea:ae:25:5a:e2:0a: ce:43:69:54:4d:e6:26:e3:26:e9:18:5d:a2:93:ca:ab:00:d1: 4c:f6:8f:a1:a5:7d:cf:31:41:1f:76:3e:30:16:25:f6:21:42: fb:e2:e2:2f:2c:dd:c0:00:3b:41:72:59:65:a9:d4:08:88:c2: a6:66:ae:17:53:1e:14:15:18:aa:f2:2a:f9:06:46:bb:3b:cb: de:48:63:0e:f1:f6:55:de:78:f1:c8:0d:a3:42:e2:e0:57:b4: 58:c4:c5:ee:77:e0:43:1d:d5:c1:27:b7:de:ef:6c:04:7b:91: fb:77:a8:2a:51:62:6a:56:d1:ee:10:39:b8:af:3c:f5:45:43: 10:be:81:7e:17:b3:13:3b:42:59:48:fa:db:07:90:fd:ae:d5: 6f:ff:d2:36:72:a8:7c:54:1f:b5:3c:56:db:10:fc:4b:39:fe: f7:cd:3a:5d:58:07:d8:eb:1d:81:49:e3:9c:4e:5a:e0:59:2c: c5:32:c9:d5 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIURvSHZEtfSGOPddwTBEFP62o2OyowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIx MDZBNTk0QzAeFw0yNDEwMjUxNTU1MDJaFw0yNTEwMjQxNjAwMDJaMDMxMTAvBgNV BAMTKDZGNTE0QkQ4NzNCQ0U2ODlFOUNCNzA5OUVCNTIxRTVCNDRCM0RFNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDavXAGjnZzZ3KM5Jx/T2v74gE7 riMpj5GFOGIWfyI7vOlLiemrMdV1VkyuUlB2It3XfrDBzZ9vzwn7xu8qgBbcRyRE lCjAvnQOl0UBIdD3GN6zXvI4LFSW+3V1F5WFyrGgxtajdvmhPLAbLwLId7YfacG9 0TSSUdzYxsrw5arNJzWT08Xb1V5g2dVeAgVP61VxkW2tzXst88gJsdwHl1bWQxmF qWetk4/a6gQsCtTVMVouRnY3TRPMBxR9LhqmpbYnfYsNgfspKwFFr3l6sqAOMUnU 9qIWNMqgew6l3NfQ6DShrketRTfz4rvlPk06E0eLtyOm46d70mnYzytnC7UpAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUb1FL2HO85onpy3CZ61IeW0Sz3nkwHwYDVR0j BBgwFoAUr1LnFt5x7qk1P+qS+/ctohBqWUwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MmFjMGNhNS01Y2U3LTRlNmUtOWZmZi03MjEzZWYxZWYzNjQvMC9BRjUyRTcxNkRF NzFFRUE5MzUzRkVBOTJGQkY3MkRBMjEwNkE1OTRDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIxMDZB NTk0Qy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyYWMwY2E1LTVjZTctNGU2ZS05 ZmZmLTcyMTNlZjFlZjM2NC8wLzMyMzAzMDMxM2E2NDY2MzczYTM3MzQzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzAzNTMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 93QAMA0GCSqGSIb3DQEBCwUAA4IBAQBg1AEYoYUhsc7j04jGQ2Y2EAxRh7aHFDJm OJ0Wwh0ITU3GiSKSQYTyA8tILdvkYv4/3FcENwOERtXW72YJrb6QIlLqriVa4grO Q2lUTeYm4ybpGF2ik8qrANFM9o+hpX3PMUEfdj4wFiX2IUL74uIvLN3AADtBclll qdQIiMKmZq4XUx4UFRiq8ir5Bka7O8veSGMO8fZV3njxyA2jQuLgV7RYxMXud+BD HdXBJ7fe72wEe5H7d6gqUWJqVtHuEDm4rzz1RUMQvoF+F7MTO0JZSPrbB5D9rtVv /9I2cqh8VB+1PFbbEPxLOf73zTpdWAfY6x2BSeOcTlrgWSzFMsnV -----END CERTIFICATE-----Generated at Mon Nov 25 02:45:36 2024 by rpki-client on console-ams.rpki-client.org