$ rpki-client -vvf repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/323030313a6466313a666530303a3a2f34382d3438203d3e20313431313037.roa File: 323030313a6466313a666530303a3a2f34382d3438203d3e20313431313037.roa (raw, json) Hash identifier: M99xhdoZnUSArNFQBcH8UXTf7qQpf114JTc+bpmm89I= Subject key identifier: 4F:1B:A4:2C:AA:07:B3:C7:A5:41:61:28:F7:8E:C5:65:8E:58:4F:D9 Certificate issuer: /CN=0FA41B65D1881666013C9683E40575E68E5DC0A5 Certificate serial: 0A41F5D644465BDF526E288008A7AC8348F7C849 Authority key identifier: 0F:A4:1B:65:D1:88:16:66:01:3C:96:83:E4:05:75:E6:8E:5D:C0:A5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/323030313a6466313a666530303a3a2f34382d3438203d3e20313431313037.roa Signing time: Thu 26 Oct 2023 07:00:01 +0000 ROA not before: Thu 26 Oct 2023 06:55:01 +0000 ROA not after: Thu 24 Oct 2024 07:00:01 +0000 asID: 141107 IP address blocks: 2001:df1:fe00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.crl rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:41:f5:d6:44:46:5b:df:52:6e:28:80:08:a7:ac:83:48:f7:c8:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FA41B65D1881666013C9683E40575E68E5DC0A5 Validity Not Before: Oct 26 06:55:01 2023 GMT Not After : Oct 24 07:00:01 2024 GMT Subject: CN=4F1BA42CAA07B3C7A5416128F78EC5658E584FD9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:dd:fb:64:ee:3b:80:08:c3:04:3a:1a:0b:e3: 31:3a:0c:8e:dd:e4:eb:82:18:64:da:6e:7e:70:c1: 11:07:84:c8:4b:84:dc:5c:3c:97:ec:6f:0b:52:9a: 8e:cb:e0:b4:19:1b:ea:de:35:6d:d1:e6:a1:60:2f: b2:2b:97:0a:ff:86:25:fb:2e:23:76:ac:41:b7:1e: 8d:05:b1:1c:b5:19:0a:4d:35:66:c1:92:49:25:7f: 9d:8c:be:07:01:c5:a2:bc:36:ec:96:86:e6:c6:f1: 19:ed:d3:d7:53:bc:21:a3:6a:f2:0f:77:88:0f:54: fd:a4:13:b7:87:d7:d6:8f:33:b8:3a:57:bf:62:0c: 5f:c6:23:9a:45:5e:ea:6f:15:f0:d1:a0:17:14:c7: 71:ef:83:fb:24:ea:47:2d:d0:4f:2c:38:a4:5d:46: b0:8e:67:83:e1:dc:87:07:06:c7:17:91:87:e2:7f: a5:61:d5:3c:0d:ca:a1:27:f6:5d:0f:8b:e3:21:37: 11:09:27:e9:34:5c:e2:b8:97:bd:49:45:11:10:18: b4:21:4a:dd:b1:87:77:99:18:b1:ba:11:ad:9c:a6: 11:41:76:00:ce:e2:7f:f3:32:39:c3:94:ff:7a:40: 8a:ec:bb:71:cf:c0:42:be:ec:08:0f:d4:db:0c:80: ed:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:1B:A4:2C:AA:07:B3:C7:A5:41:61:28:F7:8E:C5:65:8E:58:4F:D9 X509v3 Authority Key Identifier: keyid:0F:A4:1B:65:D1:88:16:66:01:3C:96:83:E4:05:75:E6:8E:5D:C0:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/323030313a6466313a666530303a3a2f34382d3438203d3e20313431313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:fe00::/48 Signature Algorithm: sha256WithRSAEncryption 26:11:f2:87:79:b2:a2:e5:2e:d3:f1:42:bb:97:06:ae:df:68: cf:f6:07:59:ce:b4:5a:38:bc:fa:c6:fd:bd:41:23:ca:be:85: c4:20:bd:a6:8f:cd:c8:a3:30:58:32:c6:0f:96:86:6e:de:fc: 0b:66:d0:3a:00:ee:14:2f:cb:24:5e:99:cc:fb:42:49:34:cc: a0:32:64:74:6a:f0:83:ba:6c:9b:b3:49:ad:60:a6:b3:a0:82: 21:9e:28:fd:a6:80:70:05:36:b1:07:70:b4:74:ce:08:4f:8a: 82:d2:7f:30:25:da:48:ab:25:b2:5f:8f:ee:d5:1b:72:6a:bf: 21:dc:5f:68:bc:d7:02:6c:4b:cc:ff:db:9f:d1:e0:cf:7b:15: d0:5b:f8:ec:4c:82:a8:94:c7:10:1a:93:6a:2b:46:c6:98:14: 0e:4d:20:17:01:a3:a8:51:e8:c8:d1:3f:ce:a2:d4:c7:35:a6: c5:4d:95:fe:0f:b2:a6:67:e2:ea:a8:57:90:72:71:7d:80:72: 4c:ef:03:d4:08:e1:76:f0:77:a9:43:f3:ea:48:ab:64:73:1b: 95:96:c4:83:a6:6c:39:0d:d5:68:24:a0:48:c5:5c:f7:4b:75: 24:dc:36:d2:fd:0a:4c:b1:de:a3:7d:8b:3b:7f:cf:9f:e2:56: 04:94:5c:92 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUCkH11kRGW99SbiiACKesg0j3yEkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZBNDFCNjVEMTg4MTY2NjAxM0M5NjgzRTQwNTc1RTY4 RTVEQzBBNTAeFw0yMzEwMjYwNjU1MDFaFw0yNDEwMjQwNzAwMDFaMDMxMTAvBgNV BAMTKDRGMUJBNDJDQUEwN0IzQzdBNTQxNjEyOEY3OEVDNTY1OEU1ODRGRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC93ftk7juACMMEOhoL4zE6DI7d 5OuCGGTabn5wwREHhMhLhNxcPJfsbwtSmo7L4LQZG+reNW3R5qFgL7Irlwr/hiX7 LiN2rEG3Ho0FsRy1GQpNNWbBkkklf52MvgcBxaK8NuyWhubG8Rnt09dTvCGjavIP d4gPVP2kE7eH19aPM7g6V79iDF/GI5pFXupvFfDRoBcUx3Hvg/sk6kct0E8sOKRd RrCOZ4Ph3IcHBscXkYfif6Vh1TwNyqEn9l0Pi+MhNxEJJ+k0XOK4l71JRREQGLQh St2xh3eZGLG6Ea2cphFBdgDO4n/zMjnDlP96QIrsu3HPwEK+7AgP1NsMgO1zAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUTxukLKoHs8elQWEo947FZY5YT9kwHwYDVR0j BBgwFoAUD6QbZdGIFmYBPJaD5AV15o5dwKUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OTk0ZDM3NS1mYzdkLTRkYzctYTFmMS1lMGIzYTU5ZmRmNzgvMC8wRkE0MUI2NUQx ODgxNjY2MDEzQzk2ODNFNDA1NzVFNjhFNURDMEE1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEZBNDFCNjVEMTg4MTY2NjAxM0M5NjgzRTQwNTc1RTY4RTVE QzBBNS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc5OTRkMzc1LWZjN2QtNGRjNy1h MWYxLWUwYjNhNTlmZGY3OC8wLzMyMzAzMDMxM2E2NDY2MzEzYTY2NjUzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMxMzEzMDM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8f4AMA0GCSqGSIb3DQEBCwUAA4IBAQAmEfKHebKi5S7T8UK7lwau32jP9gdZzrRa OLz6xv29QSPKvoXEIL2mj83IozBYMsYPloZu3vwLZtA6AO4UL8skXpnM+0JJNMyg MmR0avCDumybs0mtYKazoIIhnij9poBwBTaxB3C0dM4IT4qC0n8wJdpIqyWyX4/u 1Rtyar8h3F9ovNcCbEvM/9uf0eDPexXQW/jsTIKolMcQGpNqK0bGmBQOTSAXAaOo UejI0T/OotTHNabFTZX+D7KmZ+LqqFeQcnF9gHJM7wPUCOF28HepQ/PqSKtkcxuV lsSDpmw5DdVoJKBIxVz3S3Uk3DbS/QpMsd6jfYs7f8+f4lYElFyS -----END CERTIFICATE-----Generated at Fri May 3 12:58:05 2024 by rpki-client on console-ams.rpki-client.org