$ rpki-client -vvf repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/323030313a6466303a62353a3a2f34382d3438203d3e203436303439.roa File: 323030313a6466303a62353a3a2f34382d3438203d3e203436303439.roa (raw, json) Hash identifier: 0HYklhLTJNZW3LtOjDVHH1y9z+u3Lt9/tqrmoj/sab4= Subject key identifier: 0C:6F:9B:B8:62:69:E0:75:79:2A:18:62:07:A6:89:2D:D8:B2:3A:D2 Certificate issuer: /CN=F490341241E1B1C7D170AB872CA39A68309B3F3B Certificate serial: 1AE64658F1133E9D0BB92D5CADBE2F5B76F8EB3D Authority key identifier: F4:90:34:12:41:E1:B1:C7:D1:70:AB:87:2C:A3:9A:68:30:9B:3F:3B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F490341241E1B1C7D170AB872CA39A68309B3F3B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/323030313a6466303a62353a3a2f34382d3438203d3e203436303439.roa Signing time: Mon 31 Jul 2023 00:04:39 +0000 ROA not before: Sun 30 Jul 2023 23:59:39 +0000 ROA not after: Mon 29 Jul 2024 00:04:39 +0000 asID: 46049 IP address blocks: 2001:df0:b5::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/F490341241E1B1C7D170AB872CA39A68309B3F3B.crl rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/F490341241E1B1C7D170AB872CA39A68309B3F3B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F490341241E1B1C7D170AB872CA39A68309B3F3B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 16:30:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:e6:46:58:f1:13:3e:9d:0b:b9:2d:5c:ad:be:2f:5b:76:f8:eb:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F490341241E1B1C7D170AB872CA39A68309B3F3B Validity Not Before: Jul 30 23:59:39 2023 GMT Not After : Jul 29 00:04:39 2024 GMT Subject: CN=0C6F9BB86269E075792A186207A6892DD8B23AD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:9f:ce:db:32:8a:9c:d4:33:50:89:a1:bb:9f: 65:43:b5:e3:34:95:96:d2:da:d3:33:50:c4:45:3b: b7:55:f2:c0:d6:e4:70:8b:c0:44:e5:8b:ab:89:dc: 51:17:9d:8b:74:4a:10:e0:26:7e:51:09:24:b3:10: 94:34:3f:96:14:9c:d1:9b:ee:9a:1c:69:86:af:b1: 99:83:dd:47:7d:ec:73:b9:3a:33:24:c7:9a:ea:43: 8f:60:c0:25:5c:bc:e5:e6:86:b8:a1:66:e9:c3:c4: 81:7d:e2:11:cd:6c:e3:e3:1e:53:4d:e3:80:4b:4c: 22:94:49:19:a8:18:a6:8a:7e:f4:8f:d1:a9:25:de: 91:be:53:00:5c:9f:6a:ad:41:13:0c:c4:7c:5f:3d: b5:f6:42:68:d0:9c:82:98:3b:22:b8:99:e7:bb:75: 2c:05:57:f7:6a:12:be:a3:ce:aa:80:de:f4:20:ee: 3f:49:be:6c:e1:2d:33:4a:3c:13:8b:a1:dd:46:73: dd:e0:41:02:b4:2d:be:0a:b4:5b:f6:44:48:28:5e: 5c:74:26:79:4d:d4:e8:e1:59:d8:62:53:a6:ea:fa: 49:84:0c:07:6d:5d:c9:ea:70:1b:8e:85:38:f2:a0: 2c:ea:0e:e3:b6:7a:8c:17:ca:19:f4:d5:96:58:a9: 8a:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:6F:9B:B8:62:69:E0:75:79:2A:18:62:07:A6:89:2D:D8:B2:3A:D2 X509v3 Authority Key Identifier: keyid:F4:90:34:12:41:E1:B1:C7:D1:70:AB:87:2C:A3:9A:68:30:9B:3F:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/F490341241E1B1C7D170AB872CA39A68309B3F3B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F490341241E1B1C7D170AB872CA39A68309B3F3B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/323030313a6466303a62353a3a2f34382d3438203d3e203436303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:b5::/48 Signature Algorithm: sha256WithRSAEncryption 58:ed:82:c2:b7:8e:7b:97:e9:24:98:d6:34:be:94:b8:b5:49: 61:b3:c2:31:65:fe:fb:18:44:cd:a7:97:1c:3e:46:bb:5c:2f: 61:aa:d0:2a:ab:1e:36:b1:4f:2e:08:5e:37:3b:dc:41:6c:08: 2d:1e:6c:88:b6:78:14:6e:7d:57:61:7e:af:ba:df:17:c0:c8: 5e:d1:23:56:10:72:c1:25:60:c1:0a:bb:ca:53:26:56:d6:1e: 68:95:47:5e:73:bd:c5:19:ac:bc:f8:a9:c8:10:f9:26:ed:09: 97:7c:97:53:07:71:5b:68:52:d2:dc:e9:9e:66:71:4a:10:90: e3:2b:e9:fd:bd:c6:12:13:16:5d:b9:f7:ac:1c:53:d6:f6:f4: ec:f9:94:07:c0:37:22:1d:cd:4b:92:c6:25:fe:86:ff:c7:4a: 74:e5:7f:ec:6f:de:ca:a5:27:dd:e4:37:99:6b:fc:1e:fe:ef: b0:98:75:d9:88:c0:88:a1:50:e0:18:f6:a6:6c:3e:e5:74:d4: d0:7f:5e:fb:1d:89:74:ed:ca:54:57:fa:95:71:48:5b:bd:3d: fe:c4:66:c5:2d:2b:06:ac:32:c2:c3:9a:b4:9f:1a:5d:57:2b: c7:e3:ac:14:c2:db:a8:fc:7b:55:f1:20:3e:d0:38:8d:89:5d: 7d:00:cb:c1 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUGuZGWPETPp0LuS1crb4vW3b46z0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjQ5MDM0MTI0MUUxQjFDN0QxNzBBQjg3MkNBMzlBNjgz MDlCM0YzQjAeFw0yMzA3MzAyMzU5MzlaFw0yNDA3MjkwMDA0MzlaMDMxMTAvBgNV BAMTKDBDNkY5QkI4NjI2OUUwNzU3OTJBMTg2MjA3QTY4OTJERDhCMjNBRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXn87bMoqc1DNQiaG7n2VDteM0 lZbS2tMzUMRFO7dV8sDW5HCLwETli6uJ3FEXnYt0ShDgJn5RCSSzEJQ0P5YUnNGb 7pocaYavsZmD3Ud97HO5OjMkx5rqQ49gwCVcvOXmhrihZunDxIF94hHNbOPjHlNN 44BLTCKUSRmoGKaKfvSP0akl3pG+UwBcn2qtQRMMxHxfPbX2QmjQnIKYOyK4mee7 dSwFV/dqEr6jzqqA3vQg7j9JvmzhLTNKPBOLod1Gc93gQQK0Lb4KtFv2REgoXlx0 JnlN1OjhWdhiU6bq+kmEDAdtXcnqcBuOhTjyoCzqDuO2eowXyhn01ZZYqYrDAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUDG+buGJp4HV5KhhiB6aJLdiyOtIwHwYDVR0j BBgwFoAU9JA0EkHhscfRcKuHLKOaaDCbPzswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZTg2YjA5Mi01MjdkLTQ4OGYtYTlmNy0yNDc5N2Q5Nzc0Y2IvMC9GNDkwMzQxMjQx RTFCMUM3RDE3MEFCODcyQ0EzOUE2ODMwOUIzRjNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjQ5MDM0MTI0MUUxQjFDN0QxNzBBQjg3MkNBMzlBNjgzMDlC M0YzQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlODZiMDkyLTUyN2QtNDg4Zi1h OWY3LTI0Nzk3ZDk3NzRjYi8wLzMyMzAzMDMxM2E2NDY2MzAzYTYyMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNDM2MzAzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN8AC1MA0G CSqGSIb3DQEBCwUAA4IBAQBY7YLCt457l+kkmNY0vpS4tUlhs8IxZf77GETNp5cc Pka7XC9hqtAqqx42sU8uCF43O9xBbAgtHmyItngUbn1XYX6vut8XwMhe0SNWEHLB JWDBCrvKUyZW1h5olUdec73FGay8+KnIEPkm7QmXfJdTB3FbaFLS3OmeZnFKEJDj K+n9vcYSExZdufesHFPW9vTs+ZQHwDciHc1LksYl/ob/x0p05X/sb97KpSfd5DeZ a/we/u+wmHXZiMCIoVDgGPambD7ldNTQf177HYl07cpUV/qVcUhbvT3+xGbFLSsG rDLCw5q0nxpdVyvH46wUwtuo/HtV8SA+0DiNiV19AMvB -----END CERTIFICATE-----Generated at Fri May 31 16:38:18 2024 by rpki-client on console-ams.rpki-client.org