$ rpki-client -vvf repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/323430353a633963303a3a2f33322d3438203d3e20313338383233.roa File: 323430353a633963303a3a2f33322d3438203d3e20313338383233.roa (raw, json) Hash identifier: ggq3Br/SE+t7Bfg0deVgkMyrozQW941ZJzM+/kDfy/g= Subject key identifier: EB:E2:C8:7B:A5:47:6D:C1:5C:AB:47:9F:2C:2C:69:AA:2F:47:53:BB Certificate issuer: /CN=E2111F10F01C17C4A322DAF5076425FBD824219D Certificate serial: 5D86CD31A47DF40BA8C7365433B3E2F125CF67AD Authority key identifier: E2:11:1F:10:F0:1C:17:C4:A3:22:DA:F5:07:64:25:FB:D8:24:21:9D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2111F10F01C17C4A322DAF5076425FBD824219D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/323430353a633963303a3a2f33322d3438203d3e20313338383233.roa Signing time: Sun 17 Sep 2023 09:00:00 +0000 ROA not before: Sun 17 Sep 2023 08:55:00 +0000 ROA not after: Sun 15 Sep 2024 09:00:00 +0000 asID: 138823 IP address blocks: 2405:c9c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/E2111F10F01C17C4A322DAF5076425FBD824219D.crl rsync://repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/E2111F10F01C17C4A322DAF5076425FBD824219D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2111F10F01C17C4A322DAF5076425FBD824219D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 11:05:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:86:cd:31:a4:7d:f4:0b:a8:c7:36:54:33:b3:e2:f1:25:cf:67:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E2111F10F01C17C4A322DAF5076425FBD824219D Validity Not Before: Sep 17 08:55:00 2023 GMT Not After : Sep 15 09:00:00 2024 GMT Subject: CN=EBE2C87BA5476DC15CAB479F2C2C69AA2F4753BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:bf:e9:3a:11:60:15:7a:d0:b7:eb:e9:0a:88: d4:d2:6c:a9:36:48:3d:89:cf:49:6d:40:db:36:65: 3b:1b:f4:1e:d2:33:08:1d:02:39:e6:9f:92:f6:fa: 35:0d:74:2c:df:1d:93:1a:f7:ec:b7:97:69:af:e2: 0d:26:7b:f6:77:24:d7:39:5a:5d:a0:85:23:d3:20: 33:0a:ef:69:34:0b:64:69:42:a2:c1:d7:57:21:dd: 02:20:00:6b:b6:2d:c6:da:bd:f8:5e:d6:87:9a:b0: 3e:75:e3:64:a2:84:c3:b1:bc:e7:1e:e4:e2:a4:77: 1f:cd:3b:6d:58:ac:74:c3:41:dd:c0:c2:2d:0b:8f: 92:9c:d6:05:40:33:45:4a:7f:9c:2d:d7:38:cf:ab: db:38:0a:75:c9:e2:bc:2f:ba:31:7d:d1:c5:66:1e: 55:79:94:77:c0:dd:10:a7:f3:aa:9f:70:dc:19:ec: 98:c4:3e:1f:1b:ad:51:b0:56:b7:fd:71:80:55:35: a1:0b:3a:87:0c:3a:85:2e:19:03:ca:38:23:d7:6d: c2:57:88:8f:63:21:2b:82:b9:a1:55:b8:0c:85:91: ad:48:6a:9d:f0:34:88:c5:20:e1:7d:b2:2f:6d:f3: 87:b3:ae:c6:c3:c2:9c:14:a3:72:9a:d8:fa:10:87: b0:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:E2:C8:7B:A5:47:6D:C1:5C:AB:47:9F:2C:2C:69:AA:2F:47:53:BB X509v3 Authority Key Identifier: keyid:E2:11:1F:10:F0:1C:17:C4:A3:22:DA:F5:07:64:25:FB:D8:24:21:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/E2111F10F01C17C4A322DAF5076425FBD824219D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2111F10F01C17C4A322DAF5076425FBD824219D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/323430353a633963303a3a2f33322d3438203d3e20313338383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c9c0::/32 Signature Algorithm: sha256WithRSAEncryption 04:10:e6:d7:45:79:83:9c:b3:ed:7b:05:2c:75:01:5b:09:8f: 99:2f:66:eb:ff:fe:f3:d4:ec:2d:66:47:b7:08:6a:fd:47:7a: f0:c6:27:0c:df:9b:2a:76:51:90:da:1b:7a:65:d7:29:36:be: 64:7f:32:d8:5e:11:de:da:ea:27:46:7b:de:67:bf:01:46:5c: 51:08:89:7b:93:cc:bf:3e:20:36:7d:47:d9:90:52:08:92:6c: a2:3a:c4:4f:45:c8:c3:84:1d:6e:5d:e1:7a:b8:1e:c7:6d:20: e5:06:e0:7b:39:9a:b2:2f:59:a3:42:49:29:e4:3d:cc:ba:ee: 62:94:2a:75:4f:4e:ae:08:a5:83:d6:56:f7:4b:6b:d0:ba:13: a0:a9:10:d1:99:3b:9f:4b:0e:6c:f1:54:2e:e2:91:a3:68:80: 33:0c:1f:b8:38:54:a6:75:1d:8f:3d:79:3b:cd:bb:fd:f4:98: ee:0c:07:8b:92:d7:65:02:0b:46:d1:25:12:69:24:0f:18:f3: 31:ac:80:39:8e:70:8b:bd:fe:86:69:c4:eb:f1:c6:5d:a6:42: fc:25:68:27:b3:11:bd:08:d0:41:c9:0d:e4:57:fb:35:a2:64: 8e:a4:0d:8d:57:d6:94:ca:b7:26:fb:81:3c:da:8f:98:5d:4f: 82:72:e7:de -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUXYbNMaR99AuoxzZUM7Pi8SXPZ60wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTIxMTFGMTBGMDFDMTdDNEEzMjJEQUY1MDc2NDI1RkJE ODI0MjE5RDAeFw0yMzA5MTcwODU1MDBaFw0yNDA5MTUwOTAwMDBaMDMxMTAvBgNV BAMTKEVCRTJDODdCQTU0NzZEQzE1Q0FCNDc5RjJDMkM2OUFBMkY0NzUzQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqv+k6EWAVetC36+kKiNTSbKk2 SD2Jz0ltQNs2ZTsb9B7SMwgdAjnmn5L2+jUNdCzfHZMa9+y3l2mv4g0me/Z3JNc5 Wl2ghSPTIDMK72k0C2RpQqLB11ch3QIgAGu2Lcbavfhe1oeasD5142SihMOxvOce 5OKkdx/NO21YrHTDQd3Awi0Lj5Kc1gVAM0VKf5wt1zjPq9s4CnXJ4rwvujF90cVm HlV5lHfA3RCn86qfcNwZ7JjEPh8brVGwVrf9cYBVNaELOocMOoUuGQPKOCPXbcJX iI9jISuCuaFVuAyFka1Iap3wNIjFIOF9si9t84ezrsbDwpwUo3Ka2PoQh7CHAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU6+LIe6VHbcFcq0efLCxpqi9HU7swHwYDVR0j BBgwFoAU4hEfEPAcF8SjItr1B2Ql+9gkIZ0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MjE1OGFlYy01MjgxLTQyZTYtOTc5Yi1mY2E2MWQ0N2M4NDUvMC9FMjExMUYxMEYw MUMxN0M0QTMyMkRBRjUwNzY0MjVGQkQ4MjQyMTlELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTIxMTFGMTBGMDFDMTdDNEEzMjJEQUY1MDc2NDI1RkJEODI0 MjE5RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAyMTU4YWVjLTUyODEtNDJlNi05 NzliLWZjYTYxZDQ3Yzg0NS8wLzMyMzQzMDM1M2E2MzM5NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODM4MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFycAwDQYJKoZI hvcNAQELBQADggEBAAQQ5tdFeYOcs+17BSx1AVsJj5kvZuv//vPU7C1mR7cIav1H evDGJwzfmyp2UZDaG3pl1yk2vmR/MtheEd7a6idGe95nvwFGXFEIiXuTzL8+IDZ9 R9mQUgiSbKI6xE9FyMOEHW5d4Xq4HsdtIOUG4Hs5mrIvWaNCSSnkPcy67mKUKnVP Tq4IpYPWVvdLa9C6E6CpENGZO59LDmzxVC7ikaNogDMMH7g4VKZ1HY89eTvNu/30 mO4MB4uS12UCC0bRJRJpJA8Y8zGsgDmOcIu9/oZpxOvxxl2mQvwlaCezEb0I0EHJ DeRX+zWiZI6kDY1X1pTKtyb7gTzaj5hdT4Jy594= -----END CERTIFICATE-----Generated at Sun Apr 28 15:43:39 2024 by rpki-client on console-fra.rpki-client.org