$ rpki-client -vvf repo-rpki.idnic.net/repo/026cf28d-ffc7-4351-a8cb-25d19fc43177/0/323430353a336663303a3a2f33322d3332203d3e20313339343031.roa File: 323430353a336663303a3a2f33322d3332203d3e20313339343031.roa (raw, json) Hash identifier: lnkPe8X3hVyC5Q5DA4Fz2Q98x2fIHCIY+61Ij0V40HU= Subject key identifier: C0:99:FF:C7:BD:77:1E:BC:A4:53:29:DC:24:46:23:E4:08:97:AB:9C Certificate issuer: /CN=B65D1460ACFC8D91183381DC64E52D2E282D14B0 Certificate serial: 564567AC63C9ADD3D4F34A97CDAE109C3307A870 Authority key identifier: B6:5D:14:60:AC:FC:8D:91:18:33:81:DC:64:E5:2D:2E:28:2D:14:B0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B65D1460ACFC8D91183381DC64E52D2E282D14B0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/026cf28d-ffc7-4351-a8cb-25d19fc43177/0/323430353a336663303a3a2f33322d3332203d3e20313339343031.roa Signing time: Mon 31 Jul 2023 00:09:29 +0000 ROA not before: Mon 31 Jul 2023 00:04:29 +0000 ROA not after: Mon 29 Jul 2024 00:09:29 +0000 asID: 139401 IP address blocks: 2405:3fc0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/026cf28d-ffc7-4351-a8cb-25d19fc43177/0/B65D1460ACFC8D91183381DC64E52D2E282D14B0.crl rsync://repo-rpki.idnic.net/repo/026cf28d-ffc7-4351-a8cb-25d19fc43177/0/B65D1460ACFC8D91183381DC64E52D2E282D14B0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B65D1460ACFC8D91183381DC64E52D2E282D14B0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Apr 2024 15:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:45:67:ac:63:c9:ad:d3:d4:f3:4a:97:cd:ae:10:9c:33:07:a8:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B65D1460ACFC8D91183381DC64E52D2E282D14B0 Validity Not Before: Jul 31 00:04:29 2023 GMT Not After : Jul 29 00:09:29 2024 GMT Subject: CN=C099FFC7BD771EBCA45329DC244623E40897AB9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:3c:08:3b:1e:7e:0c:57:ac:f8:62:9b:8e:df: ed:0a:63:eb:dc:ce:26:f4:75:ca:ef:0d:d4:1c:f4: f7:40:7c:05:ae:8b:53:f7:a0:49:96:6b:84:53:ad: c1:49:e0:65:fb:b3:9b:f1:92:69:7b:36:53:60:18: 02:a0:89:16:0c:e9:e6:9f:a4:d4:20:fe:04:5e:15: 68:e7:49:f2:45:44:15:cb:d0:66:35:4c:90:26:41: f4:51:6a:b8:b5:bd:95:c4:74:45:5a:87:d4:13:2e: 59:a5:b2:6d:dc:dd:5a:79:27:2d:70:a3:22:80:f2: 6d:07:c2:d1:19:29:8a:3a:83:ef:19:18:82:ce:90: cc:df:6c:36:49:53:3d:67:bd:0c:c7:d0:f3:b6:47: 41:1a:37:4b:d7:6e:8e:06:ac:7a:41:92:79:29:3b: 75:8c:14:6a:78:1e:be:4f:ad:58:59:6e:28:6f:62: 0c:c0:d9:e2:3e:c6:f8:19:d7:95:ba:87:dd:f8:b4: 7b:27:2c:db:27:e5:4f:cb:74:b8:04:c7:e5:66:7f: 10:eb:cc:a6:1f:da:e8:84:7f:bb:ef:ed:a9:b9:37: 4f:a0:11:25:7b:bc:05:ef:71:aa:34:f1:e9:68:99: b3:a2:24:23:57:59:c2:e4:75:72:48:0d:4e:2e:95: 85:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:99:FF:C7:BD:77:1E:BC:A4:53:29:DC:24:46:23:E4:08:97:AB:9C X509v3 Authority Key Identifier: keyid:B6:5D:14:60:AC:FC:8D:91:18:33:81:DC:64:E5:2D:2E:28:2D:14:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/026cf28d-ffc7-4351-a8cb-25d19fc43177/0/B65D1460ACFC8D91183381DC64E52D2E282D14B0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B65D1460ACFC8D91183381DC64E52D2E282D14B0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/026cf28d-ffc7-4351-a8cb-25d19fc43177/0/323430353a336663303a3a2f33322d3332203d3e20313339343031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3fc0::/32 Signature Algorithm: sha256WithRSAEncryption 28:c8:05:4f:fa:91:d8:7c:73:27:ca:85:18:6e:8a:8b:b1:41: d8:9f:b5:1a:aa:18:c2:e9:22:ef:a8:b3:b0:e7:6f:5c:10:92: 27:ff:71:67:15:3d:b6:0b:93:8f:2c:24:c1:e1:3e:31:ba:09: 23:ec:a1:86:28:e7:24:85:a1:dc:f7:21:c1:5f:5f:7c:e5:7b: db:53:03:50:ae:b7:45:72:c4:5b:bc:d5:96:c8:28:d1:32:48: 33:fa:e0:ff:80:f3:64:51:6e:14:7b:ee:a5:df:40:b7:0c:6e: ef:1f:ce:0a:f7:87:34:ec:e2:e3:69:83:c7:47:be:ec:9d:96: ea:bf:4c:44:3f:70:47:21:de:4c:67:4c:7b:82:2f:b6:c4:97: 6a:bc:96:81:0e:f9:e1:82:34:be:4e:85:95:92:06:0b:25:f2: b9:40:15:a9:aa:80:4b:9b:b6:9d:77:92:58:1e:b4:5c:4a:68: d3:ae:e0:5d:b8:c5:00:81:b5:51:69:d0:b1:ad:70:3d:c7:b9: ad:6d:b8:26:0a:f0:76:62:12:03:1e:08:a7:8f:27:80:2a:1f: 3f:7b:71:47:65:18:22:81:fd:70:c8:c2:0e:7b:74:9b:fe:14: f4:d2:3c:c4:e6:58:dd:17:1d:3d:07:87:0f:85:e8:d9:5e:7c: dc:e0:3b:9a -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUVkVnrGPJrdPU80qXza4QnDMHqHAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjY1RDE0NjBBQ0ZDOEQ5MTE4MzM4MURDNjRFNTJEMkUy ODJEMTRCMDAeFw0yMzA3MzEwMDA0MjlaFw0yNDA3MjkwMDA5MjlaMDMxMTAvBgNV BAMTKEMwOTlGRkM3QkQ3NzFFQkNBNDUzMjlEQzI0NDYyM0U0MDg5N0FCOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXPAg7Hn4MV6z4YpuO3+0KY+vc zib0dcrvDdQc9PdAfAWui1P3oEmWa4RTrcFJ4GX7s5vxkml7NlNgGAKgiRYM6eaf pNQg/gReFWjnSfJFRBXL0GY1TJAmQfRRari1vZXEdEVah9QTLlmlsm3c3Vp5Jy1w oyKA8m0HwtEZKYo6g+8ZGILOkMzfbDZJUz1nvQzH0PO2R0EaN0vXbo4GrHpBknkp O3WMFGp4Hr5PrVhZbihvYgzA2eI+xvgZ15W6h934tHsnLNsn5U/LdLgEx+VmfxDr zKYf2uiEf7vv7am5N0+gESV7vAXvcao08elombOiJCNXWcLkdXJIDU4ulYXHAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUwJn/x713HrykUyncJEYj5AiXq5wwHwYDVR0j BBgwFoAUtl0UYKz8jZEYM4HcZOUtLigtFLAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MjZjZjI4ZC1mZmM3LTQzNTEtYThjYi0yNWQxOWZjNDMxNzcvMC9CNjVEMTQ2MEFD RkM4RDkxMTgzMzgxREM2NEU1MkQyRTI4MkQxNEIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjY1RDE0NjBBQ0ZDOEQ5MTE4MzM4MURDNjRFNTJEMkUyODJE MTRCMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAyNmNmMjhkLWZmYzctNDM1MS1h OGNiLTI1ZDE5ZmM0MzE3Ny8wLzMyMzQzMDM1M2EzMzY2NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTM0MzAzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFP8AwDQYJKoZI hvcNAQELBQADggEBACjIBU/6kdh8cyfKhRhuiouxQdiftRqqGMLpIu+os7Dnb1wQ kif/cWcVPbYLk48sJMHhPjG6CSPsoYYo5ySFodz3IcFfX3zle9tTA1Cut0VyxFu8 1ZbIKNEySDP64P+A82RRbhR77qXfQLcMbu8fzgr3hzTs4uNpg8dHvuydluq/TEQ/ cEch3kxnTHuCL7bEl2q8loEO+eGCNL5OhZWSBgsl8rlAFamqgEubtp13klgetFxK aNOu4F24xQCBtVFp0LGtcD3Hua1tuCYK8HZiEgMeCKePJ4AqHz97cUdlGCKB/XDI wg57dJv+FPTSPMTmWN0XHT0Hhw+F6NlefNzgO5o= -----END CERTIFICATE-----Generated at Wed Apr 17 11:29:21 2024 by rpki-client on console-fra.rpki-client.org