$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a3a2f34382d3438203d3e203338313530.roa File: 323430323a663038303a3a2f34382d3438203d3e203338313530.roa (raw, json) Hash identifier: bQJM9NFkGI388ubXMNPDtEfo8Xr5pDXscx3MPZoT2M8= Subject key identifier: C5:3B:0A:C5:7E:F8:3D:D6:8A:1A:4F:75:13:AD:01:C2:04:E5:06:4F Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 5BAB9F7B0AA36ECC8554D8FE4D571C257F088F18 Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a3a2f34382d3438203d3e203338313530.roa Signing time: Mon 31 Jul 2023 00:05:04 +0000 ROA not before: Mon 31 Jul 2023 00:00:04 +0000 ROA not after: Mon 29 Jul 2024 00:05:04 +0000 asID: 38150 IP address blocks: 2402:f080::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 12:46:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:ab:9f:7b:0a:a3:6e:cc:85:54:d8:fe:4d:57:1c:25:7f:08:8f:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jul 31 00:00:04 2023 GMT Not After : Jul 29 00:05:04 2024 GMT Subject: CN=C53B0AC57EF83DD68A1A4F7513AD01C204E5064F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:96:dc:52:f2:c3:48:97:8d:d2:d0:4e:54:ec: 7e:f2:43:2a:ba:d5:80:a2:f1:3d:14:f6:92:67:6a: e8:3e:5a:bf:9b:15:62:30:5a:e5:4d:bc:55:e0:5e: ae:9a:71:4a:dc:2a:d2:2d:9b:35:34:fd:f6:ea:96: da:83:4e:b6:4f:de:b0:6f:11:f1:58:d9:21:01:bd: 6e:7e:3c:d5:bb:e7:cf:44:c3:d2:14:27:b5:d9:1f: ba:e5:89:b5:e6:07:7a:45:14:af:a8:84:87:f4:11: bf:8c:03:cb:a5:e6:1f:7f:15:46:81:d6:5d:0a:6b: 6b:17:51:c6:08:8b:5a:cc:da:70:ca:f0:07:61:25: fb:6d:0b:03:ba:9d:1f:d5:1c:a5:42:20:2b:30:be: 2a:a5:e7:ae:c8:b6:27:46:48:74:f6:ae:eb:9c:51: 05:b5:fb:6b:47:b7:6b:d6:5b:23:3f:86:1c:b3:87: 5a:7b:34:8f:48:10:e7:1b:83:00:08:1a:c0:2f:25: f3:f0:46:b8:8f:65:41:c0:76:e8:8f:7b:70:44:de: 80:26:00:be:e2:7d:37:1e:9c:e6:fb:3a:2f:ee:3d: 05:8a:ea:91:95:69:b9:0f:2e:34:14:24:11:67:e4: 02:5d:16:0a:20:14:c7:39:31:cb:09:84:92:e9:ad: f0:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:3B:0A:C5:7E:F8:3D:D6:8A:1A:4F:75:13:AD:01:C2:04:E5:06:4F X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a3a2f34382d3438203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:f080::/48 Signature Algorithm: sha256WithRSAEncryption 5f:f8:94:f0:1f:c9:79:7c:04:13:1d:df:e9:27:20:a3:72:d2: 8b:41:d7:20:6a:6e:04:21:77:2a:13:73:88:bf:a0:fc:1e:c6: 74:4a:1f:d4:56:36:2c:16:9a:15:18:eb:a8:48:8a:b3:61:fc: e9:a3:8c:c4:8e:d3:ac:66:7e:c1:5b:2c:a2:d3:a9:43:d5:59: f3:91:05:91:4f:54:e7:1e:02:72:f5:1f:78:75:24:8e:d3:04: e4:d6:b0:21:29:0a:50:79:b1:f4:c6:95:70:47:2a:1d:91:6b: 69:4c:e8:2a:c5:4b:6e:a2:1c:5f:75:10:5a:8d:02:24:24:54: 26:09:5b:82:9c:65:dc:42:66:83:ae:d6:fd:f2:db:47:5b:22: 40:52:77:51:62:5f:18:00:6b:6b:f9:c5:e6:e5:8b:7e:6e:38: 6f:d6:6e:8c:b8:63:43:b2:03:ab:64:9f:84:8a:5a:eb:86:1a: a3:4d:21:75:e7:2d:ab:15:41:d6:86:29:4b:9b:17:86:6a:1b: fb:46:02:f6:05:be:56:26:e1:91:11:c6:e9:97:c3:e2:2e:70: b2:3a:8b:64:3b:7b:1a:95:97:26:a3:b3:86:8e:99:19:3e:cc: 84:2e:82:cd:46:11:64:58:30:84:b2:a5:9b:c0:6a:78:6c:f2: bc:2f:42:b9 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUW6ufewqjbsyFVNj+TVccJX8IjxgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yMzA3MzEwMDAwMDRaFw0yNDA3MjkwMDA1MDRaMDMxMTAvBgNV BAMTKEM1M0IwQUM1N0VGODNERDY4QTFBNEY3NTEzQUQwMUMyMDRFNTA2NEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0ltxS8sNIl43S0E5U7H7yQyq6 1YCi8T0U9pJnaug+Wr+bFWIwWuVNvFXgXq6acUrcKtItmzU0/fbqltqDTrZP3rBv EfFY2SEBvW5+PNW7589Ew9IUJ7XZH7rlibXmB3pFFK+ohIf0Eb+MA8ul5h9/FUaB 1l0Ka2sXUcYIi1rM2nDK8AdhJfttCwO6nR/VHKVCICswviql567ItidGSHT2ruuc UQW1+2tHt2vWWyM/hhyzh1p7NI9IEOcbgwAIGsAvJfPwRriPZUHAduiPe3BE3oAm AL7ifTcenOb7Oi/uPQWK6pGVabkPLjQUJBFn5AJdFgogFMc5McsJhJLprfDVAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUxTsKxX74PdaKGk91E60BwgTlBk8wHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMyMzQzMDMyM2E2NjMwMzgzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMzMzgzMTM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAvCAAAAwDQYJKoZI hvcNAQELBQADggEBAF/4lPAfyXl8BBMd3+knIKNy0otB1yBqbgQhdyoTc4i/oPwe xnRKH9RWNiwWmhUY66hIirNh/OmjjMSO06xmfsFbLKLTqUPVWfORBZFPVOceAnL1 H3h1JI7TBOTWsCEpClB5sfTGlXBHKh2Ra2lM6CrFS26iHF91EFqNAiQkVCYJW4Kc ZdxCZoOu1v3y20dbIkBSd1FiXxgAa2v5xebli35uOG/Wboy4Y0OyA6tkn4SKWuuG GqNNIXXnLasVQdaGKUubF4ZqG/tGAvYFvlYm4ZERxumXw+IucLI6i2Q7exqVlyaj s4aOmRk+zIQugs1GEWRYMISypZvAanhs8rwvQrk= -----END CERTIFICATE-----Generated at Tue Apr 23 18:27:33 2024 by rpki-client on console-fra.rpki-client.org