$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a623a3a2f34382d3438203d3e203338313530.roa File: 323430323a663038303a623a3a2f34382d3438203d3e203338313530.roa (raw, json) Hash identifier: fGBhI0T0qIl2Hev094tCJVa6CfRImeM6fsB8dTfex64= Subject key identifier: 39:17:1B:88:F5:4D:FE:46:8A:7C:85:98:19:ED:31:26:0B:4A:D2:B1 Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 7E3AC85EF9CCDD3E5BA3EB064BA8847018B74AC3 Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a623a3a2f34382d3438203d3e203338313530.roa Signing time: Mon 31 Jul 2023 00:05:05 +0000 ROA not before: Mon 31 Jul 2023 00:00:05 +0000 ROA not after: Mon 29 Jul 2024 00:05:05 +0000 asID: 38150 IP address blocks: 2402:f080:b::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Apr 2024 19:36:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:3a:c8:5e:f9:cc:dd:3e:5b:a3:eb:06:4b:a8:84:70:18:b7:4a:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jul 31 00:00:05 2023 GMT Not After : Jul 29 00:05:05 2024 GMT Subject: CN=39171B88F54DFE468A7C859819ED31260B4AD2B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:13:89:83:4d:3e:13:b8:57:7e:16:be:37:52: e0:15:78:e9:53:4a:43:89:a4:29:30:49:2e:a7:71: 79:88:ca:5c:06:52:e7:62:ed:59:b6:57:1d:6c:8b: 3b:59:64:bf:e4:15:34:b4:30:56:50:4c:3c:84:fd: 54:4b:de:e6:35:5f:ce:71:b7:25:a6:78:99:82:36: 7a:77:12:3d:8e:10:8a:ae:29:6d:6b:91:78:a4:62: 9b:1c:19:02:59:c2:18:6b:26:23:4a:d7:59:a1:58: d6:2a:27:f2:1d:ca:46:45:f6:d2:fb:e5:5d:07:f2: e6:23:ae:ab:c9:8e:a9:85:6f:44:61:a4:48:b5:c0: b6:7a:ab:15:b5:50:1e:9a:97:7d:ef:1c:09:88:98: 4f:30:f6:95:ea:0f:d8:e8:d0:c8:c8:a7:6b:df:f0: 8a:80:be:f0:0e:c0:be:02:7e:62:cf:29:ef:a4:31: c8:df:e8:f0:53:d0:16:8d:95:67:4d:13:75:14:06: 67:14:0b:50:2d:d0:da:22:e4:d0:b1:c1:bf:3d:03: c0:54:61:9b:1f:6c:be:98:18:df:f1:66:bb:10:f3: 2d:7e:6f:df:99:08:29:f6:06:ca:d8:9d:02:52:d3: a3:b0:a8:d4:f0:14:3e:e9:06:e5:fd:a1:74:d7:c1: a3:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:17:1B:88:F5:4D:FE:46:8A:7C:85:98:19:ED:31:26:0B:4A:D2:B1 X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a623a3a2f34382d3438203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:f080:b::/48 Signature Algorithm: sha256WithRSAEncryption a9:46:90:f4:7c:8a:71:d1:67:a5:f6:4b:96:8d:08:32:46:5f: 45:93:1c:75:4d:02:58:4e:9b:b9:5c:2d:c2:cc:e9:7c:12:56: a3:d5:91:03:8b:6b:14:4b:85:42:c4:ae:25:29:a0:ac:07:fc: e1:56:a4:60:be:cd:02:43:97:6a:67:6c:d0:58:d8:9f:16:bf: 7d:90:73:b1:1d:cb:6b:6c:1e:e8:20:5a:d6:6f:2a:cb:67:53: 6b:3b:ab:0d:71:a8:96:d4:2c:61:4f:00:0f:36:c8:79:0b:d7: df:3d:3e:58:c7:56:c2:11:f3:a5:d0:df:34:68:98:4d:00:58: 67:f2:9f:4b:e4:72:ff:3e:06:6e:9e:5c:2c:3e:22:5f:97:95: b1:43:cc:8c:2e:8a:99:34:e3:0d:0e:09:fb:84:c3:3f:7e:50: c7:48:8a:4a:7e:fa:f8:d7:0f:00:ef:65:26:d7:18:f8:65:0c: 28:0c:0f:af:98:26:a5:6e:ed:05:d1:1b:fa:fc:05:14:f9:d4: 2f:e3:78:47:40:ae:cb:44:9f:26:c1:4c:5e:ee:86:6f:bc:6c: f9:95:f6:e9:bb:7d:5b:bb:e1:2e:3f:4b:d5:58:f5:e7:e2:4a: c0:11:73:7e:90:15:93:fe:2d:36:64:8c:5c:56:4f:60:5d:15: 7a:8d:41:8b -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUfjrIXvnM3T5bo+sGS6iEcBi3SsMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yMzA3MzEwMDAwMDVaFw0yNDA3MjkwMDA1MDVaMDMxMTAvBgNV BAMTKDM5MTcxQjg4RjU0REZFNDY4QTdDODU5ODE5RUQzMTI2MEI0QUQyQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5E4mDTT4TuFd+Fr43UuAVeOlT SkOJpCkwSS6ncXmIylwGUudi7Vm2Vx1siztZZL/kFTS0MFZQTDyE/VRL3uY1X85x tyWmeJmCNnp3Ej2OEIquKW1rkXikYpscGQJZwhhrJiNK11mhWNYqJ/IdykZF9tL7 5V0H8uYjrqvJjqmFb0RhpEi1wLZ6qxW1UB6al33vHAmImE8w9pXqD9jo0MjIp2vf 8IqAvvAOwL4CfmLPKe+kMcjf6PBT0BaNlWdNE3UUBmcUC1At0Noi5NCxwb89A8BU YZsfbL6YGN/xZrsQ8y1+b9+ZCCn2BsrYnQJS06OwqNTwFD7pBuX9oXTXwaPbAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUORcbiPVN/kaKfIWYGe0xJgtK0rEwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMyMzQzMDMyM2E2NjMwMzgzMDNhNjIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJALwgAALMA0G CSqGSIb3DQEBCwUAA4IBAQCpRpD0fIpx0Wel9kuWjQgyRl9Fkxx1TQJYTpu5XC3C zOl8Elaj1ZEDi2sUS4VCxK4lKaCsB/zhVqRgvs0CQ5dqZ2zQWNifFr99kHOxHctr bB7oIFrWbyrLZ1NrO6sNcaiW1CxhTwAPNsh5C9ffPT5Yx1bCEfOl0N80aJhNAFhn 8p9L5HL/PgZunlwsPiJfl5WxQ8yMLoqZNOMNDgn7hMM/flDHSIpKfvr41w8A72Um 1xj4ZQwoDA+vmCalbu0F0Rv6/AUU+dQv43hHQK7LRJ8mwUxe7oZvvGz5lfbpu31b u+EuP0vVWPXn4krAEXN+kBWT/i02ZIxcVk9gXRV6jUGL -----END CERTIFICATE-----Generated at Thu Apr 18 14:06:39 2024 by rpki-client on console-fra.rpki-client.org