$ rpki-client -vvf repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/323430333a623930303a3a2f33322d3332203d3e2034333832.roa File: 323430333a623930303a3a2f33322d3332203d3e2034333832.roa (raw, json) Hash identifier: 7kOMK9uEJKdWjyQozGFQHXIHIxDvHjMXplCY09faBgY= Subject key identifier: 68:1F:57:18:08:AF:50:FC:1E:53:24:3B:F3:E3:D3:E8:B7:C9:97:B7 Certificate issuer: /CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Certificate serial: 274912D11AF1194D762C7EF87B03974F55B2E0C0 Authority key identifier: 01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/323430333a623930303a3a2f33322d3332203d3e2034333832.roa Signing time: Wed 20 Sep 2023 12:00:00 +0000 ROA not before: Wed 20 Sep 2023 11:55:00 +0000 ROA not after: Wed 18 Sep 2024 12:00:00 +0000 asID: 4382 IP address blocks: 2403:b900::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 15:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:49:12:d1:1a:f1:19:4d:76:2c:7e:f8:7b:03:97:4f:55:b2:e0:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Validity Not Before: Sep 20 11:55:00 2023 GMT Not After : Sep 18 12:00:00 2024 GMT Subject: CN=681F571808AF50FC1E53243BF3E3D3E8B7C997B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:ec:32:29:2e:01:ae:66:83:f3:a0:45:e2:49: ec:03:61:c9:4d:bc:e7:7e:58:3e:27:ea:20:3d:a6: 23:b1:9c:e3:e3:78:5d:93:84:c4:5c:c5:ca:c1:ae: c1:14:cb:e9:71:0a:04:9c:04:50:42:ff:22:b6:19: 6b:f4:ee:c6:dd:46:52:46:ea:a6:e8:3f:11:08:e7: 58:4d:60:14:59:f9:73:03:61:50:b8:51:40:fe:00: 35:7b:94:60:d2:e4:07:5b:7c:8c:14:5c:4e:3e:98: 95:19:43:6f:a2:08:41:75:00:55:06:48:80:ac:dc: 63:43:64:0f:3b:8f:c4:33:85:5a:46:5d:dd:46:c8: 5e:30:c3:51:37:81:f8:c0:90:8a:9e:c9:71:a4:5e: 74:94:0d:3a:6b:a0:90:34:b5:da:7e:f9:c9:f3:6a: 36:c7:3e:10:1a:8c:82:3a:bb:fd:83:d5:09:bf:03: ee:07:06:ec:fa:cd:b7:e3:a0:4d:ac:c0:dc:e3:a0: ac:44:c9:81:80:b6:08:74:8c:aa:c2:b0:7e:05:28: 90:c2:08:73:2c:d6:9d:e1:a4:79:a8:07:61:45:a0: 36:8e:ed:a9:b7:1b:b4:6f:b1:15:d9:c3:e5:54:34: a2:0c:a3:eb:2b:76:ba:0d:d4:86:7e:46:b2:b3:6e: 8e:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:1F:57:18:08:AF:50:FC:1E:53:24:3B:F3:E3:D3:E8:B7:C9:97:B7 X509v3 Authority Key Identifier: keyid:01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/323430333a623930303a3a2f33322d3332203d3e2034333832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b900::/32 Signature Algorithm: sha256WithRSAEncryption 24:21:a9:75:96:fa:c7:34:7e:0b:e2:1b:ee:e1:04:a8:28:99: 47:15:c3:0b:96:75:4c:d1:4e:4b:b5:d6:7b:04:59:5e:1c:5b: 7d:37:54:58:eb:d1:3c:c7:da:c9:2a:0f:15:ef:d7:77:5a:3a: 09:c4:da:9d:4f:4b:1c:74:51:c1:8e:cb:99:9e:b5:20:ea:42: 8f:32:28:25:b9:5e:b3:30:03:24:a7:7e:6f:12:99:5a:98:c3: 94:ad:15:94:ac:73:16:23:62:c3:a4:ea:fc:5c:5d:9f:22:06: ed:fb:82:e4:bb:02:d8:48:4f:82:ef:8f:40:c7:2f:1e:a0:16: fb:f5:e9:25:e6:af:d3:f4:73:88:35:66:8b:db:2e:05:8d:cf: db:26:24:da:bc:6f:61:0d:8b:9b:c6:8f:42:ef:83:8b:34:81: 4b:65:9d:70:9c:74:7d:75:5d:4e:82:f6:5c:0d:3f:6f:54:9b: 52:0b:e5:71:fc:0a:d6:38:bc:6f:b5:05:66:a8:75:39:a7:69: 31:d0:df:e8:ff:13:30:87:36:95:c0:4e:7f:0e:c0:e0:d3:54: eb:9a:35:b6:11:26:57:fd:4c:6c:19:9b:6d:e8:1e:32:ea:77: 9d:bf:df:ac:0f:39:85:c9:05:d9:ee:56:43:3a:50:4b:32:90: 72:c9:de:40 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUJ0kS0RrxGU12LH74ewOXT1Wy4MAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMx RUZEQTkzQzAeFw0yMzA5MjAxMTU1MDBaFw0yNDA5MTgxMjAwMDBaMDMxMTAvBgNV BAMTKDY4MUY1NzE4MDhBRjUwRkMxRTUzMjQzQkYzRTNEM0U4QjdDOTk3QjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD77DIpLgGuZoPzoEXiSewDYclN vOd+WD4n6iA9piOxnOPjeF2ThMRcxcrBrsEUy+lxCgScBFBC/yK2GWv07sbdRlJG 6qboPxEI51hNYBRZ+XMDYVC4UUD+ADV7lGDS5AdbfIwUXE4+mJUZQ2+iCEF1AFUG SICs3GNDZA87j8QzhVpGXd1GyF4ww1E3gfjAkIqeyXGkXnSUDTproJA0tdp++cnz ajbHPhAajII6u/2D1Qm/A+4HBuz6zbfjoE2swNzjoKxEyYGAtgh0jKrCsH4FKJDC CHMs1p3hpHmoB2FFoDaO7am3G7RvsRXZw+VUNKIMo+srdroN1IZ+RrKzbo5XAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUaB9XGAivUPweUyQ78+PT6LfJl7cwHwYDVR0j BBgwFoAUAS0vWZN/2+ZQlbnrSXHZ0x79qTwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODZiMzg4OS02OTY2LTQ1ZWYtOTA3My1hZDE0MDExYWMzYjIvMC8wMTJEMkY1OTkz N0ZEQkU2NTA5NUI5RUI0OTcxRDlEMzFFRkRBOTNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMxRUZE QTkzQy5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTg2YjM4ODktNjk2Ni00NWVmLTkw NzMtYWQxNDAxMWFjM2IyLzAvMzIzNDMwMzMzYTYyMzkzMDMwM2EzYTJmMzMzMjJk MzMzMjIwM2QzZTIwMzQzMzM4MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkA7kAMA0GCSqGSIb3DQEB CwUAA4IBAQAkIal1lvrHNH4L4hvu4QSoKJlHFcMLlnVM0U5LtdZ7BFleHFt9N1RY 69E8x9rJKg8V79d3WjoJxNqdT0scdFHBjsuZnrUg6kKPMigluV6zMAMkp35vEpla mMOUrRWUrHMWI2LDpOr8XF2fIgbt+4LkuwLYSE+C749Axy8eoBb79ekl5q/T9HOI NWaL2y4Fjc/bJiTavG9hDYubxo9C74OLNIFLZZ1wnHR9dV1OgvZcDT9vVJtSC+Vx /ArWOLxvtQVmqHU5p2kx0N/o/xMwhzaVwE5/DsDg01TrmjW2ESZX/UxsGZtt6B4y 6nedv9+sDzmFyQXZ7lZDOlBLMpByyd5A -----END CERTIFICATE-----Generated at Tue Apr 23 18:27:33 2024 by rpki-client on console-fra.rpki-client.org