$ rpki-client -vvf repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/323430343a366338303a3a2f33322d3438203d3e20313334363538.roa File: 323430343a366338303a3a2f33322d3438203d3e20313334363538.roa (raw, json) Hash identifier: F+H/eFlyZOnBcdQ2FT7kTjPg5M0qhRxJ4P7IISkNLn0= Subject key identifier: EB:1D:EA:2F:02:59:1F:F1:73:13:83:8B:6E:02:9E:84:D4:94:6B:D2 Certificate issuer: /CN=B11E5C9B4E322460FD701387F25B9EAEFE67C3EC Certificate serial: 6F721E3D754CA20029676F1725E2E4A58F9EFC04 Authority key identifier: B1:1E:5C:9B:4E:32:24:60:FD:70:13:87:F2:5B:9E:AE:FE:67:C3:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/323430343a366338303a3a2f33322d3438203d3e20313334363538.roa Signing time: Fri 20 Oct 2023 18:00:00 +0000 ROA not before: Fri 20 Oct 2023 17:55:00 +0000 ROA not after: Fri 18 Oct 2024 18:00:00 +0000 asID: 134658 IP address blocks: 2404:6c80::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.crl rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:72:1e:3d:75:4c:a2:00:29:67:6f:17:25:e2:e4:a5:8f:9e:fc:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B11E5C9B4E322460FD701387F25B9EAEFE67C3EC Validity Not Before: Oct 20 17:55:00 2023 GMT Not After : Oct 18 18:00:00 2024 GMT Subject: CN=EB1DEA2F02591FF17313838B6E029E84D4946BD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9a:ed:f7:e7:c3:c7:e6:d0:82:0f:63:62:b6: 09:cb:bc:f0:21:40:da:b4:d1:06:b1:68:b1:99:89: 27:ed:6e:58:a6:d0:3c:fe:f6:24:d5:39:4d:d7:f3: 9d:25:cd:26:05:cf:2f:fa:37:3e:ef:fd:12:0f:2d: 9c:cf:71:7e:ab:92:1f:f9:9a:a5:d3:c2:ec:5c:3b: 7c:51:8b:d8:05:ad:45:7b:cd:af:74:d6:6f:5a:f1: 37:8a:46:7d:c6:f3:bd:b6:d2:fc:cb:a2:9c:a3:fc: 1d:8f:09:96:06:bd:bb:f9:eb:92:19:5c:ca:90:e8: b0:5a:9c:4c:5b:cc:69:65:f7:b6:66:18:d7:6a:c6: bb:4e:82:fd:48:cc:d9:a2:21:47:ae:14:ec:6a:c0: a6:04:38:05:c2:f7:2e:75:a2:0e:03:b9:a3:a0:8b: c1:81:9c:25:43:b7:37:7d:cd:99:f6:28:39:31:12: 2c:26:45:31:7e:ee:ba:3a:6f:13:4a:15:c2:a6:95: c4:fe:dc:f4:6c:a7:27:4a:15:8a:b2:bb:88:0b:82: f4:11:75:5b:b3:8e:7d:86:1d:08:fc:a5:60:eb:51: 39:45:a9:ff:af:84:ab:09:9d:89:b2:d7:e8:2f:cf: 4c:03:4b:83:2e:8b:1c:3e:eb:ae:d5:b3:95:3d:b0: 38:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:1D:EA:2F:02:59:1F:F1:73:13:83:8B:6E:02:9E:84:D4:94:6B:D2 X509v3 Authority Key Identifier: keyid:B1:1E:5C:9B:4E:32:24:60:FD:70:13:87:F2:5B:9E:AE:FE:67:C3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/323430343a366338303a3a2f33322d3438203d3e20313334363538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:6c80::/32 Signature Algorithm: sha256WithRSAEncryption 30:81:c7:87:38:4d:47:fa:b6:a9:e6:eb:da:09:e9:51:d7:81: 29:ba:b7:ff:b8:52:6e:42:66:cb:04:4e:42:6d:2b:38:aa:a9: df:af:39:ab:7b:11:48:f0:0d:cd:ad:51:d7:b0:3e:9d:54:58: a4:40:1f:f8:af:1b:89:d2:3c:44:45:1c:54:f2:ef:cd:f5:81: 19:61:ac:74:d4:b6:dc:eb:1a:82:51:09:9c:9a:50:de:15:c0: 0a:e8:fa:bb:77:f6:99:8f:3f:28:2c:6c:6d:df:cd:41:7f:9b: 90:a9:43:8e:87:09:4c:71:d9:a2:6a:e5:fc:ea:5b:0b:1d:95: 85:fa:f2:a3:1a:87:70:c7:b8:9b:36:91:59:82:30:bf:1b:e6: 4a:1f:e7:c6:73:9b:5d:6d:00:f1:b7:09:1d:0c:ff:1d:34:52: c5:4b:d6:13:14:9b:ad:12:28:50:0d:d3:77:71:c8:32:35:1a: e8:70:66:6e:97:7c:d9:f4:c0:52:e0:dc:82:7c:c1:19:ec:b7: 38:d7:43:4a:21:12:bb:6d:78:fa:06:2d:90:fc:31:82:6e:89: 60:90:3b:fa:cf:fd:bf:76:c4:aa:9e:87:ba:35:f7:b7:25:95: bb:2f:e1:53:23:38:40:2d:dc:23:5b:e5:96:12:a9:c6:da:eb: f5:b8:d7:93 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUb3IePXVMogApZ28XJeLkpY+e/AQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjExRTVDOUI0RTMyMjQ2MEZENzAxMzg3RjI1QjlFQUVG RTY3QzNFQzAeFw0yMzEwMjAxNzU1MDBaFw0yNDEwMTgxODAwMDBaMDMxMTAvBgNV BAMTKEVCMURFQTJGMDI1OTFGRjE3MzEzODM4QjZFMDI5RTg0RDQ5NDZCRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9mu3358PH5tCCD2NitgnLvPAh QNq00QaxaLGZiSftblim0Dz+9iTVOU3X850lzSYFzy/6Nz7v/RIPLZzPcX6rkh/5 mqXTwuxcO3xRi9gFrUV7za901m9a8TeKRn3G87220vzLopyj/B2PCZYGvbv565IZ XMqQ6LBanExbzGll97ZmGNdqxrtOgv1IzNmiIUeuFOxqwKYEOAXC9y51og4DuaOg i8GBnCVDtzd9zZn2KDkxEiwmRTF+7ro6bxNKFcKmlcT+3PRspydKFYqyu4gLgvQR dVuzjn2GHQj8pWDrUTlFqf+vhKsJnYmy1+gvz0wDS4Muixw+667Vs5U9sDjFAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU6x3qLwJZH/FzE4OLbgKehNSUa9IwHwYDVR0j BBgwFoAUsR5cm04yJGD9cBOH8luerv5nw+wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDQ4NzM2MC04NzM1LTQxZDctOTdhOC1kYmIzNGQ3OWVmZjQvMC9CMTFFNUM5QjRF MzIyNDYwRkQ3MDEzODdGMjVCOUVBRUZFNjdDM0VDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjExRTVDOUI0RTMyMjQ2MEZENzAxMzg3RjI1QjlFQUVGRTY3 QzNFQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkNDg3MzYwLTg3MzUtNDFkNy05 N2E4LWRiYjM0ZDc5ZWZmNC8wLzMyMzQzMDM0M2EzNjYzMzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzNDM2MzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQEbIAwDQYJKoZI hvcNAQELBQADggEBADCBx4c4TUf6tqnm69oJ6VHXgSm6t/+4Um5CZssETkJtKziq qd+vOat7EUjwDc2tUdewPp1UWKRAH/ivG4nSPERFHFTy7831gRlhrHTUttzrGoJR CZyaUN4VwAro+rt39pmPPygsbG3fzUF/m5CpQ46HCUxx2aJq5fzqWwsdlYX68qMa h3DHuJs2kVmCML8b5kof58Zzm11tAPG3CR0M/x00UsVL1hMUm60SKFAN03dxyDI1 GuhwZm6XfNn0wFLg3IJ8wRnstzjXQ0ohErttePoGLZD8MYJuiWCQO/rP/b92xKqe h7o197cllbsv4VMjOEAt3CNb5ZYSqcba6/W415M= -----END CERTIFICATE-----Generated at Sun Apr 28 03:09:21 2024 by rpki-client on console-ams.rpki-client.org