$ rpki-client -vvf repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/323430373a373263303a3a2f33322d3438203d3e203538383230.roa File: 323430373a373263303a3a2f33322d3438203d3e203538383230.roa (raw, json) Hash identifier: VHXopS3HYzIHyLvT0GSTkaAyyiVF90ojgUYQl7hfEfY= Subject key identifier: C6:F6:A9:F2:22:26:BC:CB:1F:87:60:1D:FD:C2:8D:CD:8F:CA:3E:03 Certificate issuer: /CN=C1C0233DC07302E86D114AB772AB6566ED7F5FBB Certificate serial: 45790B3C4482368DF0BE8C10B9BB53C2A0437A20 Authority key identifier: C1:C0:23:3D:C0:73:02:E8:6D:11:4A:B7:72:AB:65:66:ED:7F:5F:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/323430373a373263303a3a2f33322d3438203d3e203538383230.roa Signing time: Thu 14 Mar 2024 16:01:15 +0000 ROA not before: Thu 14 Mar 2024 15:56:15 +0000 ROA not after: Thu 13 Mar 2025 16:01:15 +0000 asID: 58820 IP address blocks: 2407:72c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.crl rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 12:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:79:0b:3c:44:82:36:8d:f0:be:8c:10:b9:bb:53:c2:a0:43:7a:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1C0233DC07302E86D114AB772AB6566ED7F5FBB Validity Not Before: Mar 14 15:56:15 2024 GMT Not After : Mar 13 16:01:15 2025 GMT Subject: CN=C6F6A9F22226BCCB1F87601DFDC28DCD8FCA3E03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:df:2c:ce:ca:e3:8d:df:55:81:bc:bf:ba:78: d0:f5:81:e4:06:2d:44:d5:92:11:8e:a6:61:69:33: ae:e2:96:49:26:c3:81:03:c4:ad:01:9d:20:ce:47: 90:98:b0:c7:ab:f5:eb:6f:bf:c6:fb:e2:4b:64:2d: 8a:6a:f9:8a:10:f8:d5:b3:6a:8d:53:73:2e:39:06: 74:71:42:dd:e6:91:b1:5a:5b:16:f2:a5:b4:e9:a7: 3e:2e:c8:ca:f2:85:7c:dd:a1:a5:ee:88:0c:39:93: b7:ea:4c:4a:04:0f:f8:a4:71:66:58:42:96:63:2b: 26:2b:e6:04:14:d7:cb:d2:bd:a9:b5:58:8d:67:b8: 4f:02:70:58:c4:79:0c:ce:4f:5b:f2:31:1a:d7:f9: fc:5a:5c:8c:a8:ad:24:71:21:35:ff:9f:3b:8e:f3: f6:35:aa:7f:0f:b4:ba:e3:e9:91:81:58:b0:b4:89: a1:ae:9e:16:c6:93:2d:94:b3:e7:93:62:ca:91:54: da:9a:af:6d:3c:ce:30:96:17:3a:c6:4c:9d:fb:fe: 4f:f3:54:37:13:47:90:41:76:4e:d9:05:57:cc:d6: 67:eb:98:14:5a:7d:ed:24:bf:b8:ce:0f:7e:f0:37: 73:34:ed:43:fa:9f:ea:d9:c8:ef:9e:e4:ec:12:2b: b0:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:F6:A9:F2:22:26:BC:CB:1F:87:60:1D:FD:C2:8D:CD:8F:CA:3E:03 X509v3 Authority Key Identifier: keyid:C1:C0:23:3D:C0:73:02:E8:6D:11:4A:B7:72:AB:65:66:ED:7F:5F:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/323430373a373263303a3a2f33322d3438203d3e203538383230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:72c0::/32 Signature Algorithm: sha256WithRSAEncryption 5a:46:45:f5:7c:cc:c2:90:69:71:b7:10:da:6a:f4:b7:33:db: f9:fd:48:26:f7:ed:1f:01:8f:52:63:be:d3:62:76:f0:cd:01: 39:62:aa:ee:20:11:aa:4c:c4:ca:19:69:bf:bd:d9:b4:b1:bf: 82:ad:71:a7:9d:b6:0b:0d:10:a1:9b:cb:24:42:87:1c:b1:8a: 18:e2:0a:b6:1a:72:36:33:e1:de:de:52:a1:af:22:e3:77:db: 7f:d3:94:42:9a:a9:e0:59:d6:b6:ad:6b:39:6f:10:ec:8f:ba: 2f:28:39:f3:ee:d6:c2:c2:9a:e1:92:f8:4f:0b:2d:f6:fc:46: 79:d6:df:b3:32:c5:dd:c3:2c:13:76:1e:36:d4:b2:e2:c7:a7: f0:61:ac:a8:3c:ce:18:a6:3e:35:01:1e:9b:ef:34:c1:2d:50: 8b:3d:a9:92:03:9c:07:3f:b9:6c:3d:ec:1c:65:74:4c:6a:bd: 33:11:1b:e4:d8:91:bc:fa:d4:6a:b1:35:08:bb:cd:2f:26:42: a4:2e:a8:b7:43:17:6a:dc:4c:8d:57:16:a2:be:5b:be:20:b0: 01:ae:97:d9:65:44:2a:5a:60:32:ab:77:77:c6:05:cf:8f:69: eb:8a:39:16:9f:9c:ed:4c:03:d3:25:e8:10:ea:72:46:1f:7b: 98:6f:c4:f9 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIURXkLPESCNo3wvowQubtTwqBDeiAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFDMDIzM0RDMDczMDJFODZEMTE0QUI3NzJBQjY1NjZF RDdGNUZCQjAeFw0yNDAzMTQxNTU2MTVaFw0yNTAzMTMxNjAxMTVaMDMxMTAvBgNV BAMTKEM2RjZBOUYyMjIyNkJDQ0IxRjg3NjAxREZEQzI4RENEOEZDQTNFMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCb3yzOyuON31WBvL+6eND1geQG LUTVkhGOpmFpM67ilkkmw4EDxK0BnSDOR5CYsMer9etvv8b74ktkLYpq+YoQ+NWz ao1Tcy45BnRxQt3mkbFaWxbypbTppz4uyMryhXzdoaXuiAw5k7fqTEoED/ikcWZY QpZjKyYr5gQU18vSvam1WI1nuE8CcFjEeQzOT1vyMRrX+fxaXIyorSRxITX/nzuO 8/Y1qn8PtLrj6ZGBWLC0iaGunhbGky2Us+eTYsqRVNqar208zjCWFzrGTJ37/k/z VDcTR5BBdk7ZBVfM1mfrmBRafe0kv7jOD37wN3M07UP6n+rZyO+e5OwSK7DrAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUxvap8iImvMsfh2Ad/cKNzY/KPgMwHwYDVR0j BBgwFoAUwcAjPcBzAuhtEUq3cqtlZu1/X7swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z OGM5YzI1Mi1mN2NhLTRkZDUtODhmNi0yMmFkZGM4OTM0YjMvMC9DMUMwMjMzREMw NzMwMkU4NkQxMTRBQjc3MkFCNjU2NkVEN0Y1RkJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzFDMDIzM0RDMDczMDJFODZEMTE0QUI3NzJBQjY1NjZFRDdG NUZCQi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4YzljMjUyLWY3Y2EtNGRkNS04 OGY2LTIyYWRkYzg5MzRiMy8wLzMyMzQzMDM3M2EzNzMyNjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM1MzgzODMyMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkB3LAMA0GCSqGSIb3 DQEBCwUAA4IBAQBaRkX1fMzCkGlxtxDaavS3M9v5/Ugm9+0fAY9SY77TYnbwzQE5 YqruIBGqTMTKGWm/vdm0sb+CrXGnnbYLDRChm8skQoccsYoY4gq2GnI2M+He3lKh ryLjd9t/05RCmqngWda2rWs5bxDsj7ovKDnz7tbCwprhkvhPCy32/EZ51t+zMsXd wywTdh421LLix6fwYayoPM4Ypj41AR6b7zTBLVCLPamSA5wHP7lsPewcZXRMar0z ERvk2JG8+tRqsTUIu80vJkKkLqi3Qxdq3EyNVxaivlu+ILABrpfZZUQqWmAyq3d3 xgXPj2nrijkWn5ztTAPTJegQ6nJGH3uYb8T5 -----END CERTIFICATE-----Generated at Sun May 5 21:18:37 2024 by rpki-client on console-ams.rpki-client.org