$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3232343a3a2f34382d3438203d3e20313339393439.roa File: 323430353a616163303a3232343a3a2f34382d3438203d3e20313339393439.roa (raw, json) Hash identifier: +x4T5Aw7pz8Jg2nuo2Bb1xBgv6lfKMlvTf0/cAvrX04= Subject key identifier: 36:84:A5:DD:A4:FD:74:B2:ED:D6:9A:5D:75:1B:5A:F8:C9:65:33:6D Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 04A7D7972A2C8DB1FC8B6318FB9CAC13CFB5B698 Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3232343a3a2f34382d3438203d3e20313339393439.roa Signing time: Wed 06 Sep 2023 07:00:00 +0000 ROA not before: Wed 06 Sep 2023 06:55:00 +0000 ROA not after: Wed 04 Sep 2024 07:00:00 +0000 asID: 139949 IP address blocks: 2405:aac0:224::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 16:36:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:a7:d7:97:2a:2c:8d:b1:fc:8b:63:18:fb:9c:ac:13:cf:b5:b6:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Sep 6 06:55:00 2023 GMT Not After : Sep 4 07:00:00 2024 GMT Subject: CN=3684A5DDA4FD74B2EDD69A5D751B5AF8C965336D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:2b:f9:b2:cc:6c:a7:8e:fe:b5:47:45:92:c6: 9e:6c:84:d6:d0:e2:ef:14:92:33:51:3b:61:28:e6: 9a:9b:91:db:5f:0e:69:e0:5d:fe:cf:33:7e:d1:a7: b7:7d:53:6b:f2:25:1b:6d:4c:38:43:d1:56:25:8e: 60:89:57:15:37:40:6c:14:d7:a7:f7:26:46:76:51: a4:af:ce:51:65:ae:24:55:a4:7e:6e:93:48:98:e2: 50:f7:0a:43:f9:a7:78:b2:d4:5a:ad:3b:fc:1a:b5: 57:c5:22:e8:7b:a1:60:11:87:87:05:54:a7:d6:ea: 22:b7:76:9d:f4:02:ff:b6:be:75:97:1b:5e:70:f1: ba:7e:08:07:f0:0c:67:33:06:7d:9b:72:f5:bb:29: 97:d2:f0:31:9b:ff:05:64:00:c3:6f:a4:37:34:1d: 50:9a:86:b9:ff:2a:b8:24:75:e3:38:82:9e:0a:59: 6e:ae:41:0b:ca:04:61:b4:05:91:09:f8:28:71:f0: 20:a2:72:88:c2:03:45:4b:70:9d:c9:8b:e8:42:fd: 17:ea:cc:69:7f:e4:08:02:c0:71:99:16:e6:96:f8: 4c:69:02:76:c8:3a:dc:e7:9d:9d:2a:60:95:be:a1: aa:28:d7:66:cd:50:fd:7b:54:1f:de:4e:1c:ad:48: 67:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:84:A5:DD:A4:FD:74:B2:ED:D6:9A:5D:75:1B:5A:F8:C9:65:33:6D X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3232343a3a2f34382d3438203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:224::/48 Signature Algorithm: sha256WithRSAEncryption 9b:f3:f8:0f:5c:83:b6:a4:11:a1:19:48:93:ad:ff:1a:78:20: f0:78:84:80:20:48:fe:75:aa:36:57:2c:de:c7:0e:88:2e:d1: 7d:36:42:14:22:83:bc:88:c3:76:88:8d:b9:d5:dd:a2:f2:d6: d3:18:74:50:20:a6:30:8e:3e:d2:60:71:91:5c:8d:4a:bf:1f: e4:1e:c0:8c:3c:33:b2:91:83:42:e6:0a:59:68:e5:bf:53:21: 77:5b:99:b1:e1:08:99:b5:27:9b:d7:24:b9:f5:eb:d9:37:32: 00:06:7c:bd:5a:fc:f9:8d:c0:91:79:7b:f2:fd:f4:6d:a9:d4: 40:36:26:68:40:d6:cc:c4:a5:20:7e:c6:3e:b5:be:70:d9:15: bf:37:aa:a4:7c:8e:5c:1e:37:c7:58:44:4b:4a:6a:19:31:ff: 2d:ed:dd:39:83:6d:5e:cd:60:ac:b1:8f:05:a3:a1:e7:a4:a2: 97:fc:91:98:09:32:cc:b7:1e:07:32:77:19:6f:2c:ed:ac:c5: 69:91:e2:76:9f:03:2b:35:91:77:4e:c2:fd:c4:98:88:76:e5: b2:19:a5:63:7e:fb:39:c4:3d:b9:40:30:17:2e:0f:b6:60:d9: 3a:6c:a8:cf:c3:51:e7:6c:39:92:7b:48:42:57:92:15:1d:44: 9c:d7:f8:de -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUBKfXlyosjbH8i2MY+5ysE8+1tpgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yMzA5MDYwNjU1MDBaFw0yNDA5MDQwNzAwMDBaMDMxMTAvBgNV BAMTKDM2ODRBNUREQTRGRDc0QjJFREQ2OUE1RDc1MUI1QUY4Qzk2NTMzNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKK/myzGynjv61R0WSxp5shNbQ 4u8UkjNRO2Eo5pqbkdtfDmngXf7PM37Rp7d9U2vyJRttTDhD0VYljmCJVxU3QGwU 16f3JkZ2UaSvzlFlriRVpH5uk0iY4lD3CkP5p3iy1FqtO/watVfFIuh7oWARh4cF VKfW6iK3dp30Av+2vnWXG15w8bp+CAfwDGczBn2bcvW7KZfS8DGb/wVkAMNvpDc0 HVCahrn/KrgkdeM4gp4KWW6uQQvKBGG0BZEJ+Chx8CCicojCA0VLcJ3Ji+hC/Rfq zGl/5AgCwHGZFuaW+ExpAnbIOtznnZ0qYJW+oaoo12bNUP17VB/eThytSGf5AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUNoSl3aT9dLLt1ppddRta+MllM20wHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzIzMjM0M2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzkzNDM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWq wAIkMA0GCSqGSIb3DQEBCwUAA4IBAQCb8/gPXIO2pBGhGUiTrf8aeCDweISAIEj+ dao2Vyzexw6ILtF9NkIUIoO8iMN2iI251d2i8tbTGHRQIKYwjj7SYHGRXI1Kvx/k HsCMPDOykYNC5gpZaOW/UyF3W5mx4QiZtSeb1yS59evZNzIABny9Wvz5jcCReXvy /fRtqdRANiZoQNbMxKUgfsY+tb5w2RW/N6qkfI5cHjfHWERLSmoZMf8t7d05g21e zWCssY8Fo6HnpKKX/JGYCTLMtx4HMncZbyztrMVpkeJ2nwMrNZF3TsL9xJiIduWy GaVjfvs5xD25QDAXLg+2YNk6bKjPw1HnbDmSe0hCV5IVHUSc1/je -----END CERTIFICATE-----Generated at Tue Apr 23 18:35:58 2024 by rpki-client on console-ams.rpki-client.org