$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a35323a3a2f34382d3438203d3e20313339393439.roa File: 323430353a616163303a35323a3a2f34382d3438203d3e20313339393439.roa (raw, json) Hash identifier: IW7O+2Tw5NxPr0dwMjJyQztZ0KiVktt2MlC1m7oQyjY= Subject key identifier: B4:21:5C:40:6E:8D:E3:93:13:5D:BD:35:12:67:28:22:B5:19:9D:FB Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 0B6C228FC8E919008A26C4D30F79F1FF79434A47 Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a35323a3a2f34382d3438203d3e20313339393439.roa Signing time: Mon 31 Jul 2023 00:03:43 +0000 ROA not before: Sun 30 Jul 2023 23:58:43 +0000 ROA not after: Mon 29 Jul 2024 00:03:43 +0000 asID: 139949 IP address blocks: 2405:aac0:52::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Apr 2024 04:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:6c:22:8f:c8:e9:19:00:8a:26:c4:d3:0f:79:f1:ff:79:43:4a:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Jul 30 23:58:43 2023 GMT Not After : Jul 29 00:03:43 2024 GMT Subject: CN=B4215C406E8DE393135DBD3512672822B5199DFB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c3:68:12:f1:ac:44:fc:1c:0f:a0:23:10:41: b0:43:44:62:8d:49:2c:b4:b2:90:88:cd:6e:c5:d9: 9a:d2:03:48:f3:f3:73:fa:b4:69:df:a3:21:e2:0f: ce:59:c4:e6:20:56:bb:65:94:dc:54:6c:57:73:67: ea:1d:fc:9d:26:f2:a8:4c:d2:36:d4:93:1d:5f:93: 82:8d:03:53:c2:0c:fa:73:d3:8d:8c:1e:48:db:cf: f0:05:67:91:a0:a7:a0:1b:7a:3c:4d:11:0c:2c:c0: 24:52:fb:96:b9:87:e7:e9:77:33:df:cd:f8:c6:1f: 60:51:e6:30:69:70:17:cd:ab:0d:67:30:da:42:d1: ab:77:d3:e0:97:6a:e9:39:c2:a4:97:55:62:85:b5: b7:fa:20:d4:55:66:a0:27:21:cc:27:6f:ac:98:96: 41:79:f9:c8:2b:e3:1b:09:60:cc:80:f4:3d:01:9f: a0:63:6f:0c:87:12:13:ed:cf:af:f3:18:05:a0:f4: 84:e9:00:81:db:fe:e5:40:9c:cb:5e:35:4a:76:4c: 6e:4a:ff:02:85:75:1f:dc:23:9d:21:2a:54:0e:42: 8b:21:73:90:d2:23:3d:bf:ff:09:34:88:68:6d:71: 6d:f9:40:0a:87:eb:8b:d3:b6:3c:23:f9:0a:f1:fa: 5d:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:21:5C:40:6E:8D:E3:93:13:5D:BD:35:12:67:28:22:B5:19:9D:FB X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a35323a3a2f34382d3438203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:52::/48 Signature Algorithm: sha256WithRSAEncryption be:cc:1f:25:e8:46:30:e7:34:20:9f:b0:d6:e9:25:91:a7:85: 7e:b7:c6:ab:17:a6:16:d7:78:96:2c:1e:3c:12:ee:da:3b:4e: 09:52:89:80:05:b5:96:dc:bd:4f:a9:fc:17:43:56:d3:54:bd: 72:e5:c9:c8:91:8e:12:ed:88:1f:82:9c:88:12:60:a6:6b:02: 49:91:1c:cb:19:b9:7d:f6:fc:24:cc:02:e0:ff:f7:a0:fa:20: c1:49:b9:ca:a5:7c:46:62:83:84:ce:68:a4:7f:4a:39:61:d7: 35:52:25:88:54:fd:10:fe:99:23:1b:b9:4e:03:3e:ee:ab:99: 1c:f1:ce:9f:84:b3:77:38:90:39:24:1c:57:c8:a3:0c:b1:0a: ff:5b:c6:44:09:21:ad:e9:09:e2:a1:ac:1c:c1:95:cd:c9:35: 18:8f:dc:5d:56:ad:18:ef:0f:2f:5c:ee:ad:1f:de:ab:12:f1: 9e:85:27:b0:53:20:e1:ec:89:73:27:19:e5:cb:b0:76:42:13: 00:5a:6e:64:16:8e:d5:ac:b7:ef:f9:20:8d:53:f2:bb:63:c4: 9b:61:84:aa:b1:67:e5:f4:93:db:46:d8:7a:4e:ff:d9:32:b8: da:d1:44:18:9d:95:19:fa:57:a4:f8:2e:d1:5c:4e:6c:6d:fb: 91:8f:68:1c -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUC2wij8jpGQCKJsTTD3nx/3lDSkcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yMzA3MzAyMzU4NDNaFw0yNDA3MjkwMDAzNDNaMDMxMTAvBgNV BAMTKEI0MjE1QzQwNkU4REUzOTMxMzVEQkQzNTEyNjcyODIyQjUxOTlERkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2w2gS8axE/BwPoCMQQbBDRGKN SSy0spCIzW7F2ZrSA0jz83P6tGnfoyHiD85ZxOYgVrtllNxUbFdzZ+od/J0m8qhM 0jbUkx1fk4KNA1PCDPpz042MHkjbz/AFZ5Ggp6AbejxNEQwswCRS+5a5h+fpdzPf zfjGH2BR5jBpcBfNqw1nMNpC0at30+CXauk5wqSXVWKFtbf6INRVZqAnIcwnb6yY lkF5+cgr4xsJYMyA9D0Bn6BjbwyHEhPtz6/zGAWg9ITpAIHb/uVAnMteNUp2TG5K /wKFdR/cI50hKlQOQoshc5DSIz2//wk0iGhtcW35QAqH64vTtjwj+Qrx+l2pAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUtCFcQG6N45MTXb01EmcoIrUZnfswHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzUzMjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzOTM5MzQzOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQFqsAA UjANBgkqhkiG9w0BAQsFAAOCAQEAvswfJehGMOc0IJ+w1uklkaeFfrfGqxemFtd4 liwePBLu2jtOCVKJgAW1lty9T6n8F0NW01S9cuXJyJGOEu2IH4KciBJgpmsCSZEc yxm5ffb8JMwC4P/3oPogwUm5yqV8RmKDhM5opH9KOWHXNVIliFT9EP6ZIxu5TgM+ 7quZHPHOn4SzdziQOSQcV8ijDLEK/1vGRAkhrekJ4qGsHMGVzck1GI/cXVatGO8P L1zurR/eqxLxnoUnsFMg4eyJcycZ5cuwdkITAFpuZBaO1ay37/kgjVPyu2PEm2GE qrFn5fST20bYek7/2TK42tFEGJ2VGfpXpPgu0VxObG37kY9oHA== -----END CERTIFICATE-----Generated at Wed Apr 17 22:11:32 2024 by rpki-client on console-ams.rpki-client.org