$ rpki-client -vvf repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030343a3a2f34382d3438203d3e203436303235.roa File: 323430323a393830303a343030343a3a2f34382d3438203d3e203436303235.roa (raw, json) Hash identifier: FnNTNTX4d1r8BP04yFw98w2gd39EnyFK+4rPqOD5j0o= Subject key identifier: 16:52:66:A7:DD:DD:DD:11:0B:C6:0E:05:8D:9D:82:3A:B0:5D:54:21 Certificate issuer: /CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Certificate serial: 0E8D9645BAF220A69DF3594EB0D69BDF8C1A6381 Authority key identifier: FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030343a3a2f34382d3438203d3e203436303235.roa Signing time: Fri 15 Sep 2023 01:00:02 +0000 ROA not before: Fri 15 Sep 2023 00:55:02 +0000 ROA not after: Fri 13 Sep 2024 01:00:02 +0000 asID: 46025 IP address blocks: 2402:9800:4004::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 14:23:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:8d:96:45:ba:f2:20:a6:9d:f3:59:4e:b0:d6:9b:df:8c:1a:63:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Validity Not Before: Sep 15 00:55:02 2023 GMT Not After : Sep 13 01:00:02 2024 GMT Subject: CN=165266A7DDDDDD110BC60E058D9D823AB05D5421 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b5:85:bc:4a:13:7f:11:12:fb:71:0a:af:a1: 06:6a:05:5a:2b:b7:ff:42:c2:41:49:26:06:76:cc: 52:c4:d8:91:dd:71:61:ae:d6:1a:ad:3b:17:2a:2e: 3e:f8:f9:ef:ca:b2:47:1e:42:e6:28:4d:63:2c:86: 32:ee:4d:eb:55:12:6b:fa:30:78:eb:96:b7:de:c2: a7:c7:e5:39:87:b9:e4:70:44:1e:79:59:27:db:db: 33:52:f9:90:d1:31:dc:14:d4:c3:83:20:4f:9b:15: f8:b1:c1:2b:3e:d5:c6:be:0c:ea:d6:78:45:98:0c: 44:fb:e5:e6:82:3f:57:f1:f5:7b:f7:d6:ed:27:e5: 37:a5:78:16:e3:36:15:99:af:0d:c4:3b:fb:ea:a1: d8:9a:47:c2:3d:12:96:56:5d:0f:2c:1a:60:0b:bb: b7:bc:1c:8b:d3:87:38:12:0f:26:f4:9e:d6:0f:be: 61:6e:68:10:cf:86:c2:d2:36:84:53:7a:66:18:1d: d2:a5:c0:65:82:69:aa:e3:17:67:d9:72:89:ab:73: f0:5c:69:a7:5e:ee:d1:87:17:19:6c:4f:a8:a5:86: f3:14:31:0b:6e:f4:d1:fe:52:32:34:ef:56:46:38: ce:cb:68:c4:93:7f:2b:70:8d:09:d6:4d:11:05:15: 74:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:52:66:A7:DD:DD:DD:11:0B:C6:0E:05:8D:9D:82:3A:B0:5D:54:21 X509v3 Authority Key Identifier: keyid:FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030343a3a2f34382d3438203d3e203436303235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:9800:4004::/48 Signature Algorithm: sha256WithRSAEncryption 0a:47:6a:22:2c:7a:28:81:e8:45:02:e3:cc:d6:53:26:f3:66: f9:05:7e:a7:40:b6:10:59:82:ba:58:92:9a:c1:c3:1a:a0:ea: 90:22:88:0f:33:bb:ed:81:03:eb:6c:0e:42:04:cc:41:40:46: 2a:c1:47:bb:87:dc:33:49:22:03:fe:00:7b:7d:ce:92:77:86: d6:29:51:d9:f8:de:fc:db:70:ef:a7:73:21:c5:55:ef:f5:6d: da:c8:af:5c:f4:60:00:0b:26:5f:9b:4a:98:be:ea:58:5f:18: b5:82:17:23:5c:6e:41:62:bc:2a:29:d7:3b:20:c9:dd:f2:3f: b6:41:ea:0b:47:e5:93:a0:44:0a:5c:94:04:78:8b:68:4c:6d: b2:83:98:72:4c:c7:2f:3f:10:43:eb:17:2c:f5:73:5c:d0:ae: 06:3f:bf:4d:57:11:b5:75:e9:f4:2e:87:50:fc:57:fd:c4:5a: d3:bf:6b:c1:0c:67:b7:da:4d:17:a8:28:c1:26:72:27:e0:0d: 92:5a:fe:dd:9d:1f:6c:3a:b6:50:47:b5:b7:d8:cc:06:e0:18: 93:60:78:79:b3:c0:c5:62:b5:2b:44:b5:dc:21:8a:80:89:49: 73:1d:17:fd:e6:95:4c:85:59:fe:bc:19:39:52:2c:c0:c9:8a: 9b:7d:a8:36 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUDo2WRbryIKad81lOsNab34waY4EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3 MkZGQUUwRTAeFw0yMzA5MTUwMDU1MDJaFw0yNDA5MTMwMTAwMDJaMDMxMTAvBgNV BAMTKDE2NTI2NkE3REREREREMTEwQkM2MEUwNThEOUQ4MjNBQjA1RDU0MjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFtYW8ShN/ERL7cQqvoQZqBVor t/9CwkFJJgZ2zFLE2JHdcWGu1hqtOxcqLj74+e/KskceQuYoTWMshjLuTetVEmv6 MHjrlrfewqfH5TmHueRwRB55WSfb2zNS+ZDRMdwU1MODIE+bFfixwSs+1ca+DOrW eEWYDET75eaCP1fx9Xv31u0n5TeleBbjNhWZrw3EO/vqodiaR8I9EpZWXQ8sGmAL u7e8HIvThzgSDyb0ntYPvmFuaBDPhsLSNoRTemYYHdKlwGWCaarjF2fZcomrc/Bc aade7tGHFxlsT6ilhvMUMQtu9NH+UjI071ZGOM7LaMSTfytwjQnWTREFFXS3AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUFlJmp93d3RELxg4FjZ2COrBdVCEwHwYDVR0j BBgwFoAU/NBThZBOAPPBCjOe4Z2STXL/rg4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzhmZDRhZi1mZTY3LTQ1YzgtODBiNy0wNmZjMTE4ZGY4ZTIvMC9GQ0QwNTM4NTkw NEUwMEYzQzEwQTMzOUVFMTlEOTI0RDcyRkZBRTBFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3MkZG QUUwRS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3OGZkNGFmLWZlNjctNDVjOC04 MGI3LTA2ZmMxMThkZjhlMi8wLzMyMzQzMDMyM2EzOTM4MzAzMDNhMzQzMDMwMzQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNDM2MzAzMjM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAKY AEAEMA0GCSqGSIb3DQEBCwUAA4IBAQAKR2oiLHoogehFAuPM1lMm82b5BX6nQLYQ WYK6WJKawcMaoOqQIogPM7vtgQPrbA5CBMxBQEYqwUe7h9wzSSID/gB7fc6Sd4bW KVHZ+N7823Dvp3MhxVXv9W3ayK9c9GAACyZfm0qYvupYXxi1ghcjXG5BYrwqKdc7 IMnd8j+2QeoLR+WToEQKXJQEeItoTG2yg5hyTMcvPxBD6xcs9XNc0K4GP79NVxG1 den0LodQ/Ff9xFrTv2vBDGe32k0XqCjBJnIn4A2SWv7dnR9sOrZQR7W32MwG4BiT YHh5s8DFYrUrRLXcIYqAiUlzHRf95pVMhVn+vBk5UizAyYqbfag2 -----END CERTIFICATE-----Generated at Fri May 17 12:05:51 2024 by rpki-client on console-fra.rpki-client.org