$ rpki-client -vvf repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030353a3a2f34382d3438203d3e20313336313038.roa File: 323430323a393830303a343030353a3a2f34382d3438203d3e20313336313038.roa (raw, json) Hash identifier: j29hvoeamNM0r7cf3rKe/db9h2HYrKcB6j9wm5OyiuQ= Subject key identifier: 42:3B:83:67:F8:9B:62:8E:75:C0:D5:F9:1D:43:B4:B1:36:8C:29:FE Certificate issuer: /CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Certificate serial: 16072D03BB6933DDE442348EDCD6D39232611DFE Authority key identifier: FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030353a3a2f34382d3438203d3e20313336313038.roa Signing time: Fri 15 Sep 2023 01:00:01 +0000 ROA not before: Fri 15 Sep 2023 00:55:01 +0000 ROA not after: Fri 13 Sep 2024 01:00:01 +0000 asID: 136108 IP address blocks: 2402:9800:4005::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 14:23:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:07:2d:03:bb:69:33:dd:e4:42:34:8e:dc:d6:d3:92:32:61:1d:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Validity Not Before: Sep 15 00:55:01 2023 GMT Not After : Sep 13 01:00:01 2024 GMT Subject: CN=423B8367F89B628E75C0D5F91D43B4B1368C29FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:23:f8:e3:4b:e8:2a:25:8c:45:05:61:3d:37: 79:86:be:d4:cb:5c:68:70:26:2e:06:75:5b:a7:a7: a8:f2:44:bf:ed:42:5f:be:3a:30:5b:84:3e:bd:14: 47:e7:ea:d6:34:81:ba:58:21:a2:29:51:c5:3c:ac: 6c:e3:a9:d1:d9:cb:d1:6f:0e:d3:51:60:14:d6:06: ef:d7:a6:04:45:f2:d8:d2:b7:48:43:68:be:10:b7: 5a:59:d5:6a:45:81:85:4d:52:41:c6:cc:63:0b:ab: 25:2c:4d:2a:b4:b0:63:13:84:d8:f1:f0:79:34:08: e9:81:c1:65:cc:1b:ae:13:fc:01:24:e1:6c:f6:bc: df:60:1b:f2:76:76:4f:a4:bb:83:73:45:bf:4d:e1: 46:24:51:aa:68:81:6f:84:f1:c9:a5:4b:6e:f7:7e: fb:46:e0:e9:c4:27:6b:3c:8d:44:1e:1d:bc:31:ac: c5:ba:04:ac:1c:b7:46:34:e3:76:1a:04:e6:bb:d3: a0:34:f5:b8:af:10:12:81:9d:ef:14:bd:0c:cf:d5: fa:f7:54:b9:2d:8e:aa:a0:32:a1:64:cb:98:2b:35: fe:b7:18:61:14:96:35:a9:4b:c2:66:5c:7b:ca:ec: b9:0b:29:6e:6e:39:8b:14:f8:89:9e:1a:7c:68:f3: 2b:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:3B:83:67:F8:9B:62:8E:75:C0:D5:F9:1D:43:B4:B1:36:8C:29:FE X509v3 Authority Key Identifier: keyid:FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030353a3a2f34382d3438203d3e20313336313038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:9800:4005::/48 Signature Algorithm: sha256WithRSAEncryption af:26:e4:75:c9:2b:99:13:5f:25:9a:b0:ac:e8:29:fa:c6:12: 49:9a:02:18:6d:ad:f6:86:13:f7:60:26:4a:1c:10:3c:64:68: 87:c2:7a:12:dd:70:a3:3a:af:3a:35:64:4c:2f:b8:d7:66:55: 6f:40:6e:5f:46:c0:9f:ee:f1:0f:e0:8b:44:c7:dd:de:e7:82: 10:c9:30:b4:0c:9b:75:31:b3:52:83:a2:60:28:58:c4:b7:04: e8:31:ea:14:f7:79:17:2d:3b:38:6f:9d:57:9e:53:6a:0b:b9: 1c:ca:ca:be:f2:25:7a:78:3e:ce:95:67:90:96:9d:52:ae:4c: dd:3f:48:c5:6d:42:d6:d2:a1:ec:ab:b6:5a:66:b7:71:7c:cc: e2:41:61:99:29:9a:e4:c1:78:67:f4:f8:3c:7f:4f:5a:55:de: 6b:92:ae:75:b7:a1:71:be:ef:78:a9:28:f2:d1:64:a7:a3:b1: 7b:61:eb:64:ee:48:fe:59:e6:22:14:33:ef:9b:b3:53:e5:06: e3:cb:b7:f8:8a:a2:1a:f8:43:33:1c:c4:b1:a7:d3:8d:b9:80: df:50:c4:81:aa:c8:d9:c2:ee:8e:0d:0f:61:23:19:91:59:f6: fc:5c:2d:4e:5d:25:2e:77:26:e4:c3:6f:7b:dd:d1:04:b9:40: 8b:b4:eb:39 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUFgctA7tpM93kQjSO3NbTkjJhHf4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3 MkZGQUUwRTAeFw0yMzA5MTUwMDU1MDFaFw0yNDA5MTMwMTAwMDFaMDMxMTAvBgNV BAMTKDQyM0I4MzY3Rjg5QjYyOEU3NUMwRDVGOTFENDNCNEIxMzY4QzI5RkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvI/jjS+gqJYxFBWE9N3mGvtTL XGhwJi4GdVunp6jyRL/tQl++OjBbhD69FEfn6tY0gbpYIaIpUcU8rGzjqdHZy9Fv DtNRYBTWBu/XpgRF8tjSt0hDaL4Qt1pZ1WpFgYVNUkHGzGMLqyUsTSq0sGMThNjx 8Hk0COmBwWXMG64T/AEk4Wz2vN9gG/J2dk+ku4NzRb9N4UYkUapogW+E8cmlS273 fvtG4OnEJ2s8jUQeHbwxrMW6BKwct0Y043YaBOa706A09bivEBKBne8UvQzP1fr3 VLktjqqgMqFky5grNf63GGEUljWpS8JmXHvK7LkLKW5uOYsU+ImeGnxo8yvPAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUQjuDZ/ibYo51wNX5HUO0sTaMKf4wHwYDVR0j BBgwFoAU/NBThZBOAPPBCjOe4Z2STXL/rg4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzhmZDRhZi1mZTY3LTQ1YzgtODBiNy0wNmZjMTE4ZGY4ZTIvMC9GQ0QwNTM4NTkw NEUwMEYzQzEwQTMzOUVFMTlEOTI0RDcyRkZBRTBFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3MkZG QUUwRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3OGZkNGFmLWZlNjctNDVjOC04 MGI3LTA2ZmMxMThkZjhlMi8wLzMyMzQzMDMyM2EzOTM4MzAzMDNhMzQzMDMwMzUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMTMwMzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ApgAQAUwDQYJKoZIhvcNAQELBQADggEBAK8m5HXJK5kTXyWasKzoKfrGEkmaAhht rfaGE/dgJkocEDxkaIfCehLdcKM6rzo1ZEwvuNdmVW9Abl9GwJ/u8Q/gi0TH3d7n ghDJMLQMm3Uxs1KDomAoWMS3BOgx6hT3eRctOzhvnVeeU2oLuRzKyr7yJXp4Ps6V Z5CWnVKuTN0/SMVtQtbSoeyrtlpmt3F8zOJBYZkpmuTBeGf0+Dx/T1pV3muSrnW3 oXG+73ipKPLRZKejsXth62TuSP5Z5iIUM++bs1PlBuPLt/iKohr4QzMcxLGn0425 gN9QxIGqyNnC7o4ND2EjGZFZ9vxcLU5dJS53JuTDb3vd0QS5QIu06zk= -----END CERTIFICATE-----Generated at Fri May 17 12:05:51 2024 by rpki-client on console-fra.rpki-client.org