$ rpki-client -vvf repo-rpki.idnic.net/repo/50c773c8-fb56-449f-8649-112d6e1686b3/0/323430353a336463303a3a2f33322d3438203d3e20313332363432.roa File: 323430353a336463303a3a2f33322d3438203d3e20313332363432.roa (raw, json) Hash identifier: 1cfP5+K9eSpyP5PZ2eWB8FgPhBrWPajdE0DzNlF3p14= Subject key identifier: 86:C2:51:82:70:F2:32:A6:00:37:BF:37:82:70:76:C8:37:CC:12:B7 Certificate issuer: /CN=818823B50F8D63E9D953C4B752F04DB0437CA8E9 Certificate serial: 77D291C63FBA0F1876C3F466BC128D8840163658 Authority key identifier: 81:88:23:B5:0F:8D:63:E9:D9:53:C4:B7:52:F0:4D:B0:43:7C:A8:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/818823B50F8D63E9D953C4B752F04DB0437CA8E9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/50c773c8-fb56-449f-8649-112d6e1686b3/0/323430353a336463303a3a2f33322d3438203d3e20313332363432.roa Signing time: Mon 31 Jul 2023 00:02:19 +0000 ROA not before: Sun 30 Jul 2023 23:57:19 +0000 ROA not after: Mon 29 Jul 2024 00:02:19 +0000 asID: 132642 IP address blocks: 2405:3dc0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/50c773c8-fb56-449f-8649-112d6e1686b3/0/818823B50F8D63E9D953C4B752F04DB0437CA8E9.crl rsync://repo-rpki.idnic.net/repo/50c773c8-fb56-449f-8649-112d6e1686b3/0/818823B50F8D63E9D953C4B752F04DB0437CA8E9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/818823B50F8D63E9D953C4B752F04DB0437CA8E9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 19:22:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:d2:91:c6:3f:ba:0f:18:76:c3:f4:66:bc:12:8d:88:40:16:36:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=818823B50F8D63E9D953C4B752F04DB0437CA8E9 Validity Not Before: Jul 30 23:57:19 2023 GMT Not After : Jul 29 00:02:19 2024 GMT Subject: CN=86C2518270F232A60037BF37827076C837CC12B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:1e:0f:a0:d6:3c:e0:0d:59:4a:09:36:ff:65: 94:c0:d8:d1:84:7d:90:24:a3:6b:d0:28:a9:38:72: 73:10:3f:23:fe:f2:14:26:0b:47:2b:91:c7:52:a8: 9a:75:da:61:d9:48:fc:c6:35:c5:f9:2a:74:a7:ce: 08:a9:4b:21:23:c3:59:d8:3c:91:af:92:d3:ee:64: e0:00:6c:45:27:61:d6:d0:e8:1c:e0:86:0b:81:03: f0:b7:7e:88:62:8e:ea:93:8b:d5:46:d0:0d:af:45: 42:c9:c6:c9:36:bc:75:b0:d9:69:24:1d:b5:de:d5: fc:9a:05:13:12:cf:b3:8c:37:7f:7a:30:e9:eb:ce: 98:0f:e8:52:8d:dc:f7:10:3f:df:14:f6:5c:ce:e5: dd:04:81:e5:08:e8:2a:c7:7e:06:f1:4d:2a:03:20: 2d:3d:78:5a:df:41:09:d1:9c:af:8d:40:51:19:0e: 27:00:0b:52:94:61:04:54:3f:aa:fc:cb:87:e4:41: ea:c3:07:08:25:56:2a:ec:85:18:05:5e:d4:ea:fe: f9:dc:fd:2e:0e:37:80:de:a1:4d:1d:f6:5a:16:fe: 4d:da:7a:b1:f5:14:40:cd:98:06:58:d4:ff:a4:12: 6a:84:a4:50:2c:a0:35:fc:31:61:4d:24:07:15:de: 58:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:C2:51:82:70:F2:32:A6:00:37:BF:37:82:70:76:C8:37:CC:12:B7 X509v3 Authority Key Identifier: keyid:81:88:23:B5:0F:8D:63:E9:D9:53:C4:B7:52:F0:4D:B0:43:7C:A8:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/50c773c8-fb56-449f-8649-112d6e1686b3/0/818823B50F8D63E9D953C4B752F04DB0437CA8E9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/818823B50F8D63E9D953C4B752F04DB0437CA8E9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/50c773c8-fb56-449f-8649-112d6e1686b3/0/323430353a336463303a3a2f33322d3438203d3e20313332363432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3dc0::/32 Signature Algorithm: sha256WithRSAEncryption 39:d0:80:b7:ce:69:65:4b:82:71:58:b7:d2:30:dc:4e:cb:bc: bf:4f:7b:d7:d1:ca:20:a3:77:4c:96:35:6e:14:00:35:84:a5: e8:e9:ba:94:de:b0:da:9f:e8:1c:37:20:98:c4:57:87:65:80: 63:dc:67:1b:c1:16:1e:5f:4d:a5:c9:35:a6:83:1c:95:c6:94: f1:19:e0:ae:cb:ec:fc:1c:22:ab:58:e6:9c:be:65:dd:71:7f: 37:87:50:b2:51:29:63:e8:ac:b3:67:17:b5:76:5e:03:32:b2: c3:cb:72:e7:f6:9b:53:62:41:a8:8b:92:b3:b2:e1:f5:95:28: 53:c8:9f:39:15:18:73:58:5e:aa:31:5a:0f:a9:fb:e5:36:76: c8:cc:95:44:30:05:38:d5:8e:8f:8b:13:b9:9f:2e:a4:68:7c: 45:56:ad:cb:25:dd:8e:a4:c0:32:23:24:73:18:a4:9a:db:3e: c3:cb:08:5a:83:bd:be:e0:50:9a:c7:2e:a8:07:ef:55:1f:5e: fa:02:7a:57:02:46:d2:79:88:3a:f3:cf:49:30:e3:8f:ec:93: 7b:b8:37:c9:f0:2c:f4:f1:b2:53:3c:5c:da:a5:f2:91:4a:01: b5:0d:e5:4b:7b:66:cf:44:a8:53:b3:76:cc:b2:f1:6e:d3:1b: 96:2c:90:1d -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUd9KRxj+6Dxh2w/RmvBKNiEAWNlgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODE4ODIzQjUwRjhENjNFOUQ5NTNDNEI3NTJGMDREQjA0 MzdDQThFOTAeFw0yMzA3MzAyMzU3MTlaFw0yNDA3MjkwMDAyMTlaMDMxMTAvBgNV BAMTKDg2QzI1MTgyNzBGMjMyQTYwMDM3QkYzNzgyNzA3NkM4MzdDQzEyQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRHg+g1jzgDVlKCTb/ZZTA2NGE fZAko2vQKKk4cnMQPyP+8hQmC0crkcdSqJp12mHZSPzGNcX5KnSnzgipSyEjw1nY PJGvktPuZOAAbEUnYdbQ6BzghguBA/C3fohijuqTi9VG0A2vRULJxsk2vHWw2Wkk HbXe1fyaBRMSz7OMN396MOnrzpgP6FKN3PcQP98U9lzO5d0EgeUI6CrHfgbxTSoD IC09eFrfQQnRnK+NQFEZDicAC1KUYQRUP6r8y4fkQerDBwglVirshRgFXtTq/vnc /S4ON4DeoU0d9loW/k3aerH1FEDNmAZY1P+kEmqEpFAsoDX8MWFNJAcV3lifAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUhsJRgnDyMqYAN783gnB2yDfMErcwHwYDVR0j BBgwFoAUgYgjtQ+NY+nZU8S3UvBNsEN8qOkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MGM3NzNjOC1mYjU2LTQ0OWYtODY0OS0xMTJkNmUxNjg2YjMvMC84MTg4MjNCNTBG OEQ2M0U5RDk1M0M0Qjc1MkYwNERCMDQzN0NBOEU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODE4ODIzQjUwRjhENjNFOUQ5NTNDNEI3NTJGMDREQjA0MzdD QThFOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUwYzc3M2M4LWZiNTYtNDQ5Zi04 NjQ5LTExMmQ2ZTE2ODZiMy8wLzMyMzQzMDM1M2EzMzY0NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzMjM2MzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFPcAwDQYJKoZI hvcNAQELBQADggEBADnQgLfOaWVLgnFYt9Iw3E7LvL9Pe9fRyiCjd0yWNW4UADWE pejpupTesNqf6Bw3IJjEV4dlgGPcZxvBFh5fTaXJNaaDHJXGlPEZ4K7L7PwcIqtY 5py+Zd1xfzeHULJRKWPorLNnF7V2XgMyssPLcuf2m1NiQaiLkrOy4fWVKFPInzkV GHNYXqoxWg+p++U2dsjMlUQwBTjVjo+LE7mfLqRofEVWrcsl3Y6kwDIjJHMYpJrb PsPLCFqDvb7gUJrHLqgH71UfXvoCelcCRtJ5iDrzz0kw44/sk3u4N8nwLPTxslM8 XNql8pFKAbUN5Ut7Zs9EqFOzdsyy8W7TG5YskB0= -----END CERTIFICATE-----Generated at Tue Apr 23 18:36:00 2024 by rpki-client on console-ams.rpki-client.org