$ rpki-client -vvf repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/323430373a336538303a3a2f33322d3438203d3e203338373638.roa File: 323430373a336538303a3a2f33322d3438203d3e203338373638.roa (raw, json) Hash identifier: yvATTzzTbp7Aq1SE/sxgPUmFO2KYTY5bLtm1pi43Cco= Subject key identifier: 45:0F:E1:49:73:01:E8:C5:1B:91:D8:A4:7E:D6:E0:0D:AE:01:55:0D Certificate issuer: /CN=FBACFC63658425B36399C4B9D0322622B8C5B7F0 Certificate serial: 27FA5689E453CEBA25514CF3AEEE411DC27BE9EE Authority key identifier: FB:AC:FC:63:65:84:25:B3:63:99:C4:B9:D0:32:26:22:B8:C5:B7:F0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FBACFC63658425B36399C4B9D0322622B8C5B7F0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/323430373a336538303a3a2f33322d3438203d3e203338373638.roa Signing time: Mon 14 Aug 2023 03:00:01 +0000 ROA not before: Mon 14 Aug 2023 02:55:01 +0000 ROA not after: Mon 12 Aug 2024 03:00:01 +0000 asID: 38768 IP address blocks: 2407:3e80::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/FBACFC63658425B36399C4B9D0322622B8C5B7F0.crl rsync://repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/FBACFC63658425B36399C4B9D0322622B8C5B7F0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FBACFC63658425B36399C4B9D0322622B8C5B7F0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 00:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:fa:56:89:e4:53:ce:ba:25:51:4c:f3:ae:ee:41:1d:c2:7b:e9:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FBACFC63658425B36399C4B9D0322622B8C5B7F0 Validity Not Before: Aug 14 02:55:01 2023 GMT Not After : Aug 12 03:00:01 2024 GMT Subject: CN=450FE1497301E8C51B91D8A47ED6E00DAE01550D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:9d:5a:62:cd:aa:fd:c9:1f:f1:74:f6:9b:61: a9:a2:35:75:4b:db:5f:63:f0:55:71:3e:50:d7:1b: 56:50:33:c3:ac:3a:33:cb:71:55:bb:2a:b5:c4:80: 90:49:a2:56:8f:3a:dc:97:17:b6:c0:a2:76:e6:4d: 59:6e:37:01:6b:5e:c2:08:ee:44:3d:df:1f:cd:e1: cb:ba:43:b0:64:79:33:37:0f:51:8b:d9:68:84:7b: 26:cf:a3:d9:f0:26:b6:91:65:44:cd:cc:b7:68:4e: ed:b1:cc:c7:18:57:d6:71:79:d3:a4:17:27:66:98: 2d:dc:b4:0e:84:90:c3:98:28:81:67:47:6d:e6:50: 60:11:b5:ed:a8:bd:ea:e8:53:c4:e3:2c:d7:17:a5: a2:52:a4:5b:51:60:35:f8:b6:47:92:62:92:e3:f8: af:75:89:71:c0:45:a7:22:1f:ef:1b:7b:20:13:5d: 8c:91:ea:a6:e7:5c:88:dc:7a:f5:e1:d3:8a:22:b5: d6:52:51:bf:f5:22:d0:60:b3:04:8b:30:8a:94:e9: 95:9d:15:8b:e8:ce:90:d9:7e:e0:73:8a:fc:f6:54: d7:69:cc:39:9e:c4:66:5d:b1:37:47:08:31:b5:b0: 29:c9:da:21:6f:3f:88:8b:43:d7:62:67:0c:12:7f: 8f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:0F:E1:49:73:01:E8:C5:1B:91:D8:A4:7E:D6:E0:0D:AE:01:55:0D X509v3 Authority Key Identifier: keyid:FB:AC:FC:63:65:84:25:B3:63:99:C4:B9:D0:32:26:22:B8:C5:B7:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/FBACFC63658425B36399C4B9D0322622B8C5B7F0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FBACFC63658425B36399C4B9D0322622B8C5B7F0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/323430373a336538303a3a2f33322d3438203d3e203338373638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:3e80::/32 Signature Algorithm: sha256WithRSAEncryption 09:bc:b4:c8:a0:72:c3:a6:89:dc:03:2a:d2:f9:f0:b9:23:c2: 50:8c:42:cf:68:37:56:bb:65:05:23:90:42:a2:20:5c:ee:7a: 08:3e:40:50:75:64:e4:84:dd:6b:cf:04:5f:9c:7b:ef:14:34: e2:bf:18:22:0d:ba:88:3c:10:a3:4a:3d:b0:90:9d:a5:2e:da: 3e:36:96:d1:4f:d8:58:a3:78:4f:14:fc:33:44:18:3e:9c:a4: 76:45:5b:12:2e:49:e3:5a:96:74:14:1c:9a:fd:dd:0c:f6:49: 15:6b:54:0a:53:ba:7e:3b:81:10:11:1a:27:39:2f:d6:01:7d: 4e:c6:b6:4b:12:9a:49:1a:18:48:90:a0:5c:99:8e:a3:4e:95: dc:09:e2:73:69:27:53:50:2a:8f:c4:b5:bd:80:c6:ff:8b:f2: 00:94:fa:63:34:86:79:b1:09:07:58:62:ca:32:27:3f:bb:c5: b9:0d:c5:17:54:24:02:4b:c3:f9:87:5d:84:41:38:41:e6:10: 97:34:cd:fe:df:38:83:93:b8:d2:08:17:42:c6:63:03:cc:4e: 8e:18:3a:eb:5f:97:46:55:30:89:20:57:71:ba:0b:6b:59:df: 5e:4d:44:91:bc:a0:34:78:20:51:bb:15:53:84:4d:6d:88:cd: f4:3b:f8:2d -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUJ/pWieRTzrolUUzzru5BHcJ76e4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkJBQ0ZDNjM2NTg0MjVCMzYzOTlDNEI5RDAzMjI2MjJC OEM1QjdGMDAeFw0yMzA4MTQwMjU1MDFaFw0yNDA4MTIwMzAwMDFaMDMxMTAvBgNV BAMTKDQ1MEZFMTQ5NzMwMUU4QzUxQjkxRDhBNDdFRDZFMDBEQUUwMTU1MEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDenVpizar9yR/xdPabYamiNXVL 219j8FVxPlDXG1ZQM8OsOjPLcVW7KrXEgJBJolaPOtyXF7bAonbmTVluNwFrXsII 7kQ93x/N4cu6Q7BkeTM3D1GL2WiEeybPo9nwJraRZUTNzLdoTu2xzMcYV9ZxedOk FydmmC3ctA6EkMOYKIFnR23mUGARte2overoU8TjLNcXpaJSpFtRYDX4tkeSYpLj +K91iXHARaciH+8beyATXYyR6qbnXIjcevXh04oitdZSUb/1ItBgswSLMIqU6ZWd FYvozpDZfuBzivz2VNdpzDmexGZdsTdHCDG1sCnJ2iFvP4iLQ9diZwwSf4+lAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQURQ/hSXMB6MUbkdikftbgDa4BVQ0wHwYDVR0j BBgwFoAU+6z8Y2WEJbNjmcS50DImIrjFt/AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MWU5NDI0My04N2YwLTQyNmYtYTljYS00YzE5ZWRiMDZiNDIvMC9GQkFDRkM2MzY1 ODQyNUIzNjM5OUM0QjlEMDMyMjYyMkI4QzVCN0YwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkJBQ0ZDNjM2NTg0MjVCMzYzOTlDNEI5RDAzMjI2MjJCOEM1 QjdGMC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxZTk0MjQzLTg3ZjAtNDI2Zi1h OWNhLTRjMTllZGIwNmI0Mi8wLzMyMzQzMDM3M2EzMzY1MzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMzMzgzNzM2Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBz6AMA0GCSqGSIb3 DQEBCwUAA4IBAQAJvLTIoHLDponcAyrS+fC5I8JQjELPaDdWu2UFI5BCoiBc7noI PkBQdWTkhN1rzwRfnHvvFDTivxgiDbqIPBCjSj2wkJ2lLto+NpbRT9hYo3hPFPwz RBg+nKR2RVsSLknjWpZ0FBya/d0M9kkVa1QKU7p+O4EQERonOS/WAX1OxrZLEppJ GhhIkKBcmY6jTpXcCeJzaSdTUCqPxLW9gMb/i/IAlPpjNIZ5sQkHWGLKMic/u8W5 DcUXVCQCS8P5h12EQThB5hCXNM3+3ziDk7jSCBdCxmMDzE6OGDrrX5dGVTCJIFdx ugtrWd9eTUSRvKA0eCBRuxVThE1tiM30O/gt -----END CERTIFICATE-----Generated at Tue Apr 23 20:37:37 2024 by rpki-client on console-fra.rpki-client.org