$ rpki-client -vvf repo-rpki.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/323430363a356463303a3a2f33322d3332203d3e20313336313231.roa File: 323430363a356463303a3a2f33322d3332203d3e20313336313231.roa (raw, json) Hash identifier: pITHDOp5rQkok2XgTVFjsMYD+w0RRKbmtli1i0COd3A= Subject key identifier: A0:F1:71:F5:65:F5:FF:33:0E:D2:D9:6E:E7:0B:2C:3F:4B:75:DD:33 Certificate issuer: /CN=94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383 Certificate serial: 5839205567F7AF56AE58807EFDB755F2614B093E Authority key identifier: 94:F7:5B:04:CE:BE:0D:F1:D0:B9:24:EC:F1:AD:9C:9C:13:99:23:83 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/323430363a356463303a3a2f33322d3332203d3e20313336313231.roa Signing time: Thu 16 Nov 2023 10:00:01 +0000 ROA not before: Thu 16 Nov 2023 09:55:01 +0000 ROA not after: Thu 14 Nov 2024 10:00:01 +0000 asID: 136121 IP address blocks: 2406:5dc0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383.crl rsync://repo-rpki.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 04:41:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:39:20:55:67:f7:af:56:ae:58:80:7e:fd:b7:55:f2:61:4b:09:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383 Validity Not Before: Nov 16 09:55:01 2023 GMT Not After : Nov 14 10:00:01 2024 GMT Subject: CN=A0F171F565F5FF330ED2D96EE70B2C3F4B75DD33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:6f:ab:42:8c:89:eb:5d:ec:b0:2b:f2:79:7a: ab:b5:59:21:7f:b7:2f:5b:99:5b:dd:b1:78:6f:48: ab:fc:6f:6e:bf:01:0d:5c:46:af:b6:7f:00:9a:66: 26:79:24:09:72:34:88:4d:a6:0e:a7:1b:99:fd:eb: 1a:3b:cd:85:7b:1f:8f:8f:a8:1c:24:84:57:c6:d5: c2:bc:06:dd:cf:fe:66:e1:c5:0d:7e:76:e9:06:01: d6:d6:b2:74:05:33:49:f2:c6:3c:30:d1:0b:f1:fa: f5:6c:e6:63:80:4e:d2:da:33:29:0b:21:a2:61:60: ae:95:9e:03:b9:53:fa:2a:93:c7:74:22:e1:d8:16: 61:14:4b:84:b4:b3:f6:f6:96:7e:2b:14:96:45:eb: ca:61:bc:f7:0a:af:03:77:50:9d:2c:82:77:4c:b1: a7:ff:a7:0a:2d:fa:f1:a8:48:db:61:ef:ff:6c:46: 90:a9:98:3a:31:b2:ae:8c:d6:d8:1d:4a:b0:db:0a: 22:b5:11:52:2f:6a:ad:73:86:8c:9f:3c:66:b8:74: 0d:06:23:fc:e7:f6:73:55:29:8f:2b:33:a4:4c:78: a3:a9:64:95:c0:97:13:88:85:68:22:12:97:15:01: bc:46:a1:38:b8:26:9f:26:9e:4f:d9:b3:1d:72:9e: 94:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:F1:71:F5:65:F5:FF:33:0E:D2:D9:6E:E7:0B:2C:3F:4B:75:DD:33 X509v3 Authority Key Identifier: keyid:94:F7:5B:04:CE:BE:0D:F1:D0:B9:24:EC:F1:AD:9C:9C:13:99:23:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/323430363a356463303a3a2f33322d3332203d3e20313336313231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:5dc0::/32 Signature Algorithm: sha256WithRSAEncryption 90:ec:5d:26:a6:84:2d:2b:27:90:93:97:d4:a5:86:60:e3:1c: 58:c4:29:d0:d9:f2:5b:90:ec:14:5a:af:35:32:85:47:24:ad: 00:b8:5a:2c:47:d0:2a:0a:52:6d:8e:80:b0:51:4c:d4:da:7f: f7:26:66:71:4a:87:ef:0b:65:21:42:d5:c2:0b:66:0f:f1:b3: 91:2f:02:56:d1:7c:4a:29:39:32:d1:cf:b9:00:64:34:07:60: 0a:15:2a:8b:6f:48:4e:74:e0:40:41:13:cc:de:eb:73:6b:fe: 95:b1:36:72:a9:4e:6f:e2:78:78:b1:98:0b:e2:c4:33:33:bf: 75:2b:4d:87:33:23:f9:3b:21:89:99:b5:5e:c6:3c:36:12:a9: c0:d6:be:5d:4e:98:38:fa:4b:c3:85:8d:c7:5d:c0:64:db:5b: 82:36:06:2e:7b:8a:36:99:1e:f4:6f:86:19:f3:42:09:26:5a: b8:42:30:2b:c9:1f:7d:2f:b8:1f:0a:1f:b1:dc:af:4d:ff:b4: c3:c6:d2:61:2f:ab:7f:e2:7d:04:7a:9a:39:6f:e1:fa:16:44: 62:ea:ae:6b:ad:e8:b2:c4:ef:26:15:78:c5:54:f5:65:30:9c: 60:72:c4:0b:3c:5e:72:bf:af:e6:1e:fd:9b:72:2b:58:3a:38: e7:df:48:70 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUWDkgVWf3r1auWIB+/bdV8mFLCT4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTRGNzVCMDRDRUJFMERGMUQwQjkyNEVDRjFBRDlDOUMx Mzk5MjM4MzAeFw0yMzExMTYwOTU1MDFaFw0yNDExMTQxMDAwMDFaMDMxMTAvBgNV BAMTKEEwRjE3MUY1NjVGNUZGMzMwRUQyRDk2RUU3MEIyQzNGNEI3NUREMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjb6tCjInrXeywK/J5equ1WSF/ ty9bmVvdsXhvSKv8b26/AQ1cRq+2fwCaZiZ5JAlyNIhNpg6nG5n96xo7zYV7H4+P qBwkhFfG1cK8Bt3P/mbhxQ1+dukGAdbWsnQFM0nyxjww0Qvx+vVs5mOATtLaMykL IaJhYK6VngO5U/oqk8d0IuHYFmEUS4S0s/b2ln4rFJZF68phvPcKrwN3UJ0sgndM saf/pwot+vGoSNth7/9sRpCpmDoxsq6M1tgdSrDbCiK1EVIvaq1zhoyfPGa4dA0G I/zn9nNVKY8rM6RMeKOpZJXAlxOIhWgiEpcVAbxGoTi4Jp8mnk/Zsx1ynpQ3AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUoPFx9WX1/zMO0tlu5wssP0t13TMwHwYDVR0j BBgwFoAUlPdbBM6+DfHQuSTs8a2cnBOZI4MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjEyN2ZlYi05NjE1LTRjNTgtYTNiYi1lZWY3YjdhNjU0N2UvMC85NEY3NUIwNENF QkUwREYxRDBCOTI0RUNGMUFEOUM5QzEzOTkyMzgzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTRGNzVCMDRDRUJFMERGMUQwQjkyNEVDRjFBRDlDOUMxMzk5 MjM4My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyMTI3ZmViLTk2MTUtNGM1OC1h M2JiLWVlZjdiN2E2NTQ3ZS8wLzMyMzQzMDM2M2EzNTY0NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNjMxMzIzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGXcAwDQYJKoZI hvcNAQELBQADggEBAJDsXSamhC0rJ5CTl9SlhmDjHFjEKdDZ8luQ7BRarzUyhUck rQC4WixH0CoKUm2OgLBRTNTaf/cmZnFKh+8LZSFC1cILZg/xs5EvAlbRfEopOTLR z7kAZDQHYAoVKotvSE504EBBE8ze63Nr/pWxNnKpTm/ieHixmAvixDMzv3UrTYcz I/k7IYmZtV7GPDYSqcDWvl1OmDj6S8OFjcddwGTbW4I2Bi57ijaZHvRvhhnzQgkm WrhCMCvJH30vuB8KH7Hcr03/tMPG0mEvq3/ifQR6mjlv4foWRGLqrmut6LLE7yYV eMVU9WUwnGByxAs8XnK/r+Ye/ZtyK1g6OOffSHA= -----END CERTIFICATE-----Generated at Tue Apr 30 10:13:54 2024 by rpki-client on console-fra.rpki-client.org