$ rpki-client -vvf repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/323430353a386530303a3a2f33322d3332203d3e203234323034.roa File: 323430353a386530303a3a2f33322d3332203d3e203234323034.roa (raw, json) Hash identifier: YX7tOEVArEOdkiA4C7zme7PmlOS4ADJILeAE/TxulXc= Subject key identifier: 6E:38:A1:C1:5C:C2:45:E5:24:AA:0D:DA:9E:03:47:EC:08:4E:71:2C Certificate issuer: /CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Certificate serial: 6382475F7304DC1D37801465195D99E39F2977CE Authority key identifier: 28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/323430353a386530303a3a2f33322d3332203d3e203234323034.roa Signing time: Mon 31 Jul 2023 00:07:22 +0000 ROA not before: Mon 31 Jul 2023 00:02:22 +0000 ROA not after: Mon 29 Jul 2024 00:07:22 +0000 asID: 24204 IP address blocks: 2405:8e00::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 12:54:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:82:47:5f:73:04:dc:1d:37:80:14:65:19:5d:99:e3:9f:29:77:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Validity Not Before: Jul 31 00:02:22 2023 GMT Not After : Jul 29 00:07:22 2024 GMT Subject: CN=6E38A1C15CC245E524AA0DDA9E0347EC084E712C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:dc:5e:c5:2c:77:b9:80:f4:f6:5d:d1:fd:ce: 8e:36:8b:2c:39:ed:54:55:46:1d:89:c3:ca:e7:b7: c3:f4:b6:6b:a1:c2:55:3e:59:cd:b2:68:74:14:67: 0c:53:f1:52:64:5b:d1:65:37:a0:74:cd:32:56:62: 8b:bf:e5:da:6d:bc:5f:c3:9a:37:31:0d:a4:e9:fa: 50:2f:e8:70:bc:2c:6d:44:43:43:97:ff:0b:08:9e: d2:fd:ef:bc:98:5a:ea:cd:d1:05:a9:66:95:c9:db: 1a:e5:c9:63:03:f0:f6:0c:b3:f5:6d:15:3e:5f:ea: 5c:a9:7e:e9:3a:13:44:57:90:ef:11:21:b9:40:ef: 98:29:0d:82:79:e9:6a:c5:4a:13:60:03:da:38:fe: 08:26:41:af:f5:65:ea:d3:37:1b:39:a9:12:45:03: 15:c6:0a:6e:a9:0f:79:4b:6e:2f:9d:bd:fe:3b:16: bf:d4:74:0e:b5:5c:ad:6e:30:62:b4:6d:28:aa:d9: c5:a4:1f:b8:7b:fe:46:64:98:30:e2:da:41:30:4a: 1a:0a:3f:a9:46:83:d5:7b:78:75:f0:7c:5e:0c:f7: e3:11:57:7f:1b:90:c1:bd:bc:db:d5:85:2f:60:2f: 33:ec:24:89:f2:ca:12:dc:11:4a:8e:f8:9d:de:f5: 7d:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:38:A1:C1:5C:C2:45:E5:24:AA:0D:DA:9E:03:47:EC:08:4E:71:2C X509v3 Authority Key Identifier: keyid:28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/323430353a386530303a3a2f33322d3332203d3e203234323034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:8e00::/32 Signature Algorithm: sha256WithRSAEncryption 05:39:c4:26:7a:31:89:a3:42:c5:89:58:04:b8:b1:3b:9b:c4: 53:e7:9d:20:41:ef:f2:80:10:37:58:d6:75:83:d7:b5:fd:5b: 9a:aa:8c:3d:d7:bd:db:2f:53:9c:0c:f5:c6:38:65:1b:03:01: 14:c3:02:8d:2e:ad:ed:a2:aa:fe:07:62:fc:0f:c2:ff:21:db: b6:4e:85:a9:e7:fc:8c:70:44:ae:39:e2:7d:19:54:f0:02:02: f7:99:60:c3:23:f0:05:94:e6:26:71:a6:c1:b7:51:fe:80:ad: bc:37:a2:64:be:a9:f1:12:5d:66:dc:da:69:bd:13:8b:d9:65: 52:54:60:06:aa:5c:55:39:3a:58:5f:b5:95:3f:e0:08:b7:7b: 8c:79:34:68:f6:31:a6:e5:ab:5c:13:04:2b:27:d4:59:9d:14: 75:5a:fb:c6:19:02:59:18:3d:2c:f4:6f:7a:d1:9f:bd:1e:bb: 2c:c5:21:dd:b7:2d:bb:14:94:3f:b8:af:b1:da:fc:75:3b:64: 9b:f3:2d:b5:85:5f:47:b1:8e:81:ea:d7:59:53:2e:8b:5c:59: 0b:82:d0:a4:42:10:79:d3:ca:8c:aa:7f:20:cf:c2:74:bf:12: 4a:23:3a:41:2b:e7:28:0d:16:11:bc:51:e8:17:c0:96:36:98: 03:bf:50:4c -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUY4JHX3ME3B03gBRlGV2Z458pd84wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNG M0IzQ0EzOTAeFw0yMzA3MzEwMDAyMjJaFw0yNDA3MjkwMDA3MjJaMDMxMTAvBgNV BAMTKDZFMzhBMUMxNUNDMjQ1RTUyNEFBMEREQTlFMDM0N0VDMDg0RTcxMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/3F7FLHe5gPT2XdH9zo42iyw5 7VRVRh2Jw8rnt8P0tmuhwlU+Wc2yaHQUZwxT8VJkW9FlN6B0zTJWYou/5dptvF/D mjcxDaTp+lAv6HC8LG1EQ0OX/wsIntL977yYWurN0QWpZpXJ2xrlyWMD8PYMs/Vt FT5f6lypfuk6E0RXkO8RIblA75gpDYJ56WrFShNgA9o4/ggmQa/1ZerTNxs5qRJF AxXGCm6pD3lLbi+dvf47Fr/UdA61XK1uMGK0bSiq2cWkH7h7/kZkmDDi2kEwShoK P6lGg9V7eHXwfF4M9+MRV38bkMG9vNvVhS9gLzPsJInyyhLcEUqO+J3e9X0dAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUbjihwVzCReUkqg3angNH7AhOcSwwHwYDVR0j BBgwFoAUKDUTgKhgRHeCdPx87A8RbPOzyjkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjRhOTEwNS04ZDJhLTRiMzgtYTZhZS0wNWVhZDY5NzE5YTMvMC8yODM1MTM4MEE4 NjA0NDc3ODI3NEZDN0NFQzBGMTE2Q0YzQjNDQTM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNGM0Iz Q0EzOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyNGE5MTA1LThkMmEtNGIzOC1h NmFlLTA1ZWFkNjk3MTlhMy8wLzMyMzQzMDM1M2EzODY1MzAzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMyMzQzMjMwMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBY4AMA0GCSqGSIb3 DQEBCwUAA4IBAQAFOcQmejGJo0LFiVgEuLE7m8RT550gQe/ygBA3WNZ1g9e1/Vua qow9173bL1OcDPXGOGUbAwEUwwKNLq3toqr+B2L8D8L/Idu2ToWp5/yMcESuOeJ9 GVTwAgL3mWDDI/AFlOYmcabBt1H+gK28N6JkvqnxEl1m3NppvROL2WVSVGAGqlxV OTpYX7WVP+AIt3uMeTRo9jGm5atcEwQrJ9RZnRR1WvvGGQJZGD0s9G960Z+9Hrss xSHdty27FJQ/uK+x2vx1O2Sb8y21hV9HsY6B6tdZUy6LXFkLgtCkQhB508qMqn8g z8J0vxJKIzpBK+coDRYRvFHoF8CWNpgDv1BM -----END CERTIFICATE-----Generated at Tue Apr 23 18:36:00 2024 by rpki-client on console-ams.rpki-client.org