$ rpki-client -vvf repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/323430303a383030303a383a3a2f34382d3438203d3e2034383030.roa File: 323430303a383030303a383a3a2f34382d3438203d3e2034383030.roa (raw, json) Hash identifier: VcEHuf18n7y3xDUrEkwEktfoQMCzGu8F1F6xg5r4n7I= Subject key identifier: BF:09:40:AB:C2:4B:EA:9F:48:82:10:DF:33:85:00:7D:2B:A1:97:4E Certificate issuer: /CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Certificate serial: 784623FBB7EE4667B88A84813F8F2CE781B5AB74 Authority key identifier: 44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/323430303a383030303a383a3a2f34382d3438203d3e2034383030.roa Signing time: Mon 31 Jul 2023 00:04:33 +0000 ROA not before: Sun 30 Jul 2023 23:59:33 +0000 ROA not after: Mon 29 Jul 2024 00:04:33 +0000 asID: 4800 IP address blocks: 2400:8000:8::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 00:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:46:23:fb:b7:ee:46:67:b8:8a:84:81:3f:8f:2c:e7:81:b5:ab:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Validity Not Before: Jul 30 23:59:33 2023 GMT Not After : Jul 29 00:04:33 2024 GMT Subject: CN=BF0940ABC24BEA9F488210DF3385007D2BA1974E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:06:6a:b1:ec:65:df:aa:13:1b:10:ee:e9:4b: 0c:80:a5:9f:ce:00:ab:03:fc:0f:cb:b0:ff:58:3d: fb:ca:c3:2c:38:7f:28:44:de:59:ed:cc:c9:c3:51: e1:e1:9b:b9:8b:74:78:01:28:be:53:e5:3e:8c:6d: 93:e6:64:69:e8:ad:9b:0f:10:1e:b9:df:2d:b9:05: 61:21:29:03:67:c7:47:db:00:49:f0:49:7d:41:c1: ca:04:d3:63:8d:ef:24:a4:cd:f2:0a:6e:2a:65:7c: 94:62:c5:42:d2:07:25:6c:bc:9b:ab:da:57:64:77: 94:04:e1:22:c7:32:a8:76:84:c9:1f:6a:98:aa:81: fb:94:f7:b1:f0:aa:c9:98:92:86:af:29:bf:3a:15: 3f:58:29:74:82:60:20:28:f4:1b:0d:1d:20:86:25: ff:f1:7d:50:58:5a:5a:4c:82:13:fb:e3:f8:5a:b2: f5:8b:d6:f1:99:73:e7:6d:15:d7:c5:eb:a3:2c:ef: b5:44:92:ae:e8:b4:f0:7e:52:fe:6d:54:6d:03:95: 0b:bf:80:38:c0:be:3a:33:9d:98:55:8f:a5:5c:60: 0a:80:1d:bf:f4:48:0c:cd:79:40:8e:d3:6a:31:ab: c0:8d:91:f1:bc:75:80:72:9d:ec:9a:94:32:19:65: 95:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:09:40:AB:C2:4B:EA:9F:48:82:10:DF:33:85:00:7D:2B:A1:97:4E X509v3 Authority Key Identifier: keyid:44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/323430303a383030303a383a3a2f34382d3438203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:8000:8::/48 Signature Algorithm: sha256WithRSAEncryption 2a:38:7e:19:7a:52:7f:34:c2:16:f0:5d:8b:4b:ad:cc:44:c1: c7:0a:b7:96:60:c6:6c:78:4d:f4:bb:4c:ae:50:8b:f2:1a:7d: 9e:e3:57:39:60:3e:20:ab:f0:56:1a:a6:3c:bf:67:2e:3a:78: 1f:2c:95:ee:a2:7b:77:be:f0:ca:e8:b6:87:d2:7d:5d:c7:65: 70:fd:8a:fc:4a:6f:63:ff:92:13:43:1d:eb:8b:7b:e6:67:98: 19:62:26:03:7d:13:09:cf:f9:69:d4:3e:36:1d:41:e4:81:12: 13:48:d7:e2:3e:96:58:7a:f5:74:c5:32:15:87:93:1e:e6:73: 62:47:0e:dd:f7:ef:d6:a8:fe:8c:50:2f:bd:a9:49:c6:a4:a6: c7:ab:d3:e1:2a:9c:0a:2d:f4:5b:9b:64:15:33:08:25:6b:60: b9:f8:39:69:9f:3c:8a:ce:54:90:a1:0e:f0:ba:84:16:64:ea: d3:d7:5c:ad:7c:c1:64:9d:0a:d9:f5:23:69:e9:27:cd:d4:ad: 5e:83:05:4f:66:5e:65:7e:f4:6a:cd:31:89:8d:a6:54:19:5a: 77:3a:00:28:3c:0f:84:4e:c6:0e:5e:51:4e:5d:83:4d:65:7b: f7:47:5e:c9:c9:9a:fa:b1:ff:4a:4f:ec:68:42:ac:09:ba:02: e9:80:af:a9 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUeEYj+7fuRme4ioSBP48s54G1q3QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VD RjY2NzUyQjAeFw0yMzA3MzAyMzU5MzNaFw0yNDA3MjkwMDA0MzNaMDMxMTAvBgNV BAMTKEJGMDk0MEFCQzI0QkVBOUY0ODgyMTBERjMzODUwMDdEMkJBMTk3NEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRBmqx7GXfqhMbEO7pSwyApZ/O AKsD/A/LsP9YPfvKwyw4fyhE3lntzMnDUeHhm7mLdHgBKL5T5T6MbZPmZGnorZsP EB653y25BWEhKQNnx0fbAEnwSX1BwcoE02ON7ySkzfIKbiplfJRixULSByVsvJur 2ldkd5QE4SLHMqh2hMkfapiqgfuU97HwqsmYkoavKb86FT9YKXSCYCAo9BsNHSCG Jf/xfVBYWlpMghP74/hasvWL1vGZc+dtFdfF66Ms77VEkq7otPB+Uv5tVG0DlQu/ gDjAvjoznZhVj6VcYAqAHb/0SAzNeUCO02oxq8CNkfG8dYByneyalDIZZZV3AgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUvwlAq8JL6p9IghDfM4UAfSuhl04wHwYDVR0j BBgwFoAURL9mgra0kwSMbxhkoN6kfs9mdSswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NWNlMzZkZS1mOTIxLTQyNzQtODQ5Ny0yOTg3ZDkwOTU0M2UvMC80NEJGNjY4MkI2 QjQ5MzA0OEM2RjE4NjRBMERFQTQ3RUNGNjY3NTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VDRjY2 NzUyQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1Y2UzNmRlLWY5MjEtNDI3NC04 NDk3LTI5ODdkOTA5NTQzZS8wLzMyMzQzMDMwM2EzODMwMzAzMDNhMzgzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNDM4MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQAgAAACDANBgkq hkiG9w0BAQsFAAOCAQEAKjh+GXpSfzTCFvBdi0utzETBxwq3lmDGbHhN9LtMrlCL 8hp9nuNXOWA+IKvwVhqmPL9nLjp4HyyV7qJ7d77wyui2h9J9XcdlcP2K/EpvY/+S E0Md64t75meYGWImA30TCc/5adQ+Nh1B5IESE0jX4j6WWHr1dMUyFYeTHuZzYkcO 3ffv1qj+jFAvvalJxqSmx6vT4SqcCi30W5tkFTMIJWtgufg5aZ88is5UkKEO8LqE FmTq09dcrXzBZJ0K2fUjaeknzdStXoMFT2ZeZX70as0xiY2mVBladzoAKDwPhE7G Dl5RTl2DTWV790deycma+rH/Sk/saEKsCboC6YCvqQ== -----END CERTIFICATE-----Generated at Tue Apr 23 23:20:38 2024 by rpki-client on console-fra.rpki-client.org