$ rpki-client -vvf repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/323430303a313838303a3a2f33322d3438203d3e203137363730.roa File: 323430303a313838303a3a2f33322d3438203d3e203137363730.roa (raw, json) Hash identifier: Cn1QziE67pMt8b0HUH54kIFtb2lfv1zbC5esKEHqTfo= Subject key identifier: 2F:83:A7:C1:AC:A4:C1:2A:1A:D3:DC:15:7D:45:0C:76:79:E7:44:31 Certificate issuer: /CN=89402655017312B8CFCB367BA82966AA21E11F90 Certificate serial: 04B5D8B90CD1024E4A67A48F51040A30C1DBE2B9 Authority key identifier: 89:40:26:55:01:73:12:B8:CF:CB:36:7B:A8:29:66:AA:21:E1:1F:90 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89402655017312B8CFCB367BA82966AA21E11F90.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/323430303a313838303a3a2f33322d3438203d3e203137363730.roa Signing time: Sun 03 Sep 2023 18:00:00 +0000 ROA not before: Sun 03 Sep 2023 17:55:00 +0000 ROA not after: Sun 01 Sep 2024 18:00:00 +0000 asID: 17670 IP address blocks: 2400:1880::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/89402655017312B8CFCB367BA82966AA21E11F90.crl rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/89402655017312B8CFCB367BA82966AA21E11F90.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89402655017312B8CFCB367BA82966AA21E11F90.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 14:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:b5:d8:b9:0c:d1:02:4e:4a:67:a4:8f:51:04:0a:30:c1:db:e2:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89402655017312B8CFCB367BA82966AA21E11F90 Validity Not Before: Sep 3 17:55:00 2023 GMT Not After : Sep 1 18:00:00 2024 GMT Subject: CN=2F83A7C1ACA4C12A1AD3DC157D450C7679E74431 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d1:f2:bd:d6:0b:a3:79:32:b9:80:06:d6:d1: 03:e3:f8:99:fd:ee:2b:9f:f3:cd:cb:06:7a:a0:c6: 93:73:3a:6b:de:5b:93:86:2a:49:7e:13:04:0a:cc: 2f:13:1d:fa:7d:bb:1e:a2:4e:f2:12:51:a7:68:cf: 4f:53:5e:db:72:8d:b6:91:ad:0c:83:a1:2f:20:20: d4:0f:27:58:89:ca:86:b9:6c:d5:17:fd:3a:26:7b: b0:41:ed:e4:d9:a2:6f:58:19:17:89:84:52:59:20: b3:c5:f8:dd:6b:90:da:21:c1:3a:61:f5:1e:6c:8f: b2:94:85:66:46:14:f5:b3:3a:02:27:e3:bb:90:c7: 2e:88:cc:85:83:f1:0b:43:dc:e4:d6:30:ed:6a:c1: e6:f7:1d:74:88:69:d7:03:54:7b:22:c4:3a:5b:5e: 92:c7:50:9b:d6:34:61:12:ff:20:20:b5:fc:5a:df: c7:d9:80:91:03:0d:44:df:71:63:4d:01:c7:a3:52: 8b:44:7a:4c:67:04:74:79:61:34:3d:e5:72:74:a9: 22:9b:64:2b:a0:43:33:bc:37:12:d9:89:59:57:c9: 9d:51:a8:53:39:c2:7a:b5:7d:a6:cc:44:0b:50:1e: f1:86:19:bb:f2:89:13:4a:98:1c:af:13:9b:be:90: 1b:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:83:A7:C1:AC:A4:C1:2A:1A:D3:DC:15:7D:45:0C:76:79:E7:44:31 X509v3 Authority Key Identifier: keyid:89:40:26:55:01:73:12:B8:CF:CB:36:7B:A8:29:66:AA:21:E1:1F:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/89402655017312B8CFCB367BA82966AA21E11F90.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89402655017312B8CFCB367BA82966AA21E11F90.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/323430303a313838303a3a2f33322d3438203d3e203137363730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:1880::/32 Signature Algorithm: sha256WithRSAEncryption 66:04:d9:b0:4c:98:bd:d3:d0:d4:99:f8:a4:a7:0f:92:be:7d: f5:3e:9a:00:8e:e0:b0:ec:b0:39:0e:c9:93:e3:83:96:30:b8: de:eb:bc:91:40:7d:dd:ac:ca:20:2f:4a:08:c2:21:63:6c:de: 2f:3c:a3:ba:f7:db:89:65:c9:c4:2a:5b:cc:b3:35:83:c4:72: 80:ea:d2:9b:85:a6:28:97:3b:90:6e:88:84:ca:31:f6:57:55: 47:f3:17:2a:31:e7:11:ea:f7:da:71:b8:8c:b8:59:1c:41:f3: af:64:40:7b:af:b4:79:c7:49:a0:06:bc:44:6e:e5:e8:16:f5: 23:5e:06:bb:76:95:2e:b0:3c:b8:e7:f3:cf:a3:bb:6a:9d:35: 44:c9:82:b4:c1:0a:94:0f:de:81:e3:8b:f6:35:33:92:90:b5: 2c:86:86:ad:9d:b8:53:db:de:ba:24:56:bf:90:28:6e:92:15: 05:b6:2f:18:ef:2d:92:56:13:c9:d7:f0:0b:f3:12:93:19:fb: 45:51:37:34:54:1d:c1:0c:99:50:56:81:f7:f4:fa:9d:f2:68: ef:fd:10:ed:32:f9:81:38:e6:ad:1f:fd:dc:73:aa:4f:f2:47: 0f:fa:b0:e1:9c:87:9a:30:62:0a:26:08:c2:79:13:7e:a2:47: 8d:f5:b9:36 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUBLXYuQzRAk5KZ6SPUQQKMMHb4rkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODk0MDI2NTUwMTczMTJCOENGQ0IzNjdCQTgyOTY2QUEy MUUxMUY5MDAeFw0yMzA5MDMxNzU1MDBaFw0yNDA5MDExODAwMDBaMDMxMTAvBgNV BAMTKDJGODNBN0MxQUNBNEMxMkExQUQzREMxNTdENDUwQzc2NzlFNzQ0MzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA0fK91gujeTK5gAbW0QPj+Jn9 7iuf883LBnqgxpNzOmveW5OGKkl+EwQKzC8THfp9ux6iTvISUadoz09TXttyjbaR rQyDoS8gINQPJ1iJyoa5bNUX/Tome7BB7eTZom9YGReJhFJZILPF+N1rkNohwTph 9R5sj7KUhWZGFPWzOgIn47uQxy6IzIWD8QtD3OTWMO1qweb3HXSIadcDVHsixDpb XpLHUJvWNGES/yAgtfxa38fZgJEDDUTfcWNNAcejUotEekxnBHR5YTQ95XJ0qSKb ZCugQzO8NxLZiVlXyZ1RqFM5wnq1fabMRAtQHvGGGbvyiRNKmByvE5u+kBuzAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUL4OnwaykwSoa09wVfUUMdnnnRDEwHwYDVR0j BBgwFoAUiUAmVQFzErjPyzZ7qClmqiHhH5AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZmIxYzgwYy00ZDZjLTQ0MDgtODk0Ny1mYmE2ZTdjNGJlN2MvMC84OTQwMjY1NTAx NzMxMkI4Q0ZDQjM2N0JBODI5NjZBQTIxRTExRjkwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODk0MDI2NTUwMTczMTJCOENGQ0IzNjdCQTgyOTY2QUEyMUUx MUY5MC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVmYjFjODBjLTRkNmMtNDQwOC04 OTQ3LWZiYTZlN2M0YmU3Yy8wLzMyMzQzMDMwM2EzMTM4MzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzczNjM3MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkABiAMA0GCSqGSIb3 DQEBCwUAA4IBAQBmBNmwTJi909DUmfikpw+Svn31PpoAjuCw7LA5DsmT44OWMLje 67yRQH3drMogL0oIwiFjbN4vPKO699uJZcnEKlvMszWDxHKA6tKbhaYolzuQboiE yjH2V1VH8xcqMecR6vfacbiMuFkcQfOvZEB7r7R5x0mgBrxEbuXoFvUjXga7dpUu sDy45/PPo7tqnTVEyYK0wQqUD96B44v2NTOSkLUshoatnbhT2966JFa/kChukhUF ti8Y7y2SVhPJ1/AL8xKTGftFUTc0VB3BDJlQVoH39Pqd8mjv/RDtMvmBOOatH/3c c6pP8kcP+rDhnIeaMGIKJgjCeRN+okeN9bk2 -----END CERTIFICATE-----Generated at Fri Apr 19 07:07:09 2024 by rpki-client on console-fra.rpki-client.org