$ rpki-client -vvf repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/323430343a623238303a3a2f33322d3438203d3e203137363730.roa File: 323430343a623238303a3a2f33322d3438203d3e203137363730.roa (raw, json) Hash identifier: KwEqf+z4CK61WiiU/lUVYXB5nQ5F0Dy9wrpP+J+VJxU= Subject key identifier: 85:E6:3C:D4:C1:E8:AB:E8:06:3F:94:F4:44:33:CE:00:5A:55:87:2C Certificate issuer: /CN=89402655017312B8CFCB367BA82966AA21E11F90 Certificate serial: 5309EB115E4103D2F22291DCBDAC93AD5FEFC15C Authority key identifier: 89:40:26:55:01:73:12:B8:CF:CB:36:7B:A8:29:66:AA:21:E1:1F:90 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89402655017312B8CFCB367BA82966AA21E11F90.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/323430343a623238303a3a2f33322d3438203d3e203137363730.roa Signing time: Sun 03 Sep 2023 18:00:00 +0000 ROA not before: Sun 03 Sep 2023 17:55:00 +0000 ROA not after: Sun 01 Sep 2024 18:00:00 +0000 asID: 17670 IP address blocks: 2404:b280::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/89402655017312B8CFCB367BA82966AA21E11F90.crl rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/89402655017312B8CFCB367BA82966AA21E11F90.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89402655017312B8CFCB367BA82966AA21E11F90.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 01:16:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:09:eb:11:5e:41:03:d2:f2:22:91:dc:bd:ac:93:ad:5f:ef:c1:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89402655017312B8CFCB367BA82966AA21E11F90 Validity Not Before: Sep 3 17:55:00 2023 GMT Not After : Sep 1 18:00:00 2024 GMT Subject: CN=85E63CD4C1E8ABE8063F94F44433CE005A55872C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:10:e4:ad:c4:31:6c:b0:c9:6b:4f:1e:dd:7e: aa:57:52:28:07:eb:57:c4:ab:c8:c4:5f:e2:db:c0: 26:26:e1:85:07:1b:b8:78:6b:ea:6e:b5:13:74:dd: 0b:df:f7:3a:0a:0f:82:e9:99:c0:e6:5d:7e:39:5f: f7:34:b9:92:8d:23:c0:aa:a2:89:58:67:d6:98:b2: f8:7d:41:b6:03:10:90:7e:0d:ac:8c:c8:74:b5:dc: 45:53:7d:ce:f1:19:77:7d:8a:59:1c:fe:67:57:31: ed:b2:a1:33:97:d7:fd:28:6f:5e:fc:49:6a:d7:da: 2f:1d:40:75:ae:b8:b6:11:9d:f2:b9:56:8c:29:3b: 3b:07:df:16:57:3f:52:b0:86:9d:4f:e6:85:9b:fc: 70:e5:4d:e5:2a:65:16:a2:4c:3f:a7:57:ad:d5:30: 70:2e:38:22:0a:1b:65:b6:2f:d8:88:2d:5a:fe:8d: 9a:01:94:a2:aa:29:ca:8c:a0:de:e0:1f:e6:85:4b: 53:9f:6b:19:47:e0:26:56:5b:16:c0:76:0d:65:5a: 61:90:14:b3:0b:17:45:a0:85:1f:79:46:0f:f0:e3: 21:4b:e1:5b:34:f0:e1:54:05:dd:4c:67:f3:70:95: 39:19:b0:87:d1:eb:d4:51:f1:1f:ed:e5:58:20:b9: d9:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:E6:3C:D4:C1:E8:AB:E8:06:3F:94:F4:44:33:CE:00:5A:55:87:2C X509v3 Authority Key Identifier: keyid:89:40:26:55:01:73:12:B8:CF:CB:36:7B:A8:29:66:AA:21:E1:1F:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/89402655017312B8CFCB367BA82966AA21E11F90.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89402655017312B8CFCB367BA82966AA21E11F90.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/323430343a623238303a3a2f33322d3438203d3e203137363730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:b280::/32 Signature Algorithm: sha256WithRSAEncryption ac:5f:f3:af:c5:2b:98:61:6e:9c:bd:71:c7:1f:e5:3d:4a:14: be:b7:23:ba:83:de:06:23:1d:52:af:7c:b9:7b:86:61:3c:e4: 88:b4:3a:73:28:37:e6:a3:fe:7d:c7:8e:67:98:fb:ae:d7:d7: a0:de:35:c1:01:02:d3:5d:90:59:0e:51:7d:59:bc:d1:98:66: 3f:89:02:a6:48:19:6f:c1:6e:b1:40:25:38:c4:49:1c:de:91: a6:56:21:6a:29:9a:e1:b3:b6:f5:6d:7c:98:9a:10:7c:dc:cc: de:8d:c6:04:a0:5e:71:44:e5:5f:e2:4e:e6:d4:7e:26:d7:e7: e0:7a:bc:3c:26:d3:b9:e3:0a:5a:e0:50:3b:cd:9c:36:c3:f4: 64:11:33:32:2a:2f:b2:67:a3:5d:8f:5d:4c:59:60:19:09:ff: 75:34:79:90:fe:42:87:8e:24:3c:b3:70:8b:5b:33:a8:c3:6e: 80:8d:cd:a0:b1:c7:c7:a4:1e:e8:1f:c3:2f:6a:fa:de:fb:84: 1c:ee:60:09:a5:55:14:4b:6f:14:9e:ab:44:d7:11:30:d5:d3: f8:80:56:49:6f:fe:67:ba:bb:38:ca:6c:8c:de:5c:c7:11:27: a6:0b:3c:08:ae:2d:0e:a0:02:81:89:8f:7c:71:3f:6b:f6:4d: 21:54:fd:88 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUUwnrEV5BA9LyIpHcvayTrV/vwVwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODk0MDI2NTUwMTczMTJCOENGQ0IzNjdCQTgyOTY2QUEy MUUxMUY5MDAeFw0yMzA5MDMxNzU1MDBaFw0yNDA5MDExODAwMDBaMDMxMTAvBgNV BAMTKDg1RTYzQ0Q0QzFFOEFCRTgwNjNGOTRGNDQ0MzNDRTAwNUE1NTg3MkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKEOStxDFssMlrTx7dfqpXUigH 61fEq8jEX+LbwCYm4YUHG7h4a+putRN03Qvf9zoKD4LpmcDmXX45X/c0uZKNI8Cq oolYZ9aYsvh9QbYDEJB+DayMyHS13EVTfc7xGXd9ilkc/mdXMe2yoTOX1/0ob178 SWrX2i8dQHWuuLYRnfK5VowpOzsH3xZXP1Kwhp1P5oWb/HDlTeUqZRaiTD+nV63V MHAuOCIKG2W2L9iILVr+jZoBlKKqKcqMoN7gH+aFS1OfaxlH4CZWWxbAdg1lWmGQ FLMLF0WghR95Rg/w4yFL4Vs08OFUBd1MZ/NwlTkZsIfR69RR8R/t5VggudnpAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUheY81MHoq+gGP5T0RDPOAFpVhywwHwYDVR0j BBgwFoAUiUAmVQFzErjPyzZ7qClmqiHhH5AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZmIxYzgwYy00ZDZjLTQ0MDgtODk0Ny1mYmE2ZTdjNGJlN2MvMC84OTQwMjY1NTAx NzMxMkI4Q0ZDQjM2N0JBODI5NjZBQTIxRTExRjkwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODk0MDI2NTUwMTczMTJCOENGQ0IzNjdCQTgyOTY2QUEyMUUx MUY5MC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVmYjFjODBjLTRkNmMtNDQwOC04 OTQ3LWZiYTZlN2M0YmU3Yy8wLzMyMzQzMDM0M2E2MjMyMzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzczNjM3MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBLKAMA0GCSqGSIb3 DQEBCwUAA4IBAQCsX/OvxSuYYW6cvXHHH+U9ShS+tyO6g94GIx1Sr3y5e4ZhPOSI tDpzKDfmo/59x45nmPuu19eg3jXBAQLTXZBZDlF9WbzRmGY/iQKmSBlvwW6xQCU4 xEkc3pGmViFqKZrhs7b1bXyYmhB83MzejcYEoF5xROVf4k7m1H4m1+fgerw8JtO5 4wpa4FA7zZw2w/RkETMyKi+yZ6Ndj11MWWAZCf91NHmQ/kKHjiQ8s3CLWzOow26A jc2gscfHpB7oH8Mvavre+4Qc7mAJpVUUS28UnqtE1xEw1dP4gFZJb/5nurs4ymyM 3lzHESemCzwIri0OoAKBiY98cT9r9k0hVP2I -----END CERTIFICATE-----Generated at Wed Apr 24 03:20:27 2024 by rpki-client on console-ams.rpki-client.org