$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a383030303a3a2f34372d3437203d3e203137373237.roa File: 323430343a633030303a383030303a3a2f34372d3437203d3e203137373237.roa (raw, json) Hash identifier: 7aUd7lI5HkWyaT3+2wjJ+7ZbuiCWkLlrseQR9NtMUW0= Subject key identifier: 21:10:F3:89:5F:F4:A5:AF:AD:6D:77:33:10:90:CC:E1:1A:40:FC:3A Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 75F4EBF591EB221F424DCE75B2F066202D5762EF Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a383030303a3a2f34372d3437203d3e203137373237.roa Signing time: Mon 03 Jul 2023 03:37:56 +0000 ROA not before: Mon 03 Jul 2023 03:32:56 +0000 ROA not after: Mon 01 Jul 2024 03:37:56 +0000 asID: 17727 IP address blocks: 2404:c000:8000::/47 maxlen: 47 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 19:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:f4:eb:f5:91:eb:22:1f:42:4d:ce:75:b2:f0:66:20:2d:57:62:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Jul 3 03:32:56 2023 GMT Not After : Jul 1 03:37:56 2024 GMT Subject: CN=2110F3895FF4A5AFAD6D77331090CCE11A40FC3A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:7d:b9:3f:82:0c:a0:9f:fb:07:48:4c:29:3c: 40:58:c5:35:4e:51:0d:b1:0a:02:43:cd:b7:ca:85: 00:cb:f0:92:f9:08:a8:65:1f:77:f5:98:2b:8c:d8: 49:d9:be:df:92:18:6a:4e:c3:6e:aa:d6:61:fe:85: 9a:a9:63:e6:a7:4c:b4:9e:b1:69:dd:84:52:0a:16: d1:94:5b:e7:34:37:fc:34:18:cb:63:86:ae:da:6d: ba:ac:71:36:ff:a5:f3:cc:5f:1b:61:0f:6e:f4:fd: bd:86:a3:20:88:97:a7:83:67:a9:4f:6a:9e:1f:b4: 59:e8:fb:92:c2:34:86:5c:29:f7:e2:1f:7c:95:0a: f9:f8:ef:8d:d0:bf:dc:e5:cc:3d:88:e3:bf:b6:f5: 30:0c:f2:4c:58:03:e3:66:ad:79:92:b8:46:81:44: 99:b3:88:5a:42:bd:7f:02:4a:c1:ef:9f:a1:a7:91: de:4b:72:3a:8d:36:d6:8e:41:af:31:8a:f3:4b:2c: 80:90:ef:5c:20:35:65:74:92:80:5e:b6:1c:11:e1: f2:9e:1e:67:bf:3f:8d:ad:76:7d:9e:a6:16:66:74: 7a:a9:21:ce:cf:7e:bc:36:78:d6:92:95:19:f4:8f: 8a:6f:f8:0d:95:84:d7:11:2a:52:9f:45:5c:2e:38: d0:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:10:F3:89:5F:F4:A5:AF:AD:6D:77:33:10:90:CC:E1:1A:40:FC:3A X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a383030303a3a2f34372d3437203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000:8000::/47 Signature Algorithm: sha256WithRSAEncryption 45:06:92:95:74:62:7e:8d:d0:82:8b:0b:95:2a:a2:8c:cd:65: 81:61:4e:f6:8f:1e:ae:8f:e2:f5:fc:94:ce:44:c9:67:42:d9: 88:f8:42:a4:98:4c:73:f3:09:e6:7d:63:2c:a7:8a:bf:fb:af: bf:89:1e:d4:67:98:54:77:db:bb:c3:8b:ca:1e:92:23:e3:db: 9e:f1:90:66:8d:8d:cd:86:0e:96:3d:b7:4a:f8:68:7c:55:ae: dc:8e:80:8f:bc:e1:36:56:eb:a4:d5:1d:e8:6e:6d:2b:d6:c8: 60:75:6b:38:d1:ed:7a:66:b7:1d:5e:17:cb:88:db:65:99:0e: 83:e8:cc:32:b0:ea:5f:73:8b:2d:56:7a:3c:7f:35:a5:eb:d4: f9:5e:a0:81:6f:01:91:ae:82:c8:24:38:8d:e2:2f:b1:e9:7c: 4e:fc:4c:10:2f:8d:6a:f2:36:d9:8c:5a:eb:b9:ec:7b:22:c8: 3f:f2:cb:00:e3:1b:9d:83:b4:cf:73:01:22:57:e9:09:15:fd: d2:13:bd:de:1d:58:71:55:8d:84:2b:0d:3b:ef:c2:d4:21:81: 8c:bd:7e:f4:79:b6:bd:40:da:d1:fe:66:50:4e:d1:71:b0:a6: f1:14:3b:80:0e:97:94:58:1e:17:e5:97:58:c7:22:c7:15:88: c8:41:c9:13 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUdfTr9ZHrIh9CTc51svBmIC1XYu8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yMzA3MDMwMzMyNTZaFw0yNDA3MDEwMzM3NTZaMDMxMTAvBgNV BAMTKDIxMTBGMzg5NUZGNEE1QUZBRDZENzczMzEwOTBDQ0UxMUE0MEZDM0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgfbk/ggygn/sHSEwpPEBYxTVO UQ2xCgJDzbfKhQDL8JL5CKhlH3f1mCuM2EnZvt+SGGpOw26q1mH+hZqpY+anTLSe sWndhFIKFtGUW+c0N/w0GMtjhq7abbqscTb/pfPMXxthD270/b2GoyCIl6eDZ6lP ap4ftFno+5LCNIZcKffiH3yVCvn4743Qv9zlzD2I47+29TAM8kxYA+NmrXmSuEaB RJmziFpCvX8CSsHvn6Gnkd5LcjqNNtaOQa8xivNLLICQ71wgNWV0koBethwR4fKe Hme/P42tdn2ephZmdHqpIc7Pfrw2eNaSlRn0j4pv+A2VhNcRKlKfRVwuONDPAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUIRDziV/0pa+tbXczEJDM4RpA/DowHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhMzgzMDMwMzAz YTNhMmYzNDM3MmQzNDM3MjAzZDNlMjAzMTM3MzczMjM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcBJATA AIAAMA0GCSqGSIb3DQEBCwUAA4IBAQBFBpKVdGJ+jdCCiwuVKqKMzWWBYU72jx6u j+L1/JTORMlnQtmI+EKkmExz8wnmfWMsp4q/+6+/iR7UZ5hUd9u7w4vKHpIj49ue 8ZBmjY3Nhg6WPbdK+Gh8Va7cjoCPvOE2Vuuk1R3obm0r1shgdWs40e16ZrcdXhfL iNtlmQ6D6MwysOpfc4stVno8fzWl69T5XqCBbwGRroLIJDiN4i+x6XxO/EwQL41q 8jbZjFrruex7Isg/8ssA4xudg7TPcwEiV+kJFf3SE73eHVhxVY2EKw0778LUIYGM vX70eba9QNrR/mZQTtFxsKbxFDuADpeUWB4X5ZdYxyLHFYjIQckT -----END CERTIFICATE-----Generated at Wed May 1 19:11:08 2024 by rpki-client on console-fra.rpki-client.org