$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a633030303a3a2f34372d3437203d3e203137373237.roa File: 323430343a633030303a633030303a3a2f34372d3437203d3e203137373237.roa (raw, json) Hash identifier: RU1Hw81dI2tltbpBSnDofE+xNyIxSZudfriaQ4/riqo= Subject key identifier: 2A:E3:42:60:C1:23:D5:54:96:21:CC:55:E9:43:DD:31:AC:1E:5E:CA Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 0A8466A2836EBB8A53615B0D9DB8E95B2C0B12FB Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a633030303a3a2f34372d3437203d3e203137373237.roa Signing time: Mon 03 Jul 2023 03:39:01 +0000 ROA not before: Mon 03 Jul 2023 03:34:01 +0000 ROA not after: Mon 01 Jul 2024 03:39:01 +0000 asID: 17727 IP address blocks: 2404:c000:c000::/47 maxlen: 47 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 19:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:84:66:a2:83:6e:bb:8a:53:61:5b:0d:9d:b8:e9:5b:2c:0b:12:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Jul 3 03:34:01 2023 GMT Not After : Jul 1 03:39:01 2024 GMT Subject: CN=2AE34260C123D5549621CC55E943DD31AC1E5ECA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:e9:9e:b7:38:9a:71:97:79:26:c3:3a:b2:22: e2:23:bb:e1:95:47:17:8f:29:91:85:74:59:42:0c: 0f:a7:eb:84:2e:bc:a0:a4:bb:f4:9b:57:85:d7:0f: 0f:97:e8:58:8d:43:3f:72:b7:96:82:6d:b0:cc:95: a4:a7:28:b1:76:81:bb:82:b4:fe:48:1f:62:d5:b9: fe:83:47:03:77:91:dd:76:a3:f1:5d:ad:2a:9b:b1: fc:97:79:6c:ec:08:aa:47:fc:a3:3a:f4:94:d9:96: 9b:d2:10:d0:4b:ae:d8:56:32:b7:1c:dc:1d:94:a8: 22:ff:ca:e8:f7:a9:98:a6:f2:55:16:0c:63:76:ff: 08:df:84:e3:dc:e1:63:b6:0c:17:9e:58:c3:77:8a: ef:4f:2f:ea:b9:2e:d2:9c:2e:79:78:85:93:b7:dc: 78:81:29:2c:dc:f3:42:fe:2d:d4:c5:4d:86:48:91: f4:83:ab:90:6d:b3:21:36:d2:b3:ec:6b:5d:83:a4: a0:d3:08:8c:93:55:64:4a:9e:8d:a7:f6:30:73:f8: af:e6:43:72:90:65:af:05:b0:1d:22:3d:87:2c:ab: 71:17:ff:28:28:f0:03:f1:ca:38:7a:1b:91:93:61: a2:00:60:7e:d7:b5:e6:c7:90:a4:f1:16:d7:d0:c2: b4:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:E3:42:60:C1:23:D5:54:96:21:CC:55:E9:43:DD:31:AC:1E:5E:CA X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a633030303a3a2f34372d3437203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000:c000::/47 Signature Algorithm: sha256WithRSAEncryption 77:05:14:be:cb:82:49:67:6c:c5:1c:68:3d:e3:42:2a:da:54: ff:d9:73:33:1d:e8:28:79:2f:90:8d:fb:d0:7c:b8:7b:64:56: 00:7f:9e:0f:5d:b6:37:3b:38:c0:c8:f4:a0:70:b8:53:27:bb: 7d:93:50:02:1d:80:c0:35:26:ff:64:b7:9d:08:10:0b:f6:5a: 61:78:3c:37:97:18:75:f9:58:db:4b:a0:18:b5:1c:fa:9d:9e: 1b:38:b9:95:86:89:97:d0:df:b3:1f:41:b2:12:b2:b9:42:e9: e7:6a:00:36:5a:06:fe:a2:ea:40:08:7f:f4:38:65:7d:df:9e: c0:d1:df:cd:ba:be:4e:4c:ba:d5:d2:88:c2:9a:f0:fa:a7:41: fd:27:6d:f6:ae:74:48:b0:29:d7:d6:26:11:2d:57:49:ac:17: 27:91:3b:e8:cb:62:25:fa:d3:e1:e9:90:c0:fe:61:9e:dd:9f: d8:af:8a:bc:21:d5:75:01:95:04:30:6e:b5:ab:78:06:fa:5c: 6d:9f:66:6d:0e:45:0e:c6:09:b0:e2:02:33:46:4c:8d:66:72: 87:30:fb:23:4f:8e:9a:65:6b:44:e5:f3:df:cc:1c:f7:76:1d: 97:4d:8c:d4:e9:75:24:98:ea:96:9a:c7:d6:d7:e7:75:10:c9: a9:42:90:83 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUCoRmooNuu4pTYVsNnbjpWywLEvswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yMzA3MDMwMzM0MDFaFw0yNDA3MDEwMzM5MDFaMDMxMTAvBgNV BAMTKDJBRTM0MjYwQzEyM0Q1NTQ5NjIxQ0M1NUU5NDNERDMxQUMxRTVFQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCW6Z63OJpxl3kmwzqyIuIju+GV RxePKZGFdFlCDA+n64QuvKCku/SbV4XXDw+X6FiNQz9yt5aCbbDMlaSnKLF2gbuC tP5IH2LVuf6DRwN3kd12o/FdrSqbsfyXeWzsCKpH/KM69JTZlpvSENBLrthWMrcc 3B2UqCL/yuj3qZim8lUWDGN2/wjfhOPc4WO2DBeeWMN3iu9PL+q5LtKcLnl4hZO3 3HiBKSzc80L+LdTFTYZIkfSDq5BtsyE20rPsa12DpKDTCIyTVWRKno2n9jBz+K/m Q3KQZa8FsB0iPYcsq3EX/ygo8APxyjh6G5GTYaIAYH7XtebHkKTxFtfQwrTHAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUKuNCYMEj1VSWIcxV6UPdMaweXsowHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhNjMzMDMwMzAz YTNhMmYzNDM3MmQzNDM3MjAzZDNlMjAzMTM3MzczMjM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcBJATA AMAAMA0GCSqGSIb3DQEBCwUAA4IBAQB3BRS+y4JJZ2zFHGg940Iq2lT/2XMzHego eS+QjfvQfLh7ZFYAf54PXbY3OzjAyPSgcLhTJ7t9k1ACHYDANSb/ZLedCBAL9lph eDw3lxh1+VjbS6AYtRz6nZ4bOLmVhomX0N+zH0GyErK5QunnagA2Wgb+oupACH/0 OGV9357A0d/Nur5OTLrV0ojCmvD6p0H9J232rnRIsCnX1iYRLVdJrBcnkTvoy2Il +tPh6ZDA/mGe3Z/Yr4q8IdV1AZUEMG61q3gG+lxtn2ZtDkUOxgmw4gIzRkyNZnKH MPsjT46aZWtE5fPfzBz3dh2XTYzU6XUkmOqWmsfW1+d1EMmpQpCD -----END CERTIFICATE-----Generated at Wed May 1 19:11:08 2024 by rpki-client on console-fra.rpki-client.org