$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a633030343a3a2f34382d3438203d3e203137373237.roa File: 323430343a633030303a633030343a3a2f34382d3438203d3e203137373237.roa (raw, json) Hash identifier: QsBudz1nt8vCM/nDb2avGO2CAUCbUOVc1/0gzhu38Xk= Subject key identifier: F3:A3:3F:13:86:00:B4:99:C6:A7:EC:77:D7:C6:D9:F8:44:B3:4F:18 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 456206A9F7D6BBB0D6510F1C515E432A6849024D Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a633030343a3a2f34382d3438203d3e203137373237.roa Signing time: Sun 29 Oct 2023 15:00:01 +0000 ROA not before: Sun 29 Oct 2023 14:55:01 +0000 ROA not after: Sun 27 Oct 2024 15:00:01 +0000 asID: 17727 IP address blocks: 2404:c000:c004::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 18:28:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:62:06:a9:f7:d6:bb:b0:d6:51:0f:1c:51:5e:43:2a:68:49:02:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Oct 29 14:55:01 2023 GMT Not After : Oct 27 15:00:01 2024 GMT Subject: CN=F3A33F138600B499C6A7EC77D7C6D9F844B34F18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f4:e7:56:88:98:59:9d:d3:86:91:89:67:71: bf:84:ca:1c:06:81:55:5c:65:5a:ee:5d:19:c7:a9: 93:07:48:fd:3c:d3:23:1e:7b:10:7d:79:be:41:d8: 96:e4:b8:6f:2f:f9:ff:d6:02:c3:02:c4:10:a5:c2: 86:c9:b9:19:b3:4f:07:bd:bf:af:03:27:7c:40:76: eb:b3:2a:c1:a5:03:1e:ea:04:98:23:ca:7e:c6:4c: 2d:c6:49:79:4a:47:c0:ec:75:d1:b2:8f:06:7f:ec: a9:8e:b0:89:8e:9c:eb:b0:88:b1:61:96:57:82:e1: 5d:e5:90:f8:e3:ab:99:70:66:34:a5:b8:05:78:c8: a6:e3:96:28:61:55:a8:d6:9d:ff:bb:63:9c:55:bd: cb:5f:7f:39:6c:e2:67:f9:05:e9:db:9a:3f:8e:51: 31:68:0d:a3:99:62:ac:28:5d:e9:34:57:9a:55:56: 64:e2:af:71:58:6e:ed:81:31:9b:99:6b:13:dd:0d: 9f:a0:39:6c:5a:ff:95:91:4c:e1:a2:d0:4d:1f:36: 7f:c4:6e:f6:3f:9f:ad:01:80:13:67:3c:e6:d0:22: b2:73:01:91:59:b4:3e:b3:19:4e:e7:99:e1:8e:6a: c1:f5:c4:f1:da:2a:ee:bd:b5:3e:61:64:2c:45:37: 39:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:A3:3F:13:86:00:B4:99:C6:A7:EC:77:D7:C6:D9:F8:44:B3:4F:18 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a633030343a3a2f34382d3438203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000:c004::/48 Signature Algorithm: sha256WithRSAEncryption 7e:5d:53:82:d1:82:db:b5:0a:71:12:74:b3:26:26:fd:36:ce: 2f:9c:42:4e:43:3c:ce:b0:6b:1c:25:7a:b3:46:f8:4c:9a:e4: f2:13:3b:32:b9:3d:ed:a9:39:f0:02:ea:0b:f5:6d:e7:4d:c3: f1:6d:76:31:60:c0:9d:9a:f9:97:58:bf:96:db:ea:ef:6d:6f: e7:23:05:15:cf:b3:e6:48:b7:4f:1c:63:6d:08:1c:a9:04:96: a6:07:f0:16:a3:d1:2d:91:e8:72:ec:0f:70:f1:d0:1e:0a:87: e7:9a:b1:78:6e:11:a3:d0:9d:3d:55:c1:60:9b:7f:cc:ce:9d: 4f:03:09:1d:58:ff:81:eb:31:54:f2:5f:48:34:a1:6e:fd:53: c8:92:4e:0a:fb:06:1e:fc:91:cc:9c:c3:8a:e5:69:c0:fd:54: 1f:fd:9d:b4:95:c2:10:e3:0b:79:8a:c3:80:b2:37:25:0d:33: c8:9b:53:86:0c:02:66:6f:ab:61:97:0f:8f:bb:0a:8d:e9:bb: ee:f9:04:8e:f7:b3:03:94:b4:28:15:73:87:54:47:b4:f5:d8: c8:30:b3:6c:96:9c:ab:64:5e:db:3f:82:e1:97:5f:b7:35:a7: d2:1f:45:e6:6d:c7:00:12:f4:ad:6f:4c:c6:b6:b4:d6:da:6a: e9:ab:6a:fc -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIURWIGqffWu7DWUQ8cUV5DKmhJAk0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yMzEwMjkxNDU1MDFaFw0yNDEwMjcxNTAwMDFaMDMxMTAvBgNV BAMTKEYzQTMzRjEzODYwMEI0OTlDNkE3RUM3N0Q3QzZEOUY4NDRCMzRGMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz9OdWiJhZndOGkYlncb+EyhwG gVVcZVruXRnHqZMHSP080yMeexB9eb5B2JbkuG8v+f/WAsMCxBClwobJuRmzTwe9 v68DJ3xAduuzKsGlAx7qBJgjyn7GTC3GSXlKR8DsddGyjwZ/7KmOsImOnOuwiLFh lleC4V3lkPjjq5lwZjSluAV4yKbjlihhVajWnf+7Y5xVvctffzls4mf5Benbmj+O UTFoDaOZYqwoXek0V5pVVmTir3FYbu2BMZuZaxPdDZ+gOWxa/5WRTOGi0E0fNn/E bvY/n60BgBNnPObQIrJzAZFZtD6zGU7nmeGOasH1xPHaKu69tT5hZCxFNzlxAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU86M/E4YAtJnGp+x318bZ+ESzTxgwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhNjMzMDMwMzQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM3MzczMjM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJATA AMAEMA0GCSqGSIb3DQEBCwUAA4IBAQB+XVOC0YLbtQpxEnSzJib9Ns4vnEJOQzzO sGscJXqzRvhMmuTyEzsyuT3tqTnwAuoL9W3nTcPxbXYxYMCdmvmXWL+W2+rvbW/n IwUVz7PmSLdPHGNtCBypBJamB/AWo9Etkehy7A9w8dAeCofnmrF4bhGj0J09VcFg m3/Mzp1PAwkdWP+B6zFU8l9INKFu/VPIkk4K+wYe/JHMnMOK5WnA/VQf/Z20lcIQ 4wt5isOAsjclDTPIm1OGDAJmb6thlw+PuwqN6bvu+QSO97MDlLQoFXOHVEe09djI MLNslpyrZF7bP4Lhl1+3NafSH0XmbccAEvStb0zGtrTW2mrpq2r8 -----END CERTIFICATE-----Generated at Wed May 1 18:10:56 2024 by rpki-client on console-ams.rpki-client.org