$ rpki-client -vvf repo-rpki.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/323430343a3630303a3a2f33322d3438203d3e2034383333.roa File: 323430343a3630303a3a2f33322d3438203d3e2034383333.roa (raw, json) Hash identifier: 5Qo+fr2lsqF0nsr209QbzL88jwzoelNwSyDDKjgUnWM= Subject key identifier: 14:75:46:49:F0:F0:50:71:06:AA:29:9A:60:A9:CD:60:3B:76:BE:71 Certificate issuer: /CN=CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9 Certificate serial: 11550EC1CB7C85772BC81E209F214D7F16FD4B76 Authority key identifier: CD:68:1E:40:6D:2E:CD:8A:CA:28:E4:F0:7B:9A:FA:9D:F6:48:C4:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/323430343a3630303a3a2f33322d3438203d3e2034383333.roa Signing time: Mon 31 Jul 2023 00:07:21 +0000 ROA not before: Mon 31 Jul 2023 00:02:21 +0000 ROA not after: Mon 29 Jul 2024 00:07:21 +0000 asID: 4833 IP address blocks: 2404:600::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9.crl rsync://repo-rpki.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 00:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:55:0e:c1:cb:7c:85:77:2b:c8:1e:20:9f:21:4d:7f:16:fd:4b:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9 Validity Not Before: Jul 31 00:02:21 2023 GMT Not After : Jul 29 00:07:21 2024 GMT Subject: CN=14754649F0F0507106AA299A60A9CD603B76BE71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:0a:d7:a7:99:57:bc:e4:ad:39:d2:3c:f3:26: 26:c3:03:60:4f:75:24:f6:3c:2d:e0:bb:8e:1c:81: 47:d4:90:af:ba:d5:f1:c5:2f:56:1b:b5:6d:d3:22: 28:ef:1b:25:af:ba:20:75:4a:49:56:84:0e:12:62: 2c:f1:9e:7f:b0:6c:8c:00:28:d8:c5:3d:c7:f4:0f: 8e:fc:f6:0c:37:2d:9c:3f:60:10:e9:04:87:ff:2c: 80:96:77:8e:c6:5a:d7:5b:ea:d6:ec:a7:38:3c:3d: 71:48:e4:f6:30:25:c1:e3:91:80:23:c7:ab:ae:de: e9:89:2a:c6:ce:49:a5:83:fd:5e:fa:f0:c7:dd:44: f4:21:a8:30:19:73:f5:e1:5f:51:31:b6:0f:e0:aa: 56:6f:c2:99:ff:ef:3a:19:1a:fb:48:8e:9c:d4:19: 5b:23:90:c9:d3:3f:b1:04:d0:aa:42:5a:09:d4:cd: d4:fa:c3:dd:49:bd:f5:2c:94:cf:2f:b0:26:c3:bd: bc:f8:cc:fe:56:f6:08:4a:56:72:e8:dc:39:8f:47: 71:9e:67:19:65:bd:40:79:ac:41:ba:59:fb:40:a0: 0e:84:6f:35:b9:99:ff:18:a5:16:cd:fc:83:36:6f: 5a:69:c9:6e:ca:07:f3:9f:20:8e:f4:53:29:9a:ee: 99:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:75:46:49:F0:F0:50:71:06:AA:29:9A:60:A9:CD:60:3B:76:BE:71 X509v3 Authority Key Identifier: keyid:CD:68:1E:40:6D:2E:CD:8A:CA:28:E4:F0:7B:9A:FA:9D:F6:48:C4:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/323430343a3630303a3a2f33322d3438203d3e2034383333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:600::/32 Signature Algorithm: sha256WithRSAEncryption 5f:c9:ec:75:f7:84:98:b6:81:db:57:f6:50:63:48:ee:ae:a7: 1d:ad:43:7f:fd:40:96:53:11:59:e3:01:1e:25:b8:1e:f5:2b: 7b:7d:fe:b3:16:9f:d5:16:57:09:dc:e5:91:ac:39:31:a0:0e: 2b:8a:e0:86:c2:76:91:c8:b9:c4:2a:94:db:b1:82:95:2c:27: 4e:de:f3:ff:99:db:52:52:0c:2f:fd:a5:57:77:57:4f:c9:c4: f0:c4:9d:f9:68:9b:68:73:9b:93:e4:35:ce:38:d1:7b:f2:9e: 2c:0b:9d:a6:97:f9:5f:24:9f:4f:04:64:f0:45:28:58:ba:ed: 4f:c6:4d:6a:1b:4b:7a:2b:65:2a:e3:43:de:4e:60:fe:d1:a4: db:2a:cc:b3:c7:57:05:be:32:e0:41:66:a2:9e:24:04:89:61: 56:b8:e8:79:ac:05:e1:c5:f6:80:3f:0a:a9:1c:07:6e:8f:d2: e6:08:02:6e:81:9a:7d:58:11:ad:28:30:74:84:07:ea:d1:60: 5d:0a:96:a9:80:0e:bf:f7:73:2d:c0:32:97:d1:ff:bf:09:23: 16:bc:74:9f:d6:d5:b5:a0:65:c1:a4:a3:c9:06:e3:f2:f8:46: 0b:75:89:b0:d1:77:71:da:c1:74:00:e6:6e:43:b4:45:1c:ae: 52:c7:50:75 -----BEGIN CERTIFICATE----- MIIFIjCCBAqgAwIBAgIUEVUOwct8hXcryB4gnyFNfxb9S3YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0Q2ODFFNDA2RDJFQ0Q4QUNBMjhFNEYwN0I5QUZBOURG NjQ4QzRFOTAeFw0yMzA3MzEwMDAyMjFaFw0yNDA3MjkwMDA3MjFaMDMxMTAvBgNV BAMTKDE0NzU0NjQ5RjBGMDUwNzEwNkFBMjk5QTYwQTlDRDYwM0I3NkJFNzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcCtenmVe85K050jzzJibDA2BP dST2PC3gu44cgUfUkK+61fHFL1YbtW3TIijvGyWvuiB1SklWhA4SYizxnn+wbIwA KNjFPcf0D4789gw3LZw/YBDpBIf/LICWd47GWtdb6tbspzg8PXFI5PYwJcHjkYAj x6uu3umJKsbOSaWD/V768MfdRPQhqDAZc/XhX1Extg/gqlZvwpn/7zoZGvtIjpzU GVsjkMnTP7EE0KpCWgnUzdT6w91JvfUslM8vsCbDvbz4zP5W9ghKVnLo3DmPR3Ge ZxllvUB5rEG6WftAoA6EbzW5mf8YpRbN/IM2b1ppyW7KB/OfII70Uyma7pkFAgMB AAGjggIsMIICKDAdBgNVHQ4EFgQUFHVGSfDwUHEGqimaYKnNYDt2vnEwHwYDVR0j BBgwFoAUzWgeQG0uzYrKKOTwe5r6nfZIxOkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NmMxZjUxYS04NjQ1LTRlYjEtYTJmZi1lMjdjMjRjOGUwYzgvMC9DRDY4MUU0MDZE MkVDRDhBQ0EyOEU0RjA3QjlBRkE5REY2NDhDNEU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0Q2ODFFNDA2RDJFQ0Q4QUNBMjhFNEYwN0I5QUZBOURGNjQ4 QzRFOS5jZXIwgZsGCCsGAQUFBwELBIGOMIGLMIGIBggrBgEFBQcwC4Z8cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjZjMWY1MWEtODY0NS00ZWIxLWEy ZmYtZTI3YzI0YzhlMGM4LzAvMzIzNDMwMzQzYTM2MzAzMDNhM2EyZjMzMzIyZDM0 MzgyMDNkM2UyMDM0MzgzMzMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAQGADANBgkqhkiG9w0BAQsF AAOCAQEAX8nsdfeEmLaB21f2UGNI7q6nHa1Df/1AllMRWeMBHiW4HvUre33+sxaf 1RZXCdzlkaw5MaAOK4rghsJ2kci5xCqU27GClSwnTt7z/5nbUlIML/2lV3dXT8nE 8MSd+WibaHObk+Q1zjjRe/KeLAudppf5XySfTwRk8EUoWLrtT8ZNahtLeitlKuND 3k5g/tGk2yrMs8dXBb4y4EFmop4kBIlhVrjoeawF4cX2gD8KqRwHbo/S5ggCboGa fVgRrSgwdIQH6tFgXQqWqYAOv/dzLcAyl9H/vwkjFrx0n9bVtaBlwaSjyQbj8vhG C3WJsNF3cdrBdADmbkO0RRyuUsdQdQ== -----END CERTIFICATE-----Generated at Tue Apr 23 22:55:04 2024 by rpki-client on console-ams.rpki-client.org