$ rpki-client -vvf repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a3a2f33322d3438203d3e203338353135.roa File: 323430323a3630303a3a2f33322d3438203d3e203338353135.roa (raw, json) Hash identifier: 0tsJ0gvs6p2EjHX3e8qVlvCpLcmyxL/AeQ50gc88gQQ= Subject key identifier: 3E:CA:CF:D7:7D:E9:1C:6C:28:06:A7:BE:3C:81:34:35:49:00:F1:33 Certificate issuer: /CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3 Certificate serial: 0C2482C3196F8D22F8942FD8A1F365E7A878D5DA Authority key identifier: 93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a3a2f33322d3438203d3e203338353135.roa Signing time: Mon 31 Jul 2023 00:04:26 +0000 ROA not before: Sun 30 Jul 2023 23:59:26 +0000 ROA not after: Mon 29 Jul 2024 00:04:26 +0000 asID: 38515 IP address blocks: 2402:600::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 00:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:24:82:c3:19:6f:8d:22:f8:94:2f:d8:a1:f3:65:e7:a8:78:d5:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3 Validity Not Before: Jul 30 23:59:26 2023 GMT Not After : Jul 29 00:04:26 2024 GMT Subject: CN=3ECACFD77DE91C6C2806A7BE3C8134354900F133 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:8c:72:0d:8e:75:6f:1b:08:d1:70:84:83:a6: d8:01:4e:e0:8a:dc:85:3c:7a:5a:26:7d:2e:f0:a5: 61:d7:1d:52:52:a4:32:56:be:ef:fc:7b:8c:65:fa: fd:c4:ef:b5:e8:d7:1a:ba:be:f4:16:91:d9:d3:2b: 7b:42:80:a6:24:d1:da:d6:31:1b:8e:ab:9a:db:f5: 14:15:46:00:f2:b9:14:1b:21:db:97:2e:b7:1d:3a: 6e:b8:d5:e0:39:19:cf:f6:26:24:1c:7b:2e:01:9c: 29:73:6f:78:9f:3f:b8:10:9c:08:f5:f2:f1:26:3f: 06:39:e4:2e:8f:e2:6b:78:3f:52:73:91:8c:0e:1a: d7:e0:dd:d4:a7:92:8c:90:8e:59:1f:51:5d:59:cd: 8b:cc:ae:8b:ad:57:7e:ba:88:f1:f7:92:84:78:0b: 59:7c:5e:97:ed:f3:66:12:0f:00:ff:52:75:ce:e6: 7b:93:e5:84:04:8b:43:1c:b1:7d:c1:24:5f:bc:f2: 1d:3a:4b:f0:a7:ef:a7:5d:20:bc:33:fa:34:8d:da: e3:a2:bd:b4:23:15:07:7d:31:3d:f2:67:d3:a7:a6: 4e:82:84:5b:0a:bc:8f:db:3e:3c:52:d9:63:c3:01: 0d:90:68:e6:38:8b:e5:17:c4:72:c9:e9:e1:82:95: b5:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:CA:CF:D7:7D:E9:1C:6C:28:06:A7:BE:3C:81:34:35:49:00:F1:33 X509v3 Authority Key Identifier: keyid:93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a3a2f33322d3438203d3e203338353135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:600::/32 Signature Algorithm: sha256WithRSAEncryption 6a:7b:79:6f:5e:42:b7:68:52:40:65:aa:fa:54:b5:b8:55:96: 70:8b:1d:28:05:8f:4a:30:34:37:90:c6:65:f4:c6:5c:e3:98: b5:18:96:13:22:10:52:f7:1c:3c:2b:62:59:d5:c7:4f:49:3a: 63:7e:8b:16:b5:d4:6a:c6:10:0f:86:4f:b6:f5:3f:56:1c:31: 2f:18:f8:07:a5:85:fd:66:27:6b:e3:1f:3b:71:7c:d9:33:18: dc:10:7d:c8:5c:36:67:b9:7b:67:17:4d:50:6b:98:56:8b:a3: 2b:6e:20:5c:20:3a:81:58:c8:d9:cc:df:a1:e1:f7:10:55:6b: a1:8f:5f:ca:e8:88:d7:80:1e:f9:23:21:c9:a3:36:9d:ed:fe: 64:0e:21:2b:cd:78:89:c5:02:61:c6:88:9d:8b:8c:31:9d:57: 3f:82:9b:10:4f:e8:21:22:05:86:c2:30:0f:5e:f7:aa:2e:d4: fc:f3:f7:29:01:59:f9:5f:b4:36:ee:e3:0a:e9:fa:3d:d5:96: 7e:6f:93:4f:20:f3:09:35:21:56:12:2a:f6:e3:bf:71:3e:4d: 8d:d1:cb:a4:73:f7:51:8f:4e:89:1a:69:12:a6:35:db:e1:d8: f6:36:4c:46:6e:b2:a0:f1:0b:eb:4a:d2:5b:9c:73:e8:f0:54: 1b:00:28:82 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUDCSCwxlvjSL4lC/YofNl56h41dowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEy RERGRDhGMzAeFw0yMzA3MzAyMzU5MjZaFw0yNDA3MjkwMDA0MjZaMDMxMTAvBgNV BAMTKDNFQ0FDRkQ3N0RFOTFDNkMyODA2QTdCRTNDODEzNDM1NDkwMEYxMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXjHINjnVvGwjRcISDptgBTuCK 3IU8elomfS7wpWHXHVJSpDJWvu/8e4xl+v3E77Xo1xq6vvQWkdnTK3tCgKYk0drW MRuOq5rb9RQVRgDyuRQbIduXLrcdOm641eA5Gc/2JiQcey4BnClzb3ifP7gQnAj1 8vEmPwY55C6P4mt4P1JzkYwOGtfg3dSnkoyQjlkfUV1ZzYvMroutV366iPH3koR4 C1l8Xpft82YSDwD/UnXO5nuT5YQEi0McsX3BJF+88h06S/Cn76ddILwz+jSN2uOi vbQjFQd9MT3yZ9Onpk6ChFsKvI/bPjxS2WPDAQ2QaOY4i+UXxHLJ6eGClbV/AgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUPsrP133pHGwoBqe+PIE0NUkA8TMwHwYDVR0j BBgwFoAUk12y1EiPriwR4b873yDYKi3f2PMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YzRjNjRhOS0zNTM3LTRiYzctODYxMy04ZTk4MTYyOWU0Y2EvMC85MzVEQjJENDQ4 OEZBRTJDMTFFMUJGM0JERjIwRDgyQTJEREZEOEYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEyRERG RDhGMy5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNmM0YzY0YTktMzUzNy00YmM3LTg2 MTMtOGU5ODE2MjllNGNhLzAvMzIzNDMwMzIzYTM2MzAzMDNhM2EyZjMzMzIyZDM0 MzgyMDNkM2UyMDMzMzgzNTMxMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAgYAMA0GCSqGSIb3DQEB CwUAA4IBAQBqe3lvXkK3aFJAZar6VLW4VZZwix0oBY9KMDQ3kMZl9MZc45i1GJYT IhBS9xw8K2JZ1cdPSTpjfosWtdRqxhAPhk+29T9WHDEvGPgHpYX9Zidr4x87cXzZ MxjcEH3IXDZnuXtnF01Qa5hWi6MrbiBcIDqBWMjZzN+h4fcQVWuhj1/K6IjXgB75 IyHJozad7f5kDiErzXiJxQJhxoidi4wxnVc/gpsQT+ghIgWGwjAPXveqLtT88/cp AVn5X7Q27uMK6fo91ZZ+b5NPIPMJNSFWEir2479xPk2N0cukc/dRj06JGmkSpjXb 4dj2NkxGbrKg8QvrStJbnHPo8FQbACiC -----END CERTIFICATE-----Generated at Tue Apr 23 23:53:11 2024 by rpki-client on console-fra.rpki-client.org