$ rpki-client -vvf repo-rpki.idnic.net/repo/6ed47202-de60-47f3-a2a7-608a74a1e874/0/323430373a366634303a3a2f33322d3332203d3e203538383230.roa File: 323430373a366634303a3a2f33322d3332203d3e203538383230.roa (raw, json) Hash identifier: W+MSRawH2gGUyu06kMhQKGVn8bVJTLgPhgGIM0AHaD8= Subject key identifier: 56:77:DF:44:5C:46:63:0E:15:3D:60:51:E6:E1:FA:91:CD:6C:9E:5B Certificate issuer: /CN=151AB754D8D5F171FE636D5DB7C89D082E1A90CE Certificate serial: 38681655FB2684095159A79BAEB3BD9D920F0637 Authority key identifier: 15:1A:B7:54:D8:D5:F1:71:FE:63:6D:5D:B7:C8:9D:08:2E:1A:90:CE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/151AB754D8D5F171FE636D5DB7C89D082E1A90CE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6ed47202-de60-47f3-a2a7-608a74a1e874/0/323430373a366634303a3a2f33322d3332203d3e203538383230.roa Signing time: Thu 14 Mar 2024 16:00:01 +0000 ROA not before: Thu 14 Mar 2024 15:55:01 +0000 ROA not after: Thu 13 Mar 2025 16:00:01 +0000 asID: 58820 IP address blocks: 2407:6f40::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6ed47202-de60-47f3-a2a7-608a74a1e874/0/151AB754D8D5F171FE636D5DB7C89D082E1A90CE.crl rsync://repo-rpki.idnic.net/repo/6ed47202-de60-47f3-a2a7-608a74a1e874/0/151AB754D8D5F171FE636D5DB7C89D082E1A90CE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/151AB754D8D5F171FE636D5DB7C89D082E1A90CE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 22:51:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:68:16:55:fb:26:84:09:51:59:a7:9b:ae:b3:bd:9d:92:0f:06:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=151AB754D8D5F171FE636D5DB7C89D082E1A90CE Validity Not Before: Mar 14 15:55:01 2024 GMT Not After : Mar 13 16:00:01 2025 GMT Subject: CN=5677DF445C46630E153D6051E6E1FA91CD6C9E5B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ab:3b:f8:d8:1a:93:ce:f4:48:3e:df:de:6b: 25:da:49:29:2e:a8:aa:4d:a8:70:17:05:b8:1d:e2: 26:6b:2a:68:97:05:bb:4b:04:3a:db:47:27:1b:e9: a6:01:0c:72:d1:65:25:00:9b:eb:dc:19:d0:ab:8d: 91:c1:10:e8:12:09:8b:b0:98:34:bf:5f:3b:11:e8: 84:e5:81:a4:69:c3:7c:a7:05:03:1c:69:c8:be:14: 3b:ec:78:b6:bf:c7:b0:84:f1:81:af:fc:59:5e:81: ac:f0:cd:6f:43:2f:d7:0f:28:42:c6:26:5b:78:65: cd:9f:6c:77:79:a0:21:11:ce:c9:ca:8f:66:6c:f1: 50:ce:d7:ba:79:d5:56:20:d8:a9:dc:b6:9c:e3:2b: 7e:5b:10:e6:84:01:8a:6a:22:21:76:6f:9f:0c:45: 63:ef:51:a4:ba:26:49:97:62:cd:f1:2a:47:69:2b: c8:8f:a1:46:35:6f:fe:2f:df:f0:7a:93:52:45:5e: 28:0c:7c:05:d8:b9:72:e3:5b:3a:89:b6:e4:a2:8c: 7f:78:fd:f2:f6:9e:b9:da:76:81:37:36:4a:a4:68: 7e:c0:ac:67:f3:ad:c9:f4:f6:41:84:0b:d8:32:07: db:6c:ff:b0:d5:1d:77:20:7d:6a:44:90:97:6a:91: 89:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:77:DF:44:5C:46:63:0E:15:3D:60:51:E6:E1:FA:91:CD:6C:9E:5B X509v3 Authority Key Identifier: keyid:15:1A:B7:54:D8:D5:F1:71:FE:63:6D:5D:B7:C8:9D:08:2E:1A:90:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6ed47202-de60-47f3-a2a7-608a74a1e874/0/151AB754D8D5F171FE636D5DB7C89D082E1A90CE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/151AB754D8D5F171FE636D5DB7C89D082E1A90CE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6ed47202-de60-47f3-a2a7-608a74a1e874/0/323430373a366634303a3a2f33322d3332203d3e203538383230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:6f40::/32 Signature Algorithm: sha256WithRSAEncryption 68:fc:95:7f:d0:e3:a5:f1:d0:fa:c6:7b:5f:1d:53:aa:6c:ef: 62:0d:47:e2:d5:01:f6:6b:bd:e8:70:e4:58:88:f5:a4:8f:e2: c4:8c:0a:59:fa:df:90:91:3e:c0:60:fb:52:4f:bc:9d:43:4f: 60:8c:10:3e:49:70:dd:06:35:df:ef:d2:25:33:70:a6:f8:08: c2:7d:b9:f5:62:6d:91:dc:1f:ae:12:38:6a:63:c7:e5:ab:d8: 60:88:21:13:96:00:c2:5e:5a:da:07:94:32:3f:36:1a:b6:66: d8:4f:d8:6c:18:b8:eb:92:97:80:4f:21:4e:55:b0:3f:cb:cc: 60:ec:3c:14:ce:8a:88:93:d5:84:69:aa:d0:ee:e6:0f:b2:7e: bd:30:bd:ab:c4:fc:37:42:a0:83:9f:99:69:51:cf:0a:d7:39: 5c:09:49:02:24:10:26:f6:5d:71:35:c1:57:69:9b:64:68:cc: f0:c2:e8:78:fd:77:ed:69:72:0e:dd:8e:42:5d:51:31:f4:71: 9a:95:55:6f:29:23:5b:ce:15:00:52:af:21:7c:68:20:15:96: 0c:19:14:2f:f4:d2:bd:a7:50:52:8a:b4:ca:81:35:3e:d7:93: 10:12:88:b6:49:84:b9:50:ec:ea:17:62:82:41:fc:b0:cb:ac: 85:6f:02:2a -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUOGgWVfsmhAlRWaebrrO9nZIPBjcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTUxQUI3NTREOEQ1RjE3MUZFNjM2RDVEQjdDODlEMDgy RTFBOTBDRTAeFw0yNDAzMTQxNTU1MDFaFw0yNTAzMTMxNjAwMDFaMDMxMTAvBgNV BAMTKDU2NzdERjQ0NUM0NjYzMEUxNTNENjA1MUU2RTFGQTkxQ0Q2QzlFNUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOqzv42BqTzvRIPt/eayXaSSku qKpNqHAXBbgd4iZrKmiXBbtLBDrbRycb6aYBDHLRZSUAm+vcGdCrjZHBEOgSCYuw mDS/XzsR6ITlgaRpw3ynBQMcaci+FDvseLa/x7CE8YGv/FlegazwzW9DL9cPKELG Jlt4Zc2fbHd5oCERzsnKj2Zs8VDO17p51VYg2KnctpzjK35bEOaEAYpqIiF2b58M RWPvUaS6JkmXYs3xKkdpK8iPoUY1b/4v3/B6k1JFXigMfAXYuXLjWzqJtuSijH94 /fL2nrnadoE3NkqkaH7ArGfzrcn09kGEC9gyB9ts/7DVHXcgfWpEkJdqkYnFAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUVnffRFxGYw4VPWBR5uH6kc1snlswHwYDVR0j BBgwFoAUFRq3VNjV8XH+Y21dt8idCC4akM4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZWQ0NzIwMi1kZTYwLTQ3ZjMtYTJhNy02MDhhNzRhMWU4NzQvMC8xNTFBQjc1NEQ4 RDVGMTcxRkU2MzZENURCN0M4OUQwODJFMUE5MENFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTUxQUI3NTREOEQ1RjE3MUZFNjM2RDVEQjdDODlEMDgyRTFB OTBDRS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlZDQ3MjAyLWRlNjAtNDdmMy1h MmE3LTYwOGE3NGExZTg3NC8wLzMyMzQzMDM3M2EzNjY2MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDM1MzgzODMyMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkB29AMA0GCSqGSIb3 DQEBCwUAA4IBAQBo/JV/0OOl8dD6xntfHVOqbO9iDUfi1QH2a73ocORYiPWkj+LE jApZ+t+QkT7AYPtST7ydQ09gjBA+SXDdBjXf79IlM3Cm+AjCfbn1Ym2R3B+uEjhq Y8flq9hgiCETlgDCXlraB5QyPzYatmbYT9hsGLjrkpeATyFOVbA/y8xg7DwUzoqI k9WEaarQ7uYPsn69ML2rxPw3QqCDn5lpUc8K1zlcCUkCJBAm9l1xNcFXaZtkaMzw wuh4/XftaXIO3Y5CXVEx9HGalVVvKSNbzhUAUq8hfGggFZYMGRQv9NK9p1BSirTK gTU+15MQEoi2SYS5UOzqF2KCQfywy6yFbwIq -----END CERTIFICATE-----Generated at Mon May 6 23:04:15 2024 by rpki-client on console-fra.rpki-client.org