$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a34303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a34303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: 37Y51NqG6RIW9Ye9YqLAn0T63iw6/opDZzTqQ3Ft3Pk= Subject key identifier: 06:73:24:12:41:92:2C:C8:8B:87:67:4D:69:06:37:3B:95:5F:79:28 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 2696CA0483C3ECD37E409385272349360CAF4A66 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a34303a3a2f34382d3438203d3e20313336303838.roa Signing time: Mon 31 Jul 2023 00:07:18 +0000 ROA not before: Mon 31 Jul 2023 00:02:18 +0000 ROA not after: Mon 29 Jul 2024 00:07:18 +0000 asID: 136088 IP address blocks: 2400:d940:40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Apr 2024 05:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:96:ca:04:83:c3:ec:d3:7e:40:93:85:27:23:49:36:0c:af:4a:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jul 31 00:02:18 2023 GMT Not After : Jul 29 00:07:18 2024 GMT Subject: CN=0673241241922CC88B87674D6906373B955F7928 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:56:8e:6c:0a:73:99:90:f1:e2:7f:ce:6a:e3: e4:10:43:26:1e:84:ca:f8:e8:00:34:5c:a1:40:24: d1:2d:7e:88:8b:89:45:de:a1:86:7d:99:3a:aa:21: 0f:af:12:67:93:58:05:34:8e:2b:35:ea:d4:bf:82: d0:ea:b4:bf:17:a7:92:99:33:82:a8:bf:67:b1:ab: cd:f4:3d:15:ad:3e:c0:90:8a:8e:a5:14:c3:85:bc: 5a:8d:54:0a:70:ef:d6:8f:57:19:45:b3:60:ed:aa: 26:69:9a:7c:74:d4:36:95:c8:0c:2a:d6:5f:76:8e: 44:84:66:2a:09:c7:c1:74:a4:47:b6:3d:80:22:cb: 57:e5:58:b2:10:85:9a:c0:eb:89:6a:2e:b1:2c:e4: f2:26:30:7a:44:73:6d:3a:04:29:c1:87:a6:e3:52: c7:87:17:97:7d:cf:5b:e6:99:ff:7a:21:f0:7b:a3: 64:4d:28:d6:db:51:18:9e:39:4a:32:d0:65:33:a1: 99:bb:81:18:29:95:63:7b:68:47:80:b5:a9:3c:b8: 09:21:d4:b1:37:18:60:a2:7c:b8:fb:e2:ac:88:d1: 29:02:fd:45:b4:3b:11:34:74:a4:0b:72:eb:f4:99: 3b:ac:11:5d:0c:5d:c1:ba:51:44:5f:69:5a:6e:bb: b5:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:73:24:12:41:92:2C:C8:8B:87:67:4D:69:06:37:3B:95:5F:79:28 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a34303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:40::/48 Signature Algorithm: sha256WithRSAEncryption b0:d3:c6:90:27:d8:33:63:1d:66:63:b7:23:32:66:d3:80:07: b8:41:d7:a6:0e:dc:02:51:2d:f4:51:73:34:d8:ec:f6:77:f6: 68:35:47:50:1f:84:5b:04:c2:2e:e9:21:2a:56:79:c1:74:2b: 5d:f8:9b:e5:57:2a:1c:9f:f8:00:25:86:5a:a2:ab:c1:d3:f3: 07:89:0c:c1:f2:34:08:38:1e:1b:59:01:c2:bf:91:9e:a1:2b: ff:1e:11:66:cd:82:b5:9a:15:90:40:97:e1:a4:d8:d0:b7:14: 51:6c:4b:e9:4b:df:26:23:6b:04:93:2b:a4:43:15:11:78:77: 65:7e:06:8c:88:0d:86:a4:40:a7:23:63:4d:4d:69:0f:5b:6f: f2:0b:3e:c3:aa:bf:d2:9b:fc:ff:ee:62:4c:4e:71:28:b8:7b: 05:46:90:a7:e1:26:91:b5:40:de:74:f8:e2:22:c5:cd:e9:3b: 2d:ed:d7:7e:36:bd:a2:89:ec:12:dd:c3:d8:23:46:36:d4:67: 92:93:c3:d5:08:91:e2:d9:7e:94:c4:bc:c4:69:b0:d0:ea:58: 90:5a:99:af:84:92:2d:bf:ba:3a:fb:e6:44:6d:a0:f2:d0:51: d8:8a:fe:70:b1:07:57:4b:a7:11:09:af:05:02:b7:68:2d:5d: 1f:c7:37:2b -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUJpbKBIPD7NN+QJOFJyNJNgyvSmYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yMzA3MzEwMDAyMThaFw0yNDA3MjkwMDA3MThaMDMxMTAvBgNV BAMTKDA2NzMyNDEyNDE5MjJDQzg4Qjg3Njc0RDY5MDYzNzNCOTU1Rjc5MjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyVo5sCnOZkPHif85q4+QQQyYe hMr46AA0XKFAJNEtfoiLiUXeoYZ9mTqqIQ+vEmeTWAU0jis16tS/gtDqtL8Xp5KZ M4Kov2exq830PRWtPsCQio6lFMOFvFqNVApw79aPVxlFs2DtqiZpmnx01DaVyAwq 1l92jkSEZioJx8F0pEe2PYAiy1flWLIQhZrA64lqLrEs5PImMHpEc206BCnBh6bj UseHF5d9z1vmmf96IfB7o2RNKNbbURieOUoy0GUzoZm7gRgplWN7aEeAtak8uAkh 1LE3GGCifLj74qyI0SkC/UW0OxE0dKQLcuv0mTusEV0MXcG6UURfaVpuu7XBAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUBnMkEkGSLMiLh2dNaQY3O5VfeSgwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzQzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNjMwMzgzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA2UAA QDANBgkqhkiG9w0BAQsFAAOCAQEAsNPGkCfYM2MdZmO3IzJm04AHuEHXpg7cAlEt 9FFzNNjs9nf2aDVHUB+EWwTCLukhKlZ5wXQrXfib5VcqHJ/4ACWGWqKrwdPzB4kM wfI0CDgeG1kBwr+RnqEr/x4RZs2CtZoVkECX4aTY0LcUUWxL6UvfJiNrBJMrpEMV EXh3ZX4GjIgNhqRApyNjTU1pD1tv8gs+w6q/0pv8/+5iTE5xKLh7BUaQp+EmkbVA 3nT44iLFzek7Le3Xfja9oonsEt3D2CNGNtRnkpPD1QiR4tl+lMS8xGmw0OpYkFqZ r4SSLb+6OvvmRG2g8tBR2Ir+cLEHV0unEQmvBQK3aC1dH8c3Kw== -----END CERTIFICATE-----Generated at Wed Apr 17 23:07:51 2024 by rpki-client on console-fra.rpki-client.org