$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3630303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a3630303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: tkFf04XzSbiZzFzCj42IrMkvhq77zUkWMcu5ihzrlh8= Subject key identifier: A5:7E:EF:D7:BB:AD:35:40:FB:EC:C6:C3:9F:E0:2E:25:D0:74:BE:00 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 3E5C901B7B9494D6906AB18AA490706DBE148B3C Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3630303a3a2f34382d3438203d3e20313336303838.roa Signing time: Mon 31 Jul 2023 00:07:16 +0000 ROA not before: Mon 31 Jul 2023 00:02:16 +0000 ROA not after: Mon 29 Jul 2024 00:07:16 +0000 asID: 136088 IP address blocks: 2400:d940:600::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Apr 2024 05:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:5c:90:1b:7b:94:94:d6:90:6a:b1:8a:a4:90:70:6d:be:14:8b:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jul 31 00:02:16 2023 GMT Not After : Jul 29 00:07:16 2024 GMT Subject: CN=A57EEFD7BBAD3540FBECC6C39FE02E25D074BE00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:8c:89:e5:2c:93:28:bb:d4:03:e2:c6:6b:d3: 2a:1b:68:c1:1b:14:df:e3:7e:14:e9:97:98:e3:3e: 7d:b1:e5:a1:db:47:27:08:7c:99:e4:d7:cd:4a:c2: 1e:9b:69:a5:7a:c5:ac:b8:4c:f0:d3:f4:91:af:fb: ea:32:5f:d8:f5:89:39:72:e8:df:4c:86:45:62:f4: 3d:77:38:de:97:e9:db:7a:1a:0a:e3:57:e1:bb:2d: a4:c2:a3:24:8a:f6:31:bc:86:0d:4d:94:00:8d:b1: f2:df:9f:74:1f:a5:c4:49:c6:5d:f6:50:1e:96:c7: ab:51:c5:33:c0:3f:5e:55:08:f2:41:62:a5:72:d2: 63:51:0b:15:c6:1a:fc:8a:bb:d2:ae:7f:d5:66:90: 66:b0:2f:f2:a1:ec:b2:b1:b7:bd:0a:1d:50:0b:8f: 00:b2:79:c4:03:ff:95:11:ed:84:39:a3:51:64:55: fb:32:75:ce:1e:1c:13:dc:1c:fc:87:4d:5a:10:ca: 44:e0:e4:b7:7b:82:0b:46:86:65:e3:39:d6:b6:2f: ce:d5:54:d0:35:8f:95:92:b1:27:73:25:2c:39:95: 8c:45:41:bb:49:b7:3f:84:5a:cf:2c:13:03:49:05: a3:b5:e5:14:03:20:e8:a2:3b:27:d3:b8:6f:5c:71: f2:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:7E:EF:D7:BB:AD:35:40:FB:EC:C6:C3:9F:E0:2E:25:D0:74:BE:00 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3630303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:600::/48 Signature Algorithm: sha256WithRSAEncryption 03:ef:68:ad:87:30:e5:05:5c:42:5c:a0:d2:33:56:1a:9b:27: 69:e5:33:50:e1:48:4b:45:c1:99:7d:5f:9c:f1:76:b4:c6:8d: 6e:dd:52:ec:c7:54:95:94:d8:f4:d8:ff:e3:ec:25:ce:a3:47: 4e:73:3c:e3:7e:a4:9d:80:60:cd:80:39:9c:be:3d:8f:67:c4: ad:03:d6:df:6d:94:ab:23:f9:f4:cb:b6:f8:d6:89:c5:68:af: db:af:3e:b2:fb:f6:cc:18:43:4c:ed:a4:36:02:d9:05:0d:b0: 89:cd:9f:c1:3a:1e:73:c0:b2:58:c2:8d:b9:53:a0:4a:67:e0: 74:59:c2:e4:ae:30:34:ac:47:31:80:6f:63:c0:01:19:d2:9c: 3f:d4:af:aa:d6:eb:26:f2:41:8e:9e:c4:a5:22:35:4b:5f:19: e7:d4:2f:b6:8d:38:dc:4f:e6:70:f7:1f:9a:0a:7f:00:f4:4e: 13:a3:14:7e:01:5b:cc:d1:80:1d:9b:85:5f:39:62:32:67:6d: e3:e4:93:67:1d:4f:4d:a7:06:10:4f:39:aa:ab:2c:71:9e:4d: 95:cc:85:75:cb:f5:c1:00:53:d1:a6:07:f8:3e:ac:bf:f9:fa: d5:2a:6c:77:fb:75:b9:76:cf:af:b2:02:0d:4e:33:bf:3b:00: 69:ef:07:62 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUPlyQG3uUlNaQarGKpJBwbb4UizwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yMzA3MzEwMDAyMTZaFw0yNDA3MjkwMDA3MTZaMDMxMTAvBgNV BAMTKEE1N0VFRkQ3QkJBRDM1NDBGQkVDQzZDMzlGRTAyRTI1RDA3NEJFMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgjInlLJMou9QD4sZr0yobaMEb FN/jfhTpl5jjPn2x5aHbRycIfJnk181Kwh6baaV6xay4TPDT9JGv++oyX9j1iTly 6N9MhkVi9D13ON6X6dt6GgrjV+G7LaTCoySK9jG8hg1NlACNsfLfn3QfpcRJxl32 UB6Wx6tRxTPAP15VCPJBYqVy0mNRCxXGGvyKu9Kuf9VmkGawL/Kh7LKxt70KHVAL jwCyecQD/5UR7YQ5o1FkVfsydc4eHBPcHPyHTVoQykTg5Ld7ggtGhmXjOda2L87V VNA1j5WSsSdzJSw5lYxFQbtJtz+EWs8sEwNJBaO15RQDIOiiOyfTuG9ccfLhAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUpX7v17utNUD77MbDn+AuJdB0vgAwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzYzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzAzODM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJADZ QAYAMA0GCSqGSIb3DQEBCwUAA4IBAQAD72ithzDlBVxCXKDSM1Yamydp5TNQ4UhL RcGZfV+c8Xa0xo1u3VLsx1SVlNj02P/j7CXOo0dOczzjfqSdgGDNgDmcvj2PZ8St A9bfbZSrI/n0y7b41onFaK/brz6y+/bMGENM7aQ2AtkFDbCJzZ/BOh5zwLJYwo25 U6BKZ+B0WcLkrjA0rEcxgG9jwAEZ0pw/1K+q1usm8kGOnsSlIjVLXxnn1C+2jTjc T+Zw9x+aCn8A9E4ToxR+AVvM0YAdm4VfOWIyZ23j5JNnHU9NpwYQTzmqqyxxnk2V zIV1y/XBAFPRpgf4Pqy/+frVKmx3+3W5ds+vsgINTjO/OwBp7wdi -----END CERTIFICATE-----Generated at Wed Apr 17 23:07:51 2024 by rpki-client on console-fra.rpki-client.org