$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a37303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a37303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: EsPa8hxjv7Ky/fPKqpL6Zzz+eJ9NF7DJZxNe2aFsid0= Subject key identifier: AF:43:4E:BE:80:AA:68:56:FA:05:7B:F0:68:33:D2:40:E1:93:68:8C Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 264C4FF7B5A758144375BD285F5A782D77465A3E Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a37303a3a2f34382d3438203d3e20313336303838.roa Signing time: Mon 31 Jul 2023 00:07:19 +0000 ROA not before: Mon 31 Jul 2023 00:02:19 +0000 ROA not after: Mon 29 Jul 2024 00:07:19 +0000 asID: 136088 IP address blocks: 2400:d940:70::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 15:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:4c:4f:f7:b5:a7:58:14:43:75:bd:28:5f:5a:78:2d:77:46:5a:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jul 31 00:02:19 2023 GMT Not After : Jul 29 00:07:19 2024 GMT Subject: CN=AF434EBE80AA6856FA057BF06833D240E193688C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:89:a6:94:17:5e:d2:57:27:17:67:dd:5e:5a: 93:2d:51:22:fd:98:bd:b9:38:19:6a:44:5c:e6:56: 4c:f5:34:6f:08:02:63:9c:fa:de:8d:5b:95:56:4b: f3:93:5a:19:fa:81:09:21:62:64:7c:f0:57:cb:ae: 8e:83:bb:09:ec:cb:ac:91:9e:7f:71:07:cb:98:15: ab:60:f9:eb:d0:14:93:39:aa:98:22:65:80:53:51: f9:ad:c8:91:00:97:8e:a2:4e:00:90:3a:ba:a3:71: b8:97:4f:a6:0d:e5:a6:99:9c:6c:20:72:1c:57:3e: b7:52:5d:f9:4c:d4:dd:cb:f8:55:73:ab:d2:ef:f7: 3f:e2:4a:2c:e0:79:61:5b:5a:79:07:20:46:b6:d7: 2c:11:65:a7:e1:b3:cb:20:25:27:bb:a0:c4:22:bf: 55:93:28:e4:59:1d:92:95:74:cc:2a:58:d1:32:ec: 1b:76:70:1a:b8:76:d1:57:0e:4a:1b:ca:64:04:a9: 78:16:07:34:e6:82:44:ec:7f:5a:bb:29:1c:ee:b8: fb:bd:51:96:2d:a5:eb:1f:da:a9:e3:c6:52:4f:a8: 99:a0:c8:98:d4:b0:87:1d:e9:b0:06:98:d0:fb:1f: 3d:89:99:11:32:e2:ca:00:84:c0:85:1a:a5:ff:74: 8f:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:43:4E:BE:80:AA:68:56:FA:05:7B:F0:68:33:D2:40:E1:93:68:8C X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a37303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:70::/48 Signature Algorithm: sha256WithRSAEncryption 23:ee:45:60:80:d9:4e:2a:e6:5d:e5:11:db:2d:21:27:42:61: 28:5e:84:22:d8:1f:c6:ee:08:a2:fc:96:e8:3f:78:d0:8c:8a: dc:72:bd:bb:a0:ab:1b:37:ac:37:fd:f8:0f:81:8a:57:31:20: 42:9d:d4:7f:96:99:9e:7c:37:81:6d:42:d9:20:51:e1:8d:34: 3a:f8:a7:5e:5b:13:1a:29:b4:7d:25:38:2e:e7:19:88:4f:e6: 0a:ea:36:c6:8f:3d:f7:a1:a1:1a:35:05:f3:25:79:57:29:91: 21:08:95:d6:0c:fb:b4:75:1c:35:e5:bb:48:22:2e:62:18:f2: 0c:30:4a:7e:9d:74:4f:21:1b:a4:b1:88:4b:05:74:f7:0c:10: aa:b5:4c:fa:41:0d:78:78:14:28:75:7c:92:83:12:4d:9b:4d: 88:36:03:93:9f:0c:03:f5:51:85:95:51:82:b7:c1:c3:af:db: 29:4f:82:71:a2:6e:e2:f7:94:30:e5:03:1e:65:b9:77:58:57: d9:cb:74:72:a5:3e:c0:91:72:05:63:b8:4e:33:a2:19:bd:77: 41:f1:69:d4:46:43:eb:8a:33:17:ea:43:32:c8:ca:57:ae:fb: 86:82:76:5a:35:54:bf:a6:db:4f:fc:ad:91:bf:39:c7:64:ce: 01:c3:69:7d -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUJkxP97WnWBRDdb0oX1p4LXdGWj4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yMzA3MzEwMDAyMTlaFw0yNDA3MjkwMDA3MTlaMDMxMTAvBgNV BAMTKEFGNDM0RUJFODBBQTY4NTZGQTA1N0JGMDY4MzNEMjQwRTE5MzY4OEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaiaaUF17SVycXZ91eWpMtUSL9 mL25OBlqRFzmVkz1NG8IAmOc+t6NW5VWS/OTWhn6gQkhYmR88FfLro6Duwnsy6yR nn9xB8uYFatg+evQFJM5qpgiZYBTUfmtyJEAl46iTgCQOrqjcbiXT6YN5aaZnGwg chxXPrdSXflM1N3L+FVzq9Lv9z/iSizgeWFbWnkHIEa21ywRZafhs8sgJSe7oMQi v1WTKORZHZKVdMwqWNEy7Bt2cBq4dtFXDkobymQEqXgWBzTmgkTsf1q7KRzuuPu9 UZYtpesf2qnjxlJPqJmgyJjUsIcd6bAGmND7Hz2JmREy4soAhMCFGqX/dI97AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUr0NOvoCqaFb6BXvwaDPSQOGTaIwwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzczMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNjMwMzgzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA2UAA cDANBgkqhkiG9w0BAQsFAAOCAQEAI+5FYIDZTirmXeUR2y0hJ0JhKF6EItgfxu4I ovyW6D940IyK3HK9u6CrGzesN/34D4GKVzEgQp3Uf5aZnnw3gW1C2SBR4Y00Ovin XlsTGim0fSU4LucZiE/mCuo2xo8996GhGjUF8yV5VymRIQiV1gz7tHUcNeW7SCIu YhjyDDBKfp10TyEbpLGISwV09wwQqrVM+kENeHgUKHV8koMSTZtNiDYDk58MA/VR hZVRgrfBw6/bKU+CcaJu4veUMOUDHmW5d1hX2ct0cqU+wJFyBWO4TjOiGb13QfFp 1EZD64ozF+pDMsjKV677hoJ2WjVUv6bbT/ytkb85x2TOAcNpfQ== -----END CERTIFICATE-----Generated at Wed Apr 24 22:29:03 2024 by rpki-client on console-fra.rpki-client.org