$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a633030303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a633030303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: F29ZRqV9/P8f9Bb0GV42/JZhJkU+3iLBwCesxvn03To= Subject key identifier: 95:A4:BE:D7:57:DB:0B:2E:71:AB:D6:1C:13:21:C9:14:75:6D:3F:34 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 508E82802DC2280510C0E7A04743C177686FD5B3 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a633030303a3a2f34382d3438203d3e20313336303838.roa Signing time: Mon 31 Jul 2023 00:07:18 +0000 ROA not before: Mon 31 Jul 2023 00:02:18 +0000 ROA not after: Mon 29 Jul 2024 00:07:18 +0000 asID: 136088 IP address blocks: 2400:d940:c000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 20:18:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:8e:82:80:2d:c2:28:05:10:c0:e7:a0:47:43:c1:77:68:6f:d5:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jul 31 00:02:18 2023 GMT Not After : Jul 29 00:07:18 2024 GMT Subject: CN=95A4BED757DB0B2E71ABD61C1321C914756D3F34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b3:8c:8e:56:7d:18:34:cb:7f:75:3d:aa:ba: 4c:fe:10:b2:be:d0:56:d7:3e:e8:c2:c9:da:f9:e8: 40:c0:08:e5:71:c0:f7:30:fc:89:2d:4c:9d:4f:8f: 56:0e:e9:e7:de:cd:91:6a:bf:b2:fa:b3:55:24:46: bd:fa:68:5e:4e:0f:ac:8f:ae:f4:4d:e3:c7:b4:ba: b5:8e:cc:75:7b:ac:0d:06:39:fc:b8:fd:ad:80:4b: 8b:c2:f3:57:6b:20:26:40:d7:31:72:fb:6b:ce:ef: 25:5e:22:8a:80:ce:87:14:97:4b:d1:78:61:b8:af: ff:cf:21:79:f9:0e:7f:55:f1:2e:9a:3c:0f:ba:67: 46:7b:18:4b:0e:2a:de:a3:02:95:03:ff:58:2e:b8: cf:54:54:e6:b8:f1:ad:56:ee:ce:5b:5b:35:93:db: f0:4c:d5:1e:d3:a9:b5:21:50:01:80:14:9d:9d:b0: 90:7e:6e:f8:a9:52:de:77:9d:40:ba:22:4e:c9:c8: df:1d:3e:c2:4a:1e:9f:be:79:46:67:11:4b:53:78: d6:ea:53:02:a2:3b:7c:ff:c8:1d:8d:d6:93:c7:b6: 0a:42:91:87:0f:f8:d2:a4:7e:d0:15:75:83:12:61: 86:c6:cc:91:49:d7:f7:e4:4a:6b:9f:de:61:45:79: ef:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:A4:BE:D7:57:DB:0B:2E:71:AB:D6:1C:13:21:C9:14:75:6D:3F:34 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a633030303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:c000::/48 Signature Algorithm: sha256WithRSAEncryption 3a:5d:ff:36:22:14:08:4a:53:57:44:52:f2:b3:f4:68:f6:f0: 77:7d:5a:bb:75:b1:94:42:2b:4d:27:2c:bd:38:7a:63:91:0f: cf:7d:cb:fb:ff:fa:62:dc:6f:19:7a:bd:f1:95:d8:31:a3:9e: 14:c3:bf:9e:19:09:f6:3b:67:f4:79:55:c4:6e:7f:d4:d6:aa: 96:03:98:3c:12:c6:f9:da:2b:ae:27:a3:65:67:2d:92:3d:7a: 36:0b:2d:f3:cb:f2:55:cd:98:a5:a6:a5:99:70:99:54:4e:56: 03:e0:d4:61:c2:a7:39:81:85:f4:5f:dc:6a:98:82:28:ea:d1: 82:eb:12:6a:25:9f:28:f9:5f:cb:6d:98:09:76:b6:39:f0:2f: 5a:bf:b9:d0:fc:b1:b5:2e:9e:45:8e:7f:0c:c7:c9:c3:5e:06: d4:9e:c0:de:3e:96:88:3d:5a:e7:0f:ad:f4:7e:d9:b9:a6:ce: 02:6e:f6:6c:c8:88:bf:bb:0b:f7:d3:33:39:ac:34:04:cf:fc: 01:c4:ce:b1:bd:ac:40:7f:24:cb:47:f6:e3:04:40:2e:04:ab: 46:56:51:2e:2c:8e:5e:40:6b:94:cc:64:b0:b1:d8:d7:45:9e: ed:ef:21:60:26:65:93:93:b3:e2:c9:57:36:8f:33:53:ce:c5: 02:34:8a:69 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUUI6CgC3CKAUQwOegR0PBd2hv1bMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yMzA3MzEwMDAyMThaFw0yNDA3MjkwMDA3MThaMDMxMTAvBgNV BAMTKDk1QTRCRUQ3NTdEQjBCMkU3MUFCRDYxQzEzMjFDOTE0NzU2RDNGMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1s4yOVn0YNMt/dT2qukz+ELK+ 0FbXPujCydr56EDACOVxwPcw/IktTJ1Pj1YO6efezZFqv7L6s1UkRr36aF5OD6yP rvRN48e0urWOzHV7rA0GOfy4/a2AS4vC81drICZA1zFy+2vO7yVeIoqAzocUl0vR eGG4r//PIXn5Dn9V8S6aPA+6Z0Z7GEsOKt6jApUD/1guuM9UVOa48a1W7s5bWzWT 2/BM1R7TqbUhUAGAFJ2dsJB+bvipUt53nUC6Ik7JyN8dPsJKHp++eUZnEUtTeNbq UwKiO3z/yB2N1pPHtgpCkYcP+NKkftAVdYMSYYbGzJFJ1/fkSmuf3mFFee8nAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUlaS+11fbCy5xq9YcEyHJFHVtPzQwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhNjMzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM4Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ANlAwAAwDQYJKoZIhvcNAQELBQADggEBADpd/zYiFAhKU1dEUvKz9Gj28Hd9Wrt1 sZRCK00nLL04emORD899y/v/+mLcbxl6vfGV2DGjnhTDv54ZCfY7Z/R5VcRuf9TW qpYDmDwSxvnaK64no2VnLZI9ejYLLfPL8lXNmKWmpZlwmVROVgPg1GHCpzmBhfRf 3GqYgijq0YLrEmolnyj5X8ttmAl2tjnwL1q/udD8sbUunkWOfwzHycNeBtSewN4+ log9WucPrfR+2bmmzgJu9mzIiL+7C/fTMzmsNATP/AHEzrG9rEB/JMtH9uMEQC4E q0ZWUS4sjl5Aa5TMZLCx2NdFnu3vIWAmZZOTs+LJVzaPM1POxQI0imk= -----END CERTIFICATE-----Generated at Tue Apr 23 18:27:43 2024 by rpki-client on console-fra.rpki-client.org