$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a3a2f33322d3332203d3e203633383632.roa File: 323430313a663938303a3a2f33322d3332203d3e203633383632.roa (raw, json) Hash identifier: Fm9ZrZ7HMNLGeHeNHKLJD92e42WmoiS+NfFvtiBt/5I= Subject key identifier: F0:01:C6:49:5C:BF:67:69:E1:31:3C:2D:42:E7:EF:9A:76:6D:89:72 Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Certificate serial: 2EAE57FDA2328C76DF108D00DA2BFF3E9E1EB0DE Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a3a2f33322d3332203d3e203633383632.roa Signing time: Mon 31 Jul 2023 00:14:31 +0000 ROA not before: Mon 31 Jul 2023 00:09:31 +0000 ROA not after: Mon 29 Jul 2024 00:14:31 +0000 asID: 63862 IP address blocks: 2401:f980::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 14:22:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:ae:57:fd:a2:32:8c:76:df:10:8d:00:da:2b:ff:3e:9e:1e:b0:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Validity Not Before: Jul 31 00:09:31 2023 GMT Not After : Jul 29 00:14:31 2024 GMT Subject: CN=F001C6495CBF6769E1313C2D42E7EF9A766D8972 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:60:3c:10:d1:de:27:d9:de:c0:63:d5:7a:95: 0b:77:76:09:6c:3e:29:29:c7:d3:0c:8e:0c:a6:8b: a9:ca:85:2d:05:ee:48:67:06:14:28:75:fe:aa:93: 33:70:02:ff:05:af:ba:35:c8:0f:0e:65:1b:d6:27: f9:98:b2:a2:1e:18:43:db:3a:0e:41:6c:88:cd:30: 71:f3:8c:55:4d:56:df:08:f6:6a:a5:46:e7:16:5e: dc:16:0e:da:4d:5d:d8:bd:77:13:d8:84:70:69:59: 86:2b:27:b5:54:a1:7a:33:99:98:b2:65:b1:3f:d4: 59:62:78:0c:2c:ef:ff:14:82:91:02:07:f6:c1:79: 56:83:89:16:89:5c:21:73:a8:a3:f9:fb:92:f1:db: 5f:82:c9:55:7a:36:5b:20:af:67:61:ea:bf:0b:fb: 7c:06:7a:96:8b:2b:d5:49:bf:47:e1:b2:a4:63:1f: 79:ce:01:f0:88:f6:20:b0:b8:80:ab:de:7c:80:38: 82:4b:81:06:b3:f8:54:43:c6:1f:63:94:15:22:ab: 02:13:a9:06:12:e6:41:a4:2c:df:ad:66:72:d7:67: 52:50:e6:69:89:98:39:2f:0d:42:f3:3c:f2:e3:b4: f8:1f:39:62:64:8c:19:84:fc:e3:df:76:cf:01:37: 79:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:01:C6:49:5C:BF:67:69:E1:31:3C:2D:42:E7:EF:9A:76:6D:89:72 X509v3 Authority Key Identifier: keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a3a2f33322d3332203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:f980::/32 Signature Algorithm: sha256WithRSAEncryption 5d:91:7d:ca:3b:e0:a8:9b:82:75:72:1f:0d:a4:01:09:1e:bb: 19:23:aa:de:72:b8:5f:bc:5c:76:4a:fa:b7:d6:f3:46:79:9e: 78:f0:09:64:23:5e:02:1c:6f:3c:20:30:3e:6a:ba:6d:45:0d: f7:92:0b:7a:1d:d2:d0:af:3b:4c:d9:ff:f8:7c:e3:07:b9:67: 72:79:56:88:2c:12:4e:38:a2:98:a7:4f:24:b0:cb:1d:db:04: 82:d3:5e:a0:9e:e5:61:2b:3a:16:df:4e:a1:9d:57:bf:5d:3f: 52:41:39:4e:ca:a5:fb:28:da:8b:71:f3:f7:78:47:8e:93:10: 1b:0f:95:c0:e8:3b:93:b3:b3:ef:eb:db:df:86:de:af:75:eb: d6:bc:86:2b:07:56:c2:da:6d:f6:fc:2f:88:93:c5:c0:1d:73: 51:f5:b9:90:bf:f6:92:dc:4f:48:08:a8:57:9a:7b:e3:d1:91: ea:d6:e7:bb:07:48:87:6b:3f:fc:9b:c1:31:ad:12:ed:9c:4c: 72:23:44:22:fe:71:d7:da:e2:e0:ad:f4:54:c7:20:32:97:1e: 5a:2d:4a:5a:4e:e8:b5:79:df:b9:fd:ad:47:ff:10:55:b2:4d: 77:b5:fc:a3:07:18:fa:ad:d1:cc:81:d9:13:e5:a7:34:62:4b: 1c:1d:32:ff -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIULq5X/aIyjHbfEI0A2iv/Pp4esN4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFF MDFENjBDOTAeFw0yMzA3MzEwMDA5MzFaFw0yNDA3MjkwMDE0MzFaMDMxMTAvBgNV BAMTKEYwMDFDNjQ5NUNCRjY3NjlFMTMxM0MyRDQyRTdFRjlBNzY2RDg5NzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQYDwQ0d4n2d7AY9V6lQt3dgls Pikpx9MMjgymi6nKhS0F7khnBhQodf6qkzNwAv8Fr7o1yA8OZRvWJ/mYsqIeGEPb Og5BbIjNMHHzjFVNVt8I9mqlRucWXtwWDtpNXdi9dxPYhHBpWYYrJ7VUoXozmZiy ZbE/1FlieAws7/8UgpECB/bBeVaDiRaJXCFzqKP5+5Lx21+CyVV6Nlsgr2dh6r8L +3wGepaLK9VJv0fhsqRjH3nOAfCI9iCwuICr3nyAOIJLgQaz+FRDxh9jlBUiqwIT qQYS5kGkLN+tZnLXZ1JQ5mmJmDkvDULzPPLjtPgfOWJkjBmE/OPfds8BN3k/AgMB AAGjggIxMIICLTAdBgNVHQ4EFgQU8AHGSVy/Z2nhMTwtQufvmnZtiXIwHwYDVR0j BBgwFoAUdksj62xj/8qjBfN9vpuQSuAdYMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2U4MzBjOC1kNTU5LTQ1NmEtODgzNS00ZjZlYjU1MjdhYTIvMC83NjRCMjNFQjZD NjNGRkNBQTMwNUYzN0RCRTlCOTA0QUUwMUQ2MEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFFMDFE NjBDOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMyMzQzMDMxM2E2NjM5MzgzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDM2MzMzODM2MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAfmAMA0GCSqGSIb3 DQEBCwUAA4IBAQBdkX3KO+Com4J1ch8NpAEJHrsZI6recrhfvFx2Svq31vNGeZ54 8AlkI14CHG88IDA+arptRQ33kgt6HdLQrztM2f/4fOMHuWdyeVaILBJOOKKYp08k sMsd2wSC016gnuVhKzoW306hnVe/XT9SQTlOyqX7KNqLcfP3eEeOkxAbD5XA6DuT s7Pv69vfht6vdevWvIYrB1bC2m32/C+Ik8XAHXNR9bmQv/aS3E9ICKhXmnvj0ZHq 1ue7B0iHaz/8m8ExrRLtnExyI0Qi/nHX2uLgrfRUxyAylx5aLUpaTui1ed+5/a1H /xBVsk13tfyjBxj6rdHMgdkT5ac0YkscHTL/ -----END CERTIFICATE-----Generated at Fri Apr 19 10:26:11 2024 by rpki-client on console-ams.rpki-client.org