$ rpki-client -vvf repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/323430323a613530303a3a2f33322d3332203d3e2034383231.roa File: 323430323a613530303a3a2f33322d3332203d3e2034383231.roa (raw, json) Hash identifier: BldE+n5ZR7XiM6wKM0WepxdkcTTnAMsaALvhtQVLZgA= Subject key identifier: BA:19:C9:28:58:21:9D:AA:CD:87:F9:BE:93:31:F5:57:B1:A5:37:E3 Certificate issuer: /CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787 Certificate serial: 56DCC35F2C9EEDCCE74CEE2B7480CF8F5E14BB04 Authority key identifier: 4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/323430323a613530303a3a2f33322d3332203d3e2034383231.roa Signing time: Mon 31 Jul 2023 00:08:26 +0000 ROA not before: Mon 31 Jul 2023 00:03:26 +0000 ROA not after: Mon 29 Jul 2024 00:08:26 +0000 asID: 4821 IP address blocks: 2402:a500::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 04:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:dc:c3:5f:2c:9e:ed:cc:e7:4c:ee:2b:74:80:cf:8f:5e:14:bb:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787 Validity Not Before: Jul 31 00:03:26 2023 GMT Not After : Jul 29 00:08:26 2024 GMT Subject: CN=BA19C92858219DAACD87F9BE9331F557B1A537E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:04:87:90:db:b9:a2:82:03:c9:6b:bb:09:ce: 13:e7:ec:6f:96:aa:63:21:9c:1f:2d:8e:88:3c:ec: 78:55:b4:72:8b:bb:11:3d:c8:2f:36:ac:3c:64:41: 03:63:47:99:9c:a8:08:81:b7:14:ef:6d:2b:31:d5: 46:30:8c:25:45:a6:50:1f:87:02:32:fc:4c:8c:09: 1c:c2:6f:16:d4:ff:f4:bf:7b:0b:c9:8f:ac:4c:e4: 03:3c:83:bd:64:66:de:c5:ef:96:13:e4:fe:48:d2: 37:59:f5:9d:85:bd:11:06:0a:5e:25:a6:85:4f:8f: e4:33:15:51:97:12:8a:5e:71:c9:45:56:29:16:6c: 2d:d9:a9:41:e1:1d:3d:6f:bb:fa:20:0a:e2:c4:06: 60:c8:1e:ac:92:6b:28:68:9e:02:31:15:7a:af:62: 33:ec:8a:9a:26:35:71:97:49:ad:e7:25:2d:31:83: fe:cc:b1:63:9e:df:50:2f:21:fc:f8:5f:d2:47:16: bb:06:ea:81:ce:b0:83:c2:ad:00:ac:47:19:67:98: 9d:6f:a4:fa:b0:75:8b:cc:ca:38:76:9a:3b:7c:5d: f2:e1:1d:43:58:20:87:a5:e9:2b:39:72:0f:7b:0c: 08:75:40:1f:0b:b9:7f:8f:05:45:a9:b8:10:d0:57: a9:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:19:C9:28:58:21:9D:AA:CD:87:F9:BE:93:31:F5:57:B1:A5:37:E3 X509v3 Authority Key Identifier: keyid:4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/323430323a613530303a3a2f33322d3332203d3e2034383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:a500::/32 Signature Algorithm: sha256WithRSAEncryption 93:2b:7b:98:79:82:5a:8c:42:73:bd:d7:1e:55:c7:e0:b7:ab: fc:ff:09:d9:a2:81:c5:8b:dc:5a:37:10:80:c7:05:57:a9:2e: fa:c5:6e:01:e2:f2:06:14:0a:c4:92:ed:72:6b:4b:e2:b1:84: 4f:d9:a2:f9:35:6f:05:23:a6:42:01:8b:4a:f7:74:74:04:3c: 43:b2:27:c9:79:0d:eb:8d:2b:1f:91:3f:9b:56:be:a0:52:18: 78:03:1a:47:f0:12:fb:1a:67:bd:07:f5:98:84:e4:78:34:14: fe:d5:29:1e:76:96:84:a9:f0:ac:3b:7f:39:41:ff:a9:2f:ea: 0a:01:51:40:ac:ac:ec:8a:23:06:f0:2a:20:4a:74:1b:f8:17: f9:38:ff:41:d4:ed:d4:d6:38:07:4e:e0:cf:f3:d2:9a:15:25: 25:b1:57:74:35:48:0a:c7:b6:c7:54:32:98:a9:78:ec:25:d9: a6:e1:26:cc:b5:ea:2d:79:60:98:5f:af:ea:99:0e:fe:ef:e3: 91:50:0b:de:ae:40:e3:b1:18:0a:51:28:81:0a:f9:9b:62:d6: 03:91:4d:16:2e:9f:75:1d:5f:06:cc:37:d5:e2:54:b0:49:b4: ee:8c:4d:d3:99:18:06:1b:3e:d6:74:67:f1:29:23:b4:11:87: fa:b3:1d:0f -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUVtzDXyye7cznTO4rdIDPj14UuwQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEJGMURDQzBCQ0M1QjFBNEI2QkU1MjZBNzVGRjMzMzk3 RkMzODc4NzAeFw0yMzA3MzEwMDAzMjZaFw0yNDA3MjkwMDA4MjZaMDMxMTAvBgNV BAMTKEJBMTlDOTI4NTgyMTlEQUFDRDg3RjlCRTkzMzFGNTU3QjFBNTM3RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcBIeQ27miggPJa7sJzhPn7G+W qmMhnB8tjog87HhVtHKLuxE9yC82rDxkQQNjR5mcqAiBtxTvbSsx1UYwjCVFplAf hwIy/EyMCRzCbxbU//S/ewvJj6xM5AM8g71kZt7F75YT5P5I0jdZ9Z2FvREGCl4l poVPj+QzFVGXEopecclFVikWbC3ZqUHhHT1vu/ogCuLEBmDIHqySayhongIxFXqv YjPsipomNXGXSa3nJS0xg/7MsWOe31AvIfz4X9JHFrsG6oHOsIPCrQCsRxlnmJ1v pPqwdYvMyjh2mjt8XfLhHUNYIIel6Ss5cg97DAh1QB8LuX+PBUWpuBDQV6kvAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUuhnJKFghnarNh/m+kzH1V7GlN+MwHwYDVR0j BBgwFoAUS/HcwLzFsaS2vlJqdf8zOX/Dh4cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDI1NDQxOS01M2JlLTRhZDQtYmY3Zi0yOWY4OTEyNTIzZDAvMC80QkYxRENDMEJD QzVCMUE0QjZCRTUyNkE3NUZGMzMzOTdGQzM4Nzg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEJGMURDQzBCQ0M1QjFBNEI2QkU1MjZBNzVGRjMzMzk3RkMz ODc4Ny5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGQyNTQ0MTktNTNiZS00YWQ0LWJm N2YtMjlmODkxMjUyM2QwLzAvMzIzNDMwMzIzYTYxMzUzMDMwM2EzYTJmMzMzMjJk MzMzMjIwM2QzZTIwMzQzODMyMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAqUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTK3uYeYJajEJzvdceVcfgt6v8/wnZooHFi9xaNxCAxwVXqS76xW4B 4vIGFArEku1ya0visYRP2aL5NW8FI6ZCAYtK93R0BDxDsifJeQ3rjSsfkT+bVr6g Uhh4AxpH8BL7Gme9B/WYhOR4NBT+1SkedpaEqfCsO385Qf+pL+oKAVFArKzsiiMG 8CogSnQb+Bf5OP9B1O3U1jgHTuDP89KaFSUlsVd0NUgKx7bHVDKYqXjsJdmm4SbM teoteWCYX6/qmQ7+7+ORUAverkDjsRgKUSiBCvmbYtYDkU0WLp91HV8GzDfV4lSw SbTujE3TmRgGGz7WdGfxKSO0EYf6sx0P -----END CERTIFICATE-----Generated at Tue Apr 23 18:36:12 2024 by rpki-client on console-ams.rpki-client.org