$ rpki-client -vvf repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/323430323a653330303a3a2f33322d3438203d3e20313331373036.roa File: 323430323a653330303a3a2f33322d3438203d3e20313331373036.roa (raw, json) Hash identifier: IB3fklF3fim7bVg7fbDCHAW292t8f9w/Qt77wIcV/JE= Subject key identifier: FE:90:83:B8:85:CE:D9:45:14:97:30:73:B3:1A:58:29:24:9F:8A:5F Certificate issuer: /CN=8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72 Certificate serial: 79B4DA0CB9BA735681E48EA7298A42B7BD2DE952 Authority key identifier: 8D:ED:AB:AD:21:AD:1A:6B:EF:27:E9:1F:CE:E3:04:65:56:3D:FE:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.cer Subject info access: rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/323430323a653330303a3a2f33322d3438203d3e20313331373036.roa Signing time: Mon 31 Jul 2023 00:06:16 +0000 ROA not before: Mon 31 Jul 2023 00:01:16 +0000 ROA not after: Mon 29 Jul 2024 00:06:16 +0000 asID: 131706 IP address blocks: 2402:e300::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.crl rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 00:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:b4:da:0c:b9:ba:73:56:81:e4:8e:a7:29:8a:42:b7:bd:2d:e9:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72 Validity Not Before: Jul 31 00:01:16 2023 GMT Not After : Jul 29 00:06:16 2024 GMT Subject: CN=FE9083B885CED94514973073B31A5829249F8A5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:00:08:42:06:8f:70:18:42:c2:94:77:be:a0: 88:22:04:c4:b1:c7:0a:7b:61:41:fe:93:08:3a:be: 89:24:4c:3f:86:9c:56:7d:61:bb:31:39:4e:45:7d: ad:99:c2:77:ea:d1:f4:de:d2:be:ef:a7:6b:ce:5e: 51:ca:97:8a:4a:2a:d3:1c:d6:38:20:21:7f:31:fe: 7b:62:a7:94:f7:e6:26:4f:57:e0:a7:ac:d3:21:a1: 7e:bd:34:2e:43:58:0b:4c:f3:38:87:1b:13:0c:d9: 50:de:9f:d2:57:41:95:65:d9:93:88:7a:8a:4b:55: af:de:bb:62:8c:3a:72:26:ef:f1:58:f5:af:63:05: c9:7c:c3:88:bd:ff:b4:55:45:5f:62:15:25:0c:6f: 10:01:10:e5:6e:bc:b1:9c:07:1f:d6:9f:d6:7e:23: fe:2e:eb:df:b3:a9:51:2d:9d:0c:5e:c4:9f:1d:48: a0:50:a2:36:28:9e:89:98:3e:91:fd:5c:f8:92:35: 6b:dc:08:99:e4:ea:3d:d6:72:89:61:85:4d:42:f8: fe:95:67:82:41:cd:47:39:e0:94:4b:54:29:ab:9b: 3c:1b:c6:f0:d0:91:1f:2a:89:18:4e:91:d9:5c:bf: c5:70:d0:8c:96:2e:57:37:64:63:db:0d:ed:62:26: 8d:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:90:83:B8:85:CE:D9:45:14:97:30:73:B3:1A:58:29:24:9F:8A:5F X509v3 Authority Key Identifier: keyid:8D:ED:AB:AD:21:AD:1A:6B:EF:27:E9:1F:CE:E3:04:65:56:3D:FE:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/323430323a653330303a3a2f33322d3438203d3e20313331373036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e300::/32 Signature Algorithm: sha256WithRSAEncryption 66:e1:76:af:1f:a3:67:b1:4e:28:93:6c:b4:bc:a8:37:2c:a4: d1:8f:91:7a:ea:3c:dd:31:e0:89:45:80:38:c3:0b:0e:01:c3: b1:1e:b0:78:17:e3:92:e8:7c:e1:da:ce:ed:7c:fb:31:bb:9f: cd:41:ca:bb:3a:ac:45:56:d8:4f:33:4a:3b:74:55:ba:09:c6: 3e:67:4c:8b:bd:f0:10:10:32:d1:83:26:b6:c1:9a:4b:39:e6: e1:87:94:bd:ed:db:c5:37:2c:e5:ff:5d:8e:15:e0:89:17:97: 3b:42:7e:f3:12:64:b9:ae:8a:70:3c:cb:79:4e:a3:e8:04:fa: c1:a5:42:24:37:a1:07:c4:22:52:b7:66:7e:e7:54:9e:e7:6b: 43:cf:91:31:b1:01:c7:57:36:f5:5d:93:e3:54:e2:54:41:1b: d2:f5:1d:40:cf:52:3d:c8:4b:82:4a:db:be:ab:38:34:75:31: 9c:89:06:8c:c6:a4:10:24:d8:90:78:b0:67:db:dc:02:ca:fa: b5:68:ed:d4:c8:98:f2:20:e6:19:75:c9:2e:ef:e7:5d:7d:90: 13:35:26:5f:dc:5a:0c:4d:88:b6:c8:d4:81:23:56:e5:8e:fc: 7c:65:40:1d:16:52:b9:64:39:89:8b:54:87:32:51:a9:a5:f4: 95:aa:93:78 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUebTaDLm6c1aB5I6nKYpCt70t6VIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERFREFCQUQyMUFEMUE2QkVGMjdFOTFGQ0VFMzA0NjU1 NjNERkU3MjAeFw0yMzA3MzEwMDAxMTZaFw0yNDA3MjkwMDA2MTZaMDMxMTAvBgNV BAMTKEZFOTA4M0I4ODVDRUQ5NDUxNDk3MzA3M0IzMUE1ODI5MjQ5RjhBNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVAAhCBo9wGELClHe+oIgiBMSx xwp7YUH+kwg6vokkTD+GnFZ9YbsxOU5Ffa2Zwnfq0fTe0r7vp2vOXlHKl4pKKtMc 1jggIX8x/ntip5T35iZPV+CnrNMhoX69NC5DWAtM8ziHGxMM2VDen9JXQZVl2ZOI eopLVa/eu2KMOnIm7/FY9a9jBcl8w4i9/7RVRV9iFSUMbxABEOVuvLGcBx/Wn9Z+ I/4u69+zqVEtnQxexJ8dSKBQojYonomYPpH9XPiSNWvcCJnk6j3WcolhhU1C+P6V Z4JBzUc54JRLVCmrmzwbxvDQkR8qiRhOkdlcv8Vw0IyWLlc3ZGPbDe1iJo3nAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU/pCDuIXO2UUUlzBzsxpYKSSfil8wHwYDVR0j BBgwFoAUje2rrSGtGmvvJ+kfzuMEZVY9/nIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjdhNmYzNC0xYjZlLTRlOTItYjJkMi0wYjkzMDFhNjY2YTUvMC84REVEQUJBRDIx QUQxQTZCRUYyN0U5MUZDRUUzMDQ2NTU2M0RGRTcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERFREFCQUQyMUFEMUE2QkVGMjdFOTFGQ0VFMzA0NjU1NjNE RkU3Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyN2E2ZjM0LTFiNmUtNGU5Mi1i MmQyLTBiOTMwMWE2NjZhNS8wLzMyMzQzMDMyM2E2NTMzMzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzMTM3MzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQC4wAwDQYJKoZI hvcNAQELBQADggEBAGbhdq8fo2exTiiTbLS8qDcspNGPkXrqPN0x4IlFgDjDCw4B w7EesHgX45LofOHazu18+zG7n81Byrs6rEVW2E8zSjt0VboJxj5nTIu98BAQMtGD JrbBmks55uGHlL3t28U3LOX/XY4V4IkXlztCfvMSZLmuinA8y3lOo+gE+sGlQiQ3 oQfEIlK3Zn7nVJ7na0PPkTGxAcdXNvVdk+NU4lRBG9L1HUDPUj3IS4JK276rODR1 MZyJBozGpBAk2JB4sGfb3ALK+rVo7dTImPIg5hl1yS7v5119kBM1Jl/cWgxNiLbI 1IEjVuWO/HxlQB0WUrlkOYmLVIcyUaml9JWqk3g= -----END CERTIFICATE-----Generated at Tue Apr 23 22:11:07 2024 by rpki-client on console-fra.rpki-client.org