$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/323430363a376530303a35393a3a2f34382d3438203d3e20313430343035.roa File: 323430363a376530303a35393a3a2f34382d3438203d3e20313430343035.roa (raw, json) Hash identifier: YSMzCdnTI90c9gFHho6W3Ut61PmiIq24l4YJFnER78E= Subject key identifier: 81:BE:EC:B9:B7:32:DC:01:40:D7:AA:4E:CD:C2:70:A6:99:77:CD:BC Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 766507B36A24C5A15C0D0E5296D3A7D58A94B120 Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/323430363a376530303a35393a3a2f34382d3438203d3e20313430343035.roa Signing time: Thu 25 Apr 2024 04:00:00 +0000 ROA not before: Thu 25 Apr 2024 03:55:00 +0000 ROA not after: Thu 24 Apr 2025 04:00:00 +0000 asID: 140405 IP address blocks: 2406:7e00:59::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 16:24:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:65:07:b3:6a:24:c5:a1:5c:0d:0e:52:96:d3:a7:d5:8a:94:b1:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Apr 25 03:55:00 2024 GMT Not After : Apr 24 04:00:00 2025 GMT Subject: CN=81BEECB9B732DC0140D7AA4ECDC270A69977CDBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:09:eb:ba:9e:25:bc:2a:82:ec:22:4c:bd:57: a3:37:03:36:4e:2d:aa:72:ed:da:44:c3:cf:a8:18: 74:22:32:fa:b8:90:e2:07:16:4f:a5:96:0f:fc:16: 3e:71:26:0d:23:0d:aa:ca:2e:58:0d:46:81:37:de: 05:d3:ba:a4:94:69:89:bb:7b:45:5f:8f:2b:e4:7c: c5:09:ef:17:cd:bc:07:d9:61:7c:94:1a:fc:d3:2c: c8:38:5f:fb:b8:11:56:9e:13:64:30:7a:fa:43:c8: 35:59:c7:28:66:94:25:da:cb:2f:ec:fe:91:90:ac: 01:e4:8d:34:81:15:e7:5f:85:6b:c3:a2:cb:b4:21: cf:30:8a:f3:39:f9:4b:c3:13:73:3c:65:38:cb:b0: 4a:8d:7d:f7:a4:7e:bc:03:5d:d2:5a:f9:84:d6:10: e1:05:59:bb:57:a1:2f:b1:cd:fb:73:fd:2e:e2:4c: ce:8d:10:df:58:92:d7:b2:71:e5:21:6d:7b:0a:f4: 37:df:0c:e1:92:12:73:43:f4:48:21:ae:fb:2c:f0: 6d:60:90:18:50:6e:44:04:4f:9d:ec:b5:87:55:ef: 7e:98:ff:5b:8d:8b:02:09:8f:e0:db:b5:24:d6:ed: 6d:2f:c4:9c:3e:1c:69:66:4d:b2:fb:6c:8a:26:9d: a9:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:BE:EC:B9:B7:32:DC:01:40:D7:AA:4E:CD:C2:70:A6:99:77:CD:BC X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/323430363a376530303a35393a3a2f34382d3438203d3e20313430343035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:7e00:59::/48 Signature Algorithm: sha256WithRSAEncryption 61:e7:ba:38:ea:2a:f5:f4:29:c0:48:af:df:92:86:ec:41:ff: 58:4e:d4:28:60:33:de:53:41:9c:41:28:38:38:9d:11:e9:27: 28:87:20:d1:b2:83:96:52:41:fd:17:e9:07:94:db:2d:00:76: 69:4b:fe:8b:87:5e:16:91:39:af:a5:27:19:7e:ba:64:aa:f7: 00:45:1e:ac:a9:91:e2:24:34:b7:c4:b6:bc:49:ee:19:c4:8c: 77:bc:d9:be:a2:c3:f6:4f:c6:c1:11:ea:69:5b:ba:83:9b:a7: ad:84:ed:ab:3a:20:3c:a9:70:46:99:25:03:a6:43:eb:78:79: fe:b1:6b:1b:c7:ae:79:3e:e2:3d:a3:98:b0:f2:60:b9:db:cb: 64:3e:01:ed:db:34:44:96:5e:a9:10:02:5d:41:8e:fd:f9:11: f4:4c:be:b3:47:2d:6c:28:93:fe:ad:1c:33:5b:d1:e4:2d:82: 6d:ef:ec:2d:7f:7c:10:80:41:3a:06:87:f7:1f:e3:cd:b4:53: 7a:1b:58:b4:ad:51:e0:0a:c9:ec:68:0e:69:60:f6:31:15:7e: 89:35:ca:18:d6:c3:39:44:b3:9a:50:cd:fc:7b:99:4b:ed:82: 17:08:78:41:dc:3e:2c:96:3b:af:c1:66:31:a8:55:df:79:2e: b5:3f:c4:d9 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUdmUHs2okxaFcDQ5SltOn1YqUsSAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yNDA0MjUwMzU1MDBaFw0yNTA0MjQwNDAwMDBaMDMxMTAvBgNV BAMTKDgxQkVFQ0I5QjczMkRDMDE0MEQ3QUE0RUNEQzI3MEE2OTk3N0NEQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSCeu6niW8KoLsIky9V6M3AzZO Lapy7dpEw8+oGHQiMvq4kOIHFk+llg/8Fj5xJg0jDarKLlgNRoE33gXTuqSUaYm7 e0VfjyvkfMUJ7xfNvAfZYXyUGvzTLMg4X/u4EVaeE2QwevpDyDVZxyhmlCXayy/s /pGQrAHkjTSBFedfhWvDosu0Ic8wivM5+UvDE3M8ZTjLsEqNffekfrwDXdJa+YTW EOEFWbtXoS+xzftz/S7iTM6NEN9YkteyceUhbXsK9DffDOGSEnND9Eghrvss8G1g kBhQbkQET53stYdV736Y/1uNiwIJj+DbtSTW7W0vxJw+HGlmTbL7bIomnakVAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUgb7subcy3AFA16pOzcJwppl3zbwwHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzQzMDM2M2EzNzY1MzAzMDNhMzUzOTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzMDM0MzAzNS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQGfgAA WTANBgkqhkiG9w0BAQsFAAOCAQEAYee6OOoq9fQpwEiv35KG7EH/WE7UKGAz3lNB nEEoODidEeknKIcg0bKDllJB/RfpB5TbLQB2aUv+i4deFpE5r6UnGX66ZKr3AEUe rKmR4iQ0t8S2vEnuGcSMd7zZvqLD9k/GwRHqaVu6g5unrYTtqzogPKlwRpklA6ZD 63h5/rFrG8eueT7iPaOYsPJgudvLZD4B7ds0RJZeqRACXUGO/fkR9Ey+s0ctbCiT /q0cM1vR5C2Cbe/sLX98EIBBOgaH9x/jzbRTehtYtK1R4ArJ7GgOaWD2MRV+iTXK GNbDOUSzmlDN/HuZS+2CFwh4Qdw+LJY7r8FmMahV33kutT/E2Q== -----END CERTIFICATE-----Generated at Fri May 17 16:04:26 2024 by rpki-client on console-fra.rpki-client.org