$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a613a3a2f34382d3438203d3e203234323036.roa File: 323430323a616230303a613a3a2f34382d3438203d3e203234323036.roa (raw, json) Hash identifier: HS4VjUyHNBtMgZTtzwynT1ApoMfReSY9YGdmnlMbRxI= Subject key identifier: 69:F8:5A:86:ED:FE:A5:B0:9B:68:9F:76:E8:41:E4:FE:85:29:44:58 Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 0B060B12C615832F17F96CE23FE8863A01BCA3C5 Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a613a3a2f34382d3438203d3e203234323036.roa Signing time: Thu 24 Aug 2023 19:00:00 +0000 ROA not before: Thu 24 Aug 2023 18:55:00 +0000 ROA not after: Thu 22 Aug 2024 19:00:00 +0000 asID: 24206 IP address blocks: 2402:ab00:a::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 08:24:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:06:0b:12:c6:15:83:2f:17:f9:6c:e2:3f:e8:86:3a:01:bc:a3:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Aug 24 18:55:00 2023 GMT Not After : Aug 22 19:00:00 2024 GMT Subject: CN=69F85A86EDFEA5B09B689F76E841E4FE85294458 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:60:08:30:77:70:01:2d:07:5c:52:4d:d5:d8: 29:26:64:05:0b:c9:0f:0d:66:b3:4e:ae:ee:58:59: 13:d5:f2:8e:19:52:ef:4d:aa:79:48:ad:6a:a9:7e: 89:11:7a:49:90:af:9c:26:c1:64:41:85:de:a0:43: bd:28:8f:3b:9e:24:ac:09:d0:d1:53:24:bf:33:89: 00:14:b1:54:c0:3e:96:53:a3:ed:98:c0:56:fb:24: be:5d:a8:a0:a6:d0:47:64:14:ad:d1:63:db:c0:e3: c2:4e:14:db:20:c6:1f:f2:1a:5a:f2:82:0b:64:75: 05:01:57:83:c0:40:fd:4e:65:38:e7:48:5a:17:83: b2:49:92:52:db:75:50:8a:55:3e:05:1a:22:51:d9: 13:29:d2:fc:8a:11:22:27:7a:69:0f:91:8f:46:6b: 18:c1:d1:da:64:6c:3f:f3:3a:d1:1f:89:f0:3b:67: 62:48:4c:7d:3d:b0:b3:7b:b7:f7:3c:13:23:06:67: 35:7a:bf:7c:2e:b9:aa:7e:89:00:e2:20:12:3d:c3: 8c:2b:1a:82:66:98:d1:e1:7d:fb:11:d9:2e:62:ce: 5b:45:ae:11:63:53:76:b9:2d:43:d7:c6:f5:53:62: 18:df:29:cd:4b:e9:af:ad:88:40:41:0b:1f:34:23: 72:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:F8:5A:86:ED:FE:A5:B0:9B:68:9F:76:E8:41:E4:FE:85:29:44:58 X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a613a3a2f34382d3438203d3e203234323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:ab00:a::/48 Signature Algorithm: sha256WithRSAEncryption 91:0f:c6:3f:ef:e1:b8:be:8f:8e:8b:58:12:f8:e8:64:18:33: 51:33:b2:f5:41:12:c0:59:17:a2:3f:27:56:b9:90:64:c6:f3: 2a:fa:ab:db:86:e6:10:98:1b:52:ae:45:e5:7d:bf:7e:a2:b0: 14:a3:18:f3:cd:e6:45:d7:a1:fb:dd:f5:a7:f5:74:41:2e:13: e9:6d:fc:2f:81:bf:4c:da:35:c9:9c:3d:21:57:44:bb:f6:9f: 07:9b:b1:14:ce:88:ec:24:d6:4a:62:1e:02:f2:bf:d8:20:b1: eb:36:2f:62:76:7e:e7:4a:67:68:9c:ad:9b:a9:89:f8:76:71: 09:0d:1b:38:30:f1:6a:8d:53:7a:30:6e:c4:5d:ba:9d:bf:36: 5e:4b:01:46:bc:90:dd:fa:83:f3:d4:c5:43:1e:89:20:62:ca: bd:f9:fc:34:6a:df:8a:63:38:d4:5f:79:69:39:36:96:83:d4: 59:ee:3b:98:9a:0b:cf:0c:a1:ff:81:29:4f:d2:41:9c:91:bf: 4a:de:e1:05:6c:b4:70:21:27:fc:cc:db:a6:e2:7f:01:35:3b: 56:84:ce:44:31:57:ed:07:6c:23:6d:44:c3:39:e4:98:f5:5c: f9:fb:4e:92:ad:b3:ef:48:03:b3:30:a5:29:67:b7:84:fe:18: 01:48:f3:bd -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUCwYLEsYVgy8X+WziP+iGOgG8o8UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yMzA4MjQxODU1MDBaFw0yNDA4MjIxOTAwMDBaMDMxMTAvBgNV BAMTKDY5Rjg1QTg2RURGRUE1QjA5QjY4OUY3NkU4NDFFNEZFODUyOTQ0NTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjYAgwd3ABLQdcUk3V2CkmZAUL yQ8NZrNOru5YWRPV8o4ZUu9NqnlIrWqpfokRekmQr5wmwWRBhd6gQ70ojzueJKwJ 0NFTJL8ziQAUsVTAPpZTo+2YwFb7JL5dqKCm0EdkFK3RY9vA48JOFNsgxh/yGlry ggtkdQUBV4PAQP1OZTjnSFoXg7JJklLbdVCKVT4FGiJR2RMp0vyKESInemkPkY9G axjB0dpkbD/zOtEfifA7Z2JITH09sLN7t/c8EyMGZzV6v3wuuap+iQDiIBI9w4wr GoJmmNHhffsR2S5izltFrhFjU3a5LUPXxvVTYhjfKc1L6a+tiEBBCx80I3I9AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUafhahu3+pbCbaJ926EHk/oUpRFgwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzQzMDMyM2E2MTYyMzAzMDNhNjEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMjM0MzIzMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAKrAAAKMA0G CSqGSIb3DQEBCwUAA4IBAQCRD8Y/7+G4vo+Oi1gS+OhkGDNRM7L1QRLAWReiPydW uZBkxvMq+qvbhuYQmBtSrkXlfb9+orAUoxjzzeZF16H73fWn9XRBLhPpbfwvgb9M 2jXJnD0hV0S79p8Hm7EUzojsJNZKYh4C8r/YILHrNi9idn7nSmdonK2bqYn4dnEJ DRs4MPFqjVN6MG7EXbqdvzZeSwFGvJDd+oPz1MVDHokgYsq9+fw0at+KYzjUX3lp OTaWg9RZ7juYmgvPDKH/gSlP0kGckb9K3uEFbLRwISf8zNum4n8BNTtWhM5EMVft B2wjbUTDOeSY9Vz5+06SrbPvSAOzMKUpZ7eE/hgBSPO9 -----END CERTIFICATE-----Generated at Thu May 2 08:50:11 2024 by rpki-client on console-fra.rpki-client.org