$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a65663a3a2f34382d3438203d3e203234323036.roa File: 323430323a616230303a65663a3a2f34382d3438203d3e203234323036.roa (raw, json) Hash identifier: ftEwBJJXRY2B6JnKqS6J1gTBNV8ZU6tbmzExElbu5bc= Subject key identifier: A1:C8:5A:D6:6C:0B:2B:82:60:4A:04:44:85:5A:DB:12:99:3A:CC:C2 Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 52F1961388A1AC6629042A1D6751455DF4D50F4A Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a65663a3a2f34382d3438203d3e203234323036.roa Signing time: Thu 10 Aug 2023 17:00:00 +0000 ROA not before: Thu 10 Aug 2023 16:55:00 +0000 ROA not after: Thu 08 Aug 2024 17:00:00 +0000 asID: 24206 IP address blocks: 2402:ab00:ef::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 15:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:f1:96:13:88:a1:ac:66:29:04:2a:1d:67:51:45:5d:f4:d5:0f:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Aug 10 16:55:00 2023 GMT Not After : Aug 8 17:00:00 2024 GMT Subject: CN=A1C85AD66C0B2B82604A0444855ADB12993ACCC2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:cc:cf:9a:ac:52:31:df:ec:8e:dd:69:2d:f7: d6:9a:72:c7:d0:88:d2:b5:5b:92:bc:e8:32:5b:67: 53:09:8a:48:e1:09:bd:07:f3:5d:0e:36:f0:5a:d8: b0:1a:05:5e:57:e0:b0:40:2d:27:ca:30:eb:6a:74: c1:7d:4d:8d:41:e2:a9:46:64:cd:1b:e0:4f:13:4b: 35:23:91:e6:4b:b0:11:6b:0a:5b:19:b2:08:82:e3: ed:e9:3f:98:39:81:69:53:c0:2d:18:1f:ec:37:5d: 54:90:2c:c5:1f:a4:84:a3:df:1d:88:5a:a4:f5:09: 22:8f:a7:e3:9b:47:03:3e:25:c3:7b:0d:88:56:2e: c3:41:4f:24:91:2e:11:8d:8b:63:82:c5:e9:62:f8: a2:26:4e:ed:49:94:d6:0a:a2:c8:7c:7f:71:0f:04: 3c:20:3b:30:6e:3a:22:48:c1:57:d8:84:29:36:ba: ad:c2:87:be:60:71:73:cd:d9:d4:da:8d:7c:f3:dc: da:6e:b4:30:fd:f5:04:64:66:d1:c3:0d:85:b5:ee: 88:da:f9:67:4a:ed:cc:ed:b2:c2:2a:51:5f:cf:e7: 03:6b:a4:aa:a4:89:e9:57:03:e4:cf:f7:13:d1:51: e0:22:7f:6e:7e:63:19:c2:cd:cf:b5:8c:10:d5:a1: dd:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:C8:5A:D6:6C:0B:2B:82:60:4A:04:44:85:5A:DB:12:99:3A:CC:C2 X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a65663a3a2f34382d3438203d3e203234323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:ab00:ef::/48 Signature Algorithm: sha256WithRSAEncryption 67:6a:20:f5:a5:45:80:2e:36:dd:44:12:f9:d1:67:0f:c4:96: 85:ac:d8:a8:fd:70:f7:05:e3:fb:b3:9c:b7:7f:a4:8b:98:32: f9:5e:38:2b:79:e2:06:6e:f5:7f:0a:5f:b9:c9:86:59:7e:9b: a5:8a:90:b0:87:33:12:0a:6b:2b:4d:de:49:80:c4:2e:95:d3: 82:60:56:d2:14:30:63:a5:dd:8f:8b:07:64:bb:a8:b1:11:75: 56:27:ad:46:d5:0c:b9:4c:3f:6b:80:81:99:1a:ae:3f:d4:90: 20:da:21:15:ac:54:5c:51:d0:0f:2c:de:ef:50:6b:eb:dd:f0: 21:a4:ce:30:06:1a:9f:0e:f6:4a:97:fc:de:14:3d:c2:ca:d5: 5a:2a:8b:20:78:b3:ef:34:a5:36:55:77:a6:c6:1d:f1:de:da: fd:cf:4b:4f:ed:3f:c1:4e:39:9e:1e:87:af:53:f5:30:d9:ae: dd:9b:aa:ad:00:7d:c5:cc:04:b2:2c:b9:b8:a0:8d:4d:59:de: d3:3a:b9:39:22:c2:aa:13:1d:34:9b:0a:2e:d3:d0:af:3d:1c: 45:c6:1c:54:ac:ad:88:77:24:ad:f1:01:f4:33:05:f3:95:64: 33:e3:50:f7:00:fd:30:d7:87:c1:6f:8f:45:dc:06:a8:ed:29: e2:43:d7:18 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUUvGWE4ihrGYpBCodZ1FFXfTVD0owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yMzA4MTAxNjU1MDBaFw0yNDA4MDgxNzAwMDBaMDMxMTAvBgNV BAMTKEExQzg1QUQ2NkMwQjJCODI2MDRBMDQ0NDg1NUFEQjEyOTkzQUNDQzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1zM+arFIx3+yO3Wkt99aacsfQ iNK1W5K86DJbZ1MJikjhCb0H810ONvBa2LAaBV5X4LBALSfKMOtqdMF9TY1B4qlG ZM0b4E8TSzUjkeZLsBFrClsZsgiC4+3pP5g5gWlTwC0YH+w3XVSQLMUfpISj3x2I WqT1CSKPp+ObRwM+JcN7DYhWLsNBTySRLhGNi2OCxeli+KImTu1JlNYKosh8f3EP BDwgOzBuOiJIwVfYhCk2uq3Ch75gcXPN2dTajXzz3NputDD99QRkZtHDDYW17oja +WdK7cztssIqUV/P5wNrpKqkielXA+TP9xPRUeAif25+YxnCzc+1jBDVod2HAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUocha1mwLK4JgSgREhVrbEpk6zMIwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzQzMDMyM2E2MTYyMzAzMDNhNjU2NjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzQzMjMwMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqsAAO8w DQYJKoZIhvcNAQELBQADggEBAGdqIPWlRYAuNt1EEvnRZw/EloWs2Kj9cPcF4/uz nLd/pIuYMvleOCt54gZu9X8KX7nJhll+m6WKkLCHMxIKaytN3kmAxC6V04JgVtIU MGOl3Y+LB2S7qLERdVYnrUbVDLlMP2uAgZkarj/UkCDaIRWsVFxR0A8s3u9Qa+vd 8CGkzjAGGp8O9kqX/N4UPcLK1VoqiyB4s+80pTZVd6bGHfHe2v3PS0/tP8FOOZ4e h69T9TDZrt2bqq0AfcXMBLIsubigjU1Z3tM6uTkiwqoTHTSbCi7T0K89HEXGHFSs rYh3JK3xAfQzBfOVZDPjUPcA/TDXh8Fvj0XcBqjtKeJD1xg= -----END CERTIFICATE-----Generated at Thu Apr 25 07:20:19 2024 by rpki-client on console-ams.rpki-client.org