$ rpki-client -vvf repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/323430313a343863303a3a2f33322d3438203d3e20313336313139.roa File: 323430313a343863303a3a2f33322d3438203d3e20313336313139.roa (raw, json) Hash identifier: jAz39SdWZW3PqGl85Mh4bH/ieeJ4OrIo0vM5oR1ubg8= Subject key identifier: C5:C4:19:19:76:82:16:41:30:EC:60:F3:BC:1B:91:51:70:39:4C:87 Certificate issuer: /CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Certificate serial: 7427C143DF95B4BEA64AD9E7D46B78E641EA4AC8 Authority key identifier: 21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/323430313a343863303a3a2f33322d3438203d3e20313336313139.roa Signing time: Sun 17 Sep 2023 07:00:00 +0000 ROA not before: Sun 17 Sep 2023 06:55:00 +0000 ROA not after: Sun 15 Sep 2024 07:00:00 +0000 asID: 136119 IP address blocks: 2401:48c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Apr 2024 19:36:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:27:c1:43:df:95:b4:be:a6:4a:d9:e7:d4:6b:78:e6:41:ea:4a:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Validity Not Before: Sep 17 06:55:00 2023 GMT Not After : Sep 15 07:00:00 2024 GMT Subject: CN=C5C419197682164130EC60F3BC1B915170394C87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ec:ef:e8:b8:0f:18:59:39:83:d8:37:55:66: 3b:d6:5a:31:22:15:0a:83:31:a9:64:7e:b1:a9:b0: ee:10:5c:57:bb:d8:73:d7:c0:9b:64:81:68:60:79: a8:fd:ba:42:3c:9f:13:8a:12:0b:38:a9:b4:3e:4d: 12:38:60:c8:4d:be:ad:95:c6:11:aa:b8:06:bf:7f: 54:64:51:4a:48:cd:2e:74:77:84:68:32:ef:61:96: fb:7d:b9:f8:93:89:6a:35:b7:44:e2:bd:64:72:03: a9:b9:ae:15:af:47:14:72:82:a5:1d:f9:4f:bf:44: b7:c4:49:b1:2e:6c:e2:af:4c:31:7b:81:c6:87:16: 34:aa:fe:65:5c:f1:88:ef:5a:5e:80:6d:28:6b:0b: 4b:ca:e0:d5:65:75:8c:b7:50:8e:d6:12:b0:0b:af: 00:f5:8b:a1:e4:80:47:80:c4:b6:c1:97:fc:8b:2b: 6e:16:6a:ba:f2:26:68:c0:4b:44:da:a4:53:52:12: 09:24:93:09:a8:76:b8:0c:d2:89:13:4a:04:4c:82: 00:98:96:7e:cc:b0:53:60:19:c6:7e:a3:e7:a0:1f: 84:6b:d6:43:ee:ae:d5:bd:a8:40:bc:ce:fc:15:a6: e0:51:6c:82:d3:3e:3e:87:de:f8:24:13:c4:08:8d: 63:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:C4:19:19:76:82:16:41:30:EC:60:F3:BC:1B:91:51:70:39:4C:87 X509v3 Authority Key Identifier: keyid:21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/323430313a343863303a3a2f33322d3438203d3e20313336313139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:48c0::/32 Signature Algorithm: sha256WithRSAEncryption 0b:05:6e:b1:7b:fb:ff:c5:93:e2:99:3e:ca:5b:ab:d0:9c:12: b3:b2:6b:78:31:6d:83:b7:1b:84:e9:13:60:06:ad:fc:fa:02: 0f:71:80:34:47:56:c2:87:a3:b1:07:98:f6:e5:2c:83:af:2b: ae:67:9b:d8:86:ba:b9:c9:84:5d:97:6f:76:fa:c3:3d:5c:d1: 23:f6:99:87:a4:b4:30:ba:fa:03:8b:a0:3e:13:d5:5c:05:3a: 5c:9a:76:7a:cf:3f:01:8f:6c:90:4c:7c:03:55:2e:46:ac:ba: 67:15:3a:f3:93:45:fc:6f:c7:fe:18:6b:68:9e:5d:78:10:ce: 55:8e:b0:f2:6e:f0:62:77:a7:6e:6f:21:3a:99:77:03:0b:6a: ac:2c:37:3c:cf:b8:20:84:86:10:5d:28:6d:0b:a4:47:76:55: d2:38:b5:66:a3:3f:9c:87:48:4e:95:7c:f6:9c:6e:5f:73:5a: 90:8d:fa:f3:bf:8c:00:61:43:17:11:55:bb:e0:43:64:43:3e: 25:53:17:58:07:d4:d2:16:da:2e:f7:a1:37:64:5d:21:f5:53: 15:81:e2:25:7e:68:a7:03:dd:25:4f:31:b3:ee:09:f1:24:dd: c3:f7:a1:55:7b:1f:8b:f8:96:56:39:1d:7a:0e:03:6b:dd:b2: 95:82:17:42 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUdCfBQ9+VtL6mStnn1Gt45kHqSsgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNE RDAwOTExQjAeFw0yMzA5MTcwNjU1MDBaFw0yNDA5MTUwNzAwMDBaMDMxMTAvBgNV BAMTKEM1QzQxOTE5NzY4MjE2NDEzMEVDNjBGM0JDMUI5MTUxNzAzOTRDODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm7O/ouA8YWTmD2DdVZjvWWjEi FQqDMalkfrGpsO4QXFe72HPXwJtkgWhgeaj9ukI8nxOKEgs4qbQ+TRI4YMhNvq2V xhGquAa/f1RkUUpIzS50d4RoMu9hlvt9ufiTiWo1t0TivWRyA6m5rhWvRxRygqUd +U+/RLfESbEubOKvTDF7gcaHFjSq/mVc8YjvWl6AbShrC0vK4NVldYy3UI7WErAL rwD1i6HkgEeAxLbBl/yLK24WarryJmjAS0TapFNSEgkkkwmodrgM0okTSgRMggCY ln7MsFNgGcZ+o+egH4Rr1kPurtW9qEC8zvwVpuBRbILTPj6H3vgkE8QIjWOJAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUxcQZGXaCFkEw7GDzvBuRUXA5TIcwHwYDVR0j BBgwFoAUIawiC3enfQUWvHO0wpyDY90AkRswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZGFiYzBiYS05MjIyLTRjNDUtODM0Mi1lYjg2NDNjNDk2N2QvMC8yMUFDMjIwQjc3 QTc3RDA1MTZCQzczQjRDMjlDODM2M0REMDA5MTFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNERDAw OTExQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkYWJjMGJhLTkyMjItNGM0NS04 MzQyLWViODY0M2M0OTY3ZC8wLzMyMzQzMDMxM2EzNDM4NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzNjMxMzEzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBSMAwDQYJKoZI hvcNAQELBQADggEBAAsFbrF7+//Fk+KZPspbq9CcErOya3gxbYO3G4TpE2AGrfz6 Ag9xgDRHVsKHo7EHmPblLIOvK65nm9iGurnJhF2Xb3b6wz1c0SP2mYektDC6+gOL oD4T1VwFOlyadnrPPwGPbJBMfANVLkasumcVOvOTRfxvx/4Ya2ieXXgQzlWOsPJu 8GJ3p25vITqZdwMLaqwsNzzPuCCEhhBdKG0LpEd2VdI4tWajP5yHSE6VfPacbl9z WpCN+vO/jABhQxcRVbvgQ2RDPiVTF1gH1NIW2i73oTdkXSH1UxWB4iV+aKcD3SVP MbPuCfEk3cP3oVV7H4v4llY5HXoOA2vdspWCF0I= -----END CERTIFICATE-----Generated at Thu Apr 18 17:41:03 2024 by rpki-client on console-ams.rpki-client.org