$ rpki-client -vvf repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/323430343a663863303a3a2f33322d3332203d3e203435333132.roa File: 323430343a663863303a3a2f33322d3332203d3e203435333132.roa (raw, json) Hash identifier: G3+73MN9D8tit8ZdIWXtNa8nRebpZtDOyzJs67a7p0g= Subject key identifier: 3E:FC:10:26:D4:3D:54:11:8C:4E:97:84:02:23:3C:CF:19:88:09:9E Certificate issuer: /CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Certificate serial: 1CE06AB79311F290290173E4BAD36E3BA036EC1C Authority key identifier: 15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/323430343a663863303a3a2f33322d3332203d3e203435333132.roa Signing time: Thu 30 Nov 2023 05:00:01 +0000 ROA not before: Thu 30 Nov 2023 04:55:01 +0000 ROA not after: Thu 28 Nov 2024 05:00:01 +0000 asID: 45312 IP address blocks: 2404:f8c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:e0:6a:b7:93:11:f2:90:29:01:73:e4:ba:d3:6e:3b:a0:36:ec:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Validity Not Before: Nov 30 04:55:01 2023 GMT Not After : Nov 28 05:00:01 2024 GMT Subject: CN=3EFC1026D43D54118C4E978402233CCF1988099E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:3d:08:c1:c8:dd:4a:fa:71:74:91:90:3f:2b: 2f:ca:6b:75:1c:bd:26:eb:a4:af:b5:27:54:00:67: 0b:9b:7b:ff:cd:2c:c4:95:ba:d5:cc:a6:be:00:e8: ed:ac:3b:89:c5:1c:4e:77:ca:a5:99:d1:da:06:03: c2:ae:1d:68:e7:eb:05:cc:c0:fc:23:3a:4d:77:00: 3e:32:c9:e4:ed:5e:a4:a7:d6:e2:a5:01:9d:3a:04: 4b:4e:b8:84:45:22:ae:23:c7:c5:13:89:9a:6e:95: d7:4d:99:c5:bb:ad:d6:57:8e:49:61:3a:ca:76:e5: 2b:05:aa:77:e3:3f:73:6f:78:ac:63:93:2b:c5:15: ab:f6:f1:c1:34:91:cf:4f:5b:4b:3c:fb:69:1c:e8: 43:dd:c7:00:9e:43:4b:24:65:fd:4d:99:e7:4b:50: f5:ea:04:f8:9b:2a:1c:0b:51:38:a7:7e:bb:98:66: db:ff:bb:04:b3:2f:ea:eb:40:ae:02:2f:76:0e:11: 8b:9e:e7:05:7a:94:ed:93:80:63:3e:b8:66:05:e3: 7f:c4:f8:d1:39:fc:d2:12:f1:86:c4:16:fc:55:cf: f5:eb:54:b4:a3:44:25:49:db:91:94:cb:15:bb:c7: 4b:e5:22:70:5f:a2:ba:19:9e:bd:4b:35:75:82:96: 32:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:FC:10:26:D4:3D:54:11:8C:4E:97:84:02:23:3C:CF:19:88:09:9E X509v3 Authority Key Identifier: keyid:15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/323430343a663863303a3a2f33322d3332203d3e203435333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:f8c0::/32 Signature Algorithm: sha256WithRSAEncryption 8e:23:67:fb:60:15:bc:ad:9b:81:c1:34:69:fa:9f:61:9d:a5: e4:89:63:36:02:c8:12:34:70:de:a5:c8:a3:7c:d3:ae:0d:bc: 34:e9:6c:43:d9:38:1c:8e:fe:49:5b:f2:cd:f1:8b:79:88:c8: 33:75:a0:cc:ca:b0:0d:aa:a4:5c:cd:9d:36:d3:b7:0a:50:22: 30:a5:21:27:7f:67:36:7c:a5:73:71:6c:68:b9:59:c2:fe:34: a5:3b:c3:88:47:85:73:cc:3f:8b:81:c6:0e:f6:76:bd:d4:c5: e5:3e:90:48:0e:22:55:b7:98:f4:0d:6c:3c:14:1d:1e:f2:4f: 54:eb:d6:2c:16:8d:ea:f7:1c:20:71:74:4c:c7:77:70:6a:1b: 2e:54:3d:29:20:69:9e:31:b0:6d:4d:88:99:c7:38:f0:a5:79: e5:96:6d:30:6a:99:d4:74:17:55:9e:ca:25:a9:60:4f:0c:61: 18:25:d6:fe:0e:cf:7c:fc:e5:e8:7a:2b:c1:95:e8:27:26:92: 7b:a6:7a:c9:7c:7d:83:75:3e:52:f0:08:04:eb:b0:7c:79:9a: ae:65:ff:13:00:e9:53:bf:ab:75:3e:fa:59:01:56:8d:2f:d7: 69:bd:b7:c9:fa:b7:be:ea:b0:12:d4:16:14:78:10:d9:d2:a5: 9c:90:a1:fb -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUHOBqt5MR8pApAXPkutNuO6A27BwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NB MEJGQzQ0MTAeFw0yMzExMzAwNDU1MDFaFw0yNDExMjgwNTAwMDFaMDMxMTAvBgNV BAMTKDNFRkMxMDI2RDQzRDU0MTE4QzRFOTc4NDAyMjMzQ0NGMTk4ODA5OUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRPQjByN1K+nF0kZA/Ky/Ka3Uc vSbrpK+1J1QAZwube//NLMSVutXMpr4A6O2sO4nFHE53yqWZ0doGA8KuHWjn6wXM wPwjOk13AD4yyeTtXqSn1uKlAZ06BEtOuIRFIq4jx8UTiZpulddNmcW7rdZXjklh Osp25SsFqnfjP3NveKxjkyvFFav28cE0kc9PW0s8+2kc6EPdxwCeQ0skZf1NmedL UPXqBPibKhwLUTinfruYZtv/uwSzL+rrQK4CL3YOEYue5wV6lO2TgGM+uGYF43/E +NE5/NIS8YbEFvxVz/XrVLSjRCVJ25GUyxW7x0vlInBforoZnr1LNXWCljIrAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUPvwQJtQ9VBGMTpeEAiM8zxmICZ4wHwYDVR0j BBgwFoAUFU7gMZhGe5YxX9tSf7O7zKC/xEEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NjIxZjc1My1hODhlLTRlZGYtYTMwNi1iZDkzZDVhMzhmZWEvMC8xNTRFRTAzMTk4 NDY3Qjk2MzE1RkRCNTI3RkIzQkJDQ0EwQkZDNDQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NBMEJG QzQ0MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2MjFmNzUzLWE4OGUtNGVkZi1h MzA2LWJkOTNkNWEzOGZlYS8wLzMyMzQzMDM0M2E2NjM4NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDM0MzUzMzMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBPjAMA0GCSqGSIb3 DQEBCwUAA4IBAQCOI2f7YBW8rZuBwTRp+p9hnaXkiWM2AsgSNHDepcijfNOuDbw0 6WxD2Tgcjv5JW/LN8Yt5iMgzdaDMyrANqqRczZ0207cKUCIwpSEnf2c2fKVzcWxo uVnC/jSlO8OIR4VzzD+LgcYO9na91MXlPpBIDiJVt5j0DWw8FB0e8k9U69YsFo3q 9xwgcXRMx3dwahsuVD0pIGmeMbBtTYiZxzjwpXnllm0wapnUdBdVnsolqWBPDGEY Jdb+Ds98/OXoeivBlegnJpJ7pnrJfH2DdT5S8AgE67B8eZquZf8TAOlTv6t1PvpZ AVaNL9dpvbfJ+re+6rAS1BYUeBDZ0qWckKH7 -----END CERTIFICATE-----Generated at Tue May 7 16:42:47 2024 by rpki-client on console-ams.rpki-client.org