$ rpki-client -vvf repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/323430343a393538303a34383a3a2f34382d3438203d3e203234353334.roa File: 323430343a393538303a34383a3a2f34382d3438203d3e203234353334.roa (raw, json) Hash identifier: bhKHYK9obFl/wh6ufXfRMNZyUVp/XWJvbrCc5sm6boo= Subject key identifier: B8:90:9F:DA:FB:76:68:D1:C6:6F:89:9C:F3:81:60:55:12:AC:B4:0F Certificate issuer: /CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Certificate serial: 06288F399036538D8F36D8BBBAF9C220A0BFA37E Authority key identifier: DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/323430343a393538303a34383a3a2f34382d3438203d3e203234353334.roa Signing time: Thu 04 Jan 2024 10:33:59 +0000 ROA not before: Thu 04 Jan 2024 10:28:59 +0000 ROA not after: Thu 02 Jan 2025 10:33:59 +0000 asID: 24534 IP address blocks: 2404:9580:48::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 23:09:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:28:8f:39:90:36:53:8d:8f:36:d8:bb:ba:f9:c2:20:a0:bf:a3:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Validity Not Before: Jan 4 10:28:59 2024 GMT Not After : Jan 2 10:33:59 2025 GMT Subject: CN=B8909FDAFB7668D1C66F899CF381605512ACB40F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:1b:21:ac:d7:9b:a3:f6:85:fd:73:59:03:af: 91:66:53:f7:ef:b1:72:3c:b1:bd:3f:a6:fd:01:ee: be:40:09:55:1b:01:a1:78:2e:d3:74:79:47:35:b0: 0d:87:ac:b2:90:a6:f3:3b:be:7b:2a:7c:0a:5c:34: d4:f1:1b:3b:26:b9:25:49:20:02:f0:19:21:64:e0: 80:99:5f:af:cd:d2:aa:e8:2a:79:cc:63:f9:10:6e: 94:5e:86:c7:f3:cb:af:40:28:38:18:74:63:c1:87: b6:8c:22:56:5f:ad:7a:79:44:e3:cc:6b:a6:80:ce: b0:6f:85:c4:1a:93:12:a9:e1:dd:d6:d4:52:2e:52: a5:13:ec:39:38:25:ce:78:0d:4f:07:de:c2:1d:c8: b5:21:8a:c6:97:8d:b9:53:6c:95:a6:c2:4f:6c:85: f8:1c:bb:4c:16:e2:68:e4:f0:a4:34:47:39:43:d1: a2:22:c0:bc:ae:30:51:d3:af:32:e5:92:5e:2c:de: c9:67:67:2e:13:d6:f3:50:bf:2b:6b:48:41:66:f7: 33:b8:e2:5a:dc:ca:c0:b7:14:6c:d0:2f:24:cf:74: 7c:ef:1b:2d:13:d6:f3:ce:68:2a:3b:65:9c:1e:cc: 4a:e6:eb:43:96:01:8e:35:5a:31:67:f7:c4:ce:2a: 40:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:90:9F:DA:FB:76:68:D1:C6:6F:89:9C:F3:81:60:55:12:AC:B4:0F X509v3 Authority Key Identifier: keyid:DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/323430343a393538303a34383a3a2f34382d3438203d3e203234353334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:9580:48::/48 Signature Algorithm: sha256WithRSAEncryption 37:db:64:02:65:03:39:e9:a6:54:77:a1:aa:e5:6d:7e:57:bc: 3d:50:ff:32:e5:0e:3e:4a:34:b8:fc:78:61:c3:83:3d:b3:64: e1:3a:fc:76:25:8e:4f:cd:a9:9b:7a:f6:a2:0b:89:4e:dd:01: 25:3c:3b:3f:ae:99:af:65:e8:98:f6:38:0c:80:19:56:66:b6: 6a:d6:90:12:87:cd:a3:f0:5c:4a:85:38:c0:13:a0:49:51:fe: d1:c9:7e:b1:36:b1:d1:45:96:d1:d0:3f:ff:09:e6:47:02:9a: 1e:00:9c:7a:75:73:6c:b6:44:30:29:48:2a:2b:c4:84:72:94: 7b:e9:f3:f3:31:8a:a0:62:c9:c3:b9:35:2d:bb:23:7b:47:52: af:b0:2d:69:6c:a6:56:81:51:b6:31:94:1f:b5:95:62:79:ad: 1e:13:f7:73:55:36:58:6d:6d:2c:71:7f:4a:c7:8d:12:61:cb: da:49:56:5f:25:39:be:a5:48:8b:95:83:cf:da:a8:ac:97:5c: 67:12:31:df:27:14:ef:f9:b8:59:a8:de:22:93:21:98:bc:db: 99:1c:92:dd:1a:b1:49:af:a8:89:96:fd:d1:2a:45:bd:92:9a: 00:2a:8e:d4:e2:22:10:20:f5:cf:b2:a0:ec:45:d9:2f:47:f3: c8:dd:31:e6 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUBiiPOZA2U42PNti7uvnCIKC/o34wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJF NzUyNjNENzAeFw0yNDAxMDQxMDI4NTlaFw0yNTAxMDIxMDMzNTlaMDMxMTAvBgNV BAMTKEI4OTA5RkRBRkI3NjY4RDFDNjZGODk5Q0YzODE2MDU1MTJBQ0I0MEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgGyGs15uj9oX9c1kDr5FmU/fv sXI8sb0/pv0B7r5ACVUbAaF4LtN0eUc1sA2HrLKQpvM7vnsqfApcNNTxGzsmuSVJ IALwGSFk4ICZX6/N0qroKnnMY/kQbpRehsfzy69AKDgYdGPBh7aMIlZfrXp5ROPM a6aAzrBvhcQakxKp4d3W1FIuUqUT7Dk4Jc54DU8H3sIdyLUhisaXjblTbJWmwk9s hfgcu0wW4mjk8KQ0RzlD0aIiwLyuMFHTrzLlkl4s3slnZy4T1vNQvytrSEFm9zO4 4lrcysC3FGzQLyTPdHzvGy0T1vPOaCo7ZZwezErm60OWAY41WjFn98TOKkCjAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUuJCf2vt2aNHGb4mc84FgVRKstA8wHwYDVR0j BBgwFoAU3Sn15M5WF2CgIS8ESJh6++dSY9cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjI0MDUyZS0yMjA1LTQ4ZjMtYTNjYi1jZThiMzI2YjhmNzEvMC9ERDI5RjVFNENF NTYxNzYwQTAyMTJGMDQ0ODk4N0FGQkU3NTI2M0Q3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJFNzUy NjNENy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2MjQwNTJlLTIyMDUtNDhmMy1h M2NiLWNlOGIzMjZiOGY3MS8wLzMyMzQzMDM0M2EzOTM1MzgzMDNhMzQzODNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzQzNTMzMzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBJWAAEgw DQYJKoZIhvcNAQELBQADggEBADfbZAJlAznpplR3oarlbX5XvD1Q/zLlDj5KNLj8 eGHDgz2zZOE6/HYljk/NqZt69qILiU7dASU8Oz+uma9l6Jj2OAyAGVZmtmrWkBKH zaPwXEqFOMAToElR/tHJfrE2sdFFltHQP/8J5kcCmh4AnHp1c2y2RDApSCorxIRy lHvp8/MxiqBiycO5NS27I3tHUq+wLWlsplaBUbYxlB+1lWJ5rR4T93NVNlhtbSxx f0rHjRJhy9pJVl8lOb6lSIuVg8/aqKyXXGcSMd8nFO/5uFmo3iKTIZi825kckt0a sUmvqImW/dEqRb2SmgAqjtTiIhAg9c+yoOxF2S9H88jdMeY= -----END CERTIFICATE-----Generated at Sat Jun 1 00:11:40 2024 by rpki-client on console-ams.rpki-client.org