$ rpki-client -vvf repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/323430303a636438303a3a2f33322d3438203d3e203536323432.roa File: 323430303a636438303a3a2f33322d3438203d3e203536323432.roa (raw, json) Hash identifier: T6NkfHBsKc0IlR7L0sRztMc+MmNSXag7DR2V9sWyz6A= Subject key identifier: C1:40:4A:05:7C:7C:C2:B9:3B:53:69:D8:A5:1E:F5:32:A5:77:15:7A Certificate issuer: /CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Certificate serial: 6F061073FD75C2AFDB3B91AF7B4708C57F992766 Authority key identifier: 84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/323430303a636438303a3a2f33322d3438203d3e203536323432.roa Signing time: Fri 26 Jan 2024 06:51:16 +0000 ROA not before: Fri 26 Jan 2024 06:46:16 +0000 ROA not after: Fri 24 Jan 2025 06:51:16 +0000 asID: 56242 IP address blocks: 2400:cd80::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 06:31:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:06:10:73:fd:75:c2:af:db:3b:91:af:7b:47:08:c5:7f:99:27:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Validity Not Before: Jan 26 06:46:16 2024 GMT Not After : Jan 24 06:51:16 2025 GMT Subject: CN=C1404A057C7CC2B93B5369D8A51EF532A577157A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d1:de:f3:53:73:41:a0:de:3e:64:e3:ea:8c: 3d:ee:d9:c4:f2:74:e0:58:b5:2a:20:9f:ca:30:2c: af:40:68:3c:3c:c2:52:a0:cc:2a:e8:3c:47:af:4f: 08:9f:7f:6d:e6:15:6a:ba:46:e6:0e:5e:27:68:2f: d1:37:a1:34:3c:c1:81:76:98:3d:b9:e2:d0:1f:4a: 50:eb:ac:2c:e0:d5:38:8f:ba:60:55:b1:a8:01:83: a6:e6:2f:c1:5f:b0:86:bd:49:0b:9a:aa:f9:34:01: 44:eb:09:44:70:c3:82:fa:3e:12:f5:24:89:ca:a1: 63:43:95:c1:17:e6:c2:da:83:36:d0:07:a2:1d:e9: 4a:05:1a:ed:d1:36:90:26:d3:bf:bb:3d:eb:a2:dd: 28:00:a6:82:69:ac:96:43:70:f0:58:1b:57:0a:20: 94:32:2d:74:ff:ed:53:b0:60:cd:53:ab:07:e5:8d: d4:3f:7e:b6:dd:d5:fc:8e:f2:38:3d:ec:26:48:aa: dc:26:4f:32:06:0c:30:75:ee:28:49:ce:c7:f3:ee: c8:54:5a:02:da:9f:63:91:8c:0d:7b:65:28:5b:2c: eb:e2:11:d2:32:de:16:e8:e9:fd:34:78:85:dc:e6: 38:1b:e2:6c:ac:21:59:30:08:d7:ea:cf:27:d1:76: 6f:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:40:4A:05:7C:7C:C2:B9:3B:53:69:D8:A5:1E:F5:32:A5:77:15:7A X509v3 Authority Key Identifier: keyid:84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/323430303a636438303a3a2f33322d3438203d3e203536323432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:cd80::/32 Signature Algorithm: sha256WithRSAEncryption 99:67:8e:ba:15:a9:11:e6:20:8d:b2:28:3f:99:9f:05:93:31: 80:62:78:72:b5:40:dc:4c:4f:3d:33:77:1b:e1:ec:d1:68:0c: a5:70:7d:3c:1b:26:45:40:fc:37:3f:5f:c2:80:36:39:db:7f: bf:0c:fc:3b:40:50:34:14:9d:d1:62:30:10:fd:fb:ec:65:a8: 1b:93:44:6e:1e:a9:8e:07:13:50:cf:00:0f:a8:b5:c1:cb:95: 02:ca:82:bb:6a:3b:74:1a:db:c0:a0:dd:5d:7c:b3:82:6f:ff: 24:dc:16:47:e1:1b:e7:97:3c:38:3b:a1:3f:a1:76:1e:c2:92: ae:8d:10:0a:0c:b6:60:3d:c6:ac:e1:4b:e9:bc:00:89:21:fe: 2b:a1:f0:b4:6b:10:c6:d6:9f:2f:17:fd:e1:28:e0:c9:dd:4f: 3b:ff:4f:c3:8b:23:90:ee:1b:2c:c8:eb:b4:e1:79:27:07:1b: 50:98:86:2d:d3:f3:79:42:e1:ea:57:5b:a7:7f:d5:45:ec:60: ff:09:fb:75:43:43:01:1a:74:82:36:fb:5c:f8:04:1f:ab:00: 84:fb:13:3d:71:4b:b2:19:b1:ab:46:41:f8:94:ad:35:76:44: 46:74:18:7f:b8:59:be:bb:df:0c:c0:69:19:29:54:1b:6b:2d: bf:07:89:a3 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUbwYQc/11wq/bO5Gve0cIxX+ZJ2YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0 ODUzMEU5RTAeFw0yNDAxMjYwNjQ2MTZaFw0yNTAxMjQwNjUxMTZaMDMxMTAvBgNV BAMTKEMxNDA0QTA1N0M3Q0MyQjkzQjUzNjlEOEE1MUVGNTMyQTU3NzE1N0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/0d7zU3NBoN4+ZOPqjD3u2cTy dOBYtSogn8owLK9AaDw8wlKgzCroPEevTwiff23mFWq6RuYOXidoL9E3oTQ8wYF2 mD254tAfSlDrrCzg1TiPumBVsagBg6bmL8FfsIa9SQuaqvk0AUTrCURww4L6PhL1 JInKoWNDlcEX5sLagzbQB6Id6UoFGu3RNpAm07+7Peui3SgApoJprJZDcPBYG1cK IJQyLXT/7VOwYM1TqwfljdQ/frbd1fyO8jg97CZIqtwmTzIGDDB17ihJzsfz7shU WgLan2ORjA17ZShbLOviEdIy3hbo6f00eIXc5jgb4mysIVkwCNfqzyfRdm8TAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUwUBKBXx8wrk7U2nYpR71MqV3FXowHwYDVR0j BBgwFoAUhGmHSuJo4s1OmhN+3VWZx0hTDp4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2EyZDI1Yi1jYjE4LTQ1YmUtOWZhMS0xNTRjYTE1NzkyMjMvMC84NDY5ODc0QUUy NjhFMkNENEU5QTEzN0VERDU1OTlDNzQ4NTMwRTlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0ODUz MEU5RS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3YTJkMjViLWNiMTgtNDViZS05 ZmExLTE1NGNhMTU3OTIyMy8wLzMyMzQzMDMwM2E2MzY0MzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM1MzYzMjM0MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAM2AMA0GCSqGSIb3 DQEBCwUAA4IBAQCZZ466FakR5iCNsig/mZ8FkzGAYnhytUDcTE89M3cb4ezRaAyl cH08GyZFQPw3P1/CgDY523+/DPw7QFA0FJ3RYjAQ/fvsZagbk0RuHqmOBxNQzwAP qLXBy5UCyoK7ajt0GtvAoN1dfLOCb/8k3BZH4Rvnlzw4O6E/oXYewpKujRAKDLZg Pcas4UvpvACJIf4rofC0axDG1p8vF/3hKODJ3U87/0/DiyOQ7hssyOu04XknBxtQ mIYt0/N5QuHqV1unf9VF7GD/Cft1Q0MBGnSCNvtc+AQfqwCE+xM9cUuyGbGrRkH4 lK01dkRGdBh/uFm+u98MwGkZKVQbay2/B4mj -----END CERTIFICATE-----Generated at Wed May 1 01:36:44 2024 by rpki-client on console-ams.rpki-client.org