$ rpki-client -vvf repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/323430333a396634303a3a2f33322d3438203d3e20313338303734.roa File: 323430333a396634303a3a2f33322d3438203d3e20313338303734.roa (raw, json) Hash identifier: kPEhY2M30Jmr+C/3Gy7DjG8V4ydY2OT9meWcG2OoUTg= Subject key identifier: 4E:0D:5F:27:41:E1:A1:D1:B9:78:0A:30:D0:26:0B:9D:D6:0B:BB:A1 Certificate issuer: /CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB Certificate serial: 1F611B4BB35D071AED9FEF1BC16DDD4222156500 Authority key identifier: C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/323430333a396634303a3a2f33322d3438203d3e20313338303734.roa Signing time: Mon 31 Jul 2023 00:09:41 +0000 ROA not before: Mon 31 Jul 2023 00:04:41 +0000 ROA not after: Mon 29 Jul 2024 00:09:41 +0000 asID: 138074 IP address blocks: 2403:9f40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 22:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:61:1b:4b:b3:5d:07:1a:ed:9f:ef:1b:c1:6d:dd:42:22:15:65:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB Validity Not Before: Jul 31 00:04:41 2023 GMT Not After : Jul 29 00:09:41 2024 GMT Subject: CN=4E0D5F2741E1A1D1B9780A30D0260B9DD60BBBA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2b:d7:58:f4:82:f8:b6:6b:9d:48:de:5d:de: 2a:8b:24:79:d0:6a:48:30:32:83:d3:06:4e:f3:3a: 87:b4:f8:33:d6:e9:c9:c7:f2:6e:57:c5:f3:9a:f6: 79:6d:b4:41:f7:72:ea:99:63:f7:74:5d:30:63:62: 50:e3:ef:c7:2a:ac:ef:e6:86:88:21:a6:f9:25:1d: 8d:d0:9f:ee:1a:c3:40:17:96:a9:b8:e7:9c:61:05: 47:aa:1f:3f:5d:06:01:eb:92:08:0c:4b:39:54:e1: 31:3c:da:98:3b:2a:02:72:7d:7a:4f:c6:37:d7:79: 95:bf:8b:d2:8d:0f:16:98:4c:f1:4a:a2:84:f0:93: 97:7b:52:0c:4a:ba:92:21:fc:dd:de:c8:33:f3:94: e5:59:08:a0:f4:91:5c:2c:56:55:6d:0d:43:49:10: 7d:cd:91:37:18:2e:5c:32:df:e9:85:85:02:98:b5: 04:7a:63:06:1b:ce:7b:85:12:25:39:5e:75:1c:f9: 57:64:a9:8d:30:c2:1a:a2:f7:8c:e6:6e:0d:91:a9: e6:b0:67:45:9d:73:f0:81:18:c6:7e:74:24:b3:ce: c1:33:fc:bd:0c:a1:6b:a0:c0:5b:9c:f5:01:c6:e9: 10:2c:67:37:24:ee:99:5f:1a:86:2c:41:ee:f3:10: 58:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:0D:5F:27:41:E1:A1:D1:B9:78:0A:30:D0:26:0B:9D:D6:0B:BB:A1 X509v3 Authority Key Identifier: keyid:C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/323430333a396634303a3a2f33322d3438203d3e20313338303734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:9f40::/32 Signature Algorithm: sha256WithRSAEncryption 61:91:a0:90:2d:2a:d3:94:09:b2:95:87:c1:85:ae:e4:89:00: 5c:b5:cf:31:49:93:58:57:b3:75:59:a7:6c:be:4d:0c:26:2d: 15:74:e6:fd:bd:4e:e7:0a:5a:73:b5:29:81:82:62:5f:f7:4a: 80:e1:cf:bf:8d:92:89:4f:97:dc:e8:03:3f:88:21:6a:21:40: 2b:7a:b4:4d:ff:95:af:89:73:40:57:8c:3c:d7:7a:9d:59:b3: 58:b3:1a:7b:fa:c5:2e:99:0d:8e:08:cc:43:07:ca:24:85:6e: 16:6a:18:70:03:38:46:a1:52:a8:60:3b:7f:a8:c6:6d:57:a8: 74:5c:9e:4e:f1:4a:ab:6d:fa:52:74:ff:41:05:81:39:e6:3e: 92:f4:a9:0f:e7:2e:2c:c7:b7:0d:26:21:4a:3c:36:9a:fd:90: 91:23:d7:bc:54:e9:7f:7e:7c:1b:98:f2:46:3f:e5:db:49:ca: 79:4d:05:4d:b5:70:91:8f:1b:3f:77:33:39:55:fe:bb:1f:a1: fb:f7:88:7b:2c:62:d9:33:80:89:8c:f4:c8:c0:a1:64:ce:d2: 14:44:d1:70:8d:d7:a1:42:4d:92:1b:30:da:85:94:18:fb:e0: a9:2f:63:5c:04:bc:73:79:53:4f:9a:25:f1:c6:d0:21:23:f8: c7:68:79:39 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUH2EbS7NdBxrtn+8bwW3dQiIVZQAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZC RUZCM0FCQjAeFw0yMzA3MzEwMDA0NDFaFw0yNDA3MjkwMDA5NDFaMDMxMTAvBgNV BAMTKDRFMEQ1RjI3NDFFMUExRDFCOTc4MEEzMEQwMjYwQjlERDYwQkJCQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyK9dY9IL4tmudSN5d3iqLJHnQ akgwMoPTBk7zOoe0+DPW6cnH8m5XxfOa9nlttEH3cuqZY/d0XTBjYlDj78cqrO/m hoghpvklHY3Qn+4aw0AXlqm455xhBUeqHz9dBgHrkggMSzlU4TE82pg7KgJyfXpP xjfXeZW/i9KNDxaYTPFKooTwk5d7UgxKupIh/N3eyDPzlOVZCKD0kVwsVlVtDUNJ EH3NkTcYLlwy3+mFhQKYtQR6YwYbznuFEiU5XnUc+VdkqY0wwhqi94zmbg2Rqeaw Z0Wdc/CBGMZ+dCSzzsEz/L0MoWugwFuc9QHG6RAsZzck7plfGoYsQe7zEFjLAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUTg1fJ0HhodG5eAow0CYLndYLu6EwHwYDVR0j BBgwFoAUyOwY4CdjmwW8WKIijRJkhr77OrswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YzI4OTcwNi1hNGY0LTRlMWYtOWE2ZS0wMWM5YzUzY2Q4ZjkvMC9DOEVDMThFMDI3 NjM5QjA1QkM1OEEyMjI4RDEyNjQ4NkJFRkIzQUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZCRUZC M0FCQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFjMjg5NzA2LWE0ZjQtNGUxZi05 YTZlLTAxYzljNTNjZDhmOS8wLzMyMzQzMDMzM2EzOTY2MzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODMwMzczNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQDn0AwDQYJKoZI hvcNAQELBQADggEBAGGRoJAtKtOUCbKVh8GFruSJAFy1zzFJk1hXs3VZp2y+TQwm LRV05v29TucKWnO1KYGCYl/3SoDhz7+NkolPl9zoAz+IIWohQCt6tE3/la+Jc0BX jDzXep1Zs1izGnv6xS6ZDY4IzEMHyiSFbhZqGHADOEahUqhgO3+oxm1XqHRcnk7x Sqtt+lJ0/0EFgTnmPpL0qQ/nLizHtw0mIUo8Npr9kJEj17xU6X9+fBuY8kY/5dtJ ynlNBU21cJGPGz93MzlV/rsfofv3iHssYtkzgImM9MjAoWTO0hRE0XCN16FCTZIb MNqFlBj74KkvY1wEvHN5U0+aJfHG0CEj+MdoeTk= -----END CERTIFICATE-----Generated at Mon May 6 20:16:35 2024 by rpki-client on console-fra.rpki-client.org