$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/323430313a656530303a3a2f33322d3438203d3e203233393531.roa File: 323430313a656530303a3a2f33322d3438203d3e203233393531.roa (raw, json) Hash identifier: PscOtVdCmaww65Qub5K0rF5+kkwda1/c9t+n7Uf0G1A= Subject key identifier: 2D:C9:A1:FE:52:03:21:9D:69:9C:55:89:9C:10:47:2F:65:3B:0F:0E Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 01EF1FA7086726831F487A43ECB3908EFF6C9637 Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/323430313a656530303a3a2f33322d3438203d3e203233393531.roa Signing time: Tue 19 Sep 2023 05:00:00 +0000 ROA not before: Tue 19 Sep 2023 04:55:00 +0000 ROA not after: Tue 17 Sep 2024 05:00:00 +0000 asID: 23951 IP address blocks: 2401:ee00::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 01:31:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:ef:1f:a7:08:67:26:83:1f:48:7a:43:ec:b3:90:8e:ff:6c:96:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Sep 19 04:55:00 2023 GMT Not After : Sep 17 05:00:00 2024 GMT Subject: CN=2DC9A1FE5203219D699C55899C10472F653B0F0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f6:42:be:00:b0:16:e0:c3:68:02:a1:2f:94: 30:c9:9b:17:e4:91:de:35:45:be:21:c7:c1:19:97: 5a:f9:00:01:48:96:3c:60:6e:c3:52:a2:04:79:d2: 6b:6f:ae:94:92:04:49:8a:3e:71:be:a2:ed:33:3b: c6:35:6e:44:62:26:f8:40:a3:26:8f:6d:87:97:65: f5:04:c2:bd:74:be:b1:93:d3:4c:81:e2:ac:bc:fa: 4f:c5:b4:9d:8e:18:b4:db:25:73:2a:e0:dd:61:35: 6b:7a:7a:48:59:a5:3d:3b:44:03:04:f4:05:0b:f5: 8a:59:52:70:5d:32:bd:1f:48:06:10:bc:95:7d:f2: 10:20:af:60:45:5b:0e:dd:5b:b3:ef:24:04:93:61: 17:a3:b3:05:66:ae:2d:dd:37:3b:61:a2:38:fd:ff: 9f:4f:f1:9c:54:d6:90:6b:5d:0a:1e:bd:d5:9b:45: 70:5f:59:fb:0b:e0:43:f1:22:14:92:19:67:80:3b: 58:11:97:14:de:53:bd:65:ab:48:f2:91:0e:2a:f7: b6:5a:7a:6a:43:85:c2:f5:c1:f1:9c:6b:02:68:9b: c3:b4:67:20:b7:c3:52:59:ce:72:3b:36:2c:ce:74: 89:6b:01:05:cb:a9:c2:1b:8d:45:95:df:a7:86:b9: 99:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:C9:A1:FE:52:03:21:9D:69:9C:55:89:9C:10:47:2F:65:3B:0F:0E X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/323430313a656530303a3a2f33322d3438203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:ee00::/32 Signature Algorithm: sha256WithRSAEncryption ad:31:b0:48:89:12:62:b2:50:b6:58:7f:1a:8d:59:02:ef:5c: fb:7b:82:11:db:4c:2c:07:d3:78:4f:49:3f:76:3e:4c:b3:17: 67:b7:a6:8e:f9:ef:35:75:08:a6:7e:2d:f2:da:68:f1:d7:70: e4:93:96:c5:45:4b:4d:df:4b:a5:32:5e:94:b9:2c:0a:47:fc: 36:16:4a:52:23:1b:3c:b1:24:48:a8:58:cf:96:12:b9:ba:bd: a3:0c:f6:43:99:d1:d7:5c:31:47:02:ed:15:ff:83:37:1c:c3: 3b:91:48:bd:ce:5b:94:dc:56:96:29:ec:c9:52:90:e0:bb:c7: 64:7e:bc:55:aa:bd:82:eb:f4:a8:80:c1:89:9a:fc:eb:74:54: bc:64:44:d0:2a:18:f1:8d:e6:0b:52:9c:0a:7d:3d:d9:1c:bb: 47:45:4e:c7:f4:7c:43:09:32:ae:69:f2:00:9e:91:f8:3e:a0: 3d:52:5d:5b:37:80:66:d5:1e:c5:54:68:af:94:d3:04:ed:60: 0c:46:3e:92:70:e1:9b:d6:b2:11:69:5f:b8:f7:a7:22:e2:1e: 11:c6:93:bc:6a:1e:bc:dd:c0:1a:69:b9:2d:58:c4:40:8b:15: 25:82:c4:c8:0f:5b:8d:d4:79:ff:d2:4c:e7:16:d4:d6:57:82: e5:9d:0e:99 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUAe8fpwhnJoMfSHpD7LOQjv9sljcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yMzA5MTkwNDU1MDBaFw0yNDA5MTcwNTAwMDBaMDMxMTAvBgNV BAMTKDJEQzlBMUZFNTIwMzIxOUQ2OTlDNTU4OTlDMTA0NzJGNjUzQjBGMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF9kK+ALAW4MNoAqEvlDDJmxfk kd41Rb4hx8EZl1r5AAFIljxgbsNSogR50mtvrpSSBEmKPnG+ou0zO8Y1bkRiJvhA oyaPbYeXZfUEwr10vrGT00yB4qy8+k/FtJ2OGLTbJXMq4N1hNWt6ekhZpT07RAME 9AUL9YpZUnBdMr0fSAYQvJV98hAgr2BFWw7dW7PvJASTYRejswVmri3dNzthojj9 /59P8ZxU1pBrXQoevdWbRXBfWfsL4EPxIhSSGWeAO1gRlxTeU71lq0jykQ4q97Za empDhcL1wfGcawJom8O0ZyC3w1JZznI7NizOdIlrAQXLqcIbjUWV36eGuZmnAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQULcmh/lIDIZ1pnFWJnBBHL2U7Dw4wHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMyMzQzMDMxM2E2NTY1MzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMyMzMzOTM1MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAe4AMA0GCSqGSIb3 DQEBCwUAA4IBAQCtMbBIiRJislC2WH8ajVkC71z7e4IR20wsB9N4T0k/dj5Msxdn t6aO+e81dQimfi3y2mjx13Dkk5bFRUtN30ulMl6UuSwKR/w2FkpSIxs8sSRIqFjP lhK5ur2jDPZDmdHXXDFHAu0V/4M3HMM7kUi9zluU3FaWKezJUpDgu8dkfrxVqr2C 6/SogMGJmvzrdFS8ZETQKhjxjeYLUpwKfT3ZHLtHRU7H9HxDCTKuafIAnpH4PqA9 Ul1bN4Bm1R7FVGivlNME7WAMRj6ScOGb1rIRaV+496ci4h4RxpO8ah683cAaabkt WMRAixUlgsTID1uN1Hn/0kznFtTWV4LlnQ6Z -----END CERTIFICATE-----Generated at Mon May 6 22:39:55 2024 by rpki-client on console-ams.rpki-client.org