$ rpki-client -vvf repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/323430343a343738303a313a3a2f34382d3438203d3e20313430333939.roa File: 323430343a343738303a313a3a2f34382d3438203d3e20313430333939.roa (raw, json) Hash identifier: Aj7SkuUfGUEHg3ZvocvK1b8gnuT/F1GrtYg9gvGoY9g= Subject key identifier: BD:19:CA:74:FD:11:6B:F4:A9:5C:0A:10:47:17:4A:68:85:34:87:11 Certificate issuer: /CN=803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3 Certificate serial: 3DCE265ABD1FF4EDC451091BF1D7C1E2D70C6CF2 Authority key identifier: 80:3C:9F:F1:02:83:6C:EC:8C:EC:49:F0:1F:CF:AA:0E:92:E2:6A:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/323430343a343738303a313a3a2f34382d3438203d3e20313430333939.roa Signing time: Wed 20 Dec 2023 03:19:57 +0000 ROA not before: Wed 20 Dec 2023 03:14:57 +0000 ROA not after: Wed 18 Dec 2024 03:19:57 +0000 asID: 140399 IP address blocks: 2404:4780:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.crl rsync://repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:ce:26:5a:bd:1f:f4:ed:c4:51:09:1b:f1:d7:c1:e2:d7:0c:6c:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3 Validity Not Before: Dec 20 03:14:57 2023 GMT Not After : Dec 18 03:19:57 2024 GMT Subject: CN=BD19CA74FD116BF4A95C0A1047174A6885348711 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:d8:b8:f5:be:76:7a:5c:6f:42:36:1d:5e:15: 1c:86:b1:7f:be:00:cb:c3:c6:6b:a8:50:35:81:7f: 36:70:e3:f0:5a:44:11:be:1c:da:ab:6d:c8:dd:17: a9:44:98:5a:4b:36:d7:c3:c5:f3:10:5d:3f:4e:7a: 48:fd:8f:d9:c2:20:c5:a7:5c:3b:3b:fd:f7:a4:68: 7c:76:bf:57:2d:60:53:7c:ef:21:61:45:87:32:3b: 53:34:df:97:e7:2a:35:37:d6:10:c2:81:79:3d:db: f7:2a:4e:6d:18:bc:3d:37:84:96:05:4d:d9:83:5c: 66:be:3e:e2:cb:49:4c:3f:dd:e4:ba:41:96:46:38: e6:a4:6a:4b:18:b9:49:40:52:e0:ae:e3:ff:4e:7c: ba:81:9d:4d:72:0e:b9:57:55:77:8b:93:fe:86:83: b8:85:c2:d8:d7:1b:f8:c9:e3:0a:a9:a1:e8:88:fa: 1a:e4:30:61:81:48:5b:3a:11:dc:f8:77:27:8a:22: 38:8d:ec:35:dd:20:e3:13:9e:2b:6e:8b:f4:1b:53: 73:eb:23:3e:8b:e9:8e:e5:1b:8c:e2:13:96:a9:d5: 6e:a4:43:cd:24:09:b9:ab:42:14:20:f2:8f:4c:3e: ef:48:b2:15:eb:91:00:ac:0a:e9:be:36:8a:3c:29: 95:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:19:CA:74:FD:11:6B:F4:A9:5C:0A:10:47:17:4A:68:85:34:87:11 X509v3 Authority Key Identifier: keyid:80:3C:9F:F1:02:83:6C:EC:8C:EC:49:F0:1F:CF:AA:0E:92:E2:6A:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/323430343a343738303a313a3a2f34382d3438203d3e20313430333939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:4780:1::/48 Signature Algorithm: sha256WithRSAEncryption 1c:99:11:d4:12:16:48:c8:65:d1:25:2b:b4:0a:95:8c:96:60: 17:bb:77:d6:09:a6:56:aa:5d:df:7f:f2:74:67:39:57:30:67: 2c:37:2a:ed:3f:93:15:08:dd:86:9d:3d:fe:32:32:4e:f9:75: 95:33:59:d6:50:6f:46:fc:ae:10:6a:d4:a0:6a:49:d4:82:57: 4f:c0:61:c0:e0:45:b0:df:b9:5f:0e:c1:74:41:5e:aa:d1:40: ea:ff:d1:37:99:15:6a:d6:6c:0d:f2:48:5d:c8:6f:4d:7a:23: 00:b5:45:0f:0f:ff:02:e6:0c:9e:88:b2:43:7b:82:12:8a:ed: 43:d3:5a:b4:16:08:c0:ec:fc:91:f4:ce:95:ec:cc:79:5a:16: 65:33:ac:e7:93:fb:d5:ef:2e:1a:6c:8b:2f:ce:38:71:73:22: a8:92:65:fc:cc:80:b2:a9:f2:ce:69:13:72:83:72:69:5b:e2: 03:c5:41:11:db:db:a0:e2:0f:a9:ae:2a:b5:19:65:a8:9a:70: 00:f6:9a:f2:1f:f6:c8:6f:6f:55:fe:50:0e:be:d9:0d:dd:50: e8:ea:25:29:49:a3:7e:0f:37:62:95:f9:a5:58:2b:b8:81:4d: 2c:ec:f7:b7:76:c6:bb:96:35:28:eb:4c:e5:3d:ff:4b:48:a1: 4c:0d:70:3c -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUPc4mWr0f9O3EUQkb8dfB4tcMbPIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODAzQzlGRjEwMjgzNkNFQzhDRUM0OUYwMUZDRkFBMEU5 MkUyNkFGMzAeFw0yMzEyMjAwMzE0NTdaFw0yNDEyMTgwMzE5NTdaMDMxMTAvBgNV BAMTKEJEMTlDQTc0RkQxMTZCRjRBOTVDMEExMDQ3MTc0QTY4ODUzNDg3MTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDn2Lj1vnZ6XG9CNh1eFRyGsX++ AMvDxmuoUDWBfzZw4/BaRBG+HNqrbcjdF6lEmFpLNtfDxfMQXT9Oekj9j9nCIMWn XDs7/fekaHx2v1ctYFN87yFhRYcyO1M035fnKjU31hDCgXk92/cqTm0YvD03hJYF TdmDXGa+PuLLSUw/3eS6QZZGOOakaksYuUlAUuCu4/9OfLqBnU1yDrlXVXeLk/6G g7iFwtjXG/jJ4wqpoeiI+hrkMGGBSFs6Edz4dyeKIjiN7DXdIOMTnitui/QbU3Pr Iz6L6Y7lG4ziE5ap1W6kQ80kCbmrQhQg8o9MPu9IshXrkQCsCum+Noo8KZUDAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUvRnKdP0Ra/SpXAoQRxdKaIU0hxEwHwYDVR0j BBgwFoAUgDyf8QKDbOyM7EnwH8+qDpLiavMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NzcyN2MzZS05YzFhLTQ2ZGUtYTJiOC1jODhiOTAzOTlmM2QvMC84MDNDOUZGMTAy ODM2Q0VDOENFQzQ5RjAxRkNGQUEwRTkyRTI2QUYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODAzQzlGRjEwMjgzNkNFQzhDRUM0OUYwMUZDRkFBMEU5MkUy NkFGMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3NzI3YzNlLTljMWEtNDZkZS1h MmI4LWM4OGI5MDM5OWYzZC8wLzMyMzQzMDM0M2EzNDM3MzgzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzMzM5Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBEeAAAEw DQYJKoZIhvcNAQELBQADggEBAByZEdQSFkjIZdElK7QKlYyWYBe7d9YJplaqXd9/ 8nRnOVcwZyw3Ku0/kxUI3YadPf4yMk75dZUzWdZQb0b8rhBq1KBqSdSCV0/AYcDg RbDfuV8OwXRBXqrRQOr/0TeZFWrWbA3ySF3Ib016IwC1RQ8P/wLmDJ6IskN7ghKK 7UPTWrQWCMDs/JH0zpXszHlaFmUzrOeT+9XvLhpsiy/OOHFzIqiSZfzMgLKp8s5p E3KDcmlb4gPFQRHb26DiD6muKrUZZaiacAD2mvIf9shvb1X+UA6+2Q3dUOjqJSlJ o34PN2KV+aVYK7iBTSzs97d2xruWNSjrTOU9/0tIoUwNcDw= -----END CERTIFICATE-----Generated at Fri May 3 08:20:24 2024 by rpki-client on console-ams.rpki-client.org