$ rpki-client -vvf repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/323430333a333163303a3a2f33322d3332203d3e20313337333736.roa File: 323430333a333163303a3a2f33322d3332203d3e20313337333736.roa (raw, json) Hash identifier: Ir0P4yJrm/PCKvQUSBYu3lhDSEfnRL8nLBdPvVCLefo= Subject key identifier: 51:92:6E:EC:D8:19:E9:A0:CA:DE:D1:5D:E5:20:F5:CB:0D:2A:B3:FD Certificate issuer: /CN=8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57 Certificate serial: 6FCBA1491CFF8DF5818868B8B6A0200E83B6A7E7 Authority key identifier: 8C:5F:A2:EB:D7:AF:40:39:38:83:FB:08:E7:1B:DF:41:AA:E2:0F:57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/323430333a333163303a3a2f33322d3332203d3e20313337333736.roa Signing time: Fri 29 Dec 2023 15:00:01 +0000 ROA not before: Fri 29 Dec 2023 14:55:01 +0000 ROA not after: Fri 27 Dec 2024 15:00:01 +0000 asID: 137376 IP address blocks: 2403:31c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.crl rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 02:17:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:cb:a1:49:1c:ff:8d:f5:81:88:68:b8:b6:a0:20:0e:83:b6:a7:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57 Validity Not Before: Dec 29 14:55:01 2023 GMT Not After : Dec 27 15:00:01 2024 GMT Subject: CN=51926EECD819E9A0CADED15DE520F5CB0D2AB3FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:76:27:b8:17:d1:d9:d1:fe:1f:15:9b:95:73: cf:fc:1d:19:8e:90:eb:b7:14:e0:6f:3b:3f:49:ad: 62:2d:ff:6d:60:ff:d6:12:20:ec:06:85:d2:ef:d7: 1f:dc:b4:6c:74:27:e3:91:0d:37:cc:ae:e7:93:ca: 8a:c5:86:d4:75:ff:cf:cb:ec:7f:75:10:c0:2a:ef: e4:1b:f2:d9:11:13:70:a7:9d:a1:e8:80:9a:91:0f: df:7d:41:bd:6a:a2:42:ce:49:1e:a1:58:83:8e:85: 72:90:ec:92:a6:cc:ab:80:2e:70:18:5a:ae:5b:16: 68:e8:66:83:69:63:09:c1:f6:0a:29:c4:5c:fa:dc: 35:c0:9d:a9:c8:5d:64:15:80:80:3e:78:5d:fa:dc: 10:b7:11:ba:36:4b:49:61:5c:1e:9e:5a:3f:9a:f5: e6:a8:15:f3:14:d5:7f:50:4e:15:ab:4b:9a:0a:88: 73:f1:9d:3f:b3:2d:8a:2f:80:79:67:81:b7:75:59: a4:44:70:5a:7e:0f:ce:a2:59:e4:fb:69:b7:78:fb: 1a:c0:0d:a2:87:ec:21:3b:78:f9:e6:62:2c:98:5b: ba:a1:ef:22:c1:76:90:48:6b:eb:7b:e3:75:2b:cc: 4d:16:ce:35:92:1b:00:6a:c2:10:cd:27:d5:15:c2: af:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:92:6E:EC:D8:19:E9:A0:CA:DE:D1:5D:E5:20:F5:CB:0D:2A:B3:FD X509v3 Authority Key Identifier: keyid:8C:5F:A2:EB:D7:AF:40:39:38:83:FB:08:E7:1B:DF:41:AA:E2:0F:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/323430333a333163303a3a2f33322d3332203d3e20313337333736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:31c0::/32 Signature Algorithm: sha256WithRSAEncryption 87:e5:b6:97:74:a0:84:2a:aa:6e:b0:81:87:03:24:92:2a:22: f0:16:cc:ff:09:c0:6a:ac:8e:4b:f4:3e:82:5f:77:fe:72:16: 52:cb:21:74:66:54:9c:a0:a9:73:d4:b0:71:72:d2:09:54:db: 26:33:e0:dc:31:bb:a2:f5:e9:e9:ef:20:4d:ee:17:e7:64:19: 1e:ed:a3:26:e7:fa:3f:67:2d:c5:e0:52:d4:cc:e0:92:66:70: 0a:9d:91:df:b5:b6:a6:40:e0:61:68:62:18:14:e3:e3:89:cf: 74:91:89:8a:b5:b8:28:ec:ea:5b:2d:79:fb:9b:94:7e:62:05: 2d:01:88:08:91:3e:25:b5:cc:b9:a8:65:73:bf:73:5a:4e:ce: 94:72:5c:f4:26:21:02:6a:87:f6:82:97:32:a0:42:9a:33:4a: eb:26:69:77:88:a8:f7:e7:6a:f7:e9:e2:fd:6f:c4:6f:98:c0: 72:a8:07:16:32:5f:48:c1:ef:1f:fd:0f:a2:16:91:e0:8d:8a: 0c:a5:4d:09:b0:e0:f1:f6:1b:df:5c:dd:c6:10:77:de:4c:ac: 8a:68:28:e4:5b:62:95:ec:3a:be:94:e3:24:f3:28:9d:ee:b5: 39:69:07:8d:4c:08:68:e3:8b:9c:ba:d3:b9:ca:12:12:9f:2c: 51:ca:8d:d5 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUb8uhSRz/jfWBiGi4tqAgDoO2p+cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEM1RkEyRUJEN0FGNDAzOTM4ODNGQjA4RTcxQkRGNDFB QUUyMEY1NzAeFw0yMzEyMjkxNDU1MDFaFw0yNDEyMjcxNTAwMDFaMDMxMTAvBgNV BAMTKDUxOTI2RUVDRDgxOUU5QTBDQURFRDE1REU1MjBGNUNCMEQyQUIzRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPdie4F9HZ0f4fFZuVc8/8HRmO kOu3FOBvOz9JrWIt/21g/9YSIOwGhdLv1x/ctGx0J+ORDTfMrueTyorFhtR1/8/L 7H91EMAq7+Qb8tkRE3CnnaHogJqRD999Qb1qokLOSR6hWIOOhXKQ7JKmzKuALnAY Wq5bFmjoZoNpYwnB9gopxFz63DXAnanIXWQVgIA+eF363BC3Ebo2S0lhXB6eWj+a 9eaoFfMU1X9QThWrS5oKiHPxnT+zLYovgHlngbd1WaREcFp+D86iWeT7abd4+xrA DaKH7CE7ePnmYiyYW7qh7yLBdpBIa+t743UrzE0WzjWSGwBqwhDNJ9UVwq+fAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUUZJu7NgZ6aDK3tFd5SD1yw0qs/0wHwYDVR0j BBgwFoAUjF+i69evQDk4g/sI5xvfQariD1cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDJhNWI1MS1iYzAwLTRkNmItODc2MS1jN2QwZDNmNmRlMTIvMC84QzVGQTJFQkQ3 QUY0MDM5Mzg4M0ZCMDhFNzFCREY0MUFBRTIwRjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEM1RkEyRUJEN0FGNDAzOTM4ODNGQjA4RTcxQkRGNDFBQUUy MEY1Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkMmE1YjUxLWJjMDAtNGQ2Yi04 NzYxLWM3ZDBkM2Y2ZGUxMi8wLzMyMzQzMDMzM2EzMzMxNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNzMzMzczNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQDMcAwDQYJKoZI hvcNAQELBQADggEBAIfltpd0oIQqqm6wgYcDJJIqIvAWzP8JwGqsjkv0PoJfd/5y FlLLIXRmVJygqXPUsHFy0glU2yYz4Nwxu6L16envIE3uF+dkGR7toybn+j9nLcXg UtTM4JJmcAqdkd+1tqZA4GFoYhgU4+OJz3SRiYq1uCjs6lstefublH5iBS0BiAiR PiW1zLmoZXO/c1pOzpRyXPQmIQJqh/aClzKgQpozSusmaXeIqPfnavfp4v1vxG+Y wHKoBxYyX0jB7x/9D6IWkeCNigylTQmw4PH2G99c3cYQd95MrIpoKORbYpXsOr6U 4yTzKJ3utTlpB41MCGjji5y607nKEhKfLFHKjdU= -----END CERTIFICATE-----Generated at Sat Apr 27 10:12:42 2024 by rpki-client on console-ams.rpki-client.org