$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a3330353a3a2f34382d3438203d3e203538343835.roa File: 323430323a653130303a3330353a3a2f34382d3438203d3e203538343835.roa (raw, json) Hash identifier: /OWKIR/eKpta7xcMQzy6dQLFTl4h4cTDQl2g3zv6Jaw= Subject key identifier: A0:FC:A5:8B:87:5A:4A:21:5D:1E:70:52:B8:5E:1E:56:95:E2:5E:4D Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 0F73E4DDF4807B29BFFD6DFE8A48286923BB13E7 Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a3330353a3a2f34382d3438203d3e203538343835.roa Signing time: Thu 21 Dec 2023 11:54:01 +0000 ROA not before: Thu 21 Dec 2023 11:49:01 +0000 ROA not after: Thu 19 Dec 2024 11:54:01 +0000 asID: 58485 IP address blocks: 2402:e100:305::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 05:34:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:73:e4:dd:f4:80:7b:29:bf:fd:6d:fe:8a:48:28:69:23:bb:13:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Dec 21 11:49:01 2023 GMT Not After : Dec 19 11:54:01 2024 GMT Subject: CN=A0FCA58B875A4A215D1E7052B85E1E5695E25E4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:46:68:82:9f:7f:90:e3:f7:f4:f9:99:5b:5e: 46:66:34:34:be:2c:34:26:ec:75:4b:46:d6:05:46: ae:32:cb:07:dc:4c:a6:57:29:9d:ef:6f:e2:e6:a2: 18:9d:1b:6e:1a:b4:ce:8e:d3:51:46:7f:b5:8d:fd: 15:67:97:77:d7:8a:78:fd:25:8f:89:b7:c0:f3:06: 6d:ee:82:a7:6b:2e:e9:1a:67:d2:4a:7e:4d:13:80: 3a:d8:61:92:0b:07:b6:f6:10:51:da:92:b9:3c:18: 4b:cc:ad:53:a6:65:e2:8b:d7:47:32:1f:a0:9e:bb: 5b:f3:7b:85:fd:f1:9a:53:02:fb:fc:e9:78:c0:62: d1:3e:8f:56:e1:00:bd:60:23:7a:32:59:06:c8:e5: 72:3d:8a:ac:69:d2:98:a7:0a:b2:a7:01:91:42:fe: 40:ea:4d:53:03:b0:9c:b9:66:76:e5:fd:57:0f:ef: 63:84:c9:52:ba:09:47:08:07:e8:d0:29:b2:4a:9d: fc:7a:b9:ae:88:33:d4:93:36:6f:ce:43:68:d1:06: ec:65:4b:06:03:5f:9a:a0:2e:af:f6:78:51:26:84: a0:bb:f1:87:0d:0f:18:ec:1e:92:17:e4:96:8d:27: 2f:c1:1e:8f:6a:02:5b:59:83:84:4f:21:eb:d2:82: 7c:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:FC:A5:8B:87:5A:4A:21:5D:1E:70:52:B8:5E:1E:56:95:E2:5E:4D X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a3330353a3a2f34382d3438203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e100:305::/48 Signature Algorithm: sha256WithRSAEncryption ae:74:1f:4f:9a:28:5e:67:78:72:b4:18:2f:9a:e7:b1:a6:aa: 2a:9c:39:ce:e6:d7:08:a0:61:5f:b7:bb:27:5b:2e:e0:c7:3c: 1f:a8:31:7e:08:b6:2c:3b:50:c0:bf:a7:ab:1a:4e:00:27:38: a4:ea:c6:c1:06:0c:eb:87:1d:41:4d:f5:e8:2c:65:ba:12:5a: 4d:c8:cf:8f:a4:a8:56:62:d4:ea:10:d1:2a:c8:8e:3b:0e:fb: e1:f1:62:5a:69:35:ee:88:9c:b7:f9:83:ec:c0:86:2a:b7:01: 44:90:ee:bd:06:70:70:62:37:75:3e:72:56:89:a9:46:6d:26: fa:94:f8:86:48:2c:83:45:04:6f:31:86:a0:ed:ea:f5:bd:a6: 15:bd:dd:5e:22:a1:2f:22:11:06:5f:5d:03:df:fc:cb:8c:66: 70:f9:b3:83:3d:18:49:75:9d:8d:c8:76:81:fb:ab:76:a9:41: 1f:a4:61:ad:ec:7b:37:6c:58:65:8a:94:b4:53:4a:10:1c:d0: 99:e9:55:99:80:66:ac:49:76:c6:cd:9f:f0:ae:7e:dc:ca:77: 23:64:5a:37:a6:a2:90:45:31:30:f9:cf:1f:6c:aa:ee:6c:64: 87:8b:24:43:00:07:10:13:12:a3:be:9e:16:d3:ba:08:e2:c7: 4c:1c:dc:76 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUD3Pk3fSAeym//W3+ikgoaSO7E+cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yMzEyMjExMTQ5MDFaFw0yNDEyMTkxMTU0MDFaMDMxMTAvBgNV BAMTKEEwRkNBNThCODc1QTRBMjE1RDFFNzA1MkI4NUUxRTU2OTVFMjVFNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIRmiCn3+Q4/f0+ZlbXkZmNDS+ LDQm7HVLRtYFRq4yywfcTKZXKZ3vb+LmohidG24atM6O01FGf7WN/RVnl3fXinj9 JY+Jt8DzBm3ugqdrLukaZ9JKfk0TgDrYYZILB7b2EFHakrk8GEvMrVOmZeKL10cy H6Ceu1vze4X98ZpTAvv86XjAYtE+j1bhAL1gI3oyWQbI5XI9iqxp0pinCrKnAZFC /kDqTVMDsJy5Znbl/VcP72OEyVK6CUcIB+jQKbJKnfx6ua6IM9STNm/OQ2jRBuxl SwYDX5qgLq/2eFEmhKC78YcNDxjsHpIX5JaNJy/BHo9qAltZg4RPIevSgnzxAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUoPyli4daSiFdHnBSuF4eVpXiXk0wHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMyMzQzMDMyM2E2NTMxMzAzMDNhMzMzMDM1M2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzODM0MzgzNS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQC4QAD BTANBgkqhkiG9w0BAQsFAAOCAQEArnQfT5ooXmd4crQYL5rnsaaqKpw5zubXCKBh X7e7J1su4Mc8H6gxfgi2LDtQwL+nqxpOACc4pOrGwQYM64cdQU316CxluhJaTcjP j6SoVmLU6hDRKsiOOw774fFiWmk17oict/mD7MCGKrcBRJDuvQZwcGI3dT5yVomp Rm0m+pT4hkgsg0UEbzGGoO3q9b2mFb3dXiKhLyIRBl9dA9/8y4xmcPmzgz0YSXWd jch2gfurdqlBH6Rhrex7N2xYZYqUtFNKEBzQmelVmYBmrEl2xs2f8K5+3Mp3I2Ra N6aikEUxMPnPH2yq7mxkh4skQwAHEBMSo76eFtO6COLHTBzcdg== -----END CERTIFICATE-----Generated at Fri May 3 00:27:04 2024 by rpki-client on console-fra.rpki-client.org