$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a38303a3a2f34382d3438203d3e203538343835.roa File: 323430323a653130303a38303a3a2f34382d3438203d3e203538343835.roa (raw, json) Hash identifier: MMlICiLwaK0I2LDPsleIQQlTNPtzEF7u4CnNUR058/Q= Subject key identifier: C5:21:1B:0B:84:F8:0D:50:20:D5:7A:EA:A3:BE:04:A0:72:37:D0:10 Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 165713CACAE479A7720A6AFC65CA312ECDBD34AD Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a38303a3a2f34382d3438203d3e203538343835.roa Signing time: Thu 21 Dec 2023 11:53:16 +0000 ROA not before: Thu 21 Dec 2023 11:48:16 +0000 ROA not after: Thu 19 Dec 2024 11:53:16 +0000 asID: 58485 IP address blocks: 2402:e100:80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 05:34:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:57:13:ca:ca:e4:79:a7:72:0a:6a:fc:65:ca:31:2e:cd:bd:34:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Dec 21 11:48:16 2023 GMT Not After : Dec 19 11:53:16 2024 GMT Subject: CN=C5211B0B84F80D5020D57AEAA3BE04A07237D010 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:83:de:11:a7:56:9a:43:63:ce:32:07:ca:bf: b6:b9:0f:22:03:ad:57:8d:3e:b5:d8:1c:24:a8:21: fe:13:88:50:c2:16:45:0d:92:20:9e:60:4c:1c:e3: a6:20:14:73:61:a8:42:80:eb:74:bc:03:9e:50:47: 53:47:b1:bc:f0:c3:5e:9b:2e:84:72:9e:4a:55:c1: e7:0c:9c:2f:ef:25:5c:e8:57:c9:21:28:90:20:a9: 62:bd:60:3d:cd:c9:d2:f1:63:cb:4a:de:40:55:14: 8b:93:9d:70:52:02:d8:8c:7c:75:37:b5:a3:a9:ab: c4:9d:fc:e3:bd:fb:d9:43:81:4d:89:73:fa:6d:db: 61:c6:c9:f5:8d:c1:1c:c4:b6:bb:57:8a:5e:16:65: 07:e6:a8:32:b3:e0:0b:cb:21:c1:8a:d7:88:61:1e: bf:76:1a:39:a6:32:bc:62:51:6e:1e:9d:78:f8:10: 37:cf:da:60:8e:6e:19:d3:dd:f3:09:64:eb:55:1e: 47:d3:42:37:37:d3:79:7a:aa:87:e4:99:58:d8:1d: 54:82:59:25:b5:5c:5f:16:3c:b3:03:18:a2:a3:ae: 90:93:88:fd:92:95:25:f9:9f:37:96:38:6a:a2:42: 0d:9a:bb:0f:be:b4:30:28:50:a3:2d:31:b6:dc:69: 7e:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:21:1B:0B:84:F8:0D:50:20:D5:7A:EA:A3:BE:04:A0:72:37:D0:10 X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a38303a3a2f34382d3438203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e100:80::/48 Signature Algorithm: sha256WithRSAEncryption 0f:a6:9e:98:bf:95:67:90:ea:16:6a:5b:91:be:5e:8f:e7:11: 59:98:28:b3:0c:18:f1:50:cf:8d:12:f1:66:ff:53:17:79:2c: 81:b2:33:56:cd:d8:f2:ab:0e:34:b4:19:9f:fa:ea:62:16:f8: c7:1d:a8:df:8e:ac:ba:56:f2:76:71:21:09:62:0e:05:2c:c2: 5a:51:9a:1b:e5:9e:e9:ca:91:e0:3f:e5:f6:da:0c:f0:e6:7f: 6e:60:76:b3:2c:67:e6:94:70:7c:70:a8:10:06:54:9e:66:62: d1:9d:50:eb:64:ea:bc:09:9f:6a:6f:fe:f9:08:bc:0d:77:8b: d5:84:6b:65:cb:2f:77:fe:02:77:89:49:c9:d0:d1:7a:6d:6f: 47:9a:68:89:84:db:9b:4e:b5:a6:cc:32:cd:42:2f:c8:d7:e5: a8:30:ec:15:2c:3a:a6:a0:cb:1d:5b:4d:fd:6c:df:88:4f:fd: 76:90:4a:5f:dd:15:ce:43:8d:de:41:f2:68:73:74:16:cd:cc: 50:d4:40:a7:69:ed:25:05:79:9b:b6:7e:c0:e2:46:93:5c:22: 08:a0:b0:8b:33:58:be:f4:5f:ff:38:a6:40:3a:55:92:40:74: 4f:4f:58:23:c3:1d:b7:30:5f:59:ef:a1:44:28:99:e4:83:04: e2:3c:87:e5 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUFlcTysrkeadyCmr8ZcoxLs29NK0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yMzEyMjExMTQ4MTZaFw0yNDEyMTkxMTUzMTZaMDMxMTAvBgNV BAMTKEM1MjExQjBCODRGODBENTAyMEQ1N0FFQUEzQkUwNEEwNzIzN0QwMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD7g94Rp1aaQ2POMgfKv7a5DyID rVeNPrXYHCSoIf4TiFDCFkUNkiCeYEwc46YgFHNhqEKA63S8A55QR1NHsbzww16b LoRynkpVwecMnC/vJVzoV8khKJAgqWK9YD3NydLxY8tK3kBVFIuTnXBSAtiMfHU3 taOpq8Sd/OO9+9lDgU2Jc/pt22HGyfWNwRzEtrtXil4WZQfmqDKz4AvLIcGK14hh Hr92GjmmMrxiUW4enXj4EDfP2mCObhnT3fMJZOtVHkfTQjc303l6qofkmVjYHVSC WSW1XF8WPLMDGKKjrpCTiP2SlSX5nzeWOGqiQg2auw++tDAoUKMtMbbcaX5JAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUxSEbC4T4DVAg1Xrqo74EoHI30BAwHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMyMzQzMDMyM2E2NTMxMzAzMDNhMzgzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNDM4MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAuEAAIAw DQYJKoZIhvcNAQELBQADggEBAA+mnpi/lWeQ6hZqW5G+Xo/nEVmYKLMMGPFQz40S 8Wb/Uxd5LIGyM1bN2PKrDjS0GZ/66mIW+McdqN+OrLpW8nZxIQliDgUswlpRmhvl nunKkeA/5fbaDPDmf25gdrMsZ+aUcHxwqBAGVJ5mYtGdUOtk6rwJn2pv/vkIvA13 i9WEa2XLL3f+AneJScnQ0Xptb0eaaImE25tOtabMMs1CL8jX5agw7BUsOqagyx1b Tf1s34hP/XaQSl/dFc5Djd5B8mhzdBbNzFDUQKdp7SUFeZu2fsDiRpNcIgigsIsz WL70X/84pkA6VZJAdE9PWCPDHbcwX1nvoUQomeSDBOI8h+U= -----END CERTIFICATE-----Generated at Fri May 3 00:06:27 2024 by rpki-client on console-ams.rpki-client.org