$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a3a2f33322d3438203d3e203538343835.roa File: 323430323a653130303a3a2f33322d3438203d3e203538343835.roa (raw, json) Hash identifier: f8wx+w4xigo1kgqEqQo+iQFRcPVvNB3sN6SLvjThCKw= Subject key identifier: 21:06:D9:13:FB:99:A8:7D:9D:A7:39:CF:A1:9B:DF:B9:B6:69:9A:E4 Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 3901836468A8FB79F56FC1E6C97AEC2B0251320C Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a3a2f33322d3438203d3e203538343835.roa Signing time: Thu 02 Nov 2023 19:00:01 +0000 ROA not before: Thu 02 Nov 2023 18:55:01 +0000 ROA not after: Thu 31 Oct 2024 19:00:01 +0000 asID: 58485 IP address blocks: 2402:e100::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 05:34:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:01:83:64:68:a8:fb:79:f5:6f:c1:e6:c9:7a:ec:2b:02:51:32:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Nov 2 18:55:01 2023 GMT Not After : Oct 31 19:00:01 2024 GMT Subject: CN=2106D913FB99A87D9DA739CFA19BDFB9B6699AE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:04:b6:49:43:44:23:9e:bb:75:1c:98:00:9b: 22:43:09:02:3f:47:e8:5a:d7:43:59:0b:2c:3a:22: 66:44:ca:b0:9d:37:3c:20:ed:bc:13:20:74:83:91: 54:84:9f:23:b1:aa:e1:be:bf:b8:10:4b:f1:8d:63: 34:ec:0d:31:38:8d:40:19:88:47:0f:5a:6a:15:e3: 82:7f:92:e2:27:7e:7f:d3:ee:f8:c7:04:a9:d8:d2: 0b:c1:17:10:c6:8e:17:9c:74:9b:e3:4a:1e:e2:0c: cd:26:94:37:9e:44:2b:31:7c:06:ef:6e:df:7e:fa: 60:8a:0d:cb:a7:b6:14:03:7e:01:d3:0d:b3:9c:72: c5:35:67:ae:b3:6b:ab:de:8c:bc:49:2a:36:e2:6f: 6b:e7:b1:70:93:0b:08:52:a6:ba:05:f5:12:13:d6: b7:a7:7c:58:08:e6:09:96:53:b9:6a:52:b9:e5:35: 98:8f:a7:17:8a:dc:36:e6:39:73:1f:28:6a:75:09: ad:e6:cb:2f:7e:27:88:06:e0:59:57:26:6a:81:55: 2f:ec:39:1e:99:bb:4a:29:a0:a9:1e:e0:a2:55:e4: 14:a0:03:e5:32:0b:15:5d:24:0d:81:a3:5d:db:43: 21:ea:ce:76:84:72:bb:00:f7:d1:97:42:57:10:ad: 16:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:06:D9:13:FB:99:A8:7D:9D:A7:39:CF:A1:9B:DF:B9:B6:69:9A:E4 X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a3a2f33322d3438203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e100::/32 Signature Algorithm: sha256WithRSAEncryption 04:d1:02:e1:19:68:d1:0c:89:e8:36:86:60:c2:98:91:1e:ee: 9b:85:9f:63:9f:d7:b5:d5:79:94:92:8b:a5:ac:b3:ac:ba:81: 1c:4b:c5:0f:1e:a7:35:8e:7a:7b:3b:6e:73:5b:11:a8:fc:43: a4:33:f7:be:6a:a7:56:1c:c2:1c:87:4c:1a:ab:62:7b:ab:5c: ee:4b:db:74:c2:1a:e2:81:8b:1a:b9:69:e0:7a:6a:41:f3:52: 83:3a:26:51:a0:a2:31:18:ad:83:8f:c3:a0:14:8f:f3:62:29: 6a:10:9a:5e:8e:17:c2:ab:ca:42:e6:e4:6b:c3:42:9e:dc:51: d2:70:28:a2:12:61:59:84:7d:b8:a4:a9:56:09:07:f8:9e:c2: d9:ac:4b:e1:76:38:ad:c7:37:b9:35:23:d7:f3:ee:69:57:96: a7:0c:38:ab:cf:9c:2d:31:5a:ed:da:65:bf:87:8b:36:cb:74: 23:1e:0d:39:de:8e:0b:45:28:4f:2d:24:ea:22:52:6f:00:b1: 45:bf:da:57:ac:75:67:89:d8:7b:aa:3d:8c:e9:da:57:c2:f0: 62:93:24:ec:a7:53:14:88:b5:37:09:25:af:4f:a8:35:5b:76: 54:08:92:06:4a:77:60:7b:a3:0d:ad:b6:63:e1:40:c3:be:a8: 1a:07:46:9f -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUOQGDZGio+3n1b8HmyXrsKwJRMgwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yMzExMDIxODU1MDFaFw0yNDEwMzExOTAwMDFaMDMxMTAvBgNV BAMTKDIxMDZEOTEzRkI5OUE4N0Q5REE3MzlDRkExOUJERkI5QjY2OTlBRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsBLZJQ0Qjnrt1HJgAmyJDCQI/ R+ha10NZCyw6ImZEyrCdNzwg7bwTIHSDkVSEnyOxquG+v7gQS/GNYzTsDTE4jUAZ iEcPWmoV44J/kuInfn/T7vjHBKnY0gvBFxDGjhecdJvjSh7iDM0mlDeeRCsxfAbv bt9++mCKDcunthQDfgHTDbOccsU1Z66za6vejLxJKjbib2vnsXCTCwhSproF9RIT 1renfFgI5gmWU7lqUrnlNZiPpxeK3DbmOXMfKGp1Ca3myy9+J4gG4FlXJmqBVS/s OR6Zu0opoKke4KJV5BSgA+UyCxVdJA2Bo13bQyHqznaEcrsA99GXQlcQrRblAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUIQbZE/uZqH2dpznPoZvfubZpmuQwHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMyMzQzMDMyM2E2NTMxMzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM1MzgzNDM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAuEAMA0GCSqGSIb3 DQEBCwUAA4IBAQAE0QLhGWjRDInoNoZgwpiRHu6bhZ9jn9e11XmUkoulrLOsuoEc S8UPHqc1jnp7O25zWxGo/EOkM/e+aqdWHMIch0waq2J7q1zuS9t0whrigYsauWng empB81KDOiZRoKIxGK2Dj8OgFI/zYilqEJpejhfCq8pC5uRrw0Ke3FHScCiiEmFZ hH24pKlWCQf4nsLZrEvhdjitxze5NSPX8+5pV5anDDirz5wtMVrt2mW/h4s2y3Qj Hg053o4LRShPLSTqIlJvALFFv9pXrHVnidh7qj2M6dpXwvBikyTsp1MUiLU3CSWv T6g1W3ZUCJIGSndge6MNrbZj4UDDvqgaB0af -----END CERTIFICATE-----Generated at Fri May 3 00:27:04 2024 by rpki-client on console-fra.rpki-client.org