$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a61633a3a2f34382d3438203d3e203538343835.roa File: 323430323a653130303a61633a3a2f34382d3438203d3e203538343835.roa (raw, json) Hash identifier: wEUWxU7gLJANkey+NFOH9W6vaT69fjB+oCGEV/oYu8w= Subject key identifier: A3:C4:10:C4:80:95:46:45:EC:BF:91:30:CD:87:4A:A7:D7:A3:0B:06 Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 19726206A468889917EC4923133F4C2CF6953EB0 Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a61633a3a2f34382d3438203d3e203538343835.roa Signing time: Thu 21 Dec 2023 11:52:43 +0000 ROA not before: Thu 21 Dec 2023 11:47:43 +0000 ROA not after: Thu 19 Dec 2024 11:52:43 +0000 asID: 58485 IP address blocks: 2402:e100:ac::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 05:34:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:72:62:06:a4:68:88:99:17:ec:49:23:13:3f:4c:2c:f6:95:3e:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Dec 21 11:47:43 2023 GMT Not After : Dec 19 11:52:43 2024 GMT Subject: CN=A3C410C480954645ECBF9130CD874AA7D7A30B06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:9a:ff:69:53:1c:43:f2:25:64:f4:38:77:d2: ce:fe:8c:79:d7:37:8d:d0:6e:64:ab:e0:59:5e:58: 08:a9:c2:f2:45:ed:3c:b3:5c:ee:b0:ef:b0:71:ae: 4a:40:86:5d:11:8c:0a:6d:07:5f:84:01:88:74:19: f3:d0:22:b7:38:34:d3:f5:6e:57:ac:eb:9f:c3:ee: 42:6f:e2:53:be:9a:e0:3f:fe:05:45:96:e9:8e:fa: 30:ef:6b:20:e4:fd:36:7a:20:6e:d1:32:eb:cf:92: e0:49:d2:cd:6b:cf:fb:12:75:8f:18:fe:da:4b:9d: 17:7d:d8:17:3e:3a:c1:e2:13:4a:8f:e7:1b:b9:68: 1e:4e:1f:5e:72:4e:4a:9d:c1:cb:e0:5a:22:c7:b4: 92:4d:9d:2b:51:ba:6e:1b:3e:5c:81:8f:b1:8e:ff: 61:7f:08:19:81:ad:66:b3:66:b2:a6:d5:60:69:b3: b1:27:a6:ec:fe:f8:f6:a3:ce:37:c2:0c:a6:fc:63: 2f:25:f9:91:24:5c:bc:19:1a:2c:bf:de:8a:fe:32: fd:1d:b9:21:6f:c5:ab:9b:0b:ff:47:94:92:9b:e4: e4:db:12:5d:3d:81:91:55:c8:94:26:16:8e:80:87: 2c:da:46:1f:b9:66:0f:43:68:f1:41:df:f2:04:cf: 0e:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:C4:10:C4:80:95:46:45:EC:BF:91:30:CD:87:4A:A7:D7:A3:0B:06 X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a61633a3a2f34382d3438203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e100:ac::/48 Signature Algorithm: sha256WithRSAEncryption be:fa:48:42:3a:ff:a4:b6:22:01:a9:7c:2c:d6:26:6e:1e:d0: e7:bf:ec:d1:e6:64:4a:d0:44:a3:32:f1:6c:58:79:f0:7f:d0: fb:d9:d0:ae:b3:ae:18:82:d9:da:3e:a7:6b:4e:a5:91:8d:79: d9:0d:ec:73:06:08:a8:30:97:fb:f2:c3:21:b4:35:c7:84:1f: a3:ae:8b:9e:e4:54:ac:25:70:24:fd:32:18:d8:6c:ca:62:1c: 6f:63:34:f7:61:ba:9d:51:73:38:f9:f1:32:b2:b6:54:4a:b5: 08:16:c9:1a:36:ed:66:23:ab:ec:9e:1d:d5:c3:fd:42:40:18: 8e:c0:87:d7:80:43:a5:9d:b8:cc:b0:03:af:a2:24:0b:03:e7: d5:64:ec:01:ae:8a:29:09:3c:92:9e:57:bc:cb:52:0c:b2:3a: 8a:d7:25:ea:8b:d4:fa:a2:15:bd:69:83:8d:39:f6:d6:91:7c: 8a:e9:fb:5d:1e:24:90:fc:3d:ea:e7:88:29:7f:79:96:47:5f: 11:42:8a:89:44:6a:61:20:b6:d4:b2:cd:bb:a8:d1:ac:e3:04: 03:f5:dd:a9:52:0f:1c:f0:05:38:78:8f:13:a8:6c:b5:7a:09: 51:30:22:3a:d1:c4:e3:19:b7:97:9d:33:16:79:de:0c:e9:a6: 64:f3:7c:39 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUGXJiBqRoiJkX7EkjEz9MLPaVPrAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yMzEyMjExMTQ3NDNaFw0yNDEyMTkxMTUyNDNaMDMxMTAvBgNV BAMTKEEzQzQxMEM0ODA5NTQ2NDVFQ0JGOTEzMENEODc0QUE3RDdBMzBCMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFmv9pUxxD8iVk9Dh30s7+jHnX N43QbmSr4FleWAipwvJF7TyzXO6w77BxrkpAhl0RjAptB1+EAYh0GfPQIrc4NNP1 bles65/D7kJv4lO+muA//gVFlumO+jDvayDk/TZ6IG7RMuvPkuBJ0s1rz/sSdY8Y /tpLnRd92Bc+OsHiE0qP5xu5aB5OH15yTkqdwcvgWiLHtJJNnStRum4bPlyBj7GO /2F/CBmBrWazZrKm1WBps7Enpuz++PajzjfCDKb8Yy8l+ZEkXLwZGiy/3or+Mv0d uSFvxaubC/9HlJKb5OTbEl09gZFVyJQmFo6AhyzaRh+5Zg9DaPFB3/IEzw47AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUo8QQxICVRkXsv5EwzYdKp9ejCwYwHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMyMzQzMDMyM2E2NTMxMzAzMDNhNjE2MzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNDM4MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAuEAAKww DQYJKoZIhvcNAQELBQADggEBAL76SEI6/6S2IgGpfCzWJm4e0Oe/7NHmZErQRKMy 8WxYefB/0PvZ0K6zrhiC2do+p2tOpZGNedkN7HMGCKgwl/vywyG0NceEH6Oui57k VKwlcCT9MhjYbMpiHG9jNPdhup1Rczj58TKytlRKtQgWyRo27WYjq+yeHdXD/UJA GI7Ah9eAQ6WduMywA6+iJAsD59Vk7AGuiikJPJKeV7zLUgyyOorXJeqL1PqiFb1p g4059taRfIrp+10eJJD8PerniCl/eZZHXxFCiolEamEgttSyzbuo0azjBAP13alS DxzwBTh4jxOobLV6CVEwIjrRxOMZt5edMxZ53gzppmTzfDk= -----END CERTIFICATE-----Generated at Fri May 3 00:27:04 2024 by rpki-client on console-fra.rpki-client.org