$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3130303a3a2f34382d3438203d3e20313339393439.roa File: 323430353a616163303a3130303a3a2f34382d3438203d3e20313339393439.roa (raw, json) Hash identifier: jOz4OpM+omFSRd/i2o5MiNZNHmvj+syVcZP/m5U2qvg= Subject key identifier: DC:50:27:C1:9A:BD:DE:64:FF:1B:20:2C:FE:AA:20:DE:FD:48:74:5E Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 77485F913272FDC71B7C2AB8CB24142B00366211 Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3130303a3a2f34382d3438203d3e20313339393439.roa Signing time: Sat 18 Nov 2023 19:00:00 +0000 ROA not before: Sat 18 Nov 2023 18:55:00 +0000 ROA not after: Sat 16 Nov 2024 19:00:00 +0000 asID: 139949 IP address blocks: 2405:aac0:100::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 10:05:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:48:5f:91:32:72:fd:c7:1b:7c:2a:b8:cb:24:14:2b:00:36:62:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Nov 18 18:55:00 2023 GMT Not After : Nov 16 19:00:00 2024 GMT Subject: CN=DC5027C19ABDDE64FF1B202CFEAA20DEFD48745E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:77:cc:da:3c:5a:6d:44:54:12:9a:6b:54:01: e9:4a:85:0b:2f:20:25:ba:82:a9:1c:d9:ab:97:6a: e3:e5:55:bb:8b:d4:02:eb:a9:fe:46:7a:a3:e1:18: f1:3b:7b:a7:cb:79:c9:c9:ff:8b:6f:04:96:3d:68: da:99:05:e7:d8:f7:33:c9:38:2b:de:e6:5d:9d:41: 21:6f:37:aa:be:16:0f:e2:79:7f:d1:c5:39:1b:30: b1:ab:11:17:8f:7f:02:71:7f:bc:2d:25:62:0b:60: fe:75:d0:5f:99:97:9c:ae:2c:ce:8f:f3:b8:46:5c: a1:9b:d2:c2:e8:74:3d:c2:83:3f:a3:7f:5e:15:54: 9b:04:10:0c:78:82:f8:b8:b2:13:8e:7a:21:3c:17: 9a:10:a4:e4:13:75:b2:4f:d9:ea:d2:96:cd:a7:9d: 88:eb:f4:e0:a5:9d:04:24:64:3a:51:be:84:0d:3b: a8:a1:80:df:ae:71:d2:67:f4:70:e3:6b:42:3c:56: e3:97:1b:98:58:5d:3d:2f:a2:b5:82:95:13:13:63: 28:56:2c:3b:93:75:ad:e4:45:c9:11:c3:59:4c:41: 22:eb:79:b6:f6:13:ce:de:d9:4c:62:f0:0e:d3:9d: 8f:bc:5a:44:72:9d:c9:22:58:6a:74:02:1d:6f:3c: d2:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:50:27:C1:9A:BD:DE:64:FF:1B:20:2C:FE:AA:20:DE:FD:48:74:5E X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3130303a3a2f34382d3438203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:100::/48 Signature Algorithm: sha256WithRSAEncryption 67:70:6b:c7:e5:d0:2b:b3:63:64:53:fd:b7:21:86:94:1a:fe: 1a:28:64:46:b1:fe:9c:4a:31:64:0e:d8:26:21:3f:6b:74:88: 00:03:c4:34:40:83:aa:35:82:dc:98:0c:96:9c:22:d8:9a:5f: 15:7c:bd:6d:25:71:84:4c:31:9c:8b:b3:12:51:82:f4:ee:f0: c2:5a:a8:04:b4:48:4e:35:7f:7e:94:f7:ac:66:2e:df:e6:c5: 83:85:2e:da:45:28:aa:9d:5e:94:5d:93:5b:c1:6d:11:44:03: 38:4a:66:09:cc:8a:15:d3:f3:6c:e4:02:3f:92:d5:55:eb:ac: 25:da:11:c2:c1:b2:36:a0:be:1c:75:df:60:6a:3b:70:e3:38: e7:37:13:6d:2f:64:fc:f4:9f:31:0e:da:cb:ad:62:1d:2e:b2: 94:89:01:03:19:c3:b0:44:e6:83:c4:9a:42:52:5a:5a:bb:d7: 4c:cd:56:4b:75:96:d5:76:2a:97:32:ab:29:e8:bd:3c:72:81: 5e:3c:69:15:d6:a5:5f:77:28:69:e5:24:36:db:f9:13:51:9c: ff:28:a7:f1:72:07:d8:8f:88:1e:c8:a2:69:57:ca:3b:e4:48: 14:97:ed:c6:f2:b1:63:3f:ed:c5:32:52:4f:c8:45:6a:c0:63: 00:4d:5a:6b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUd0hfkTJy/ccbfCq4yyQUKwA2YhEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yMzExMTgxODU1MDBaFw0yNDExMTYxOTAwMDBaMDMxMTAvBgNV BAMTKERDNTAyN0MxOUFCRERFNjRGRjFCMjAyQ0ZFQUEyMERFRkQ0ODc0NUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdd8zaPFptRFQSmmtUAelKhQsv ICW6gqkc2auXauPlVbuL1ALrqf5GeqPhGPE7e6fLecnJ/4tvBJY9aNqZBefY9zPJ OCve5l2dQSFvN6q+Fg/ieX/RxTkbMLGrERePfwJxf7wtJWILYP510F+Zl5yuLM6P 87hGXKGb0sLodD3Cgz+jf14VVJsEEAx4gvi4shOOeiE8F5oQpOQTdbJP2erSls2n nYjr9OClnQQkZDpRvoQNO6ihgN+ucdJn9HDja0I8VuOXG5hYXT0vorWClRMTYyhW LDuTda3kRckRw1lMQSLrebb2E87e2Uxi8A7TnY+8WkRynckiWGp0Ah1vPNLHAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU3FAnwZq93mT/GyAs/qog3v1IdF4wHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzkzNDM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWq wAEAMA0GCSqGSIb3DQEBCwUAA4IBAQBncGvH5dArs2NkU/23IYaUGv4aKGRGsf6c SjFkDtgmIT9rdIgAA8Q0QIOqNYLcmAyWnCLYml8VfL1tJXGETDGci7MSUYL07vDC WqgEtEhONX9+lPesZi7f5sWDhS7aRSiqnV6UXZNbwW0RRAM4SmYJzIoV0/Ns5AI/ ktVV66wl2hHCwbI2oL4cdd9gajtw4zjnNxNtL2T89J8xDtrLrWIdLrKUiQEDGcOw ROaDxJpCUlpau9dMzVZLdZbVdiqXMqsp6L08coFePGkV1qVfdyhp5SQ22/kTUZz/ KKfxcgfYj4geyKJpV8o75EgUl+3G8rFjP+3FMlJPyEVqwGMATVpr -----END CERTIFICATE-----Generated at Sun May 5 08:37:12 2024 by rpki-client on console-fra.rpki-client.org