$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a31323a3a2f34382d3438203d3e20313339393439.roa File: 323430353a616163303a31323a3a2f34382d3438203d3e20313339393439.roa (raw, json) Hash identifier: NCqxglkAE9miCro9r1CT3LmpsDZVNXHsUFjbUWHVMhs= Subject key identifier: A4:55:BB:A2:9F:CE:96:41:7D:59:18:2D:23:FD:6A:40:8B:E0:69:F0 Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 632D3EB4816694CCB61323868A57F791A73D8260 Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a31323a3a2f34382d3438203d3e20313339393439.roa Signing time: Tue 30 Apr 2024 21:00:00 +0000 ROA not before: Tue 30 Apr 2024 20:55:00 +0000 ROA not after: Tue 29 Apr 2025 21:00:00 +0000 asID: 139949 IP address blocks: 2405:aac0:12::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 10:05:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:2d:3e:b4:81:66:94:cc:b6:13:23:86:8a:57:f7:91:a7:3d:82:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Apr 30 20:55:00 2024 GMT Not After : Apr 29 21:00:00 2025 GMT Subject: CN=A455BBA29FCE96417D59182D23FD6A408BE069F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4c:78:4d:93:e7:13:a8:88:b6:33:2d:df:6d: 9b:b6:3f:18:b4:d4:eb:16:8b:76:42:0e:1e:b7:44: 69:a4:01:af:9c:30:84:ab:da:4a:dd:2f:eb:50:df: 88:25:82:46:96:21:15:53:86:d2:8a:24:e2:38:b4: e8:4d:f1:57:ba:5b:fc:b0:b6:3d:b5:96:b8:44:27: 32:24:0c:e5:b2:de:b8:a5:1f:5e:48:00:a8:71:a7: 4b:87:c3:6f:c7:45:4f:3f:66:e2:2b:93:df:dd:b1: d5:c4:19:70:a4:ec:f8:53:6c:ed:a7:1f:f6:0c:a3: 8a:7b:57:4b:e2:79:b1:73:a8:f0:2a:6e:77:44:91: 2c:46:75:61:5e:b4:73:1a:90:a6:92:f7:b5:d6:18: 00:d7:68:b5:2f:be:aa:57:06:c3:20:e5:9d:80:a2: 28:ad:9e:70:8f:95:7b:ee:a7:d1:8e:6f:9a:1c:33: 7a:b3:cb:fb:56:52:98:ad:8d:9d:8f:27:62:98:14: 46:a9:be:12:09:65:a2:7b:9d:8a:10:9c:e3:78:04: de:d9:f1:9b:9e:5f:d0:ff:be:49:8f:0a:bc:8a:2b: 89:22:76:70:82:f8:ba:89:7a:48:be:6d:ee:cc:de: 2e:a1:87:96:fc:70:aa:4a:66:e2:7f:bc:10:21:47: 2c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:55:BB:A2:9F:CE:96:41:7D:59:18:2D:23:FD:6A:40:8B:E0:69:F0 X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a31323a3a2f34382d3438203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:12::/48 Signature Algorithm: sha256WithRSAEncryption dd:46:6e:fc:ea:8c:43:da:ad:59:dc:0c:60:a6:d9:2d:24:ae: 9b:61:bc:5c:b5:37:48:ea:ed:52:93:7c:fa:11:ec:e9:f4:c9: ca:93:87:82:41:5b:4f:9e:d8:be:35:f7:20:52:e9:f2:c1:18: 53:d0:94:3d:72:f8:fe:04:f3:87:d5:6c:5e:41:77:cc:90:48: ce:6e:23:e5:dd:cd:ef:8a:5c:dd:7d:8e:15:f8:ae:7c:37:82: 88:c7:33:ae:a8:9c:69:de:27:f7:0f:7a:24:73:af:67:93:6f: 33:96:49:8c:d9:13:59:eb:68:a0:40:05:dd:1d:3c:a4:6a:41: 4f:d9:ec:68:1e:9b:56:b3:3f:d8:d4:b1:71:03:3b:ba:64:e8: 80:63:6a:b6:42:1b:80:11:15:29:17:1d:76:8d:49:ce:48:a0: 8f:88:e3:94:08:2c:6e:da:57:12:3f:80:5e:2d:77:ec:8e:e0: 85:c1:11:92:6d:61:d7:7b:b7:b6:d2:95:cf:ed:57:72:ed:27: 48:bd:0f:72:f7:fa:a6:08:45:39:23:0f:d0:8f:c0:d3:c4:66: a2:dd:e0:77:72:9e:7d:2d:a1:bd:38:a0:dc:98:8a:21:e6:0d: 86:4c:59:bb:e4:b4:d9:39:99:a7:f4:e9:eb:d6:25:9f:77:8a: aa:9e:d7:d8 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUYy0+tIFmlMy2EyOGilf3kac9gmAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yNDA0MzAyMDU1MDBaFw0yNTA0MjkyMTAwMDBaMDMxMTAvBgNV BAMTKEE0NTVCQkEyOUZDRTk2NDE3RDU5MTgyRDIzRkQ2QTQwOEJFMDY5RjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9THhNk+cTqIi2My3fbZu2Pxi0 1OsWi3ZCDh63RGmkAa+cMISr2krdL+tQ34glgkaWIRVThtKKJOI4tOhN8Ve6W/yw tj21lrhEJzIkDOWy3rilH15IAKhxp0uHw2/HRU8/ZuIrk9/dsdXEGXCk7PhTbO2n H/YMo4p7V0viebFzqPAqbndEkSxGdWFetHMakKaS97XWGADXaLUvvqpXBsMg5Z2A oiitnnCPlXvup9GOb5ocM3qzy/tWUpitjZ2PJ2KYFEapvhIJZaJ7nYoQnON4BN7Z 8ZueX9D/vkmPCryKK4kidnCC+LqJeki+be7M3i6hh5b8cKpKZuJ/vBAhRywnAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUpFW7op/OlkF9WRgtI/1qQIvgafAwHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzEzMjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzOTM5MzQzOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQFqsAA EjANBgkqhkiG9w0BAQsFAAOCAQEA3UZu/OqMQ9qtWdwMYKbZLSSum2G8XLU3SOrt UpN8+hHs6fTJypOHgkFbT57YvjX3IFLp8sEYU9CUPXL4/gTzh9VsXkF3zJBIzm4j 5d3N74pc3X2OFfiufDeCiMczrqicad4n9w96JHOvZ5NvM5ZJjNkTWetooEAF3R08 pGpBT9nsaB6bVrM/2NSxcQM7umTogGNqtkIbgBEVKRcddo1Jzkigj4jjlAgsbtpX Ej+AXi137I7ghcERkm1h13u3ttKVz+1Xcu0nSL0Pcvf6pghFOSMP0I/A08Rmot3g d3KefS2hvTig3JiKIeYNhkxZu+S02TmZp/Tp69Yln3eKqp7X2A== -----END CERTIFICATE-----Generated at Sun May 5 08:19:49 2024 by rpki-client on console-ams.rpki-client.org