$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a383a3a2f34382d3438203d3e20313339393439.roa File: 323430353a616163303a383a3a2f34382d3438203d3e20313339393439.roa (raw, json) Hash identifier: kW7/BU69nyozzWzVgFLEcxD+G0emrysXTjPuXNQEQU8= Subject key identifier: 9D:CF:01:5A:6F:42:AE:A8:14:A8:33:B1:B9:F1:FE:9B:6F:63:CE:BE Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 4126AE1AFDD951AB9E4A5AAC61E4D36E1B14DEB4 Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a383a3a2f34382d3438203d3e20313339393439.roa Signing time: Sat 18 Nov 2023 21:00:00 +0000 ROA not before: Sat 18 Nov 2023 20:55:00 +0000 ROA not after: Sat 16 Nov 2024 21:00:00 +0000 asID: 139949 IP address blocks: 2405:aac0:8::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 10:05:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:26:ae:1a:fd:d9:51:ab:9e:4a:5a:ac:61:e4:d3:6e:1b:14:de:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Nov 18 20:55:00 2023 GMT Not After : Nov 16 21:00:00 2024 GMT Subject: CN=9DCF015A6F42AEA814A833B1B9F1FE9B6F63CEBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:cc:bf:99:62:66:55:ab:9e:ee:60:44:0c:5b: 1f:1f:47:fc:07:32:aa:1a:2a:a9:04:01:98:50:9d: 92:09:cd:6b:08:23:f8:e7:86:e8:e5:6b:c6:12:46: 36:da:3e:12:74:d6:49:e7:07:a3:d3:b8:67:78:c2: 5a:31:90:15:61:2a:4b:b4:e1:a6:e1:c9:e5:9b:b0: 87:fe:96:29:ac:c6:7e:4c:ff:77:e6:e7:f4:1c:cc: 93:4a:d9:b6:96:e3:cf:13:91:52:3e:ca:db:20:46: 4b:eb:c4:bb:1a:92:3e:f2:20:60:db:64:ac:75:0d: 34:d4:79:5d:99:6b:d3:47:fc:f6:08:47:62:2d:0d: fe:2e:99:c1:24:fa:72:43:a1:a3:36:54:cb:b1:f8: 34:e5:d4:5d:90:77:ec:1e:f9:53:e0:bb:5c:17:10: cc:54:db:d8:19:dd:87:87:71:38:68:38:b4:0a:43: cc:d3:c1:da:7b:47:21:e1:39:f4:1a:05:2a:4c:a2: ce:d4:6d:28:68:65:53:9a:80:bf:4a:69:91:60:44: 39:c1:65:96:6c:26:80:d7:b8:37:d6:1e:e2:46:04: d7:18:2a:8e:93:fa:75:17:ad:cb:30:33:ca:30:98: 44:b5:05:1a:6e:b9:2f:4b:90:3c:65:e0:51:80:eb: 1d:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:CF:01:5A:6F:42:AE:A8:14:A8:33:B1:B9:F1:FE:9B:6F:63:CE:BE X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a383a3a2f34382d3438203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:8::/48 Signature Algorithm: sha256WithRSAEncryption b5:d6:14:09:62:df:77:bc:83:0e:10:d1:84:35:a7:66:dc:b1: 68:43:b1:5f:f1:3e:6d:1e:8a:f3:1d:4c:70:a3:13:ab:a3:5e: 20:ca:ac:a8:5c:4a:6e:55:cf:07:ad:84:72:d6:c1:52:11:ab: 14:ba:ff:37:7c:5c:4b:8a:e2:bb:af:7e:3b:1d:d4:d7:5d:b5: 68:16:53:e2:7b:f5:ea:d2:cc:73:ba:d5:68:36:b1:c4:4a:57: 56:e0:23:5c:76:7b:cd:bc:eb:59:33:9b:25:2f:9a:50:c1:71: 0b:ed:00:ad:80:08:44:4c:be:d3:38:ea:cf:6f:88:6a:1d:d0: e5:de:f1:7e:81:6c:11:62:6d:52:16:37:fa:37:c2:1f:cc:f2: 48:f9:7d:63:55:4f:9c:5c:80:36:bf:6b:29:f4:76:dd:e1:30: 1b:5e:a6:46:04:e4:bd:49:c8:c0:b8:1b:49:16:3e:79:4c:22: 38:a7:69:c6:48:36:e5:79:37:6e:7a:a2:ef:b1:2f:8d:ac:1e: d3:2c:8f:1e:36:ca:3a:f3:cd:af:60:a7:05:aa:b6:53:77:c3: 6a:50:f1:f0:0e:ec:b0:28:cd:06:a2:e5:a5:26:9e:51:06:3c: 48:43:7b:96:55:36:96:06:47:d9:42:a6:d9:95:bc:3f:91:c9: 9d:83:d7:e5 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUQSauGv3ZUaueSlqsYeTTbhsU3rQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yMzExMTgyMDU1MDBaFw0yNDExMTYyMTAwMDBaMDMxMTAvBgNV BAMTKDlEQ0YwMTVBNkY0MkFFQTgxNEE4MzNCMUI5RjFGRTlCNkY2M0NFQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4zL+ZYmZVq57uYEQMWx8fR/wH MqoaKqkEAZhQnZIJzWsII/jnhujla8YSRjbaPhJ01knnB6PTuGd4wloxkBVhKku0 4abhyeWbsIf+limsxn5M/3fm5/QczJNK2baW488TkVI+ytsgRkvrxLsakj7yIGDb ZKx1DTTUeV2Za9NH/PYIR2ItDf4umcEk+nJDoaM2VMux+DTl1F2Qd+we+VPgu1wX EMxU29gZ3YeHcThoOLQKQ8zTwdp7RyHhOfQaBSpMos7UbShoZVOagL9KaZFgRDnB ZZZsJoDXuDfWHuJGBNcYKo6T+nUXrcswM8owmES1BRpuuS9LkDxl4FGA6x2pAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUnc8BWm9CrqgUqDOxufH+m29jzr4wHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzgzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzOTM0Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBarAAAgw DQYJKoZIhvcNAQELBQADggEBALXWFAli33e8gw4Q0YQ1p2bcsWhDsV/xPm0eivMd THCjE6ujXiDKrKhcSm5VzwethHLWwVIRqxS6/zd8XEuK4ruvfjsd1NddtWgWU+J7 9erSzHO61Wg2scRKV1bgI1x2e82861kzmyUvmlDBcQvtAK2ACERMvtM46s9viGod 0OXe8X6BbBFibVIWN/o3wh/M8kj5fWNVT5xcgDa/ayn0dt3hMBtepkYE5L1JyMC4 G0kWPnlMIjinacZINuV5N256ou+xL42sHtMsjx42yjrzza9gpwWqtlN3w2pQ8fAO 7LAozQai5aUmnlEGPEhDe5ZVNpYGR9lCptmVvD+RyZ2D1+U= -----END CERTIFICATE-----Generated at Sun May 5 08:19:49 2024 by rpki-client on console-ams.rpki-client.org