$ rpki-client -vvf repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/323430333a38303a3a2f33322d3332203d3e20313334363233.roa File: 323430333a38303a3a2f33322d3332203d3e20313334363233.roa (raw, json) Hash identifier: 0SZoE9FimdCCAUoQVm4KUOkCGuZEmykdrKWe8GOnmgA= Subject key identifier: 36:59:7E:87:D4:31:A0:9F:DC:CE:03:07:BA:D8:8A:4C:44:38:EC:DB Certificate issuer: /CN=2985976A4B3081770748882703E16497964D05A6 Certificate serial: 70C58A85A6CC46BAE9A92629538A8BCAA69155F5 Authority key identifier: 29:85:97:6A:4B:30:81:77:07:48:88:27:03:E1:64:97:96:4D:05:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/323430333a38303a3a2f33322d3332203d3e20313334363233.roa Signing time: Fri 04 Aug 2023 07:00:01 +0000 ROA not before: Fri 04 Aug 2023 06:55:01 +0000 ROA not after: Fri 02 Aug 2024 07:00:01 +0000 asID: 134623 IP address blocks: 2403:80::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.crl rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:c5:8a:85:a6:cc:46:ba:e9:a9:26:29:53:8a:8b:ca:a6:91:55:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2985976A4B3081770748882703E16497964D05A6 Validity Not Before: Aug 4 06:55:01 2023 GMT Not After : Aug 2 07:00:01 2024 GMT Subject: CN=36597E87D431A09FDCCE0307BAD88A4C4438ECDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d1:53:8a:6f:8b:39:cb:1e:15:88:66:b8:4f: 87:8b:19:f9:40:26:92:63:33:f3:d4:ae:bf:95:b3: 02:3e:b5:fa:31:26:3c:51:aa:29:4d:57:98:66:07: f4:7a:dc:46:bb:16:24:e7:67:fe:20:71:82:70:5e: 45:23:33:5b:78:8a:67:98:b5:5f:30:a7:d9:a1:f0: 51:4b:4d:ce:c3:47:86:19:15:be:2d:e2:55:08:79: b7:99:66:b4:0b:6f:62:e2:0c:6e:8d:0f:76:65:30: c7:23:94:ca:c3:63:54:ce:f1:bf:0b:0e:f4:2f:9c: 0f:44:fc:d5:e7:31:5e:ea:95:11:75:67:11:35:85: 6c:8a:26:cb:f0:27:91:6b:a3:43:02:cd:cd:8f:19: 04:2d:34:33:10:6b:8a:19:a6:81:9a:3b:d5:34:3f: 44:1c:46:67:e8:d7:13:9c:93:3e:ef:22:67:de:4c: a7:0f:e4:33:7f:c3:4e:df:18:5e:77:10:37:80:63: d3:a0:5c:dd:0a:cf:c9:77:f7:84:f2:70:ca:cf:3f: 7d:d0:aa:f0:bc:d8:d9:e9:e1:4d:20:a2:df:64:11: e2:17:94:22:fd:e4:2a:0a:1c:91:35:19:7c:3d:4b: e3:5b:df:91:f5:cb:60:34:f2:11:f5:e0:5e:90:f3: d3:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:59:7E:87:D4:31:A0:9F:DC:CE:03:07:BA:D8:8A:4C:44:38:EC:DB X509v3 Authority Key Identifier: keyid:29:85:97:6A:4B:30:81:77:07:48:88:27:03:E1:64:97:96:4D:05:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/323430333a38303a3a2f33322d3332203d3e20313334363233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:80::/32 Signature Algorithm: sha256WithRSAEncryption 07:b7:39:2c:01:c3:4c:25:f4:73:23:7a:c4:cf:b9:01:67:5a: 00:6a:c9:ed:08:42:9a:1d:88:52:c0:74:e0:ba:9b:54:f2:1d: c9:96:6d:51:cf:37:75:96:3a:85:8a:d6:7a:b3:bc:99:8d:50: 47:31:dd:5a:b6:c8:6c:99:42:af:67:76:40:58:41:67:97:94: b2:e2:0c:6e:4b:5c:49:8b:c0:e0:42:e0:40:0d:1a:f1:eb:2a: 49:02:2c:c2:02:aa:f7:12:b3:13:49:a8:3d:a9:66:17:4a:75: de:c6:b8:04:54:37:98:c3:d2:c3:7b:f1:91:4b:43:a3:91:a5: 66:08:61:79:3e:d3:16:6b:18:32:5d:ac:8f:a1:4b:d3:8e:63: c1:ef:10:78:80:fd:d2:06:36:ca:9c:74:2a:61:03:dc:14:c8: 63:33:bb:2b:46:cb:61:ac:e6:a4:e3:fb:4b:1c:eb:59:3e:cd: 71:ab:8f:c5:7e:8e:cb:ec:4c:d4:2b:c9:3a:c5:17:71:04:b6: de:9c:f3:20:9d:80:09:68:6f:9a:50:09:43:72:4a:b4:ef:10: 32:a7:cb:e3:e9:6a:a7:11:fe:d8:bc:bc:6b:c2:e4:c8:85:df: f4:f3:f8:0c:56:65:9e:91:0f:84:35:32:5c:db:32:fb:e1:60: 62:ea:47:eb -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUcMWKhabMRrrpqSYpU4qLyqaRVfUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk4NTk3NkE0QjMwODE3NzA3NDg4ODI3MDNFMTY0OTc5 NjREMDVBNjAeFw0yMzA4MDQwNjU1MDFaFw0yNDA4MDIwNzAwMDFaMDMxMTAvBgNV BAMTKDM2NTk3RTg3RDQzMUEwOUZEQ0NFMDMwN0JBRDg4QTRDNDQzOEVDREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE0VOKb4s5yx4ViGa4T4eLGflA JpJjM/PUrr+VswI+tfoxJjxRqilNV5hmB/R63Ea7FiTnZ/4gcYJwXkUjM1t4imeY tV8wp9mh8FFLTc7DR4YZFb4t4lUIebeZZrQLb2LiDG6ND3ZlMMcjlMrDY1TO8b8L DvQvnA9E/NXnMV7qlRF1ZxE1hWyKJsvwJ5Fro0MCzc2PGQQtNDMQa4oZpoGaO9U0 P0QcRmfo1xOckz7vImfeTKcP5DN/w07fGF53EDeAY9OgXN0Kz8l394TycMrPP33Q qvC82Nnp4U0got9kEeIXlCL95CoKHJE1GXw9S+Nb35H1y2A08hH14F6Q89N9AgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUNll+h9QxoJ/czgMHutiKTEQ47NswHwYDVR0j BBgwFoAUKYWXakswgXcHSIgnA+Fkl5ZNBaYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZWQxMDBkZi0wNDQxLTQzODEtYTNmYS01ODdkYjllOWMyZjAvMC8yOTg1OTc2QTRC MzA4MTc3MDc0ODg4MjcwM0UxNjQ5Nzk2NEQwNUE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk4NTk3NkE0QjMwODE3NzA3NDg4ODI3MDNFMTY0OTc5NjRE MDVBNi5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2VkMTAwZGYtMDQ0MS00MzgxLWEz ZmEtNTg3ZGI5ZTljMmYwLzAvMzIzNDMwMzMzYTM4MzAzYTNhMmYzMzMyMmQzMzMy MjAzZDNlMjAzMTMzMzQzNjMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAwCAMA0GCSqGSIb3DQEB CwUAA4IBAQAHtzksAcNMJfRzI3rEz7kBZ1oAasntCEKaHYhSwHTguptU8h3Jlm1R zzd1ljqFitZ6s7yZjVBHMd1atshsmUKvZ3ZAWEFnl5Sy4gxuS1xJi8DgQuBADRrx 6ypJAizCAqr3ErMTSag9qWYXSnXexrgEVDeYw9LDe/GRS0OjkaVmCGF5PtMWaxgy XayPoUvTjmPB7xB4gP3SBjbKnHQqYQPcFMhjM7srRsthrOak4/tLHOtZPs1xq4/F fo7L7EzUK8k6xRdxBLbenPMgnYAJaG+aUAlDckq07xAyp8vj6WqnEf7YvLxrwuTI hd/08/gMVmWekQ+ENTJc2zL74WBi6kfr -----END CERTIFICATE-----Generated at Sun Jun 2 07:02:56 2024 by rpki-client on console-fra.rpki-client.org