$ rpki-client -vvf repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/323430373a646630303a313a3a2f34382d3438203d3e20313333383233.roa File: 323430373a646630303a313a3a2f34382d3438203d3e20313333383233.roa (raw, json) Hash identifier: x6SXa3lIWsragAFnbqwGDeAH/zDcp/7F256huME32Io= Subject key identifier: 0E:7D:34:7A:35:0A:E8:F7:E8:3B:CC:E4:46:5A:EB:BC:77:78:69:CF Certificate issuer: /CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7 Certificate serial: 7E7BA20DAD4808EC724A64B9DFFB03F044093D17 Authority key identifier: 22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/323430373a646630303a313a3a2f34382d3438203d3e20313333383233.roa Signing time: Thu 02 Nov 2023 08:42:53 +0000 ROA not before: Thu 02 Nov 2023 08:37:53 +0000 ROA not after: Thu 31 Oct 2024 08:42:53 +0000 asID: 133823 IP address blocks: 2407:df00:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.crl rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 13:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:7b:a2:0d:ad:48:08:ec:72:4a:64:b9:df:fb:03:f0:44:09:3d:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7 Validity Not Before: Nov 2 08:37:53 2023 GMT Not After : Oct 31 08:42:53 2024 GMT Subject: CN=0E7D347A350AE8F7E83BCCE4465AEBBC777869CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:50:e5:17:a0:c9:73:b0:ab:79:8e:4d:9a:49: 88:65:7e:cd:59:30:31:fc:c5:bd:20:8e:19:4b:bf: 3f:7b:04:c1:26:e9:b3:bc:38:e9:7a:85:76:78:f3: 14:89:29:fb:6d:ea:2c:f3:bb:82:0c:a0:53:75:9f: 1b:da:3b:38:cc:ad:39:93:ca:9c:df:55:de:9e:17: 49:e1:f3:3f:48:21:8c:64:75:3d:72:1e:19:2a:9c: 12:49:72:8e:7a:ab:a4:1c:e8:3f:11:44:c5:eb:2a: 0b:6f:a5:07:76:a1:af:a0:2c:97:dd:f0:80:ef:43: 28:a2:91:61:36:f3:cc:29:0a:cc:2f:16:22:db:4e: a2:3e:f4:70:bc:7e:ff:80:11:0f:ab:f2:49:63:7c: bd:0c:9e:62:6e:63:bf:b4:4d:9b:aa:2a:b8:1d:a4: 1d:23:f8:8e:9c:7b:f0:90:63:0f:76:43:f9:bf:4f: d0:2d:fb:79:cb:df:c0:ab:5c:4d:f1:9b:23:02:ac: c0:40:32:08:1e:7a:9a:45:28:e5:07:f4:f5:fa:83: 2d:fe:d3:cb:b9:a0:34:9c:c7:b6:96:1c:c5:2e:02: b5:d4:4b:e1:0a:f5:7b:89:64:54:27:e7:80:08:6b: b2:34:9e:80:52:6b:c6:3b:e1:0f:24:25:d4:97:f7: c7:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:7D:34:7A:35:0A:E8:F7:E8:3B:CC:E4:46:5A:EB:BC:77:78:69:CF X509v3 Authority Key Identifier: keyid:22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/323430373a646630303a313a3a2f34382d3438203d3e20313333383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:df00:1::/48 Signature Algorithm: sha256WithRSAEncryption 2e:e3:64:89:05:2c:04:9d:df:16:cf:5c:d5:5b:9a:69:ab:9a: 67:b9:07:88:0b:5d:b7:1f:d4:be:3b:da:a6:72:18:31:76:f7: e4:f9:a2:3d:ca:e2:57:63:21:f0:7b:0c:65:be:42:0a:21:88: de:2b:50:a5:88:d0:da:58:38:70:0c:32:bc:32:2c:35:1e:ea: 73:95:de:21:5c:1c:60:14:c0:af:c2:51:7a:40:e1:3b:b0:2c: 8f:85:1d:57:32:13:20:43:00:ac:74:a3:2e:d2:5f:d4:5f:a8: 44:f6:cc:c1:f1:18:f4:02:db:16:69:7f:f9:cb:72:a8:d7:15: c7:70:74:8b:9c:53:4e:0e:f5:95:ba:b2:6a:c0:37:12:e9:5d: 02:6f:63:53:8a:4a:78:19:ee:f8:c3:94:ce:4b:18:cd:a1:d5: ba:d3:b2:22:4f:1c:b8:f3:9a:e9:85:26:75:d3:ca:77:c1:41: 02:6b:31:ad:bb:ff:9b:6f:96:94:b2:1d:8a:4e:57:81:2f:9b: 2d:71:f1:b6:a0:da:be:99:06:3f:a8:da:09:0b:5f:c9:c4:9c: 9b:4c:f9:3e:39:35:74:a3:38:1b:3d:a6:18:15:27:1a:f0:37: 7d:ca:40:cf:bc:8f:38:c4:9c:6d:1e:06:d7:a3:de:0a:46:29: 74:ef:4f:18 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUfnuiDa1ICOxySmS53/sD8EQJPRcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3 NEM4MUFCNzAeFw0yMzExMDIwODM3NTNaFw0yNDEwMzEwODQyNTNaMDMxMTAvBgNV BAMTKDBFN0QzNDdBMzUwQUU4RjdFODNCQ0NFNDQ2NUFFQkJDNzc3ODY5Q0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIUOUXoMlzsKt5jk2aSYhlfs1Z MDH8xb0gjhlLvz97BMEm6bO8OOl6hXZ48xSJKftt6izzu4IMoFN1nxvaOzjMrTmT ypzfVd6eF0nh8z9IIYxkdT1yHhkqnBJJco56q6Qc6D8RRMXrKgtvpQd2oa+gLJfd 8IDvQyiikWE288wpCswvFiLbTqI+9HC8fv+AEQ+r8kljfL0MnmJuY7+0TZuqKrgd pB0j+I6ce/CQYw92Q/m/T9At+3nL38CrXE3xmyMCrMBAMggeeppFKOUH9PX6gy3+ 08u5oDScx7aWHMUuArXUS+EK9XuJZFQn54AIa7I0noBSa8Y74Q8kJdSX98flAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUDn00ejUK6PfoO8zkRlrrvHd4ac8wHwYDVR0j BBgwFoAUIp+WGK4/BmfsF8l38mayvnTIGrcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDc5MWIxZi02ZGE5LTQwMGQtOGIxNC05OTJhYWU2Mzc0NmMvMC8yMjlGOTYxOEFF M0YwNjY3RUMxN0M5NzdGMjY2QjJCRTc0QzgxQUI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3NEM4 MUFCNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0NzkxYjFmLTZkYTktNDAwZC04 YjE0LTk5MmFhZTYzNzQ2Yy8wLzMyMzQzMDM3M2E2NDY2MzAzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzMzODMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkB98AAAEw DQYJKoZIhvcNAQELBQADggEBAC7jZIkFLASd3xbPXNVbmmmrmme5B4gLXbcf1L47 2qZyGDF29+T5oj3K4ldjIfB7DGW+QgohiN4rUKWI0NpYOHAMMrwyLDUe6nOV3iFc HGAUwK/CUXpA4TuwLI+FHVcyEyBDAKx0oy7SX9RfqET2zMHxGPQC2xZpf/nLcqjX FcdwdIucU04O9ZW6smrANxLpXQJvY1OKSngZ7vjDlM5LGM2h1brTsiJPHLjzmumF JnXTynfBQQJrMa27/5tvlpSyHYpOV4Evmy1x8bag2r6ZBj+o2gkLX8nEnJtM+T45 NXSjOBs9phgVJxrwN33KQM+8jzjEnG0eBtej3gpGKXTvTxg= -----END CERTIFICATE-----Generated at Wed May 1 05:56:37 2024 by rpki-client on console-fra.rpki-client.org