$ rpki-client -vvf repo-rpki.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/323430313a383034303a3a2f33322d3332203d3e20313336313237.roa File: 323430313a383034303a3a2f33322d3332203d3e20313336313237.roa (raw, json) Hash identifier: Gl/TfrxeS9jM+gBpXMwdgkqnkYCTWHqQHFBBgg+o4+o= Subject key identifier: AD:57:A2:00:51:FC:64:DA:84:C9:EB:E6:0F:88:78:5E:34:ED:78:89 Certificate issuer: /CN=8C888E996588527BC5EF8ABD293676C3463A1A22 Certificate serial: 3DEFB2CFD921080B43D7DFA53173CAB962B65417 Authority key identifier: 8C:88:8E:99:65:88:52:7B:C5:EF:8A:BD:29:36:76:C3:46:3A:1A:22 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C888E996588527BC5EF8ABD293676C3463A1A22.cer Subject info access: rsync://repo-rpki.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/323430313a383034303a3a2f33322d3332203d3e20313336313237.roa Signing time: Fri 17 Nov 2023 04:00:02 +0000 ROA not before: Fri 17 Nov 2023 03:55:02 +0000 ROA not after: Fri 15 Nov 2024 04:00:02 +0000 asID: 136127 IP address blocks: 2401:8040::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/8C888E996588527BC5EF8ABD293676C3463A1A22.crl rsync://repo-rpki.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/8C888E996588527BC5EF8ABD293676C3463A1A22.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C888E996588527BC5EF8ABD293676C3463A1A22.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 21:09:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:ef:b2:cf:d9:21:08:0b:43:d7:df:a5:31:73:ca:b9:62:b6:54:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C888E996588527BC5EF8ABD293676C3463A1A22 Validity Not Before: Nov 17 03:55:02 2023 GMT Not After : Nov 15 04:00:02 2024 GMT Subject: CN=AD57A20051FC64DA84C9EBE60F88785E34ED7889 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:91:ae:8f:9b:fa:00:ce:a2:47:7a:c2:30:3e: c2:a8:7f:6a:b6:ad:3e:52:9d:6c:b1:4b:ef:61:00: e0:98:ba:b4:10:a9:72:ac:10:d9:ae:d6:44:26:7f: 6d:77:b4:c6:8b:0c:cd:0b:cb:ca:08:32:e0:6f:c6: 0a:d8:65:ba:f8:0d:27:93:e2:fe:1d:fa:0b:3a:24: 89:2b:fc:92:66:ca:7e:52:2f:81:7b:12:87:07:4a: d0:a3:d6:88:0e:d5:f6:98:c5:2a:dd:59:93:6e:9a: 09:b8:e3:05:88:cd:5f:be:bf:81:f3:56:07:cb:78: e7:06:a3:55:a7:89:a1:99:42:e8:58:0a:26:81:c3: f8:bf:95:51:22:ce:e7:b0:94:47:c4:68:97:6c:cb: 74:c0:27:8b:25:43:64:71:eb:6e:dd:3a:c9:1a:2e: a7:6b:fa:0c:3f:ec:88:2f:9f:bc:03:68:74:ea:83: b1:9d:0b:c6:ac:be:db:5d:32:d2:c1:16:f4:61:a7: 25:73:a2:7f:60:69:7a:1b:5c:7a:a9:30:30:ab:38: c0:6f:d1:66:11:c0:a0:2f:e6:60:7c:68:a0:f1:0a: a9:fb:ed:f9:10:b3:96:40:b3:2c:82:13:76:7e:ac: 20:05:04:e3:ba:93:47:e3:1a:73:9a:f4:47:b1:0e: aa:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:57:A2:00:51:FC:64:DA:84:C9:EB:E6:0F:88:78:5E:34:ED:78:89 X509v3 Authority Key Identifier: keyid:8C:88:8E:99:65:88:52:7B:C5:EF:8A:BD:29:36:76:C3:46:3A:1A:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/8C888E996588527BC5EF8ABD293676C3463A1A22.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C888E996588527BC5EF8ABD293676C3463A1A22.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/323430313a383034303a3a2f33322d3332203d3e20313336313237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:8040::/32 Signature Algorithm: sha256WithRSAEncryption 69:70:7e:96:04:61:86:93:32:a0:92:70:88:32:31:ad:56:5f: 65:49:3d:1c:fd:55:4b:28:25:a0:23:1d:6b:37:dd:f2:ec:03: 3a:78:0d:6b:18:e3:77:1f:04:4b:6a:8f:d0:20:3f:e1:b9:69: ac:a6:d6:7c:5a:01:5b:49:c9:15:53:c9:c9:df:15:8a:44:74: b5:54:6a:7a:fc:48:56:2f:81:9d:81:f6:22:b9:fb:c1:6a:27: b1:a7:1f:86:57:96:8f:1b:34:59:53:4d:c6:f4:82:c1:e5:8c: 8a:38:c1:0f:d7:f3:b0:b6:07:b2:65:ca:6b:73:e3:08:b5:21: ca:b2:bc:71:44:43:24:52:f9:d1:f9:1e:ec:c4:02:72:15:61: 3c:bb:dc:f2:50:e8:6b:26:c4:85:11:68:aa:f3:16:0b:ad:5b: 8f:71:b1:4e:8d:8a:ce:21:53:bf:c2:55:0f:03:73:4a:81:ea: 65:85:ed:13:77:94:16:eb:9e:30:8e:3e:d4:ba:07:e9:cc:4b: 52:ea:5c:b3:6a:fb:f6:a2:17:a9:05:24:2e:be:c4:9d:c0:8a: 17:4c:14:b7:66:0a:50:bb:55:50:bb:7a:26:ed:b9:d0:dd:e6: 10:37:03:01:70:28:43:cc:33:7d:35:c0:ea:ab:88:35:4f:20: 8f:a1:2b:e5 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUPe+yz9khCAtD19+lMXPKuWK2VBcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEM4ODhFOTk2NTg4NTI3QkM1RUY4QUJEMjkzNjc2QzM0 NjNBMUEyMjAeFw0yMzExMTcwMzU1MDJaFw0yNDExMTUwNDAwMDJaMDMxMTAvBgNV BAMTKEFENTdBMjAwNTFGQzY0REE4NEM5RUJFNjBGODg3ODVFMzRFRDc4ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyka6Pm/oAzqJHesIwPsKof2q2 rT5SnWyxS+9hAOCYurQQqXKsENmu1kQmf213tMaLDM0Ly8oIMuBvxgrYZbr4DSeT 4v4d+gs6JIkr/JJmyn5SL4F7EocHStCj1ogO1faYxSrdWZNumgm44wWIzV++v4Hz VgfLeOcGo1WniaGZQuhYCiaBw/i/lVEizuewlEfEaJdsy3TAJ4slQ2Rx627dOska Lqdr+gw/7Igvn7wDaHTqg7GdC8asvttdMtLBFvRhpyVzon9gaXobXHqpMDCrOMBv 0WYRwKAv5mB8aKDxCqn77fkQs5ZAsyyCE3Z+rCAFBOO6k0fjGnOa9EexDqqJAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUrVeiAFH8ZNqEyevmD4h4XjTteIkwHwYDVR0j BBgwFoAUjIiOmWWIUnvF74q9KTZ2w0Y6GiIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NGIyNzMwMy05ZTNkLTRkNDItYWYyNS02YTBmMTE4MDhmMjcvMC84Qzg4OEU5OTY1 ODg1MjdCQzVFRjhBQkQyOTM2NzZDMzQ2M0ExQTIyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEM4ODhFOTk2NTg4NTI3QkM1RUY4QUJEMjkzNjc2QzM0NjNB MUEyMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0YjI3MzAzLTllM2QtNGQ0Mi1h ZjI1LTZhMGYxMTgwOGYyNy8wLzMyMzQzMDMxM2EzODMwMzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNjMxMzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBgEAwDQYJKoZI hvcNAQELBQADggEBAGlwfpYEYYaTMqCScIgyMa1WX2VJPRz9VUsoJaAjHWs33fLs Azp4DWsY43cfBEtqj9AgP+G5aaym1nxaAVtJyRVTycnfFYpEdLVUanr8SFYvgZ2B 9iK5+8FqJ7GnH4ZXlo8bNFlTTcb0gsHljIo4wQ/X87C2B7Jlymtz4wi1IcqyvHFE QyRS+dH5HuzEAnIVYTy73PJQ6GsmxIURaKrzFgutW49xsU6Nis4hU7/CVQ8Dc0qB 6mWF7RN3lBbrnjCOPtS6B+nMS1LqXLNq+/aiF6kFJC6+xJ3AihdMFLdmClC7VVC7 eibtudDd5hA3AwFwKEPMM301wOqriDVPII+hK+U= -----END CERTIFICATE-----Generated at Sat Jun 1 00:11:41 2024 by rpki-client on console-ams.rpki-client.org