$ rpki-client -vvf repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/323430353a633863303a3a2f33322d3332203d3e20313339393831.roa File: 323430353a633863303a3a2f33322d3332203d3e20313339393831.roa (raw, json) Hash identifier: kaXrUiN10YtO8cMHU2K8Fer3KVF7bZLUJdNjUFhPtfQ= Subject key identifier: C1:F3:E7:CF:C7:97:BE:4C:73:7F:98:EA:BF:D5:FE:BB:B6:D7:85:F3 Certificate issuer: /CN=2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1 Certificate serial: 2EF1554753C738E93BB9450C70C9363E86040145 Authority key identifier: 2A:F5:12:1C:D1:CF:A7:79:8C:C1:DD:77:7B:46:43:69:D1:DE:A6:C1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/323430353a633863303a3a2f33322d3332203d3e20313339393831.roa Signing time: Mon 11 Dec 2023 08:00:02 +0000 ROA not before: Mon 11 Dec 2023 07:55:02 +0000 ROA not after: Mon 09 Dec 2024 08:00:02 +0000 asID: 139981 IP address blocks: 2405:c8c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.crl rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Jun 2024 03:42:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:f1:55:47:53:c7:38:e9:3b:b9:45:0c:70:c9:36:3e:86:04:01:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1 Validity Not Before: Dec 11 07:55:02 2023 GMT Not After : Dec 9 08:00:02 2024 GMT Subject: CN=C1F3E7CFC797BE4C737F98EABFD5FEBBB6D785F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:53:60:52:8e:f7:41:d6:18:dd:59:2f:f0:e9: 26:d6:82:64:9b:1e:58:48:7b:5d:19:5c:aa:9a:de: 73:4f:6b:d3:16:3d:d9:5c:06:fa:70:85:92:ae:b8: b9:26:df:fa:3d:b2:4d:06:c9:c6:da:b7:22:26:37: 3f:dc:d8:26:bb:e1:9c:f6:34:67:3c:e9:b9:e2:34: d7:1e:01:c7:cb:82:fd:39:99:32:5a:03:52:be:a0: 4e:6f:53:e2:9f:dd:58:be:2c:5b:77:20:0a:0a:27: d5:8a:d0:1c:ce:c7:a2:1c:4f:e0:70:f2:f1:d5:2b: 85:18:0d:6b:d0:d0:f7:95:8c:c9:9f:66:05:47:4b: 05:f1:e3:dc:76:b0:9e:af:bb:32:2b:c3:2f:62:6c: a3:1b:96:9a:2c:18:46:05:d4:95:9b:8e:10:ce:6a: fb:ef:f6:ea:41:e6:57:10:22:68:11:b8:c7:ae:c0: c6:bb:d4:2b:eb:47:4f:43:bd:dd:a5:da:b4:73:e3: 53:74:a2:87:fa:91:0c:4c:80:3a:fd:f0:41:04:d8: 78:3b:0e:7d:b1:40:77:05:c5:eb:c7:3f:4d:87:b9: 11:d8:64:b2:f7:c0:58:0d:10:c9:07:66:fc:c2:b4: bf:fc:71:48:55:8a:1a:b8:84:39:53:b2:6c:8d:23: ed:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:F3:E7:CF:C7:97:BE:4C:73:7F:98:EA:BF:D5:FE:BB:B6:D7:85:F3 X509v3 Authority Key Identifier: keyid:2A:F5:12:1C:D1:CF:A7:79:8C:C1:DD:77:7B:46:43:69:D1:DE:A6:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/323430353a633863303a3a2f33322d3332203d3e20313339393831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c8c0::/32 Signature Algorithm: sha256WithRSAEncryption bd:d6:7a:47:0c:53:99:1c:d4:32:c3:f7:3b:b9:e8:e7:6e:0b: dc:a8:a3:ab:36:db:f7:f8:b3:4f:e8:4e:72:04:aa:74:8d:96: 33:33:c6:52:18:3f:cc:af:8b:65:f4:bb:73:6c:55:24:38:13: 31:23:e5:1c:8d:0a:c3:62:1c:b6:83:5a:31:b0:6d:f2:f1:96: 5b:c3:ee:c1:ef:49:4b:b1:ff:48:71:ec:e2:3e:a9:95:2c:70: 1f:6a:fc:69:c0:63:1d:11:ed:f4:5f:79:34:9f:41:93:92:a1: a2:9c:d6:05:b5:c3:8e:23:e6:15:ef:f8:f5:a3:44:a0:5b:6b: 84:63:f4:0c:7b:f5:ec:fd:71:2e:d5:11:10:17:3b:03:90:7c: 45:da:f7:79:10:2e:eb:b2:12:52:43:38:f0:aa:3b:83:1a:de: 00:71:e2:dc:42:6e:06:d7:4b:db:39:5a:02:09:96:60:ff:43: bc:c8:f0:df:3c:83:10:7c:d8:bb:26:f7:1f:9b:56:39:1c:d3: 04:96:d8:9b:9d:4b:1d:4f:a5:bf:cd:36:1a:b1:1e:b9:38:f8: dc:e3:1e:90:7e:8c:87:be:82:07:dc:95:b4:35:79:bd:fc:28: d1:21:ae:20:66:68:54:38:0f:78:1c:86:8d:84:43:9e:8b:32: 5b:77:d8:59 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIULvFVR1PHOOk7uUUMcMk2PoYEAUUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFGNTEyMUNEMUNGQTc3OThDQzFERDc3N0I0NjQzNjlE MURFQTZDMTAeFw0yMzEyMTEwNzU1MDJaFw0yNDEyMDkwODAwMDJaMDMxMTAvBgNV BAMTKEMxRjNFN0NGQzc5N0JFNEM3MzdGOThFQUJGRDVGRUJCQjZENzg1RjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRU2BSjvdB1hjdWS/w6SbWgmSb HlhIe10ZXKqa3nNPa9MWPdlcBvpwhZKuuLkm3/o9sk0GycbatyImNz/c2Ca74Zz2 NGc86bniNNceAcfLgv05mTJaA1K+oE5vU+Kf3Vi+LFt3IAoKJ9WK0BzOx6IcT+Bw 8vHVK4UYDWvQ0PeVjMmfZgVHSwXx49x2sJ6vuzIrwy9ibKMblposGEYF1JWbjhDO avvv9upB5lcQImgRuMeuwMa71CvrR09Dvd2l2rRz41N0oof6kQxMgDr98EEE2Hg7 Dn2xQHcFxevHP02HuRHYZLL3wFgNEMkHZvzCtL/8cUhVihq4hDlTsmyNI+2XAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUwfPnz8eXvkxzf5jqv9X+u7bXhfMwHwYDVR0j BBgwFoAUKvUSHNHPp3mMwd13e0ZDadHepsEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OTJlMDdmOC0xYTQ4LTQzOTEtYTZhNS04ZTRlMzljODU4OGEvMC8yQUY1MTIxQ0Qx Q0ZBNzc5OENDMURENzc3QjQ2NDM2OUQxREVBNkMxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkFGNTEyMUNEMUNGQTc3OThDQzFERDc3N0I0NjQzNjlEMURF QTZDMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5MmUwN2Y4LTFhNDgtNDM5MS1h NmE1LThlNGUzOWM4NTg4YS8wLzMyMzQzMDM1M2E2MzM4NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTM5MzgzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFyMAwDQYJKoZI hvcNAQELBQADggEBAL3WekcMU5kc1DLD9zu56OduC9yoo6s22/f4s0/oTnIEqnSN ljMzxlIYP8yvi2X0u3NsVSQ4EzEj5RyNCsNiHLaDWjGwbfLxllvD7sHvSUux/0hx 7OI+qZUscB9q/GnAYx0R7fRfeTSfQZOSoaKc1gW1w44j5hXv+PWjRKBba4Rj9Ax7 9ez9cS7VERAXOwOQfEXa93kQLuuyElJDOPCqO4Ma3gBx4txCbgbXS9s5WgIJlmD/ Q7zI8N88gxB82Lsm9x+bVjkc0wSW2JudSx1Ppb/NNhqxHrk4+NzjHpB+jIe+ggfc lbQ1eb38KNEhriBmaFQ4D3gcho2EQ56LMlt32Fk= -----END CERTIFICATE-----Generated at Sun Jun 23 09:43:23 2024 by rpki-client on console-fra.rpki-client.org