$ rpki-client -vvf repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a313a3a2f34382d3438203d3e20313338383636.roa File: 323430343a666563303a313a3a2f34382d3438203d3e20313338383636.roa (raw, json) Hash identifier: LnLhi/JTIFDUWER9HR+G/IrckvUa6pFtsvhYgQzxneI= Subject key identifier: 2B:23:AC:80:60:0B:D7:93:98:7B:E2:4F:7E:47:DD:17:F9:B7:56:12 Certificate issuer: /CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Certificate serial: 60E82BD0682A83B12E947532FF5B2CB71AD13BCC Authority key identifier: 3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a313a3a2f34382d3438203d3e20313338383636.roa Signing time: Mon 31 Jul 2023 15:50:32 +0000 ROA not before: Mon 31 Jul 2023 15:45:32 +0000 ROA not after: Mon 29 Jul 2024 15:50:32 +0000 asID: 138866 IP address blocks: 2404:fec0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:e8:2b:d0:68:2a:83:b1:2e:94:75:32:ff:5b:2c:b7:1a:d1:3b:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Validity Not Before: Jul 31 15:45:32 2023 GMT Not After : Jul 29 15:50:32 2024 GMT Subject: CN=2B23AC80600BD793987BE24F7E47DD17F9B75612 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:39:0e:b6:6c:ac:17:f7:d2:37:6e:17:cc:2c: d0:60:7f:57:76:c7:d9:fc:be:e9:f1:51:2e:05:6f: d3:44:22:46:f5:3e:41:c7:b5:73:7d:77:85:a6:7e: 01:06:ff:c5:a7:f5:5c:01:11:39:fc:c5:6f:66:f6: 5a:52:82:33:56:fc:51:b9:5f:a3:d0:5d:c6:48:20: 82:81:1c:c4:dd:e2:1a:8d:41:ba:8b:7f:df:63:74: 99:2d:d0:f4:3b:18:d1:6c:c7:57:ad:6d:d9:f5:d9: a8:11:4e:b9:a5:97:1d:5e:f5:39:a0:d8:20:68:a0: 8b:86:a6:c0:94:ba:1b:76:1f:3b:3a:fb:67:c2:af: c1:66:0b:b7:7c:b2:1c:1c:99:a6:04:2b:29:0e:2b: f9:e4:a0:36:19:e3:ec:b0:e9:8c:1f:f0:dc:77:a2: ab:ac:9b:4f:d2:08:ac:2c:23:eb:00:9c:3c:ee:c7: 87:95:35:52:76:cc:fe:52:54:c8:06:f1:88:4b:2e: 98:36:fd:67:fe:06:21:76:42:05:5f:fa:70:5f:5b: 0c:d6:8f:c7:f6:2a:ef:b3:e8:a8:3a:f2:fb:31:91: ac:93:88:c9:29:31:7c:69:eb:16:bd:20:d9:65:b2: 4c:bd:84:90:dd:96:27:42:5a:f0:62:05:0e:f3:6f: 99:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:23:AC:80:60:0B:D7:93:98:7B:E2:4F:7E:47:DD:17:F9:B7:56:12 X509v3 Authority Key Identifier: keyid:3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a313a3a2f34382d3438203d3e20313338383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fec0:1::/48 Signature Algorithm: sha256WithRSAEncryption af:00:a4:20:f0:5d:38:26:5d:5b:b6:28:55:58:74:99:ce:c1: b6:a0:0d:e4:4e:81:5d:1d:f0:4c:3e:9a:94:c5:79:54:1c:b6: 01:0b:d4:39:c8:2b:8b:f8:10:70:2e:6d:c7:23:bd:90:25:39: 51:34:7c:53:6a:ce:29:a4:11:f1:8c:38:52:5f:95:db:10:76: 86:a9:83:39:36:c5:c7:ea:8e:9f:6c:1b:78:07:8f:8b:39:71: 0c:65:ee:0f:42:47:f9:14:03:e0:2c:29:af:5e:13:1c:a9:b8: d9:c2:32:d1:3e:eb:fe:a5:d0:dc:d7:6b:81:d2:74:1a:ba:d2: a7:eb:da:bc:62:39:76:38:46:19:0f:c3:80:f5:99:ed:6f:95: 24:9f:fd:66:a3:18:06:c0:ef:ca:5d:44:43:4e:16:48:f3:36: 1c:4b:b1:68:73:82:9e:19:f7:97:98:98:07:17:a6:ab:f0:02: c9:53:38:dc:d3:9e:33:e3:69:bf:f2:71:96:53:c8:20:68:a6: fa:5e:e9:a0:33:3b:f0:45:ca:ab:8c:6b:81:cf:39:49:7f:cf: 3c:52:09:f4:a1:33:25:29:1a:0f:8d:1f:dc:f7:a3:a1:00:86: d7:c3:4b:f8:dd:af:88:b8:fc:c2:ae:e6:96:5d:3e:7c:c7:91: 61:18:9d:66 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUYOgr0Ggqg7EulHUy/1sstxrRO8wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFG QzhBN0U5NzAeFw0yMzA3MzExNTQ1MzJaFw0yNDA3MjkxNTUwMzJaMDMxMTAvBgNV BAMTKDJCMjNBQzgwNjAwQkQ3OTM5ODdCRTI0RjdFNDdERDE3RjlCNzU2MTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2OQ62bKwX99I3bhfMLNBgf1d2 x9n8vunxUS4Fb9NEIkb1PkHHtXN9d4WmfgEG/8Wn9VwBETn8xW9m9lpSgjNW/FG5 X6PQXcZIIIKBHMTd4hqNQbqLf99jdJkt0PQ7GNFsx1etbdn12agRTrmllx1e9Tmg 2CBooIuGpsCUuht2Hzs6+2fCr8FmC7d8shwcmaYEKykOK/nkoDYZ4+yw6Ywf8Nx3 oqusm0/SCKwsI+sAnDzux4eVNVJ2zP5SVMgG8YhLLpg2/Wf+BiF2QgVf+nBfWwzW j8f2Ku+z6Kg68vsxkayTiMkpMXxp6xa9INllsky9hJDdlidCWvBiBQ7zb5mxAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUKyOsgGAL15OYe+JPfkfdF/m3VhIwHwYDVR0j BBgwFoAUPWT9kA4uZMsVnQBnFnhTqvyKfpcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTUxOWFlYi01YzU2LTRjYjMtOTRhMC0wZjQwMGVhNmEzNzUvMC8zRDY0RkQ5MDBF MkU2NENCMTU5RDAwNjcxNjc4NTNBQUZDOEE3RTk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFGQzhB N0U5Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhNTE5YWViLTVjNTYtNGNiMy05 NGEwLTBmNDAwZWE2YTM3NS8wLzMyMzQzMDM0M2E2NjY1NjMzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP7AAAEw DQYJKoZIhvcNAQELBQADggEBAK8ApCDwXTgmXVu2KFVYdJnOwbagDeROgV0d8Ew+ mpTFeVQctgEL1DnIK4v4EHAubccjvZAlOVE0fFNqzimkEfGMOFJfldsQdoapgzk2 xcfqjp9sG3gHj4s5cQxl7g9CR/kUA+AsKa9eExypuNnCMtE+6/6l0NzXa4HSdBq6 0qfr2rxiOXY4RhkPw4D1me1vlSSf/WajGAbA78pdRENOFkjzNhxLsWhzgp4Z95eY mAcXpqvwAslTONzTnjPjab/ycZZTyCBopvpe6aAzO/BFyquMa4HPOUl/zzxSCfSh MyUpGg+NH9z3o6EAhtfDS/jdr4i4/MKu5pZdPnzHkWEYnWY= -----END CERTIFICATE-----Generated at Fri May 3 04:35:14 2024 by rpki-client on console-ams.rpki-client.org