$ rpki-client -vvf repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a323a3a2f34382d3438203d3e20313338383636.roa File: 323430343a666563303a323a3a2f34382d3438203d3e20313338383636.roa (raw, json) Hash identifier: sqjw/WGuiZUs/DAcyiJoqvyaa2ifoLX57+6EA1Mkn1w= Subject key identifier: 84:21:C1:C9:13:5F:0A:EE:B7:32:3E:88:3F:BF:E1:BF:33:EB:5A:49 Certificate issuer: /CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Certificate serial: 2258377F5C9192DD9C6B0F67DDA4C280BF594FED Authority key identifier: 3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a323a3a2f34382d3438203d3e20313338383636.roa Signing time: Mon 31 Jul 2023 15:51:06 +0000 ROA not before: Mon 31 Jul 2023 15:46:06 +0000 ROA not after: Mon 29 Jul 2024 15:51:06 +0000 asID: 138866 IP address blocks: 2404:fec0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:58:37:7f:5c:91:92:dd:9c:6b:0f:67:dd:a4:c2:80:bf:59:4f:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Validity Not Before: Jul 31 15:46:06 2023 GMT Not After : Jul 29 15:51:06 2024 GMT Subject: CN=8421C1C9135F0AEEB7323E883FBFE1BF33EB5A49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f8:d1:75:3b:f2:71:e5:ca:d9:e7:e2:a9:31: b7:48:68:91:8e:aa:f0:83:54:76:c2:5e:18:f5:6e: e0:2c:bb:7c:b8:f7:0a:9b:4e:c1:22:09:f3:37:22: 8f:c8:60:aa:21:56:e9:4b:8b:ed:bb:2d:c5:0e:49: 28:bf:e4:45:4c:e2:72:b4:47:74:ae:8b:27:8a:8d: 01:81:14:38:a5:f8:bf:48:d1:b6:4d:be:e9:bd:58: f8:dd:f5:86:66:eb:08:32:b2:34:1e:e8:b1:97:99: 14:c6:59:a6:68:71:aa:9f:80:86:eb:e9:24:a9:11: ce:e9:fb:9b:a9:78:c8:ea:df:cc:6f:a6:7d:af:5e: a4:92:0e:d0:8e:22:82:07:d6:3d:c4:f2:5f:78:78: b5:4d:91:29:c8:c0:81:d6:1e:c5:05:12:e8:e5:c1: 33:87:a9:0a:61:65:b5:54:60:44:29:84:a9:14:1c: 66:5a:0d:31:6d:0e:b6:11:05:a3:2c:c6:e2:30:e7: 78:00:62:84:9b:08:dd:b2:64:f8:44:e5:89:bf:6b: 90:9b:9d:9f:11:83:1d:ae:74:f6:8d:da:7d:9b:04: 41:cb:46:36:00:61:53:74:94:65:3c:b6:46:fc:07: 44:f6:f6:b2:f8:78:a0:06:e3:6d:00:29:fc:10:f6: a9:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:21:C1:C9:13:5F:0A:EE:B7:32:3E:88:3F:BF:E1:BF:33:EB:5A:49 X509v3 Authority Key Identifier: keyid:3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a323a3a2f34382d3438203d3e20313338383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fec0:2::/48 Signature Algorithm: sha256WithRSAEncryption 0f:55:7e:4f:cc:3f:f0:b6:53:58:45:93:96:cd:a3:a0:1d:d9: 5c:d0:e9:92:c6:f6:19:76:59:b3:08:d2:34:f0:e2:42:13:03: 99:05:37:ce:4e:90:3f:21:25:03:52:c8:18:aa:50:79:fc:94: b8:87:9e:f9:ec:94:1a:e4:da:69:b7:67:33:ed:d2:5f:bb:5f: 6d:e8:60:2d:dc:3f:be:87:83:fe:44:f2:44:f2:66:2f:d1:2f: 05:38:65:6d:d8:72:02:18:a8:e6:d0:fd:47:e5:db:ee:23:58: 3c:66:83:c4:ea:19:c6:25:de:74:fb:ba:3e:5c:db:34:2f:29: 57:69:73:64:58:9c:18:78:cf:6c:e8:b2:e0:ff:9c:2c:b0:20: 47:5e:ca:e2:a4:bb:4b:87:83:01:d2:b4:e4:27:91:35:c6:d9: b5:e6:7d:42:5e:10:bb:4b:0a:aa:58:b0:6b:a3:0a:6f:2e:48: 6a:01:f9:0c:8f:8c:a5:e5:08:c2:f6:c3:fc:25:c2:38:77:53: eb:01:26:94:78:b4:55:dc:6d:94:b2:e6:ef:79:8e:9e:6b:49: ff:9b:fb:ff:44:9d:ca:17:2c:e5:96:0d:29:a3:b6:71:4c:b0: 4d:8f:42:a2:c9:42:6c:89:ca:92:1c:86:f6:6a:7e:8a:c1:80: b9:03:c8:72 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUIlg3f1yRkt2caw9n3aTCgL9ZT+0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFG QzhBN0U5NzAeFw0yMzA3MzExNTQ2MDZaFw0yNDA3MjkxNTUxMDZaMDMxMTAvBgNV BAMTKDg0MjFDMUM5MTM1RjBBRUVCNzMyM0U4ODNGQkZFMUJGMzNFQjVBNDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7+NF1O/Jx5crZ5+KpMbdIaJGO qvCDVHbCXhj1buAsu3y49wqbTsEiCfM3Io/IYKohVulLi+27LcUOSSi/5EVM4nK0 R3SuiyeKjQGBFDil+L9I0bZNvum9WPjd9YZm6wgysjQe6LGXmRTGWaZocaqfgIbr 6SSpEc7p+5upeMjq38xvpn2vXqSSDtCOIoIH1j3E8l94eLVNkSnIwIHWHsUFEujl wTOHqQphZbVUYEQphKkUHGZaDTFtDrYRBaMsxuIw53gAYoSbCN2yZPhE5Ym/a5Cb nZ8Rgx2udPaN2n2bBEHLRjYAYVN0lGU8tkb8B0T29rL4eKAG420AKfwQ9qk1AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUhCHByRNfCu63Mj6IP7/hvzPrWkkwHwYDVR0j BBgwFoAUPWT9kA4uZMsVnQBnFnhTqvyKfpcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTUxOWFlYi01YzU2LTRjYjMtOTRhMC0wZjQwMGVhNmEzNzUvMC8zRDY0RkQ5MDBF MkU2NENCMTU5RDAwNjcxNjc4NTNBQUZDOEE3RTk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFGQzhB N0U5Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhNTE5YWViLTVjNTYtNGNiMy05 NGEwLTBmNDAwZWE2YTM3NS8wLzMyMzQzMDM0M2E2NjY1NjMzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP7AAAIw DQYJKoZIhvcNAQELBQADggEBAA9Vfk/MP/C2U1hFk5bNo6Ad2VzQ6ZLG9hl2WbMI 0jTw4kITA5kFN85OkD8hJQNSyBiqUHn8lLiHnvnslBrk2mm3ZzPt0l+7X23oYC3c P76Hg/5E8kTyZi/RLwU4ZW3YcgIYqObQ/Ufl2+4jWDxmg8TqGcYl3nT7uj5c2zQv KVdpc2RYnBh4z2zosuD/nCywIEdeyuKku0uHgwHStOQnkTXG2bXmfUJeELtLCqpY sGujCm8uSGoB+QyPjKXlCML2w/wlwjh3U+sBJpR4tFXcbZSy5u95jp5rSf+b+/9E ncoXLOWWDSmjtnFMsE2PQqLJQmyJypIchvZqforBgLkDyHI= -----END CERTIFICATE-----Generated at Fri May 3 04:35:14 2024 by rpki-client on console-ams.rpki-client.org