$ rpki-client -vvf repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a333a3a2f34382d3438203d3e20313338383636.roa File: 323430343a666563303a333a3a2f34382d3438203d3e20313338383636.roa (raw, json) Hash identifier: UrOfAIrNZwLM4/7T11HiQwCGHCXnYnHKmeqFpan6g2c= Subject key identifier: 8E:C4:AD:C1:E4:AD:30:4E:40:16:1C:D1:BF:BD:37:78:F2:42:72:98 Certificate issuer: /CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Certificate serial: 6AE3CE09A9ECE1BFDEFD2AF5710F770E987820DB Authority key identifier: 3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a333a3a2f34382d3438203d3e20313338383636.roa Signing time: Mon 31 Jul 2023 15:52:22 +0000 ROA not before: Mon 31 Jul 2023 15:47:22 +0000 ROA not after: Mon 29 Jul 2024 15:52:22 +0000 asID: 138866 IP address blocks: 2404:fec0:3::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:e3:ce:09:a9:ec:e1:bf:de:fd:2a:f5:71:0f:77:0e:98:78:20:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Validity Not Before: Jul 31 15:47:22 2023 GMT Not After : Jul 29 15:52:22 2024 GMT Subject: CN=8EC4ADC1E4AD304E40161CD1BFBD3778F2427298 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:1f:b4:36:4c:51:55:9e:6f:40:ca:1a:6c:e8: 70:c8:63:f5:1e:5b:7d:31:41:d4:e4:8e:e8:6b:f4: cf:8c:68:8a:31:ef:7b:06:71:ed:03:6b:d0:ab:5c: 1c:eb:17:16:9f:00:a4:9a:75:64:6f:85:80:10:0b: e0:87:c2:13:f8:da:1c:0b:2d:7b:28:1e:74:db:42: 85:ed:e5:c1:71:77:dc:ff:15:18:44:3f:5c:5a:48: 6f:f9:68:75:a6:18:a1:3f:e2:78:52:d1:35:bc:53: ce:a8:f5:d3:b0:9b:c1:ca:17:94:14:e0:98:58:11: d1:d9:e2:ea:c4:9e:4c:70:12:17:a0:b4:7b:aa:99: 79:cc:58:f3:83:cf:ef:90:a2:2b:cd:37:da:5e:48: e5:49:c1:76:ae:7c:1b:77:64:6d:72:96:86:e4:ea: 47:d3:8b:60:2c:54:21:b5:85:85:24:90:2e:81:52: f6:fb:13:bd:2d:54:c3:dc:5b:fa:a3:04:1a:a2:88: 28:60:86:33:d6:e9:81:ab:7d:45:2f:11:c2:a5:4b: c9:06:20:c6:33:4b:e2:73:28:ab:56:7c:e7:70:02: 24:06:31:6e:18:b4:c2:05:72:a3:c5:4c:48:04:d6: 05:8e:8d:7f:47:9d:80:aa:14:2c:eb:6a:fb:af:0a: b3:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:C4:AD:C1:E4:AD:30:4E:40:16:1C:D1:BF:BD:37:78:F2:42:72:98 X509v3 Authority Key Identifier: keyid:3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a333a3a2f34382d3438203d3e20313338383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fec0:3::/48 Signature Algorithm: sha256WithRSAEncryption 68:e0:4f:26:f4:30:68:56:be:6d:b0:c7:b5:a2:97:90:95:6b: 2d:64:65:18:87:c0:4c:a0:7a:f7:f3:0b:5f:2f:22:3f:86:17: 9b:f7:97:1c:13:99:bc:fb:1d:b5:1f:63:15:33:2c:9c:c3:8c: 78:d1:0e:67:bb:ad:2f:40:3e:2d:08:97:16:c0:7a:32:02:64: b3:40:23:27:d1:18:46:57:88:19:ba:85:e4:3c:64:17:1d:c9: ed:af:dc:3e:99:24:78:e8:66:ce:99:31:b2:b4:5a:56:a6:b7: fd:1a:7b:de:11:d6:53:88:c1:5a:3e:03:c0:1b:05:45:de:6b: 4c:32:a9:ce:ca:28:c3:a0:ba:e8:97:63:29:6c:6b:0b:c5:d7: d9:98:18:dc:26:3e:02:66:36:6b:8b:86:65:96:25:65:22:d2: 2c:30:67:09:a3:65:90:63:88:0a:30:9f:a8:42:61:41:b0:88: 18:a9:1b:cb:0e:ba:2a:53:06:70:c7:3e:a9:d4:39:73:4d:a2: 68:3e:ed:ac:32:6e:38:b7:a9:16:f2:51:fc:18:54:9e:83:65: 4c:29:93:69:cd:92:5a:1e:87:e3:ef:af:f8:6b:a4:9f:6d:b9: 01:d5:7f:05:ef:be:09:f4:87:67:45:62:66:54:15:e5:6d:86: ad:b2:68:78 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUauPOCans4b/e/Sr1cQ93Dph4INswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFG QzhBN0U5NzAeFw0yMzA3MzExNTQ3MjJaFw0yNDA3MjkxNTUyMjJaMDMxMTAvBgNV BAMTKDhFQzRBREMxRTRBRDMwNEU0MDE2MUNEMUJGQkQzNzc4RjI0MjcyOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVH7Q2TFFVnm9Ayhps6HDIY/Ue W30xQdTkjuhr9M+MaIox73sGce0Da9CrXBzrFxafAKSadWRvhYAQC+CHwhP42hwL LXsoHnTbQoXt5cFxd9z/FRhEP1xaSG/5aHWmGKE/4nhS0TW8U86o9dOwm8HKF5QU 4JhYEdHZ4urEnkxwEhegtHuqmXnMWPODz++QoivNN9peSOVJwXaufBt3ZG1ylobk 6kfTi2AsVCG1hYUkkC6BUvb7E70tVMPcW/qjBBqiiChghjPW6YGrfUUvEcKlS8kG IMYzS+JzKKtWfOdwAiQGMW4YtMIFcqPFTEgE1gWOjX9HnYCqFCzravuvCrPvAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUjsStweStME5AFhzRv703ePJCcpgwHwYDVR0j BBgwFoAUPWT9kA4uZMsVnQBnFnhTqvyKfpcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTUxOWFlYi01YzU2LTRjYjMtOTRhMC0wZjQwMGVhNmEzNzUvMC8zRDY0RkQ5MDBF MkU2NENCMTU5RDAwNjcxNjc4NTNBQUZDOEE3RTk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFGQzhB N0U5Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhNTE5YWViLTVjNTYtNGNiMy05 NGEwLTBmNDAwZWE2YTM3NS8wLzMyMzQzMDM0M2E2NjY1NjMzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP7AAAMw DQYJKoZIhvcNAQELBQADggEBAGjgTyb0MGhWvm2wx7Wil5CVay1kZRiHwEygevfz C18vIj+GF5v3lxwTmbz7HbUfYxUzLJzDjHjRDme7rS9APi0IlxbAejICZLNAIyfR GEZXiBm6heQ8ZBcdye2v3D6ZJHjoZs6ZMbK0Wlamt/0ae94R1lOIwVo+A8AbBUXe a0wyqc7KKMOguuiXYylsawvF19mYGNwmPgJmNmuLhmWWJWUi0iwwZwmjZZBjiAow n6hCYUGwiBipG8sOuipTBnDHPqnUOXNNomg+7awybji3qRbyUfwYVJ6DZUwpk2nN kloeh+Pvr/hrpJ9tuQHVfwXvvgn0h2dFYmZUFeVthq2yaHg= -----END CERTIFICATE-----Generated at Fri May 3 04:35:14 2024 by rpki-client on console-ams.rpki-client.org