$ rpki-client -vvf repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a3a2f33322d3332203d3e20313338383636.roa File: 323430343a666563303a3a2f33322d3332203d3e20313338383636.roa (raw, json) Hash identifier: B7T7OQStVmjX+2CBdMsWxZkuaoDzmWuk8Lc7V93bZ10= Subject key identifier: C6:5B:05:C7:05:50:A0:8D:D1:22:8C:E1:B5:3E:31:08:C6:AC:40:6D Certificate issuer: /CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Certificate serial: 32BB84A50D1592DB9DF950E7D37F8AB2D0A1A289 Authority key identifier: 3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a3a2f33322d3332203d3e20313338383636.roa Signing time: Mon 31 Jul 2023 15:49:24 +0000 ROA not before: Mon 31 Jul 2023 15:44:24 +0000 ROA not after: Mon 29 Jul 2024 15:49:24 +0000 asID: 138866 IP address blocks: 2404:fec0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:bb:84:a5:0d:15:92:db:9d:f9:50:e7:d3:7f:8a:b2:d0:a1:a2:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Validity Not Before: Jul 31 15:44:24 2023 GMT Not After : Jul 29 15:49:24 2024 GMT Subject: CN=C65B05C70550A08DD1228CE1B53E3108C6AC406D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:85:2a:eb:a7:af:b0:82:65:e8:12:f5:16:49: 95:75:6d:d8:6d:91:a9:4f:74:56:86:e2:f7:92:b5: 1d:35:62:6a:45:d6:75:9d:79:bc:10:ea:e1:16:ce: ad:16:69:03:96:c3:4b:10:94:8d:04:e9:73:7f:d8: 58:e8:7c:6a:61:35:26:d8:e0:17:f0:e1:c7:9b:91: cf:93:fc:2f:9e:17:f8:6b:c1:ce:89:5e:fc:70:3a: 72:29:3b:8d:68:7d:62:15:0c:34:9c:a3:a1:cd:e1: 7e:66:64:03:6e:be:b4:d5:97:9d:00:22:89:e6:c6: 02:a9:da:20:c4:a0:77:51:ab:77:d7:1b:87:8a:6d: ed:bc:c9:97:01:67:63:77:09:1a:88:c9:42:75:3c: 84:ce:96:3b:c4:5f:cc:a5:b7:7a:ef:d0:a7:7b:c8: ac:b6:d3:f5:f5:d8:f8:15:66:2c:97:38:5b:86:e7: bd:0a:f6:e0:57:7b:0e:8f:cf:29:4d:48:d5:0f:84: d3:6a:0a:e2:c7:6f:b0:51:cd:9b:90:a2:57:4b:27: 54:80:e5:bc:8d:62:8a:d9:73:7f:7f:c7:44:74:aa: fd:08:08:d9:57:f6:13:55:1d:c7:03:97:01:98:aa: de:4c:86:9a:ab:dd:88:3c:78:fd:cd:75:a3:78:81: 21:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:5B:05:C7:05:50:A0:8D:D1:22:8C:E1:B5:3E:31:08:C6:AC:40:6D X509v3 Authority Key Identifier: keyid:3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a3a2f33322d3332203d3e20313338383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fec0::/32 Signature Algorithm: sha256WithRSAEncryption 07:60:e5:8e:9b:2b:f0:f6:82:ea:31:0f:d0:03:53:0f:e0:7f: 29:93:ad:a6:4f:6e:d8:89:b1:82:e7:37:9c:eb:08:f9:ac:d2: 68:94:f5:de:6b:72:7b:05:14:50:46:4b:8d:62:5c:f8:34:97: 35:41:cf:8c:60:84:52:ec:30:8a:4e:02:3e:e2:c2:dc:87:37: 41:c4:78:57:c4:10:6f:8d:59:d1:19:30:e3:f0:00:48:1e:b4: 5a:e1:7d:a8:1f:85:b5:33:92:99:06:a9:8a:80:32:7b:48:ad: 69:36:76:92:aa:f0:74:fc:8a:96:89:92:1f:94:40:bd:17:a1: e9:47:bf:9b:32:e1:19:62:14:59:9a:e9:9d:b8:99:fa:0d:29: 3b:bc:e4:ca:c2:7c:40:cf:99:0f:39:cf:be:53:77:b4:c3:70: 28:6b:ca:df:9f:d8:0b:68:6c:db:d5:b2:ff:74:34:43:dd:ab: a4:c1:15:eb:3c:2e:06:1c:34:e4:13:79:d2:2d:33:32:32:16: 87:d9:3b:30:61:b8:c3:3e:6a:11:c9:9f:9a:c8:e2:76:08:08: f0:a0:51:cb:14:c6:90:2b:59:99:7f:11:5b:50:b5:a6:1d:07: d7:a2:f2:ba:0e:63:7a:0c:9e:c3:f1:c8:d7:eb:e8:bd:35:4e: 2d:f6:8c:aa -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUMruEpQ0Vktud+VDn03+KstChookwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFG QzhBN0U5NzAeFw0yMzA3MzExNTQ0MjRaFw0yNDA3MjkxNTQ5MjRaMDMxMTAvBgNV BAMTKEM2NUIwNUM3MDU1MEEwOEREMTIyOENFMUI1M0UzMTA4QzZBQzQwNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDohSrrp6+wgmXoEvUWSZV1bdht kalPdFaG4veStR01YmpF1nWdebwQ6uEWzq0WaQOWw0sQlI0E6XN/2FjofGphNSbY 4Bfw4cebkc+T/C+eF/hrwc6JXvxwOnIpO41ofWIVDDSco6HN4X5mZANuvrTVl50A IonmxgKp2iDEoHdRq3fXG4eKbe28yZcBZ2N3CRqIyUJ1PITOljvEX8ylt3rv0Kd7 yKy20/X12PgVZiyXOFuG570K9uBXew6PzylNSNUPhNNqCuLHb7BRzZuQoldLJ1SA 5byNYorZc39/x0R0qv0ICNlX9hNVHccDlwGYqt5Mhpqr3Yg8eP3NdaN4gSG9AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUxlsFxwVQoI3RIozhtT4xCMasQG0wHwYDVR0j BBgwFoAUPWT9kA4uZMsVnQBnFnhTqvyKfpcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTUxOWFlYi01YzU2LTRjYjMtOTRhMC0wZjQwMGVhNmEzNzUvMC8zRDY0RkQ5MDBF MkU2NENCMTU5RDAwNjcxNjc4NTNBQUZDOEE3RTk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFGQzhB N0U5Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhNTE5YWViLTVjNTYtNGNiMy05 NGEwLTBmNDAwZWE2YTM3NS8wLzMyMzQzMDM0M2E2NjY1NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzODM4MzYzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQE/sAwDQYJKoZI hvcNAQELBQADggEBAAdg5Y6bK/D2guoxD9ADUw/gfymTraZPbtiJsYLnN5zrCPms 0miU9d5rcnsFFFBGS41iXPg0lzVBz4xghFLsMIpOAj7iwtyHN0HEeFfEEG+NWdEZ MOPwAEgetFrhfagfhbUzkpkGqYqAMntIrWk2dpKq8HT8ipaJkh+UQL0XoelHv5sy 4RliFFma6Z24mfoNKTu85MrCfEDPmQ85z75Td7TDcChryt+f2AtobNvVsv90NEPd q6TBFes8LgYcNOQTedItMzIyFofZOzBhuMM+ahHJn5rI4nYICPCgUcsUxpArWZl/ EVtQtaYdB9ei8roOY3oMnsPxyNfr6L01Ti32jKo= -----END CERTIFICATE-----Generated at Fri May 3 04:35:14 2024 by rpki-client on console-ams.rpki-client.org