$ rpki-client -vvf repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a3a2f33322d3438203d3e20313338383636.roa File: 323430343a666563303a3a2f33322d3438203d3e20313338383636.roa (raw, json) Hash identifier: LKPBDFLdAkfZ6Lh0Q6eQ6tiwjuhJ9Wbgb0s4+VEGV/8= Subject key identifier: 3A:98:19:22:7B:AA:ED:79:53:CB:99:89:E1:A9:BF:44:C5:DC:32:91 Certificate issuer: /CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Certificate serial: 397C8B10D90C601DE51AF6B3605BCB160BEA35BE Authority key identifier: 3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a3a2f33322d3438203d3e20313338383636.roa Signing time: Sat 29 Jul 2023 15:43:43 +0000 ROA not before: Sat 29 Jul 2023 15:38:43 +0000 ROA not after: Sat 27 Jul 2024 15:43:43 +0000 asID: 138866 IP address blocks: 2404:fec0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:7c:8b:10:d9:0c:60:1d:e5:1a:f6:b3:60:5b:cb:16:0b:ea:35:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Validity Not Before: Jul 29 15:38:43 2023 GMT Not After : Jul 27 15:43:43 2024 GMT Subject: CN=3A9819227BAAED7953CB9989E1A9BF44C5DC3291 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a7:c2:75:0a:8b:f6:41:ef:b0:bb:d5:f6:d3: 14:63:04:2b:7a:d8:98:70:35:c5:df:96:f2:3e:80: a3:2c:67:50:9b:19:2a:df:fb:6b:f0:be:a9:a8:bc: 27:98:9c:1f:05:bc:2b:90:e0:2a:b4:d3:67:31:68: a6:57:ab:fa:22:b4:29:47:92:02:f8:ad:29:60:5f: d7:3c:50:cb:22:7d:a4:bc:b4:9d:41:20:94:d1:2e: 28:ba:51:19:4e:61:c8:10:64:9e:61:93:75:7d:f4: d7:2b:27:2e:9d:49:eb:b3:f2:8d:ef:d1:6e:09:c4: 17:2d:a2:7c:21:d6:08:fe:6a:44:c8:12:90:54:5d: d6:83:b2:c0:8d:f0:e5:75:8c:d6:f8:a7:de:6d:15: bb:97:bf:4d:11:e8:6a:77:67:1f:d5:8d:6e:89:ac: 73:61:ac:e5:b6:8a:b4:5f:2e:da:db:bf:7b:77:93: 24:16:47:95:ca:e0:0f:3d:fb:e9:8d:e9:d9:0b:45: c7:e7:85:2a:dc:0e:a9:8b:85:78:36:f1:94:c4:c0: 92:aa:7f:b3:fe:74:70:26:08:8e:2b:54:c1:7d:a6: fc:fe:b2:3b:81:a2:b7:13:71:96:e1:e9:56:5f:16: 69:48:2b:8d:0b:71:16:00:02:41:97:f3:8d:44:22: 2d:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:98:19:22:7B:AA:ED:79:53:CB:99:89:E1:A9:BF:44:C5:DC:32:91 X509v3 Authority Key Identifier: keyid:3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a3a2f33322d3438203d3e20313338383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fec0::/32 Signature Algorithm: sha256WithRSAEncryption 44:16:54:d7:c7:e0:ec:70:01:3e:14:c2:5b:93:9e:bf:dc:c0: a2:24:a5:2d:19:09:33:e8:09:0b:53:4a:2a:d1:4f:b9:cb:a2: 1c:5a:6c:65:04:fd:be:c6:2d:f5:09:da:bf:ed:bf:23:71:e3: 3f:65:50:df:86:28:fb:e4:68:7e:f4:fc:24:53:7a:3d:02:74: f1:dd:03:19:97:9d:bc:eb:ae:a4:86:ee:c6:45:d3:29:71:a4: 59:89:0f:cc:c6:d6:cf:f6:56:49:3c:ac:22:99:d3:9e:e7:dc: 4f:3c:de:a8:f2:c0:1a:cd:2c:be:6d:d1:9a:0e:17:c8:f5:e3: 28:31:2b:91:0b:05:f8:e6:c2:1f:c3:70:d2:ed:e1:ce:bf:ec: 1f:20:3b:27:c8:22:2a:04:61:f7:b9:c5:c9:8f:d4:12:32:e5: 28:e7:ed:b5:9e:09:0f:cb:19:9e:37:85:60:c2:f8:8e:59:27: b0:9e:d6:8c:4b:d8:1b:73:3b:29:34:a6:99:e7:3f:93:4d:ac: fe:ad:2d:7a:6b:a0:ea:e9:3b:76:b4:90:b0:5b:fd:a6:69:f6: bc:a3:4e:98:3d:69:2f:3a:c9:f0:86:62:70:dc:00:c0:a8:e9: 65:1f:d7:bf:79:ee:6f:89:53:74:fe:ca:fb:5b:ae:da:85:36: 5b:71:ff:ec -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUOXyLENkMYB3lGvazYFvLFgvqNb4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFG QzhBN0U5NzAeFw0yMzA3MjkxNTM4NDNaFw0yNDA3MjcxNTQzNDNaMDMxMTAvBgNV BAMTKDNBOTgxOTIyN0JBQUVENzk1M0NCOTk4OUUxQTlCRjQ0QzVEQzMyOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVp8J1Cov2Qe+wu9X20xRjBCt6 2JhwNcXflvI+gKMsZ1CbGSrf+2vwvqmovCeYnB8FvCuQ4Cq002cxaKZXq/oitClH kgL4rSlgX9c8UMsifaS8tJ1BIJTRLii6URlOYcgQZJ5hk3V99NcrJy6dSeuz8o3v 0W4JxBctonwh1gj+akTIEpBUXdaDssCN8OV1jNb4p95tFbuXv00R6Gp3Zx/VjW6J rHNhrOW2irRfLtrbv3t3kyQWR5XK4A89++mN6dkLRcfnhSrcDqmLhXg28ZTEwJKq f7P+dHAmCI4rVMF9pvz+sjuBorcTcZbh6VZfFmlIK40LcRYAAkGX841EIi0BAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUOpgZInuq7XlTy5mJ4am/RMXcMpEwHwYDVR0j BBgwFoAUPWT9kA4uZMsVnQBnFnhTqvyKfpcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTUxOWFlYi01YzU2LTRjYjMtOTRhMC0wZjQwMGVhNmEzNzUvMC8zRDY0RkQ5MDBF MkU2NENCMTU5RDAwNjcxNjc4NTNBQUZDOEE3RTk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFGQzhB N0U5Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhNTE5YWViLTVjNTYtNGNiMy05 NGEwLTBmNDAwZWE2YTM3NS8wLzMyMzQzMDM0M2E2NjY1NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODM4MzYzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQE/sAwDQYJKoZI hvcNAQELBQADggEBAEQWVNfH4OxwAT4UwluTnr/cwKIkpS0ZCTPoCQtTSirRT7nL ohxabGUE/b7GLfUJ2r/tvyNx4z9lUN+GKPvkaH70/CRTej0CdPHdAxmXnbzrrqSG 7sZF0ylxpFmJD8zG1s/2Vkk8rCKZ057n3E883qjywBrNLL5t0ZoOF8j14ygxK5EL Bfjmwh/DcNLt4c6/7B8gOyfIIioEYfe5xcmP1BIy5Sjn7bWeCQ/LGZ43hWDC+I5Z J7Ce1oxL2BtzOyk0ppnnP5NNrP6tLXproOrpO3a0kLBb/aZp9ryjTpg9aS86yfCG YnDcAMCo6WUf17957m+JU3T+yvtbrtqFNltx/+w= -----END CERTIFICATE-----Generated at Fri May 3 04:42:12 2024 by rpki-client on console-fra.rpki-client.org