$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/323430313a353430303a3a2f33322d3438203d3e2034343334.roa File: 323430313a353430303a3a2f33322d3438203d3e2034343334.roa (raw, json) Hash identifier: 4wld4QHbfL+1pxjiVHQU7xQ0+jb5/etrHCdU/4Fdx7M= Subject key identifier: 0F:D9:3A:8A:7E:A6:B8:6A:8C:6D:53:B0:D2:34:C3:E2:0C:6A:87:07 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 5E13AAA85789C9F96A537035E7AA86CED30741B9 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/323430313a353430303a3a2f33322d3438203d3e2034343334.roa Signing time: Wed 18 Oct 2023 08:00:01 +0000 ROA not before: Wed 18 Oct 2023 07:55:01 +0000 ROA not after: Wed 16 Oct 2024 08:00:01 +0000 asID: 4434 IP address blocks: 2401:5400::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:13:aa:a8:57:89:c9:f9:6a:53:70:35:e7:aa:86:ce:d3:07:41:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Oct 18 07:55:01 2023 GMT Not After : Oct 16 08:00:01 2024 GMT Subject: CN=0FD93A8A7EA6B86A8C6D53B0D234C3E20C6A8707 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:8c:4e:44:fe:f7:ab:34:ef:39:2b:47:be:7a: 34:5f:2e:99:de:88:dc:fd:4f:63:a3:7c:7e:eb:40: 4e:24:0a:8c:ef:bd:28:d6:29:d6:16:eb:6e:46:cd: 58:9e:52:b8:37:00:46:e2:9b:2a:24:03:87:6e:89: 5b:79:42:76:63:e5:1e:85:e4:b2:15:c4:4b:80:fa: a1:f7:0c:d2:39:ab:57:c4:fc:cd:6a:b0:a4:c4:c2: 39:21:62:72:75:e6:af:09:d9:a9:0c:2b:88:a5:0c: 98:6e:74:86:c6:7b:13:0c:26:25:0b:16:26:e1:ad: 3c:cf:1c:91:29:f8:d7:23:c4:e2:16:0a:f6:2b:7c: fd:9c:02:cd:9a:91:a4:60:8a:35:b5:0d:d0:60:8d: bb:69:4c:d8:4b:d7:70:e3:40:3f:7c:da:6e:84:70: 5e:51:32:2f:e0:50:88:5e:54:23:39:b5:02:92:97: c7:4d:14:91:9c:4f:67:ed:a8:3a:19:38:0f:93:5d: bf:6d:5a:d9:72:d9:f5:d6:01:bf:d8:c1:94:bd:12: e1:7f:f6:61:c0:ca:60:18:94:f4:1f:38:39:28:c6: cf:ad:14:72:9a:7f:9f:03:8b:42:8f:31:90:21:0f: be:e3:ce:85:b9:c0:1c:d8:43:a1:71:04:38:0b:99: 9b:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:D9:3A:8A:7E:A6:B8:6A:8C:6D:53:B0:D2:34:C3:E2:0C:6A:87:07 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/323430313a353430303a3a2f33322d3438203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:5400::/32 Signature Algorithm: sha256WithRSAEncryption 7b:c3:99:ca:3c:6c:80:ab:4e:47:2a:bd:75:d4:08:89:40:eb: 33:0c:6b:ab:fb:cb:eb:a8:e9:01:ef:49:1c:03:78:3d:a5:1b: c6:e2:bd:53:d6:7d:e2:f4:e1:24:d2:5d:a1:e2:f7:fb:f0:cb: b1:91:67:4d:5c:34:e3:5c:b7:5a:37:b0:ec:e6:88:2c:67:ff: e9:df:f0:bb:fa:bf:19:db:32:10:a2:1c:ee:d4:79:d4:53:0c: 25:4c:2c:a5:39:c4:e9:6b:1d:db:99:e3:1f:bf:64:5b:f2:58: d5:57:53:a0:d6:07:d1:19:2d:e9:68:15:96:19:93:fc:e5:93: a0:7b:6a:b6:30:a7:07:a6:bf:7c:0b:76:54:92:67:06:a0:3e: 66:c0:b6:bc:81:30:ab:2e:48:ad:8a:cf:b8:9f:c0:0d:ae:4f: 1d:4c:d2:2f:16:8a:5e:1f:28:8f:e6:95:de:03:9a:af:89:a3: f7:e0:7c:ca:81:2c:79:c4:a8:70:9a:49:d0:a0:16:c0:25:e8: b5:77:41:32:7a:41:0c:f6:d3:e0:d9:a6:09:bb:19:ba:2e:aa: 4a:60:a5:8c:67:05:b4:17:2f:03:3e:a4:a4:11:af:bf:39:12: 38:d5:f8:79:36:a9:15:7d:a9:ad:b9:42:40:aa:fc:4c:65:03: 40:54:a4:39 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUXhOqqFeJyflqU3A156qGztMHQbkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yMzEwMTgwNzU1MDFaFw0yNDEwMTYwODAwMDFaMDMxMTAvBgNV BAMTKDBGRDkzQThBN0VBNkI4NkE4QzZENTNCMEQyMzRDM0UyMEM2QTg3MDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCljE5E/verNO85K0e+ejRfLpne iNz9T2OjfH7rQE4kCozvvSjWKdYW625GzVieUrg3AEbimyokA4duiVt5QnZj5R6F 5LIVxEuA+qH3DNI5q1fE/M1qsKTEwjkhYnJ15q8J2akMK4ilDJhudIbGexMMJiUL FibhrTzPHJEp+NcjxOIWCvYrfP2cAs2akaRgijW1DdBgjbtpTNhL13DjQD982m6E cF5RMi/gUIheVCM5tQKSl8dNFJGcT2ftqDoZOA+TXb9tWtly2fXWAb/YwZS9EuF/ 9mHAymAYlPQfODkoxs+tFHKaf58Di0KPMZAhD77jzoW5wBzYQ6FxBDgLmZvpAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUD9k6in6muGqMbVOw0jTD4gxqhwcwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWMwYzE0YTktM2E3Ny00OWUyLTkx OTQtNDhkMDkxMzQ1OGIyLzAvMzIzNDMwMzEzYTM1MzQzMDMwM2EzYTJmMzMzMjJk MzQzODIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAVQAMA0GCSqGSIb3DQEB CwUAA4IBAQB7w5nKPGyAq05HKr111AiJQOszDGur+8vrqOkB70kcA3g9pRvG4r1T 1n3i9OEk0l2h4vf78MuxkWdNXDTjXLdaN7Ds5ogsZ//p3/C7+r8Z2zIQohzu1HnU UwwlTCylOcTpax3bmeMfv2Rb8ljVV1Og1gfRGS3paBWWGZP85ZOge2q2MKcHpr98 C3ZUkmcGoD5mwLa8gTCrLkitis+4n8ANrk8dTNIvFopeHyiP5pXeA5qviaP34HzK gSx5xKhwmknQoBbAJei1d0EyekEM9tPg2aYJuxm6LqpKYKWMZwW0Fy8DPqSkEa+/ ORI41fh5NqkVfamtuUJAqvxMZQNAVKQ5 -----END CERTIFICATE-----Generated at Sat Jun 22 13:58:56 2024 by rpki-client on console-fra.rpki-client.org