$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a323a3a2f34382d3438203d3e203435313437.roa File: 323430343a633030303a323a3a2f34382d3438203d3e203435313437.roa (raw, json) Hash identifier: PYhkD2E8BZuWVtBVqs5i3Y1xBYBjCKVwYxeEEIbTyUU= Subject key identifier: 4C:0D:23:C8:A7:ED:6A:49:93:74:38:22:1E:7F:0D:DE:9C:92:DA:6E Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 71F0068316F87C31A1FF7FC434702895D743214A Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a323a3a2f34382d3438203d3e203435313437.roa Signing time: Sun 29 Oct 2023 14:00:00 +0000 ROA not before: Sun 29 Oct 2023 13:55:00 +0000 ROA not after: Sun 27 Oct 2024 14:00:00 +0000 asID: 45147 IP address blocks: 2404:c000:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:f0:06:83:16:f8:7c:31:a1:ff:7f:c4:34:70:28:95:d7:43:21:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Oct 29 13:55:00 2023 GMT Not After : Oct 27 14:00:00 2024 GMT Subject: CN=4C0D23C8A7ED6A49937438221E7F0DDE9C92DA6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:4c:4d:d0:21:a0:00:04:8b:8a:4d:a6:6b:d1: 62:53:67:fd:40:c3:84:92:1d:09:d6:72:f1:29:e1: 06:36:0e:0f:44:dc:5d:ad:42:e1:f5:87:48:37:81: 33:e2:d4:c5:c0:b4:ea:ef:04:6f:d1:5a:e2:39:63: c3:c9:26:f4:92:7a:dd:cb:af:dd:2b:d3:7e:cd:d9: b9:aa:a7:27:e6:8f:56:8a:37:9e:7f:e8:73:65:0a: a4:ed:ac:b0:00:6e:71:86:76:73:38:ce:bf:33:bd: 19:79:58:41:57:86:ab:41:28:c4:36:1c:e1:13:d8: 81:5c:00:a4:26:b3:f6:1b:5f:4c:0f:fd:83:6c:5a: 0c:51:ef:07:74:64:70:ea:bf:61:cc:48:24:4e:b4: e2:af:e7:71:7c:52:8b:b0:28:c1:94:c4:f4:ca:a4: 07:3c:e0:9a:a7:80:e8:c7:b8:78:84:d5:65:28:e7: 78:77:dd:5a:c7:96:2f:35:a7:97:10:04:df:dc:01: 8a:87:5f:df:39:20:ae:4a:38:6e:74:7c:2d:5e:c3: e3:e6:6f:41:26:65:bc:aa:5e:00:6b:9e:0d:af:a4: ef:ef:9f:b5:78:38:29:53:39:a4:93:d4:ac:42:96: 34:d6:b2:87:4f:bf:17:6c:6c:70:33:7d:67:09:66: e4:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:0D:23:C8:A7:ED:6A:49:93:74:38:22:1E:7F:0D:DE:9C:92:DA:6E X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a323a3a2f34382d3438203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000:2::/48 Signature Algorithm: sha256WithRSAEncryption 27:97:c7:a6:4a:3b:d4:6e:6d:e4:a3:bf:14:8c:2b:d3:27:86: c8:cc:cf:0e:c2:ee:5d:1f:31:f9:57:6d:dc:e6:26:34:8d:e3: 12:07:83:d8:2b:7b:58:de:16:1b:38:a0:85:f6:9d:15:20:84: f5:61:bf:f8:76:63:c8:fe:44:92:04:19:cb:53:30:9d:f4:21: 0a:ae:d7:0b:ab:ba:c8:9b:00:1f:76:eb:9e:d8:56:d8:50:dd: a9:1a:6a:fd:49:00:07:3a:49:7f:fb:4a:51:0a:7a:4e:1d:bb: b0:86:be:77:ae:9c:3f:4f:2b:af:44:a6:26:4c:dd:ba:6d:3d: 00:7c:e0:1e:b8:68:61:84:e7:2d:40:d6:2b:aa:b7:6b:b4:8e: 07:43:ce:4b:79:6f:82:b1:28:c8:43:cf:84:ca:1d:60:45:80: 04:c2:24:e9:cd:b7:5a:bf:44:ec:ea:cd:dc:65:a9:fe:ff:74: 03:b1:c1:87:1e:82:c0:6f:f2:68:93:cf:ad:62:2d:0b:b0:b4: 7a:8c:a4:96:37:7f:65:62:44:b5:61:7f:29:db:6b:f9:f1:d1: 84:97:d0:80:05:54:d1:8c:c5:13:25:59:1c:d3:44:5d:3d:ca: 91:51:6f:ce:46:eb:5c:af:a6:3e:95:ca:26:af:ee:d8:31:08: 6c:4d:e5:9a -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUcfAGgxb4fDGh/3/ENHAolddDIUowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yMzEwMjkxMzU1MDBaFw0yNDEwMjcxNDAwMDBaMDMxMTAvBgNV BAMTKDRDMEQyM0M4QTdFRDZBNDk5Mzc0MzgyMjFFN0YwRERFOUM5MkRBNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDATE3QIaAABIuKTaZr0WJTZ/1A w4SSHQnWcvEp4QY2Dg9E3F2tQuH1h0g3gTPi1MXAtOrvBG/RWuI5Y8PJJvSSet3L r90r037N2bmqpyfmj1aKN55/6HNlCqTtrLAAbnGGdnM4zr8zvRl5WEFXhqtBKMQ2 HOET2IFcAKQms/YbX0wP/YNsWgxR7wd0ZHDqv2HMSCROtOKv53F8UouwKMGUxPTK pAc84JqngOjHuHiE1WUo53h33VrHli81p5cQBN/cAYqHX985IK5KOG50fC1ew+Pm b0EmZbyqXgBrng2vpO/vn7V4OClTOaST1KxCljTWsodPvxdsbHAzfWcJZuThAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUTA0jyKftakmTdDgiHn8N3pyS2m4wHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJATAAAACMA0G CSqGSIb3DQEBCwUAA4IBAQAnl8emSjvUbm3ko78UjCvTJ4bIzM8Owu5dHzH5V23c 5iY0jeMSB4PYK3tY3hYbOKCF9p0VIIT1Yb/4dmPI/kSSBBnLUzCd9CEKrtcLq7rI mwAfduue2FbYUN2pGmr9SQAHOkl/+0pRCnpOHbuwhr53rpw/TyuvRKYmTN26bT0A fOAeuGhhhOctQNYrqrdrtI4HQ85LeW+CsSjIQ8+Eyh1gRYAEwiTpzbdav0Ts6s3c Zan+/3QDscGHHoLAb/Jok8+tYi0LsLR6jKSWN39lYkS1YX8p22v58dGEl9CABVTR jMUTJVkc00RdPcqRUW/ORutcr6Y+lcomr+7YMQhsTeWa -----END CERTIFICATE-----Generated at Fri Jun 21 15:50:40 2024 by rpki-client on console-ams.rpki-client.org