$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030303a3a2f34372d3437203d3e203435313437.roa File: 323430343a633030303a343030303a3a2f34372d3437203d3e203435313437.roa (raw, json) Hash identifier: GBVcvmjp9HlBOdBBZop0xWIwQJ7GvC3uk3EU5REUL2A= Subject key identifier: CB:2A:F2:32:F0:00:BB:D4:86:55:21:4D:D3:CC:01:07:F8:94:77:EF Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 4E8AD16B40A4F60FAC6B8C00FF3554A0882298DF Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030303a3a2f34372d3437203d3e203435313437.roa Signing time: Sun 29 Oct 2023 15:00:01 +0000 ROA not before: Sun 29 Oct 2023 14:55:01 +0000 ROA not after: Sun 27 Oct 2024 15:00:01 +0000 asID: 45147 IP address blocks: 2404:c000:4000::/47 maxlen: 47 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:8a:d1:6b:40:a4:f6:0f:ac:6b:8c:00:ff:35:54:a0:88:22:98:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Oct 29 14:55:01 2023 GMT Not After : Oct 27 15:00:01 2024 GMT Subject: CN=CB2AF232F000BBD48655214DD3CC0107F89477EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:49:49:13:ac:9e:18:0f:81:f0:96:fe:18:15: 5f:dd:8e:17:af:30:96:82:62:8e:d4:d7:25:33:f7: 65:14:ad:00:53:32:6e:cb:4b:41:09:24:14:a2:04: a0:cd:0f:59:9b:c6:06:15:0b:d5:f2:0d:0a:19:71: 53:91:95:e9:0c:d7:6e:ac:6b:f4:16:91:a0:bc:ac: 9c:de:30:b5:47:ba:91:3d:92:57:28:cb:7c:50:9d: 31:16:21:ca:67:3a:e1:47:d5:72:47:81:9f:a0:0d: 65:c0:34:cf:de:bf:a3:0b:e2:ef:8e:2c:cc:69:51: a9:fd:13:06:91:1a:08:16:41:a7:8a:08:a3:75:e3: 8b:a7:54:21:62:8f:7d:a3:04:18:c0:d8:f5:19:32: f9:25:80:44:fa:4e:bb:0a:a7:59:3d:30:56:17:53: 81:ae:f7:5f:d4:d3:db:a2:87:9f:4b:a8:55:cc:5d: 8c:d7:67:94:97:13:d8:18:0a:c4:f5:17:93:70:16: cd:71:b6:a1:50:c9:48:db:e8:a9:e1:d9:a7:39:04: 1f:63:3b:e0:9e:48:2a:eb:5e:d5:08:98:a3:8d:d9: d2:93:86:85:e6:0f:17:b1:dc:37:13:9e:06:f5:c3: 00:9a:62:76:d3:7b:f1:c4:25:48:e3:7c:06:48:cc: 62:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:2A:F2:32:F0:00:BB:D4:86:55:21:4D:D3:CC:01:07:F8:94:77:EF X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030303a3a2f34372d3437203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000:4000::/47 Signature Algorithm: sha256WithRSAEncryption 1c:c9:a2:fc:2e:f4:ab:18:94:bb:60:61:1b:b0:ce:25:ef:74: ac:9b:a9:7c:7f:5f:7a:7c:fc:cc:7e:98:f7:2c:b1:25:aa:a5: b9:49:16:82:1f:49:ff:bd:89:2f:f3:ca:aa:77:f2:e7:5e:dc: 3c:54:4f:b3:b5:b1:eb:73:32:ec:8a:15:9f:6c:d9:aa:89:fc: 1a:05:56:44:00:ff:72:82:d8:38:9e:20:69:3d:a0:70:70:a3: cf:3b:1b:b6:87:3d:22:1f:71:41:20:1f:1f:7b:84:3e:4f:7a: 8d:12:e5:0c:d1:38:9e:a3:26:56:40:56:23:4f:8a:64:ad:13: a9:61:17:81:7e:fe:5b:fd:07:bf:95:26:44:84:4e:2f:de:47: 2b:45:e0:9f:82:8d:41:f1:d2:3d:fa:2e:3b:25:24:a7:98:b8: c0:ef:d0:41:79:69:11:e3:c3:f1:5e:c5:41:ab:e4:08:7e:4e: 1f:7b:f5:83:bf:4a:ab:b9:30:97:8e:dc:8c:46:2a:33:c3:f5: 6e:80:6f:2f:e2:cf:6b:bd:8f:42:02:24:59:88:50:28:50:25: dc:a9:8e:b2:e1:06:57:34:1f:a4:c1:18:35:67:52:92:ea:25: fa:5c:b6:d8:71:54:b0:bf:46:72:e3:ec:70:23:25:94:b3:64: 6d:55:65:eb -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUTorRa0Ck9g+sa4wA/zVUoIgimN8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yMzEwMjkxNDU1MDFaFw0yNDEwMjcxNTAwMDFaMDMxMTAvBgNV BAMTKENCMkFGMjMyRjAwMEJCRDQ4NjU1MjE0REQzQ0MwMTA3Rjg5NDc3RUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDSUkTrJ4YD4Hwlv4YFV/djhev MJaCYo7U1yUz92UUrQBTMm7LS0EJJBSiBKDND1mbxgYVC9XyDQoZcVORlekM126s a/QWkaC8rJzeMLVHupE9klcoy3xQnTEWIcpnOuFH1XJHgZ+gDWXANM/ev6ML4u+O LMxpUan9EwaRGggWQaeKCKN144unVCFij32jBBjA2PUZMvklgET6TrsKp1k9MFYX U4Gu91/U09uih59LqFXMXYzXZ5SXE9gYCsT1F5NwFs1xtqFQyUjb6Knh2ac5BB9j O+CeSCrrXtUImKON2dKThoXmDxex3DcTngb1wwCaYnbTe/HEJUjjfAZIzGJjAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUyyryMvAAu9SGVSFN08wBB/iUd+8wHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhMzQzMDMwMzAz YTNhMmYzNDM3MmQzNDM3MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcBJATA AEAAMA0GCSqGSIb3DQEBCwUAA4IBAQAcyaL8LvSrGJS7YGEbsM4l73Ssm6l8f196 fPzMfpj3LLElqqW5SRaCH0n/vYkv88qqd/LnXtw8VE+ztbHrczLsihWfbNmqifwa BVZEAP9ygtg4niBpPaBwcKPPOxu2hz0iH3FBIB8fe4Q+T3qNEuUM0TieoyZWQFYj T4pkrROpYReBfv5b/Qe/lSZEhE4v3kcrReCfgo1B8dI9+i47JSSnmLjA79BBeWkR 48PxXsVBq+QIfk4fe/WDv0qruTCXjtyMRiozw/VugG8v4s9rvY9CAiRZiFAoUCXc qY6y4QZXNB+kwRg1Z1KS6iX6XLbYcVSwv0Zy4+xwIyWUs2RtVWXr -----END CERTIFICATE-----Generated at Fri Jun 21 15:50:40 2024 by rpki-client on console-ams.rpki-client.org