$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030343a3a2f34372d3437203d3e203535383138.roa File: 323430343a633030303a343030343a3a2f34372d3437203d3e203535383138.roa (raw, json) Hash identifier: emiKxXAk8uht6TZofWae+euSYPevG1QWUmnIEE+sbUo= Subject key identifier: CD:D7:10:9F:CE:A3:65:B6:37:F9:BB:AC:0E:EA:D0:E5:AF:BA:28:3E Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 0FC188AA408DCE0B25A393D9530D3A918310A7B1 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030343a3a2f34372d3437203d3e203535383138.roa Signing time: Sun 29 Oct 2023 15:00:00 +0000 ROA not before: Sun 29 Oct 2023 14:55:00 +0000 ROA not after: Sun 27 Oct 2024 15:00:00 +0000 asID: 55818 IP address blocks: 2404:c000:4004::/47 maxlen: 47 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:c1:88:aa:40:8d:ce:0b:25:a3:93:d9:53:0d:3a:91:83:10:a7:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Oct 29 14:55:00 2023 GMT Not After : Oct 27 15:00:00 2024 GMT Subject: CN=CDD7109FCEA365B637F9BBAC0EEAD0E5AFBA283E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:d8:f0:04:dd:fa:8d:c1:c1:f3:45:46:16:54: c3:6b:69:e8:ce:c5:1c:ca:50:6a:18:5b:f8:8f:f1: 4b:a8:2b:50:09:ef:13:6b:4e:3a:a3:ef:a2:ee:ef: 0e:fd:b0:39:43:b0:47:74:e8:71:fb:f9:ad:fe:b2: f3:0d:a4:d4:b6:72:99:0b:19:4b:0e:a9:fb:18:37: ad:c4:14:ec:e5:d7:eb:ba:c2:27:6c:11:05:db:d1: 2d:57:43:0f:48:00:08:98:ca:04:36:f0:33:5c:54: d5:5e:9f:b0:fa:d6:8a:91:b9:8d:2f:ba:f5:af:5a: 73:c7:6f:52:68:2a:91:1f:1c:9c:58:05:7b:9c:42: bb:cc:7e:8f:4e:d4:2f:9f:30:05:8c:e4:fd:44:9c: 10:9d:81:41:76:cb:8a:71:d2:0f:c1:f2:e3:c5:ed: ec:b2:81:a9:d1:6d:40:f3:34:ac:71:8f:be:25:86: 7d:e3:df:0a:69:e0:e1:37:3f:67:5b:e1:85:1b:53: 45:91:36:a7:9c:e9:75:79:ae:67:d2:44:e9:d9:e4: ff:fa:38:86:8b:65:49:8a:2a:b2:58:60:b3:78:de: 31:85:df:2e:46:c9:5a:8b:15:f4:3e:39:e4:8b:c2: 8e:e0:5e:06:3c:6d:d3:27:88:30:80:9b:d2:c0:26: 63:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:D7:10:9F:CE:A3:65:B6:37:F9:BB:AC:0E:EA:D0:E5:AF:BA:28:3E X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030343a3a2f34372d3437203d3e203535383138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000:4004::/47 Signature Algorithm: sha256WithRSAEncryption 3a:e1:6a:63:ce:8a:b5:63:c5:c6:90:d9:51:12:2b:55:69:ff: 70:f3:79:fd:ec:d8:79:d2:a5:c2:b9:b8:82:44:1c:fb:b7:1e: bc:cc:5d:d2:87:1a:72:34:98:8e:62:26:29:15:c9:b7:bc:23: bb:3b:0f:cb:d5:1e:f0:5c:14:fe:c2:66:a4:07:e8:0c:09:1b: 75:2f:e8:2c:88:b3:eb:9c:05:2f:09:a4:71:2d:d9:69:12:cb: c3:ec:8f:46:3d:08:84:ec:c7:32:f1:1f:52:e3:a7:15:ea:e5: c1:4a:d7:4a:e4:46:3f:bf:92:36:51:c8:57:a3:85:23:af:f2: 3b:00:7a:bb:84:20:c1:64:68:c1:d6:6d:aa:44:7d:0e:ef:e8: da:f6:b2:05:15:6a:ec:c5:0c:84:84:2f:59:18:66:dc:b0:96: b0:0f:bb:c6:40:75:e8:f4:52:ac:dc:6f:b8:a2:bd:b0:fe:ef: 13:23:72:6e:d1:ba:ea:3c:da:47:d3:88:6c:f2:b9:17:a4:07: fb:23:28:21:bd:79:eb:b1:cd:46:17:8d:d4:ec:53:54:04:f4: 7e:52:7d:8c:ab:20:1a:65:37:1b:09:9b:80:10:22:3a:51:3b: eb:a1:c2:fa:0f:f6:1f:24:67:92:56:ce:04:1b:ea:46:c9:56: 1b:de:5a:1e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUD8GIqkCNzgslo5PZUw06kYMQp7EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yMzEwMjkxNDU1MDBaFw0yNDEwMjcxNTAwMDBaMDMxMTAvBgNV BAMTKENERDcxMDlGQ0VBMzY1QjYzN0Y5QkJBQzBFRUFEMEU1QUZCQTI4M0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCf2PAE3fqNwcHzRUYWVMNraejO xRzKUGoYW/iP8UuoK1AJ7xNrTjqj76Lu7w79sDlDsEd06HH7+a3+svMNpNS2cpkL GUsOqfsYN63EFOzl1+u6widsEQXb0S1XQw9IAAiYygQ28DNcVNVen7D61oqRuY0v uvWvWnPHb1JoKpEfHJxYBXucQrvMfo9O1C+fMAWM5P1EnBCdgUF2y4px0g/B8uPF 7eyyganRbUDzNKxxj74lhn3j3wpp4OE3P2db4YUbU0WRNqec6XV5rmfSROnZ5P/6 OIaLZUmKKrJYYLN43jGF3y5GyVqLFfQ+OeSLwo7gXgY8bdMniDCAm9LAJmNzAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUzdcQn86jZbY3+busDurQ5a+6KD4wHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhMzQzMDMwMzQz YTNhMmYzNDM3MmQzNDM3MjAzZDNlMjAzNTM1MzgzMTM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcBJATA AEAEMA0GCSqGSIb3DQEBCwUAA4IBAQA64Wpjzoq1Y8XGkNlREitVaf9w83n97Nh5 0qXCubiCRBz7tx68zF3ShxpyNJiOYiYpFcm3vCO7Ow/L1R7wXBT+wmakB+gMCRt1 L+gsiLPrnAUvCaRxLdlpEsvD7I9GPQiE7Mcy8R9S46cV6uXBStdK5EY/v5I2UchX o4Ujr/I7AHq7hCDBZGjB1m2qRH0O7+ja9rIFFWrsxQyEhC9ZGGbcsJawD7vGQHXo 9FKs3G+4or2w/u8TI3Ju0brqPNpH04hs8rkXpAf7IyghvXnrsc1GF43U7FNUBPR+ Un2MqyAaZTcbCZuAECI6UTvrocL6D/YfJGeSVs4EG+pGyVYb3loe -----END CERTIFICATE-----Generated at Sun Jun 2 16:36:12 2024 by rpki-client on console-fra.rpki-client.org