$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a3a2f33332d3333203d3e203435313437.roa File: 323430343a633030303a3a2f33332d3333203d3e203435313437.roa (raw, json) Hash identifier: V2A6V9HVM9G4RFU4UdXVN0sSUY9zwZ7UkruT90gHenw= Subject key identifier: 38:6F:42:C8:F6:B8:6A:D9:28:92:FA:94:3D:E5:55:85:9E:95:4F:18 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 1C747CB1A6976187C476E0A7E9F1E60E24A6EDBA Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a3a2f33332d3333203d3e203435313437.roa Signing time: Sun 29 Oct 2023 14:00:00 +0000 ROA not before: Sun 29 Oct 2023 13:55:00 +0000 ROA not after: Sun 27 Oct 2024 14:00:00 +0000 asID: 45147 IP address blocks: 2404:c000::/33 maxlen: 33 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:74:7c:b1:a6:97:61:87:c4:76:e0:a7:e9:f1:e6:0e:24:a6:ed:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Oct 29 13:55:00 2023 GMT Not After : Oct 27 14:00:00 2024 GMT Subject: CN=386F42C8F6B86AD92892FA943DE555859E954F18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e2:8f:d0:55:1c:96:b6:eb:a2:6f:ae:6a:f5: 87:97:e7:6b:4f:c8:0d:35:f7:67:c5:8a:3a:89:8b: a2:6a:8e:34:1d:c4:56:c1:53:55:97:16:a5:aa:b3: 81:59:95:e3:30:e9:9d:3e:84:b7:fc:b1:2b:ae:a7: 82:0d:88:cd:34:ac:80:da:35:25:16:bc:6f:94:e2: 74:39:0a:9a:7c:e7:4a:80:be:c2:1e:8e:40:a5:87: 15:ce:84:b6:78:b3:eb:90:70:85:4d:8c:2e:c6:98: ec:24:ab:90:f7:95:10:82:da:27:83:b7:54:7c:71: dd:dc:4e:69:6a:d2:4e:46:cb:65:64:ec:f6:e7:46: 7d:4a:1b:0b:fe:63:7c:dd:19:da:9e:d4:5c:cf:3f: c3:57:83:d3:a4:76:cb:db:36:ca:3f:de:a9:72:52: df:b0:0b:da:8e:d6:e5:af:55:9d:76:a6:23:30:61: 64:f8:96:8a:04:3c:37:07:f7:da:f3:94:bf:ec:ba: b5:b7:91:64:71:39:bb:08:c9:22:03:49:66:9f:2f: 1a:26:cf:72:1f:07:26:89:1e:53:7f:73:e7:22:fa: 5f:f4:d9:93:e4:eb:2a:86:d7:f7:89:d2:47:5f:bf: 4e:85:b9:00:f4:fd:9a:8d:db:8e:79:08:d8:c6:0b: a9:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:6F:42:C8:F6:B8:6A:D9:28:92:FA:94:3D:E5:55:85:9E:95:4F:18 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a3a2f33332d3333203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000::/33 Signature Algorithm: sha256WithRSAEncryption 6d:17:ec:84:dc:6a:d9:b1:c5:58:b0:31:28:13:25:39:4a:dd: be:b7:07:1a:a9:ab:8a:2e:b4:f1:c1:e6:cc:b7:76:a6:76:5f: 67:87:69:a9:46:4e:53:7d:26:18:c6:a7:50:5c:4a:49:e4:56: a0:be:58:74:77:dc:83:82:2c:8e:56:10:90:42:a2:2f:7d:fa: 16:ff:3f:6f:60:3d:63:c5:51:be:62:a5:0c:8c:89:ec:97:45: d5:80:68:86:f7:8a:ce:ae:43:d5:14:f0:2a:a9:d6:4f:e6:f2: c1:2b:a3:12:22:dc:bf:a5:56:3c:f5:d8:3e:8c:11:1a:4a:3c: 7e:13:50:7c:8a:5e:c7:a5:ca:5c:1f:82:13:68:79:fe:5a:92: 8f:61:ba:d6:dd:bc:01:0b:f4:6e:ff:9d:6d:7c:a4:38:cb:19: fa:d7:42:b0:2c:f0:d7:68:1e:bb:6c:e2:72:e1:c3:8d:d9:7c: d0:38:52:88:21:f0:49:21:21:35:03:eb:3c:b1:fc:c5:4d:ef: 6a:6f:39:86:4b:6d:5a:db:6e:25:a1:35:f0:d7:b1:29:11:3d: f9:d1:de:9c:09:a0:b3:dd:bb:f7:c3:24:c8:c0:24:90:5c:2a: 14:bd:49:9d:4d:90:6c:32:5c:a6:42:c0:46:97:69:d0:b8:04: 0f:93:25:b6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHHR8saaXYYfEduCn6fHmDiSm7bowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yMzEwMjkxMzU1MDBaFw0yNDEwMjcxNDAwMDBaMDMxMTAvBgNV BAMTKDM4NkY0MkM4RjZCODZBRDkyODkyRkE5NDNERTU1NTg1OUU5NTRGMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp4o/QVRyWtuuib65q9YeX52tP yA0192fFijqJi6JqjjQdxFbBU1WXFqWqs4FZleMw6Z0+hLf8sSuup4INiM00rIDa NSUWvG+U4nQ5Cpp850qAvsIejkClhxXOhLZ4s+uQcIVNjC7GmOwkq5D3lRCC2ieD t1R8cd3cTmlq0k5Gy2Vk7PbnRn1KGwv+Y3zdGdqe1FzPP8NXg9OkdsvbNso/3qly Ut+wC9qO1uWvVZ12piMwYWT4looEPDcH99rzlL/surW3kWRxObsIySIDSWafLxom z3IfByaJHlN/c+ci+l/02ZPk6yqG1/eJ0kdfv06FuQD0/ZqN2455CNjGC6mrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUOG9CyPa4atkokvqUPeVVhZ6VTxgwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhM2EyZjMzMzMy ZDMzMzMyMDNkM2UyMDM0MzUzMTM0Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgckBMAAADANBgkqhkiG 9w0BAQsFAAOCAQEAbRfshNxq2bHFWLAxKBMlOUrdvrcHGqmrii608cHmzLd2pnZf Z4dpqUZOU30mGManUFxKSeRWoL5YdHfcg4IsjlYQkEKiL336Fv8/b2A9Y8VRvmKl DIyJ7JdF1YBohveKzq5D1RTwKqnWT+bywSujEiLcv6VWPPXYPowRGko8fhNQfIpe x6XKXB+CE2h5/lqSj2G61t28AQv0bv+dbXykOMsZ+tdCsCzw12geu2zicuHDjdl8 0DhSiCHwSSEhNQPrPLH8xU3vam85hkttWttuJaE18NexKRE9+dHenAmgs92798Mk yMAkkFwqFL1JnU2QbDJcpkLARpdp0LgED5Mltg== -----END CERTIFICATE-----Generated at Fri Jun 21 15:50:40 2024 by rpki-client on console-ams.rpki-client.org