$ rpki-client -vvf repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/323430353a343634303a3a2f33322d3332203d3e20313339343034.roa File: 323430353a343634303a3a2f33322d3332203d3e20313339343034.roa (raw, json) Hash identifier: JSCoBXPkLTBaLAhuKYXyG3fIZ0QFEUIr+MDSxSrcqlg= Subject key identifier: A3:5E:97:4E:DA:14:02:9F:2B:92:3B:1A:60:B8:62:40:BB:36:EE:15 Certificate issuer: /CN=03F45A130990D1072FE172E1EF64AAFAEC347834 Certificate serial: 3A8CDF3D2460A117FC09624F9B778C0340F73DB9 Authority key identifier: 03:F4:5A:13:09:90:D1:07:2F:E1:72:E1:EF:64:AA:FA:EC:34:78:34 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/323430353a343634303a3a2f33322d3332203d3e20313339343034.roa Signing time: Mon 23 Oct 2023 09:00:00 +0000 ROA not before: Mon 23 Oct 2023 08:55:00 +0000 ROA not after: Mon 21 Oct 2024 09:00:00 +0000 asID: 139404 IP address blocks: 2405:4640::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/03F45A130990D1072FE172E1EF64AAFAEC347834.crl rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/03F45A130990D1072FE172E1EF64AAFAEC347834.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:8c:df:3d:24:60:a1:17:fc:09:62:4f:9b:77:8c:03:40:f7:3d:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03F45A130990D1072FE172E1EF64AAFAEC347834 Validity Not Before: Oct 23 08:55:00 2023 GMT Not After : Oct 21 09:00:00 2024 GMT Subject: CN=A35E974EDA14029F2B923B1A60B86240BB36EE15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:0f:65:02:c2:d0:03:63:eb:6d:5c:81:04:f8: 72:6a:eb:f7:2c:6f:db:a4:6b:11:99:44:f8:b9:39: bc:23:f3:af:8e:ce:49:1f:48:36:3d:31:28:ad:8e: 1e:24:c4:63:c0:fa:a6:8d:fe:ee:96:15:ef:8f:04: f3:b1:39:6b:45:44:36:11:ec:19:b7:ad:00:79:e2: ae:2c:6a:ad:df:1a:f7:41:c6:00:2a:38:43:46:cf: b0:03:6a:0f:c5:0d:a3:69:ae:9c:cd:6b:17:05:5a: a0:35:b6:ae:3e:b8:54:88:1a:78:dd:97:23:b2:e0: 82:94:68:57:14:c8:ed:09:5c:fd:95:a9:62:49:3b: 87:99:74:1d:96:56:f1:96:42:dc:b3:25:24:a7:c0: 15:57:63:ec:21:ae:2f:da:5c:fb:40:90:b1:57:53: d3:fd:c3:dd:ca:aa:39:48:5b:f7:f1:c3:5b:61:50: 2f:88:b3:76:44:30:8b:89:40:02:5f:d0:a1:09:8a: 15:99:51:b6:5c:4a:b0:e3:e2:e3:01:5e:52:b6:a1: b4:e6:58:25:66:e9:9e:e8:3e:2e:45:04:66:b5:c0: ee:f1:2d:90:84:21:83:bf:b4:f8:d8:a9:90:62:98: 9b:44:8f:d8:b5:23:ea:f3:0d:c8:2d:a8:dd:55:2a: 74:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:5E:97:4E:DA:14:02:9F:2B:92:3B:1A:60:B8:62:40:BB:36:EE:15 X509v3 Authority Key Identifier: keyid:03:F4:5A:13:09:90:D1:07:2F:E1:72:E1:EF:64:AA:FA:EC:34:78:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/03F45A130990D1072FE172E1EF64AAFAEC347834.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/323430353a343634303a3a2f33322d3332203d3e20313339343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:4640::/32 Signature Algorithm: sha256WithRSAEncryption 3c:0d:4d:73:90:d7:06:3e:3b:1a:8b:fc:9c:91:00:8b:72:f8: 0d:f2:c3:e8:33:f8:2f:cd:2a:8b:15:1c:f6:e4:8d:cc:08:cd: 0e:87:2a:d7:28:9a:ee:70:bc:10:09:39:eb:5b:64:fc:58:9e: 25:f5:e7:62:a7:d5:d3:33:41:63:76:41:9d:a6:36:32:23:88: 2a:54:20:5f:50:1e:11:fc:83:d7:98:2e:80:df:b9:a8:68:bf: 86:75:f8:d8:4c:20:d5:19:66:26:18:55:71:d8:3f:2c:92:d0: ff:2d:4b:5e:f0:b1:bc:cd:c6:4c:56:c7:e1:50:bc:48:f7:41: a3:b3:88:e6:10:82:ab:d2:11:4f:03:d9:db:ea:7f:df:a9:10: 59:d6:6f:9e:24:85:ed:a0:74:77:ea:b9:f4:c9:01:79:1a:b8: 7c:4f:e1:bf:5c:7a:9c:7c:f6:79:6d:2b:db:9a:89:a0:e8:12: 7c:fb:7a:2c:ae:21:b9:b3:ae:a1:95:ae:6f:3c:bd:ed:96:a8: 59:90:f1:28:cb:a7:83:2f:ef:55:af:dd:f8:82:b4:01:24:00: 46:ea:49:5d:8f:cc:87:71:ef:37:bf:57:61:c9:22:d6:6a:f5: 0c:60:59:db:0b:f8:1e:58:43:48:40:4b:dc:73:c8:c5:b4:90: e7:0b:86:72 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUOozfPSRgoRf8CWJPm3eMA0D3PbkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDNGNDVBMTMwOTkwRDEwNzJGRTE3MkUxRUY2NEFBRkFF QzM0NzgzNDAeFw0yMzEwMjMwODU1MDBaFw0yNDEwMjEwOTAwMDBaMDMxMTAvBgNV BAMTKEEzNUU5NzRFREExNDAyOUYyQjkyM0IxQTYwQjg2MjQwQkIzNkVFMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSD2UCwtADY+ttXIEE+HJq6/cs b9ukaxGZRPi5Obwj86+OzkkfSDY9MSitjh4kxGPA+qaN/u6WFe+PBPOxOWtFRDYR 7Bm3rQB54q4saq3fGvdBxgAqOENGz7ADag/FDaNprpzNaxcFWqA1tq4+uFSIGnjd lyOy4IKUaFcUyO0JXP2VqWJJO4eZdB2WVvGWQtyzJSSnwBVXY+whri/aXPtAkLFX U9P9w93KqjlIW/fxw1thUC+Is3ZEMIuJQAJf0KEJihWZUbZcSrDj4uMBXlK2obTm WCVm6Z7oPi5FBGa1wO7xLZCEIYO/tPjYqZBimJtEj9i1I+rzDcgtqN1VKnTTAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUo16XTtoUAp8rkjsaYLhiQLs27hUwHwYDVR0j BBgwFoAUA/RaEwmQ0Qcv4XLh72Sq+uw0eDQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OTk4ZDZlZS02ZmQ3LTRlMmQtYWU0MS02OTM5ZmRiMTUzZWUvMC8wM0Y0NUExMzA5 OTBEMTA3MkZFMTcyRTFFRjY0QUFGQUVDMzQ3ODM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDNGNDVBMTMwOTkwRDEwNzJGRTE3MkUxRUY2NEFBRkFFQzM0 NzgzNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc5OThkNmVlLTZmZDctNGUyZC1h ZTQxLTY5MzlmZGIxNTNlZS8wLzMyMzQzMDM1M2EzNDM2MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTM0MzAzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFRkAwDQYJKoZI hvcNAQELBQADggEBADwNTXOQ1wY+OxqL/JyRAIty+A3yw+gz+C/NKosVHPbkjcwI zQ6HKtcomu5wvBAJOetbZPxYniX152Kn1dMzQWN2QZ2mNjIjiCpUIF9QHhH8g9eY LoDfuahov4Z1+NhMINUZZiYYVXHYPyyS0P8tS17wsbzNxkxWx+FQvEj3QaOziOYQ gqvSEU8D2dvqf9+pEFnWb54khe2gdHfqufTJAXkauHxP4b9cepx89nltK9uaiaDo Enz7eiyuIbmzrqGVrm88ve2WqFmQ8SjLp4Mv71Wv3fiCtAEkAEbqSV2PzIdx7ze/ V2HJItZq9QxgWdsL+B5YQ0hAS9xzyMW0kOcLhnI= -----END CERTIFICATE-----Generated at Sat Jun 1 15:52:56 2024 by rpki-client on console-ams.rpki-client.org