$ rpki-client -vvf repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a3a2f33322d3438203d3e20313331373336.roa File: 323430343a326363303a3a2f33322d3438203d3e20313331373336.roa (raw, json) Hash identifier: yeQngz16N76K2cV75uzA4C8p99YvT2em+YJhKs7tfoQ= Subject key identifier: 54:34:12:DA:9F:FB:8C:8F:7B:89:A6:0A:5C:DD:AD:7A:E2:40:BD:DF Certificate issuer: /CN=DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A Certificate serial: 3126D74EE3C88CE6494CDBA7AB8C74173F13F50C Authority key identifier: DF:8E:F2:99:4C:B5:42:09:F2:C2:A3:9A:7B:CE:7D:A0:D9:C3:4E:4A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a3a2f33322d3438203d3e20313331373336.roa Signing time: Thu 13 Jul 2023 10:00:01 +0000 ROA not before: Thu 13 Jul 2023 09:55:01 +0000 ROA not after: Thu 11 Jul 2024 10:00:01 +0000 asID: 131736 IP address blocks: 2404:2cc0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.crl rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:26:d7:4e:e3:c8:8c:e6:49:4c:db:a7:ab:8c:74:17:3f:13:f5:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A Validity Not Before: Jul 13 09:55:01 2023 GMT Not After : Jul 11 10:00:01 2024 GMT Subject: CN=543412DA9FFB8C8F7B89A60A5CDDAD7AE240BDDF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d9:d6:a8:b9:23:6a:5c:59:1f:94:07:42:a1: 3f:8f:d3:c6:dc:22:6a:1b:4c:4b:74:95:ac:27:e6: 78:59:32:5c:f2:2b:e6:6d:2d:09:90:a4:d5:f0:7b: 89:c7:01:74:25:fe:0d:1b:6e:ad:0e:4c:f9:14:fd: 48:d2:3e:67:59:8a:d2:17:2a:45:01:b8:3b:43:fa: bd:e5:63:9d:49:ef:2c:07:9e:fd:59:e1:38:f0:34: c2:00:2e:a5:62:e2:c9:9f:aa:a4:56:d1:b8:52:4d: f2:4c:60:40:d5:3f:da:a1:9a:e6:de:d4:53:f9:3d: 94:f4:20:19:da:c6:09:1f:d9:1b:8e:5a:74:ec:30: 84:43:41:67:03:78:5f:a0:b8:06:1a:86:3b:74:b5: b6:21:82:29:b9:08:f5:f2:a1:37:f0:74:ce:f1:61: 2f:63:a8:42:4b:84:90:73:03:b1:68:8e:c7:43:ed: ad:d8:c1:1f:a9:fe:dd:36:eb:b9:a3:30:a5:52:1f: c4:36:6f:21:d1:b2:ad:a7:96:3a:5c:e7:3c:5c:e2: 52:4b:76:94:3e:d6:16:8f:42:33:e0:d9:0b:8e:2b: 1f:60:eb:b8:64:5f:13:67:e6:d2:7c:30:58:1c:13: 44:8a:c5:c0:ac:de:f4:75:38:94:c7:fb:c5:c1:68: a9:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:34:12:DA:9F:FB:8C:8F:7B:89:A6:0A:5C:DD:AD:7A:E2:40:BD:DF X509v3 Authority Key Identifier: keyid:DF:8E:F2:99:4C:B5:42:09:F2:C2:A3:9A:7B:CE:7D:A0:D9:C3:4E:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a3a2f33322d3438203d3e20313331373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:2cc0::/32 Signature Algorithm: sha256WithRSAEncryption 39:55:7a:55:cd:d9:40:d6:50:3a:e8:b2:69:d7:ed:d9:17:4e: a6:94:a8:8a:68:65:d7:e5:3a:11:5a:a3:76:3b:22:21:77:26: ef:88:3e:25:30:2d:18:3b:dc:0b:f2:b1:c5:a9:ef:9a:0d:e8: 6d:22:b7:9e:f6:eb:00:cc:db:da:f2:c1:c6:34:47:56:51:65: 43:95:e2:b2:e8:99:30:b7:21:53:26:4f:0b:ef:bc:6c:95:39: 12:46:fd:7d:69:f3:d6:16:e4:88:9d:ce:4d:7c:ef:ee:54:16: 58:f4:af:fa:3a:33:46:10:91:2b:1d:bd:68:11:ef:79:fb:f3: e9:4e:3d:66:7e:d1:90:23:ee:69:bd:b0:a1:7b:d4:7b:c9:0b: c4:2f:6d:40:e1:c2:c5:3c:a2:b7:08:6c:64:26:ce:13:05:43: 5f:84:17:4b:f7:f2:68:ed:fb:41:62:ca:9e:88:63:2d:0e:0f: 35:18:99:ca:53:85:f9:ef:1a:a7:6f:c9:55:53:2f:b4:22:ba: 3d:ca:08:7e:e0:08:4e:5b:92:aa:38:d4:62:d8:ff:72:33:52: 7e:18:2a:cd:ec:d4:d8:77:99:47:96:6e:84:7f:e6:92:7e:89: 3f:d6:a1:79:10:71:be:19:33:f8:3c:d5:16:a7:ae:ce:a1:25: da:7a:ee:e7 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUMSbXTuPIjOZJTNunq4x0Fz8T9QwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREY4RUYyOTk0Q0I1NDIwOUYyQzJBMzlBN0JDRTdEQTBE OUMzNEU0QTAeFw0yMzA3MTMwOTU1MDFaFw0yNDA3MTExMDAwMDFaMDMxMTAvBgNV BAMTKDU0MzQxMkRBOUZGQjhDOEY3Qjg5QTYwQTVDRERBRDdBRTI0MEJEREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC62daouSNqXFkflAdCoT+P08bc ImobTEt0lawn5nhZMlzyK+ZtLQmQpNXwe4nHAXQl/g0bbq0OTPkU/UjSPmdZitIX KkUBuDtD+r3lY51J7ywHnv1Z4TjwNMIALqVi4smfqqRW0bhSTfJMYEDVP9qhmube 1FP5PZT0IBnaxgkf2RuOWnTsMIRDQWcDeF+guAYahjt0tbYhgim5CPXyoTfwdM7x YS9jqEJLhJBzA7FojsdD7a3YwR+p/t0267mjMKVSH8Q2byHRsq2nljpc5zxc4lJL dpQ+1haPQjPg2QuOKx9g67hkXxNn5tJ8MFgcE0SKxcCs3vR1OJTH+8XBaKktAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUVDQS2p/7jI97iaYKXN2teuJAvd8wHwYDVR0j BBgwFoAU347ymUy1QgnywqOae859oNnDTkowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjVjZGEzNi02OTNhLTRjMWEtYmE5ZS1lMGUxNzgxMTIxNDAvMC9ERjhFRjI5OTRD QjU0MjA5RjJDMkEzOUE3QkNFN0RBMEQ5QzM0RTRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREY4RUYyOTk0Q0I1NDIwOUYyQzJBMzlBN0JDRTdEQTBEOUMz NEU0QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyNWNkYTM2LTY5M2EtNGMxYS1i YTllLWUwZTE3ODExMjE0MC8wLzMyMzQzMDM0M2EzMjYzNjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzMTM3MzMzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQELMAwDQYJKoZI hvcNAQELBQADggEBADlVelXN2UDWUDrosmnX7dkXTqaUqIpoZdflOhFao3Y7IiF3 Ju+IPiUwLRg73AvyscWp75oN6G0it5726wDM29rywcY0R1ZRZUOV4rLomTC3IVMm TwvvvGyVORJG/X1p89YW5Iidzk187+5UFlj0r/o6M0YQkSsdvWgR73n78+lOPWZ+ 0ZAj7mm9sKF71HvJC8QvbUDhwsU8orcIbGQmzhMFQ1+EF0v38mjt+0Fiyp6IYy0O DzUYmcpThfnvGqdvyVVTL7Qiuj3KCH7gCE5bkqo41GLY/3IzUn4YKs3s1Nh3mUeW boR/5pJ+iT/WoXkQcb4ZM/g81Ranrs6hJdp67uc= -----END CERTIFICATE-----Generated at Sat Jun 1 08:14:55 2024 by rpki-client on console-ams.rpki-client.org