$ rpki-client -vvf repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a323a3a2f34382d3438203d3e20313338353938.roa File: 323430343a356434303a323a3a2f34382d3438203d3e20313338353938.roa (raw, json) Hash identifier: 5LwxmnxbShp4/eG0JjzK8CtOOXkEWAHiL1A2TF/eKCc= Subject key identifier: 0E:2E:1C:9A:60:CE:98:0D:93:E2:B6:17:FA:40:13:23:63:EE:24:14 Certificate issuer: /CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Certificate serial: 201322324B6F35CB26BC2B898F463C4BD76C4FE8 Authority key identifier: 28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a323a3a2f34382d3438203d3e20313338353938.roa Signing time: Mon 11 Sep 2023 09:02:08 +0000 ROA not before: Mon 11 Sep 2023 08:57:08 +0000 ROA not after: Mon 09 Sep 2024 09:02:08 +0000 asID: 138598 IP address blocks: 2404:5d40:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:13:22:32:4b:6f:35:cb:26:bc:2b:89:8f:46:3c:4b:d7:6c:4f:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Validity Not Before: Sep 11 08:57:08 2023 GMT Not After : Sep 9 09:02:08 2024 GMT Subject: CN=0E2E1C9A60CE980D93E2B617FA40132363EE2414 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ba:72:c1:ea:82:0b:3c:27:cf:75:c7:dd:c3: 19:cc:89:1f:44:16:94:d4:d3:4e:2a:be:82:5a:17: f7:fd:5b:44:ab:7a:c4:69:1b:39:ed:c1:0a:15:17: 48:92:87:00:08:ee:16:21:fc:d4:37:d5:c4:bc:1b: cb:ad:97:2e:34:5e:77:7f:9e:a2:4e:a0:98:de:26: f1:1a:03:f1:e4:16:73:e2:e3:14:ab:b2:58:b3:c2: 35:b8:25:0c:bf:1a:20:27:6f:cb:69:7c:41:05:11: 5c:e3:18:ee:41:ca:7a:e2:9f:60:ee:59:ac:98:e3: 11:67:45:7c:59:23:8d:da:90:de:bf:78:3c:c1:a4: 01:fb:2d:94:f7:e9:a4:81:76:7b:ed:57:53:d7:8a: 51:19:f5:74:85:b7:6d:56:0e:65:17:bd:95:af:fc: 7c:ea:6c:92:21:a7:61:6c:ce:e3:ce:38:90:d2:dc: 10:da:4b:ce:08:5d:55:c7:1b:a5:60:7d:9e:a7:db: 76:22:f6:92:c9:ec:f4:ec:35:7c:2f:45:b1:0a:5b: 45:45:12:51:eb:75:bb:f1:90:43:bb:0b:7f:d9:c1: d6:f2:8f:d2:e3:61:80:90:e5:f2:ba:f2:a0:0c:fa: 6e:ee:0c:4e:b1:d2:16:47:e4:91:b7:3c:f9:82:7d: 6a:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:2E:1C:9A:60:CE:98:0D:93:E2:B6:17:FA:40:13:23:63:EE:24:14 X509v3 Authority Key Identifier: keyid:28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a323a3a2f34382d3438203d3e20313338353938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:5d40:2::/48 Signature Algorithm: sha256WithRSAEncryption 44:55:16:08:78:c4:62:b0:05:3b:e4:a3:09:38:0e:c6:28:42: 54:6c:49:b6:df:75:93:03:74:39:70:08:2b:00:8c:ee:04:47: a3:33:fe:70:1e:86:39:63:eb:0e:1e:f5:01:dc:10:ea:01:fe: f7:c7:09:58:22:69:ea:e6:37:e9:cd:10:59:7e:fa:a6:76:ab: 24:37:4b:9b:9b:27:7b:96:b1:1f:62:d0:a5:3e:79:9b:57:c5: 8d:00:9e:63:84:ae:84:2d:b4:0a:58:cb:dc:e6:31:26:44:56: 5d:0a:79:f3:1c:0e:56:73:0c:f0:43:9a:29:b6:2e:4e:ba:90: d1:43:00:1d:84:ba:82:97:65:b2:ab:17:29:ae:64:6a:7c:09: 5e:b5:d3:eb:3b:4c:7a:a4:bd:f7:9c:1e:aa:4b:5b:3a:6f:bb: 96:7b:b9:ce:ce:76:a5:00:ad:63:41:bc:5d:f2:b6:c1:d8:cb: 63:47:0b:c1:28:9a:30:ea:f6:57:70:56:ab:31:58:3d:f6:32: ac:8f:bc:c8:d1:16:48:94:4b:60:0f:36:4f:9a:8b:63:a7:18: fb:e7:e7:3c:a6:73:83:19:27:31:2b:bb:9b:df:83:32:d9:cc: 06:be:52:8d:b4:55:ce:d3:8d:dc:97:13:23:fb:37:75:f2:38: 7a:08:26:be -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUIBMiMktvNcsmvCuJj0Y8S9dsT+gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0 NDRERjJFQTAeFw0yMzA5MTEwODU3MDhaFw0yNDA5MDkwOTAyMDhaMDMxMTAvBgNV BAMTKDBFMkUxQzlBNjBDRTk4MEQ5M0UyQjYxN0ZBNDAxMzIzNjNFRTI0MTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2unLB6oILPCfPdcfdwxnMiR9E FpTU004qvoJaF/f9W0SresRpGzntwQoVF0iShwAI7hYh/NQ31cS8G8utly40Xnd/ nqJOoJjeJvEaA/HkFnPi4xSrslizwjW4JQy/GiAnb8tpfEEFEVzjGO5Bynrin2Du WayY4xFnRXxZI43akN6/eDzBpAH7LZT36aSBdnvtV1PXilEZ9XSFt21WDmUXvZWv /HzqbJIhp2FszuPOOJDS3BDaS84IXVXHG6VgfZ6n23Yi9pLJ7PTsNXwvRbEKW0VF ElHrdbvxkEO7C3/Zwdbyj9LjYYCQ5fK68qAM+m7uDE6x0hZH5JG3PPmCfWq1AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUDi4cmmDOmA2T4rYX+kATI2PuJBQwHwYDVR0j BBgwFoAUKEuK2tPgmOm/vqxqkSnvpkRN8uowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 Yzg1YzZiOS0zNGY5LTRhODUtOWNlYS1jMTZlOThhOGI1ZTAvMC8yODRCOEFEQUQz RTA5OEU5QkZCRUFDNkE5MTI5RUZBNjQ0NERGMkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0NDRE RjJFQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzljODVjNmI5LTM0ZjktNGE4NS05 Y2VhLWMxNmU5OGE4YjVlMC8wLzMyMzQzMDM0M2EzNTY0MzQzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzNTM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBF1AAAIw DQYJKoZIhvcNAQELBQADggEBAERVFgh4xGKwBTvkowk4DsYoQlRsSbbfdZMDdDlw CCsAjO4ER6Mz/nAehjlj6w4e9QHcEOoB/vfHCVgiaermN+nNEFl++qZ2qyQ3S5ub J3uWsR9i0KU+eZtXxY0AnmOEroQttApYy9zmMSZEVl0KefMcDlZzDPBDmim2Lk66 kNFDAB2EuoKXZbKrFymuZGp8CV610+s7THqkvfecHqpLWzpvu5Z7uc7OdqUArWNB vF3ytsHYy2NHC8EomjDq9ldwVqsxWD32MqyPvMjRFkiUS2APNk+ai2OnGPvn5zym c4MZJzEru5vfgzLZzAa+Uo20Vc7TjdyXEyP7N3XyOHoIJr4= -----END CERTIFICATE-----Generated at Sun Jun 2 12:35:05 2024 by rpki-client on console-fra.rpki-client.org