$ rpki-client -vvf repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a333a3a2f34382d3438203d3e20313338353938.roa File: 323430343a356434303a333a3a2f34382d3438203d3e20313338353938.roa (raw, json) Hash identifier: sv7XvdmtLeyVK6xy36VVCq4Q191Xw2dLB6qsEiiJ/3g= Subject key identifier: 4C:41:C0:7A:D6:B5:DF:FE:F3:DD:41:5B:77:70:16:61:BF:7E:51:6F Certificate issuer: /CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Certificate serial: 1D99B663F6228718BC065517424DE36E697B46 Authority key identifier: 28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a333a3a2f34382d3438203d3e20313338353938.roa Signing time: Mon 11 Sep 2023 09:02:09 +0000 ROA not before: Mon 11 Sep 2023 08:57:09 +0000 ROA not after: Mon 09 Sep 2024 09:02:09 +0000 asID: 138598 IP address blocks: 2404:5d40:3::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:99:b6:63:f6:22:87:18:bc:06:55:17:42:4d:e3:6e:69:7b:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Validity Not Before: Sep 11 08:57:09 2023 GMT Not After : Sep 9 09:02:09 2024 GMT Subject: CN=4C41C07AD6B5DFFEF3DD415B77701661BF7E516F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:9c:ba:1f:e5:69:5d:4c:21:8a:ef:58:4e:b5: b5:86:bd:bd:06:d5:48:11:a6:5e:e2:9e:4f:93:7a: c1:a3:29:ab:e2:5a:44:40:23:ee:03:38:b2:f0:4b: 79:57:16:c0:12:4a:50:bd:9b:c2:50:91:d4:ee:ed: 46:fb:77:01:3e:cd:8d:3f:19:cb:1c:fc:8b:17:cb: 32:52:93:b1:85:e9:d5:c7:db:c3:04:80:25:89:1c: 9c:08:ff:59:ec:3f:16:1d:2d:65:af:c1:f7:63:b4: 3c:27:54:70:b9:ad:62:76:c5:c0:06:88:e6:d2:0e: f7:62:73:b4:8b:ce:64:ed:e3:4b:03:8f:75:31:54: 0d:71:aa:3b:f7:61:8f:57:3a:a5:a0:fb:38:3a:3d: 52:07:95:bf:6b:2a:ec:a4:22:02:01:c8:5d:e3:0d: 70:1b:5d:ed:4a:3e:a6:6c:17:fa:ba:e1:c2:85:23: f3:d7:e9:bb:3b:e4:4a:03:de:35:f4:9f:53:9f:5b: 34:cf:3f:d4:9e:53:73:8b:cd:a2:f1:fd:00:c7:1c: a7:aa:88:e5:44:47:a2:59:6a:01:3b:46:fd:6d:11: b3:70:4e:36:36:57:b1:d9:8e:82:fa:92:65:cf:f1: 8b:72:6e:88:57:58:7f:9e:96:3f:11:6a:86:4d:27: 46:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:41:C0:7A:D6:B5:DF:FE:F3:DD:41:5B:77:70:16:61:BF:7E:51:6F X509v3 Authority Key Identifier: keyid:28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a333a3a2f34382d3438203d3e20313338353938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:5d40:3::/48 Signature Algorithm: sha256WithRSAEncryption 0a:0f:bb:8c:a8:c6:9b:68:6e:c8:3c:ab:74:5b:27:14:eb:23: f7:7b:0a:ed:b5:24:a2:4d:53:83:7c:e5:14:79:7c:cc:c9:38: ff:da:e1:50:37:6a:93:f0:8b:8b:65:8d:0b:f8:16:2a:f9:26: 78:b2:20:d8:e2:71:da:17:a7:af:58:c5:39:7f:1a:3c:6b:06: 42:60:b2:6b:a8:b2:fe:49:d6:20:47:93:28:00:82:38:32:4c: d0:2f:91:c6:ad:c6:71:bb:1c:a8:f5:09:96:25:82:61:16:32: 87:16:3a:22:d6:a7:85:24:3c:3c:7d:df:6f:67:26:1a:85:b0: 7c:58:ac:a8:52:3a:7d:1b:fa:1b:e3:6e:10:fd:47:73:16:dd: 7e:95:b9:7e:66:81:44:6a:43:f5:69:db:48:60:ab:64:55:89: be:80:53:57:21:29:39:ba:01:01:78:5a:b1:05:a0:42:75:4a: b9:a3:89:59:59:88:36:a8:4e:90:48:50:cf:b2:90:93:bf:52: 4f:03:44:c3:34:89:16:64:8b:90:9e:36:0e:31:92:b4:57:0a: a3:10:3d:67:c5:89:b3:ae:93:38:d5:91:ce:c5:0d:02:d9:1a: 2e:e3:bc:79:ba:1e:42:f4:ed:52:21:2f:dd:73:f1:83:b7:9e: fb:b7:df:e2 -----BEGIN CERTIFICATE----- MIIFLjCCBBagAwIBAgITHZm2Y/Yihxi8BlUXQk3jbml7RjANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEygyODRCOEFEQUQzRTA5OEU5QkZCRUFDNkE5MTI5RUZBNjQ0 NERGMkVBMB4XDTIzMDkxMTA4NTcwOVoXDTI0MDkwOTA5MDIwOVowMzExMC8GA1UE AxMoNEM0MUMwN0FENkI1REZGRUYzREQ0MTVCNzc3MDE2NjFCRjdFNTE2RjCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOicuh/laV1MIYrvWE61tYa9vQbV SBGmXuKeT5N6waMpq+JaREAj7gM4svBLeVcWwBJKUL2bwlCR1O7tRvt3AT7NjT8Z yxz8ixfLMlKTsYXp1cfbwwSAJYkcnAj/Wew/Fh0tZa/B92O0PCdUcLmtYnbFwAaI 5tIO92JztIvOZO3jSwOPdTFUDXGqO/dhj1c6paD7ODo9UgeVv2sq7KQiAgHIXeMN cBtd7Uo+pmwX+rrhwoUj89fpuzvkSgPeNfSfU59bNM8/1J5Tc4vNovH9AMccp6qI 5URHollqATtG/W0Rs3BONjZXsdmOgvqSZc/xi3JuiFdYf56WPxFqhk0nRnECAwEA AaOCAjkwggI1MB0GA1UdDgQWBBRMQcB61rXf/vPdQVt3cBZhv35RbzAfBgNVHSME GDAWgBQoS4ra0+CY6b++rGqRKe+mRE3y6jAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlj ODVjNmI5LTM0ZjktNGE4NS05Y2VhLWMxNmU5OGE4YjVlMC8wLzI4NEI4QURBRDNF MDk4RTlCRkJFQUM2QTkxMjlFRkE2NDQ0REYyRUEuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMi8yODRCOEFEQUQzRTA5OEU5QkZCRUFDNkE5MTI5RUZBNjQ0NERG MkVBLmNlcjCBpgYIKwYBBQUHAQsEgZkwgZYwgZMGCCsGAQUFBzALhoGGcnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOWM4NWM2YjktMzRmOS00YTg1LTlj ZWEtYzE2ZTk4YThiNWUwLzAvMzIzNDMwMzQzYTM1NjQzNDMwM2EzMzNhM2EyZjM0 MzgyZDM0MzgyMDNkM2UyMDMxMzMzODM1MzkzOC5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQEXUAAAzAN BgkqhkiG9w0BAQsFAAOCAQEACg+7jKjGm2huyDyrdFsnFOsj93sK7bUkok1Tg3zl FHl8zMk4/9rhUDdqk/CLi2WNC/gWKvkmeLIg2OJx2henr1jFOX8aPGsGQmCya6iy /knWIEeTKACCODJM0C+Rxq3GcbscqPUJliWCYRYyhxY6ItanhSQ8PH3fb2cmGoWw fFisqFI6fRv6G+NuEP1HcxbdfpW5fmaBRGpD9WnbSGCrZFWJvoBTVyEpOboBAXha sQWgQnVKuaOJWVmINqhOkEhQz7KQk79STwNEwzSJFmSLkJ42DjGStFcKoxA9Z8WJ s66TONWRzsUNAtkaLuO8eboeQvTtUiEv3XPxg7ee+7ff4g== -----END CERTIFICATE-----Generated at Sun Jun 2 12:35:05 2024 by rpki-client on console-fra.rpki-client.org