$ rpki-client -vvf repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a353a3a2f34382d3438203d3e20313338353938.roa File: 323430343a356434303a353a3a2f34382d3438203d3e20313338353938.roa (raw, json) Hash identifier: FGIvBu8gwrHvc7CDgzo641zBbO446AeoenIu8UNC67U= Subject key identifier: 0A:B1:3F:20:C7:F0:0B:C4:E1:58:19:82:C8:91:B6:2B:6A:E6:E8:6A Certificate issuer: /CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Certificate serial: 787C4897485D5C65689DC0B6CEB907CB3B78F8C3 Authority key identifier: 28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a353a3a2f34382d3438203d3e20313338353938.roa Signing time: Mon 11 Sep 2023 09:02:08 +0000 ROA not before: Mon 11 Sep 2023 08:57:08 +0000 ROA not after: Mon 09 Sep 2024 09:02:08 +0000 asID: 138598 IP address blocks: 2404:5d40:5::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:7c:48:97:48:5d:5c:65:68:9d:c0:b6:ce:b9:07:cb:3b:78:f8:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Validity Not Before: Sep 11 08:57:08 2023 GMT Not After : Sep 9 09:02:08 2024 GMT Subject: CN=0AB13F20C7F00BC4E1581982C891B62B6AE6E86A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c3:da:9f:c1:19:c9:d8:fb:bd:8b:43:8c:18: 95:86:b1:39:d5:33:35:5e:ca:22:84:6b:e4:c8:13: f8:44:0e:41:69:b4:2d:f8:7d:2a:2f:d6:aa:5c:5f: 27:89:82:96:50:9b:df:3c:d9:51:bd:65:e9:2f:a4: 46:ec:12:66:e0:b9:d1:3c:e4:c8:ef:b7:7c:12:af: d6:ea:66:ed:8e:50:7d:0a:7f:bb:d2:0f:d8:6f:fa: 7b:a2:35:d0:df:df:be:c5:e0:4e:31:71:c1:c7:b8: a5:3c:73:5f:46:9d:46:ba:2c:37:16:ef:62:a3:c4: be:01:fc:f1:fa:07:03:60:91:60:35:6e:18:b0:8a: 3a:a1:1a:35:97:db:ec:c9:04:10:e5:e9:60:8e:b8: 63:bf:6c:6f:d3:72:fe:38:63:78:66:21:f0:ba:99: b2:be:b1:ea:d4:6e:75:47:16:74:22:8e:16:c0:4c: 18:37:0b:4d:e1:28:4a:c3:97:ec:bb:bc:36:f4:16: 18:3b:4c:1a:ad:c9:39:f8:93:5c:0a:a1:82:5d:1c: 6c:27:4c:29:cd:6e:4f:e0:92:08:8d:11:94:97:35: 8c:4f:3f:91:6d:68:d6:ac:f2:09:f0:eb:ca:ac:96: a5:40:e8:fa:87:86:f9:d0:a7:71:5d:74:d4:7f:c0: 2d:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:B1:3F:20:C7:F0:0B:C4:E1:58:19:82:C8:91:B6:2B:6A:E6:E8:6A X509v3 Authority Key Identifier: keyid:28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a353a3a2f34382d3438203d3e20313338353938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:5d40:5::/48 Signature Algorithm: sha256WithRSAEncryption 4f:96:1c:b6:72:67:56:b4:37:61:96:92:c4:c5:b5:a4:8a:11: 2c:ff:89:0d:8b:51:76:5d:53:a8:ad:4d:ae:6b:44:29:89:b1: 84:f9:da:f0:9e:d6:33:ae:a5:e1:42:42:2f:0d:fb:de:24:cb: 73:1d:fc:6e:37:3c:c3:1e:1f:3b:de:03:47:82:b1:8d:cc:bf: f6:30:0c:77:60:ec:71:b9:b2:9a:89:6e:c3:6a:c6:42:0f:a8: 1c:1a:3e:74:44:7a:70:18:77:d2:80:49:0d:c9:fd:f7:5c:6a: 9f:3a:4e:a4:15:54:bb:ad:5a:c6:e8:73:ce:5f:a1:fd:73:97: 83:3c:3b:38:ec:a3:6d:28:7f:c8:95:a0:56:01:b2:19:05:21: b3:89:0c:58:5b:bc:99:56:07:ad:5d:f1:25:44:d5:ff:1b:43: d0:06:a8:aa:59:ff:80:1d:00:80:e4:5f:51:0a:60:2a:0f:1d: e3:28:fc:e9:b3:29:64:38:2e:f2:0e:31:07:56:a3:8d:1d:0a: a5:2a:22:5d:ae:6d:53:29:54:cc:d8:46:ae:36:4d:db:69:f4: d8:e5:2f:b0:53:53:64:7a:13:66:91:fe:61:c1:ab:27:a6:4f: 79:a4:4c:5e:9e:f9:16:90:c0:28:50:98:62:59:80:99:7a:ae: 89:89:3a:2a -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUeHxIl0hdXGVoncC2zrkHyzt4+MMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0 NDRERjJFQTAeFw0yMzA5MTEwODU3MDhaFw0yNDA5MDkwOTAyMDhaMDMxMTAvBgNV BAMTKDBBQjEzRjIwQzdGMDBCQzRFMTU4MTk4MkM4OTFCNjJCNkFFNkU4NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOw9qfwRnJ2Pu9i0OMGJWGsTnV MzVeyiKEa+TIE/hEDkFptC34fSov1qpcXyeJgpZQm9882VG9ZekvpEbsEmbgudE8 5Mjvt3wSr9bqZu2OUH0Kf7vSD9hv+nuiNdDf377F4E4xccHHuKU8c19GnUa6LDcW 72KjxL4B/PH6BwNgkWA1bhiwijqhGjWX2+zJBBDl6WCOuGO/bG/Tcv44Y3hmIfC6 mbK+serUbnVHFnQijhbATBg3C03hKErDl+y7vDb0Fhg7TBqtyTn4k1wKoYJdHGwn TCnNbk/gkgiNEZSXNYxPP5FtaNas8gnw68qslqVA6PqHhvnQp3FddNR/wC0xAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUCrE/IMfwC8ThWBmCyJG2K2rm6GowHwYDVR0j BBgwFoAUKEuK2tPgmOm/vqxqkSnvpkRN8uowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 Yzg1YzZiOS0zNGY5LTRhODUtOWNlYS1jMTZlOThhOGI1ZTAvMC8yODRCOEFEQUQz RTA5OEU5QkZCRUFDNkE5MTI5RUZBNjQ0NERGMkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0NDRE RjJFQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzljODVjNmI5LTM0ZjktNGE4NS05 Y2VhLWMxNmU5OGE4YjVlMC8wLzMyMzQzMDM0M2EzNTY0MzQzMDNhMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzNTM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBF1AAAUw DQYJKoZIhvcNAQELBQADggEBAE+WHLZyZ1a0N2GWksTFtaSKESz/iQ2LUXZdU6it Ta5rRCmJsYT52vCe1jOupeFCQi8N+94ky3Md/G43PMMeHzveA0eCsY3Mv/YwDHdg 7HG5spqJbsNqxkIPqBwaPnREenAYd9KASQ3J/fdcap86TqQVVLutWsboc85fof1z l4M8Ozjso20of8iVoFYBshkFIbOJDFhbvJlWB61d8SVE1f8bQ9AGqKpZ/4AdAIDk X1EKYCoPHeMo/OmzKWQ4LvIOMQdWo40dCqUqIl2ubVMpVMzYRq42Tdtp9NjlL7BT U2R6E2aR/mHBqyemT3mkTF6e+RaQwChQmGJZgJl6romJOio= -----END CERTIFICATE-----Generated at Sun Jun 2 12:44:45 2024 by rpki-client on console-ams.rpki-client.org