$ rpki-client -vvf repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a373a3a2f34382d3438203d3e203338373539.roa File: 323030313a6436383a373a3a2f34382d3438203d3e203338373539.roa (raw, json) Hash identifier: q4ufczHXWb8cQOmRkC7+JBAsYcnqb6OwClmIOw/Be0w= Subject key identifier: 4A:73:F2:75:A4:5B:89:03:B7:2F:F7:C4:72:0B:E5:E9:C9:96:F4:EF Certificate issuer: /CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Certificate serial: 28D2B774682586956D958A33A839AC87D7073713 Authority key identifier: 42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a373a3a2f34382d3438203d3e203338373539.roa Signing time: Thu 17 Aug 2023 08:00:00 +0000 ROA not before: Thu 17 Aug 2023 07:55:00 +0000 ROA not after: Thu 15 Aug 2024 08:00:00 +0000 asID: 38759 IP address blocks: 2001:d68:7::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:d2:b7:74:68:25:86:95:6d:95:8a:33:a8:39:ac:87:d7:07:37:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Validity Not Before: Aug 17 07:55:00 2023 GMT Not After : Aug 15 08:00:00 2024 GMT Subject: CN=4A73F275A45B8903B72FF7C4720BE5E9C996F4EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:21:47:16:6c:58:e0:96:7e:75:04:c1:60:a9: 47:ab:3d:df:df:f9:55:38:21:9e:07:15:41:e0:56: 2d:c2:cb:b5:5a:37:f8:e6:b4:c6:8e:b8:e6:1e:85: df:74:80:99:13:c1:36:79:33:fe:f9:a1:4f:23:b9: e5:39:ff:26:ca:58:64:f1:47:92:6f:0c:a4:b5:7e: fd:a4:28:03:d2:27:1d:f0:06:54:2f:e2:19:75:9b: bb:02:c5:e2:60:5b:03:11:bf:e4:04:39:62:b2:99: d0:55:2a:62:4e:7b:d2:0b:10:2c:95:3e:11:af:03: 77:b9:16:9f:ae:89:89:41:82:4d:41:50:6a:ef:88: d1:17:90:f6:5c:78:9c:92:7d:c2:38:95:f6:18:14: 77:5b:7e:8b:a4:37:c5:ff:a9:81:cd:7c:f6:b8:54: 44:e3:55:49:95:85:f6:14:11:dd:a0:dc:22:4b:0d: 2e:f3:9b:1e:85:0e:b1:7e:a9:8f:7c:a4:aa:ca:75: ff:fa:f1:97:d8:27:f5:c2:54:f6:8a:5c:58:21:71: 75:07:33:7c:74:5e:92:55:9b:ff:d8:c0:82:2b:44: 20:c5:69:0a:a2:0b:ad:39:f4:cf:23:12:31:66:5f: 49:81:9b:8a:b9:ca:c1:ce:11:47:10:7f:cf:e2:71: 8c:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:73:F2:75:A4:5B:89:03:B7:2F:F7:C4:72:0B:E5:E9:C9:96:F4:EF X509v3 Authority Key Identifier: keyid:42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a373a3a2f34382d3438203d3e203338373539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:d68:7::/48 Signature Algorithm: sha256WithRSAEncryption af:72:99:98:3e:d7:ca:c0:ec:30:7e:23:15:71:10:0b:3e:5b: f1:3c:2d:c8:9e:7e:b0:86:78:08:4d:a4:c4:cb:63:a3:51:79: 9f:72:de:f2:68:7c:87:28:a9:43:16:89:8f:36:e3:6f:66:bc: 1a:24:a9:f9:4f:a4:f0:2f:bb:f3:ab:c7:bc:e5:d0:55:ab:73: b4:76:1a:31:50:8a:30:ac:e5:c6:87:87:9b:3c:3c:53:8d:dc: e8:74:c0:0d:c4:f3:a8:12:78:60:0d:b2:c6:b3:5f:e5:ea:27: 04:e7:56:00:81:f6:53:59:4b:cb:71:bf:27:0d:b0:05:fb:ee: 8f:5d:f2:39:52:32:56:a4:c2:8d:12:97:75:3f:93:4a:24:f3: c6:d9:54:e3:09:06:2d:61:9b:c6:b1:cf:41:f8:64:f0:b1:67: 5a:f4:1a:1d:26:ff:27:af:fa:52:79:80:47:17:b2:c0:20:2d: cf:b9:4c:71:aa:f0:66:39:05:91:bb:71:a2:6f:a4:f0:db:10: 6f:6c:07:fa:6b:83:1c:ef:a6:4c:d9:b8:a0:44:7c:55:ff:34: b4:45:82:d8:5a:0c:5b:92:69:26:a2:75:02:7a:a1:87:65:0d: 96:df:bf:02:24:85:17:64:fe:df:4b:83:4e:e7:82:e5:be:bc: 31:7c:2d:2f -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUKNK3dGglhpVtlYozqDmsh9cHNxMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFF QzdDQTMwNjAeFw0yMzA4MTcwNzU1MDBaFw0yNDA4MTUwODAwMDBaMDMxMTAvBgNV BAMTKDRBNzNGMjc1QTQ1Qjg5MDNCNzJGRjdDNDcyMEJFNUU5Qzk5NkY0RUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLIUcWbFjgln51BMFgqUerPd/f +VU4IZ4HFUHgVi3Cy7VaN/jmtMaOuOYehd90gJkTwTZ5M/75oU8jueU5/ybKWGTx R5JvDKS1fv2kKAPSJx3wBlQv4hl1m7sCxeJgWwMRv+QEOWKymdBVKmJOe9ILECyV PhGvA3e5Fp+uiYlBgk1BUGrviNEXkPZceJySfcI4lfYYFHdbfoukN8X/qYHNfPa4 VETjVUmVhfYUEd2g3CJLDS7zmx6FDrF+qY98pKrKdf/68ZfYJ/XCVPaKXFghcXUH M3x0XpJVm//YwIIrRCDFaQqiC6059M8jEjFmX0mBm4q5ysHOEUcQf8/icYwVAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUSnPydaRbiQO3L/fEcgvl6cmW9O8wHwYDVR0j BBgwFoAUQgQuZytojDBy/UdDs+fdgex8owYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTJmMjI4Yy1kZjIwLTQ3MjgtOWY5Ni04ZmFhMTM0MDAxN2EvMC80MjA0MkU2NzJC Njg4QzMwNzJGRDQ3NDNCM0U3REQ4MUVDN0NBMzA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFFQzdD QTMwNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExMmYyMjhjLWRmMjAtNDcyOC05 Zjk2LThmYWExMzQwMDE3YS8wLzMyMzAzMDMxM2E2NDM2MzgzYTM3M2EzYTJmMzQz ODJkMzQzODIwM2QzZTIwMzMzODM3MzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDWgABzANBgkq hkiG9w0BAQsFAAOCAQEAr3KZmD7XysDsMH4jFXEQCz5b8TwtyJ5+sIZ4CE2kxMtj o1F5n3Le8mh8hyipQxaJjzbjb2a8GiSp+U+k8C+786vHvOXQVatztHYaMVCKMKzl xoeHmzw8U43c6HTADcTzqBJ4YA2yxrNf5eonBOdWAIH2U1lLy3G/Jw2wBfvuj13y OVIyVqTCjRKXdT+TSiTzxtlU4wkGLWGbxrHPQfhk8LFnWvQaHSb/J6/6UnmARxey wCAtz7lMcarwZjkFkbtxom+k8NsQb2wH+muDHO+mTNm4oER8Vf80tEWC2FoMW5Jp JqJ1Anqhh2UNlt+/AiSFF2T+30uDTueC5b68MXwtLw== -----END CERTIFICATE-----Generated at Sat Jun 1 15:52:57 2024 by rpki-client on console-ams.rpki-client.org