$ rpki-client -vvf repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a343a3a2f34382d3438203d3e20313431393638.roa File: 323430373a366163303a343a3a2f34382d3438203d3e20313431393638.roa (raw, json) Hash identifier: oQYqDMv07me6Rio9JcJaGcxVzeH49Gw9W2AHYKtLBp8= Subject key identifier: 51:0C:5B:2B:E4:D2:37:F4:EA:82:1B:B0:6E:A5:9F:E3:55:25:21:9D Certificate issuer: /CN=F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387 Certificate serial: 59BD6B9389E199E1DF9ECEF3AE517028BA73DB43 Authority key identifier: F0:61:54:57:40:B6:B6:6A:9D:3C:1D:1F:E4:F3:FD:B5:A4:F6:93:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a343a3a2f34382d3438203d3e20313431393638.roa Signing time: Mon 27 Nov 2023 04:00:01 +0000 ROA not before: Mon 27 Nov 2023 03:55:01 +0000 ROA not after: Mon 25 Nov 2024 04:00:01 +0000 asID: 141968 IP address blocks: 2407:6ac0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.crl rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Jun 2024 04:11:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:bd:6b:93:89:e1:99:e1:df:9e:ce:f3:ae:51:70:28:ba:73:db:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387 Validity Not Before: Nov 27 03:55:01 2023 GMT Not After : Nov 25 04:00:01 2024 GMT Subject: CN=510C5B2BE4D237F4EA821BB06EA59FE35525219D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:67:d4:56:12:04:e5:93:01:af:8c:3a:38:85: 81:93:1b:5a:36:ce:29:74:ba:3f:10:c5:27:e0:35: bd:f0:db:a6:e2:ed:85:38:bd:ae:3d:0a:9c:fc:3f: 96:53:13:cc:ad:37:b4:e9:15:b7:da:a3:f4:0c:d6: dc:65:79:16:cf:7e:5c:ee:ac:d4:27:18:cf:41:0a: 4f:46:f4:2c:25:5d:16:2f:13:6d:c8:39:ce:fe:c6: d5:7c:dd:d7:a5:0d:0c:77:f7:61:94:1c:00:bd:3c: b3:69:50:22:8d:61:54:05:a5:0d:81:eb:96:e5:39: ff:74:66:85:8f:1d:62:7c:81:c4:dd:5b:96:3a:6a: 0d:e3:1c:c1:fd:9f:95:2a:5e:b4:96:52:8e:aa:65: 4c:8e:62:08:81:5b:10:9f:28:f5:1a:48:bd:f2:ec: a8:a4:b2:90:a4:40:fd:09:82:45:e3:22:a2:b5:41: 2a:8a:77:8d:c5:18:56:0b:5b:80:1f:3a:95:44:b2: 79:8f:04:e1:0d:9f:13:42:b9:51:58:7b:b1:25:d5: 6a:28:79:13:74:6d:36:23:ca:b3:6a:26:ab:d3:95: 47:06:51:1e:ef:6a:7a:a1:7c:b4:da:79:63:93:af: 92:36:bb:a2:d3:54:55:01:26:de:c6:1d:58:bb:b5: 1e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:0C:5B:2B:E4:D2:37:F4:EA:82:1B:B0:6E:A5:9F:E3:55:25:21:9D X509v3 Authority Key Identifier: keyid:F0:61:54:57:40:B6:B6:6A:9D:3C:1D:1F:E4:F3:FD:B5:A4:F6:93:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a343a3a2f34382d3438203d3e20313431393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:6ac0:4::/48 Signature Algorithm: sha256WithRSAEncryption 14:76:87:45:81:16:ab:d4:1e:a9:f5:9a:7a:2b:20:bc:7c:ef: 48:1d:87:7d:79:b4:cd:93:9a:42:bf:33:d5:cf:79:47:ff:56: 10:4e:b7:e3:35:30:50:63:c8:a2:13:bb:33:a0:8b:81:1e:eb: 27:72:00:67:c5:37:7c:b4:4c:dd:15:42:60:e3:ee:31:8c:bf: 29:c0:64:a6:3b:bd:5a:4c:4e:e8:10:4f:8b:38:df:97:11:b2: 9b:1f:8e:c4:d7:55:d3:a2:4a:a4:a1:f7:b2:02:08:a4:f6:6c: fe:9a:5f:e4:0e:53:df:5a:86:03:f1:fb:da:b2:49:81:b0:9a: be:9c:4f:76:bb:8b:ef:89:ef:8f:b3:55:b8:b9:d0:33:ef:cd: a3:f5:07:48:43:f3:ff:fe:2e:85:04:dc:f0:ff:bf:ea:c1:d5: ed:bb:1f:d2:fa:f5:dc:a0:ec:eb:1e:5b:95:6f:cb:26:32:22: ef:b8:07:ad:7c:a9:c0:0e:6a:ba:0c:8b:fa:17:7f:70:f5:84: 8d:98:aa:9e:23:17:98:3a:3a:a5:33:05:96:5d:ff:50:bb:fa: 5c:71:4b:e5:76:5e:6b:b5:0c:3c:48:f2:4f:f6:1d:0a:fe:90: 19:1f:b0:c0:70:26:72:8c:bd:f9:75:15:f8:5e:77:dc:67:8e: 78:45:dd:53 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUWb1rk4nhmeHfns7zrlFwKLpz20MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjA2MTU0NTc0MEI2QjY2QTlEM0MxRDFGRTRGM0ZEQjVB NEY2OTM4NzAeFw0yMzExMjcwMzU1MDFaFw0yNDExMjUwNDAwMDFaMDMxMTAvBgNV BAMTKDUxMEM1QjJCRTREMjM3RjRFQTgyMUJCMDZFQTU5RkUzNTUyNTIxOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKZ9RWEgTlkwGvjDo4hYGTG1o2 zil0uj8QxSfgNb3w26bi7YU4va49Cpz8P5ZTE8ytN7TpFbfao/QM1txleRbPflzu rNQnGM9BCk9G9CwlXRYvE23IOc7+xtV83delDQx392GUHAC9PLNpUCKNYVQFpQ2B 65blOf90ZoWPHWJ8gcTdW5Y6ag3jHMH9n5UqXrSWUo6qZUyOYgiBWxCfKPUaSL3y 7KikspCkQP0JgkXjIqK1QSqKd43FGFYLW4AfOpVEsnmPBOENnxNCuVFYe7El1Woo eRN0bTYjyrNqJqvTlUcGUR7vanqhfLTaeWOTr5I2u6LTVFUBJt7GHVi7tR7zAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUUQxbK+TSN/TqghuwbqWf41UlIZ0wHwYDVR0j BBgwFoAU8GFUV0C2tmqdPB0f5PP9taT2k4cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MzZhMjE3MS0xMmEwLTRlMDEtYmNhYi1iZTNiNmI4MzZmNWQvMC9GMDYxNTQ1NzQw QjZCNjZBOUQzQzFEMUZFNEYzRkRCNUE0RjY5Mzg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjA2MTU0NTc0MEI2QjY2QTlEM0MxRDFGRTRGM0ZEQjVBNEY2 OTM4Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EzNmEyMTcxLTEyYTAtNGUwMS1i Y2FiLWJlM2I2YjgzNmY1ZC8wLzMyMzQzMDM3M2EzNjYxNjMzMDNhMzQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzEzOTM2Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkB2rAAAQw DQYJKoZIhvcNAQELBQADggEBABR2h0WBFqvUHqn1mnorILx870gdh315tM2TmkK/ M9XPeUf/VhBOt+M1MFBjyKITuzOgi4Ee6ydyAGfFN3y0TN0VQmDj7jGMvynAZKY7 vVpMTugQT4s435cRspsfjsTXVdOiSqSh97ICCKT2bP6aX+QOU99ahgPx+9qySYGw mr6cT3a7i++J74+zVbi50DPvzaP1B0hD8//+LoUE3PD/v+rB1e27H9L69dyg7Ose W5VvyyYyIu+4B618qcAOaroMi/oXf3D1hI2Yqp4jF5g6OqUzBZZd/1C7+lxxS+V2 Xmu1DDxI8k/2HQr+kBkfsMBwJnKMvfl1Ffhed9xnjnhF3VM= -----END CERTIFICATE-----Generated at Thu Jun 20 04:43:00 2024 by rpki-client on console-ams.rpki-client.org