$ rpki-client -vvf repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a643a3a2f34382d3438203d3e20313432333636.roa File: 323430373a623463303a643a3a2f34382d3438203d3e20313432333636.roa (raw, json) Hash identifier: Voj1mSR1IDTgFHlxEBeTnVp0S2+dQ/t4NurNsIyerL0= Subject key identifier: 4F:76:09:1D:9A:F9:F6:68:0D:A0:61:9D:35:09:43:2F:A5:34:B8:7B Certificate issuer: /CN=0110A7C2C5E7B74C89B036FFF78974619577D31C Certificate serial: 2840E287CE92DF6D978C08B80855078D2618F95A Authority key identifier: 01:10:A7:C2:C5:E7:B7:4C:89:B0:36:FF:F7:89:74:61:95:77:D3:1C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a643a3a2f34382d3438203d3e20313432333636.roa Signing time: Sat 15 Jul 2023 09:00:41 +0000 ROA not before: Sat 15 Jul 2023 08:55:41 +0000 ROA not after: Sat 13 Jul 2024 09:00:41 +0000 asID: 142366 IP address blocks: 2407:b4c0:d::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.crl rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 09:56:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:40:e2:87:ce:92:df:6d:97:8c:08:b8:08:55:07:8d:26:18:f9:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0110A7C2C5E7B74C89B036FFF78974619577D31C Validity Not Before: Jul 15 08:55:41 2023 GMT Not After : Jul 13 09:00:41 2024 GMT Subject: CN=4F76091D9AF9F6680DA0619D3509432FA534B87B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:b2:aa:32:e9:e2:c9:f0:b0:0c:1b:6c:10:64: 5f:65:2c:3c:7a:7c:67:8c:84:76:cf:0b:fc:8d:a2: 49:74:ef:8f:0f:89:25:9c:46:af:41:c3:3d:d0:ef: 73:b9:d0:13:e3:21:12:64:4d:28:32:20:eb:f7:0a: c0:ba:62:a4:48:f2:c1:4e:b5:73:f8:75:98:e7:86: b2:65:ff:4f:1f:68:b4:0e:cf:c3:a1:e6:64:c0:5e: f3:9b:7f:93:8d:8d:1b:2b:ba:51:3d:d2:27:62:bf: 2a:10:c9:16:7d:1b:03:37:4e:48:7b:71:a9:c3:db: 8e:c0:51:99:14:b6:a3:94:e6:39:b4:23:89:2b:da: 9f:68:03:94:40:ac:4d:c8:6b:ad:e3:02:00:ff:8e: 18:90:30:4a:2c:f2:1b:e1:99:26:48:db:e0:77:48: f6:5d:99:8e:66:42:61:81:06:7e:5b:ac:7c:4d:44: 20:59:49:b4:10:3e:1c:63:d3:e0:bc:22:fb:33:0b: 7d:67:cb:38:74:73:95:d4:72:3f:dd:30:18:0a:41: 68:9a:ba:14:5a:d1:56:7d:38:2b:6e:84:fb:e6:76: 33:08:e9:a7:b8:18:4f:00:cf:6c:1d:87:79:1d:cd: 38:47:cf:fb:7f:2a:56:da:6b:2f:43:95:b0:c0:f3: 41:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:76:09:1D:9A:F9:F6:68:0D:A0:61:9D:35:09:43:2F:A5:34:B8:7B X509v3 Authority Key Identifier: keyid:01:10:A7:C2:C5:E7:B7:4C:89:B0:36:FF:F7:89:74:61:95:77:D3:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a643a3a2f34382d3438203d3e20313432333636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:b4c0:d::/48 Signature Algorithm: sha256WithRSAEncryption 50:26:75:22:c0:9f:cb:bc:89:18:d8:fc:5b:98:cc:bf:fb:a5: db:3f:9f:97:77:72:5e:cb:25:96:d3:ec:cf:6d:17:e9:59:91: b5:71:85:d9:76:27:a9:7e:c8:09:75:70:ad:a7:15:fe:d1:7a: d0:06:03:6c:7a:8a:b8:45:a9:01:c2:8a:aa:b6:f7:25:63:92: 59:fd:4c:88:2e:66:a7:c8:a5:82:d6:58:3c:8b:a2:cb:cd:2e: 00:85:43:84:06:07:59:98:da:d1:68:bf:e5:79:dd:7c:86:cc: d1:d9:79:a9:4b:f8:5f:8d:04:d4:8a:08:a6:2f:33:c9:ca:96: d7:0b:44:53:38:3b:cf:a0:47:41:d1:3b:18:e4:e5:64:50:d6: 53:fd:88:61:87:4f:88:1d:cc:6f:8a:d6:f5:b5:5c:3e:cf:6d: 2f:bf:29:27:ed:cf:ac:96:f9:69:91:b4:2b:a3:e4:60:fc:32: 3d:d3:67:cf:6c:11:f2:6b:78:c3:d0:0b:c9:3b:50:f1:00:d8: ce:7f:ee:ec:78:c9:ea:0d:83:11:4f:e0:7c:8e:69:7a:8c:96: 59:34:ee:b7:a3:01:56:5e:5c:ca:84:5c:a8:5d:08:eb:bb:af: aa:b9:4e:3e:57:48:08:cf:e9:e9:e3:82:88:12:70:6b:98:ef: bc:c1:e3:8a -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUKEDih86S322XjAi4CFUHjSYY+VowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDExMEE3QzJDNUU3Qjc0Qzg5QjAzNkZGRjc4OTc0NjE5 NTc3RDMxQzAeFw0yMzA3MTUwODU1NDFaFw0yNDA3MTMwOTAwNDFaMDMxMTAvBgNV BAMTKDRGNzYwOTFEOUFGOUY2NjgwREEwNjE5RDM1MDk0MzJGQTUzNEI4N0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhsqoy6eLJ8LAMG2wQZF9lLDx6 fGeMhHbPC/yNokl0748PiSWcRq9Bwz3Q73O50BPjIRJkTSgyIOv3CsC6YqRI8sFO tXP4dZjnhrJl/08faLQOz8Oh5mTAXvObf5ONjRsrulE90idivyoQyRZ9GwM3Tkh7 canD247AUZkUtqOU5jm0I4kr2p9oA5RArE3Ia63jAgD/jhiQMEos8hvhmSZI2+B3 SPZdmY5mQmGBBn5brHxNRCBZSbQQPhxj0+C8IvszC31nyzh0c5XUcj/dMBgKQWia uhRa0VZ9OCtuhPvmdjMI6ae4GE8Az2wdh3kdzThHz/t/Klbaay9DlbDA80F3AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUT3YJHZr59mgNoGGdNQlDL6U0uHswHwYDVR0j BBgwFoAUARCnwsXnt0yJsDb/94l0YZV30xwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzBkZmI1YS04NDVlLTRkZGYtYWNhNy1hOWIzMWMzMWRmZjQvMC8wMTEwQTdDMkM1 RTdCNzRDODlCMDM2RkZGNzg5NzQ2MTk1NzdEMzFDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDExMEE3QzJDNUU3Qjc0Qzg5QjAzNkZGRjc4OTc0NjE5NTc3 RDMxQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3MGRmYjVhLTg0NWUtNGRkZi1h Y2E3LWE5YjMxYzMxZGZmNC8wLzMyMzQzMDM3M2E2MjM0NjMzMDNhNjQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzIzMzM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkB7TAAA0w DQYJKoZIhvcNAQELBQADggEBAFAmdSLAn8u8iRjY/FuYzL/7pds/n5d3cl7LJZbT 7M9tF+lZkbVxhdl2J6l+yAl1cK2nFf7RetAGA2x6irhFqQHCiqq29yVjkln9TIgu ZqfIpYLWWDyLosvNLgCFQ4QGB1mY2tFov+V53XyGzNHZealL+F+NBNSKCKYvM8nK ltcLRFM4O8+gR0HROxjk5WRQ1lP9iGGHT4gdzG+K1vW1XD7PbS+/KSftz6yW+WmR tCuj5GD8Mj3TZ89sEfJreMPQC8k7UPEA2M5/7ux4yeoNgxFP4HyOaXqMllk07rej AVZeXMqEXKhdCOu7r6q5Tj5XSAjP6enjgogScGuY77zB44o= -----END CERTIFICATE-----Generated at Sat Jun 1 07:07:11 2024 by rpki-client on console-ams.rpki-client.org