$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/323430313a313730303a3a2f33322d3438203d3e203535363636.roa File: 323430313a313730303a3a2f33322d3438203d3e203535363636.roa (raw, json) Hash identifier: KP6fxBiM7cGQQzorCIARcPJudJn/2wI8CCCJRJtXZ7A= Subject key identifier: AF:03:D1:3F:FF:A7:8C:FA:47:A9:1A:49:3F:1B:4A:91:15:9C:75:03 Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 7E91C74177D136454F010FC15DEDCA077DC90462 Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/323430313a313730303a3a2f33322d3438203d3e203535363636.roa Signing time: Mon 31 Jul 2023 00:14:34 +0000 ROA not before: Mon 31 Jul 2023 00:09:34 +0000 ROA not after: Mon 29 Jul 2024 00:14:34 +0000 asID: 55666 IP address blocks: 2401:1700::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:91:c7:41:77:d1:36:45:4f:01:0f:c1:5d:ed:ca:07:7d:c9:04:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Jul 31 00:09:34 2023 GMT Not After : Jul 29 00:14:34 2024 GMT Subject: CN=AF03D13FFFA78CFA47A91A493F1B4A91159C7503 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5f:64:42:86:86:23:cf:77:67:a9:fe:0a:f7: e8:eb:2f:ad:09:c9:9d:9d:da:74:79:c0:0c:e2:5c: 16:2b:03:14:ed:cb:d2:8b:0d:51:6c:3b:4a:6b:09: 4f:d0:1d:1a:8a:89:2e:bf:01:26:86:1b:68:15:a9: 1f:1c:92:d4:ad:4a:1a:f6:a1:32:32:39:4e:84:a9: fa:73:39:2c:8a:5a:d4:38:9e:0c:d3:1f:cb:f8:cb: 06:28:94:6b:2c:e4:b4:29:c8:db:11:8d:68:16:89: 3a:f0:a3:0b:19:f5:7d:34:e1:02:48:d7:d8:17:b9: a6:fb:77:6d:a1:59:06:17:76:9e:81:43:32:81:30: ca:06:0a:87:29:e8:56:1d:ce:a6:60:87:a2:ba:a4: b7:c2:d3:80:86:bb:3c:28:bc:03:cd:d0:44:52:f6: 5a:93:4c:e5:0c:d3:d9:9e:94:1c:43:5d:4a:4e:2a: a1:0d:5b:30:0a:89:2c:b6:cf:fd:fb:83:e3:9a:4b: ff:19:d2:61:b2:b3:bd:f0:01:d9:89:05:73:2c:93: 11:98:6f:4c:ee:84:9c:c0:33:c1:29:b7:86:29:54: ab:a0:63:b7:17:d9:d9:07:93:82:c3:b9:f5:fe:58: a8:71:e7:0c:a0:66:2a:43:af:08:f5:a3:5a:8d:93: 80:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:03:D1:3F:FF:A7:8C:FA:47:A9:1A:49:3F:1B:4A:91:15:9C:75:03 X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/323430313a313730303a3a2f33322d3438203d3e203535363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:1700::/32 Signature Algorithm: sha256WithRSAEncryption 34:6d:3c:6a:0b:d9:85:68:b5:98:0f:3f:87:aa:32:13:dd:cb: ac:6c:01:c5:14:5d:83:56:51:b5:6b:77:61:f8:96:06:8d:95: ec:55:df:5a:ec:bd:a2:bb:b7:e0:f9:20:96:ad:0b:09:1e:ad: 74:0d:a5:f4:b1:3b:03:20:34:01:4d:f6:0d:5a:7e:77:ca:7d: b9:7e:ee:2f:bb:74:d5:a3:60:d9:ef:24:45:ca:29:09:a5:2d: eb:f9:c4:16:9e:48:4e:a5:98:a5:ff:30:e5:c4:e2:40:5a:a3: 35:88:1e:ee:86:2b:d7:fc:c9:e7:d6:55:b9:b3:3e:e6:79:59: 56:e1:2a:9f:f3:d5:b7:da:8e:8e:2b:3b:99:40:9a:86:30:82: bf:c3:62:8d:2b:c8:13:92:33:2a:2b:24:fb:f3:4d:1c:f3:ee: 97:c0:ea:63:01:6b:6a:42:c6:63:1e:ae:1b:3b:85:7b:a5:08: e5:c4:ac:05:32:29:fb:5e:6d:b5:ce:61:23:0d:03:31:69:4f: 82:85:51:9d:48:ea:10:85:b7:5a:fc:45:82:a9:99:72:bf:66: 32:d4:e5:b7:6a:9d:69:27:3c:2c:43:03:ee:a4:b0:47:d8:53: c4:d5:a3:1a:02:e4:d2:5c:b0:85:9d:b8:5f:f4:ad:18:a9:2a: 6e:4a:4f:67 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUfpHHQXfRNkVPAQ/BXe3KB33JBGIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yMzA3MzEwMDA5MzRaFw0yNDA3MjkwMDE0MzRaMDMxMTAvBgNV BAMTKEFGMDNEMTNGRkZBNzhDRkE0N0E5MUE0OTNGMUI0QTkxMTU5Qzc1MDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/X2RChoYjz3dnqf4K9+jrL60J yZ2d2nR5wAziXBYrAxTty9KLDVFsO0prCU/QHRqKiS6/ASaGG2gVqR8cktStShr2 oTIyOU6EqfpzOSyKWtQ4ngzTH8v4ywYolGss5LQpyNsRjWgWiTrwowsZ9X004QJI 19gXuab7d22hWQYXdp6BQzKBMMoGCocp6FYdzqZgh6K6pLfC04CGuzwovAPN0ERS 9lqTTOUM09melBxDXUpOKqENWzAKiSy2z/37g+OaS/8Z0mGys73wAdmJBXMskxGY b0zuhJzAM8Ept4YpVKugY7cX2dkHk4LDufX+WKhx5wygZipDrwj1o1qNk4DbAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUrwPRP/+njPpHqRpJPxtKkRWcdQMwHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzMyMzQzMDMxM2EzMTM3MzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM1MzUzNjM2MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkARcAMA0GCSqGSIb3 DQEBCwUAA4IBAQA0bTxqC9mFaLWYDz+HqjIT3cusbAHFFF2DVlG1a3dh+JYGjZXs Vd9a7L2iu7fg+SCWrQsJHq10DaX0sTsDIDQBTfYNWn53yn25fu4vu3TVo2DZ7yRF yikJpS3r+cQWnkhOpZil/zDlxOJAWqM1iB7uhivX/Mnn1lW5sz7meVlW4Sqf89W3 2o6OKzuZQJqGMIK/w2KNK8gTkjMqKyT7800c8+6XwOpjAWtqQsZjHq4bO4V7pQjl xKwFMin7Xm21zmEjDQMxaU+ChVGdSOoQhbda/EWCqZlyv2Yy1OW3ap1pJzwsQwPu pLBH2FPE1aMaAuTSXLCFnbhf9K0YqSpuSk9n -----END CERTIFICATE-----Generated at Fri May 3 04:42:33 2024 by rpki-client on console-fra.rpki-client.org