$ rpki-client -vvf repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a323030303a3a2f34382d3438203d3e203539323738.roa File: 323430323a363938303a323030303a3a2f34382d3438203d3e203539323738.roa (raw, json) Hash identifier: ph198hOAF47sl0qWHJSBGKey7GdfIYEfailgUUY+8tI= Subject key identifier: 9F:A9:5D:E2:29:15:72:DD:5D:39:B0:D5:C8:B6:1F:94:2B:9C:BF:4C Certificate issuer: /CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Certificate serial: 776DADE1B03269D5326984A630362FFA12A472A1 Authority key identifier: 2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a323030303a3a2f34382d3438203d3e203539323738.roa Signing time: Thu 31 Aug 2023 05:01:11 +0000 ROA not before: Thu 31 Aug 2023 04:56:11 +0000 ROA not after: Thu 29 Aug 2024 05:01:11 +0000 asID: 59278 IP address blocks: 2402:6980:2000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jul 2024 06:17:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:6d:ad:e1:b0:32:69:d5:32:69:84:a6:30:36:2f:fa:12:a4:72:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Validity Not Before: Aug 31 04:56:11 2023 GMT Not After : Aug 29 05:01:11 2024 GMT Subject: CN=9FA95DE2291572DD5D39B0D5C8B61F942B9CBF4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:ff:a3:8b:b9:75:ba:3a:b3:f7:84:7c:17:57: 47:2c:79:fb:0e:67:4a:fb:75:29:81:06:67:2a:db: 70:b3:4b:c2:86:19:4f:e1:97:7f:02:b1:db:4d:89: cf:60:7c:fe:47:a9:3c:db:17:e6:9e:df:e4:a0:80: 84:f9:9a:88:7b:aa:3a:e5:09:88:b0:bf:01:70:aa: e7:1b:0a:3a:1a:13:d8:2e:a1:59:27:90:f9:cc:5f: ec:25:9a:cd:11:72:80:32:9a:e3:82:a5:a5:fa:2d: 08:bb:7b:9d:d4:51:9c:d3:c0:64:53:f6:ac:e5:0e: e8:f0:01:24:10:be:cb:ca:15:f4:79:52:50:79:78: e1:4c:d0:6d:d9:3b:16:ef:79:c5:a8:74:27:62:d7: d1:c4:13:ee:96:33:b3:14:b6:58:7f:5f:9b:0b:55: 24:06:92:32:6f:61:aa:04:7a:0e:c7:ec:c9:f2:ba: 46:42:a2:e7:f0:fc:0a:6d:26:da:32:53:55:84:e2: e4:25:74:0b:70:43:36:9a:99:21:4e:87:cd:b1:74: 44:19:51:2a:0c:61:a4:2a:50:2f:9e:53:24:88:be: 64:63:e3:e2:54:ef:cd:d0:c6:e8:d2:b7:13:cf:bf: 0c:51:34:a6:06:04:2c:cf:53:00:c0:67:12:1e:2f: 28:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:A9:5D:E2:29:15:72:DD:5D:39:B0:D5:C8:B6:1F:94:2B:9C:BF:4C X509v3 Authority Key Identifier: keyid:2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a323030303a3a2f34382d3438203d3e203539323738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:6980:2000::/48 Signature Algorithm: sha256WithRSAEncryption 9a:70:69:a2:8f:22:19:a8:5c:66:eb:f3:09:76:5c:25:92:9e: a5:96:06:e1:17:f6:3b:33:e4:28:68:9a:a8:70:43:10:1e:67: 73:40:98:86:77:24:18:53:dc:82:69:4a:26:31:85:08:a2:0b: 14:df:33:c4:90:45:f6:8a:e4:76:9b:f2:4c:78:8f:5e:98:9f: 15:2a:6c:10:f1:90:30:f8:b0:ea:60:92:8f:a1:a7:fe:cd:1f: f7:77:4f:21:0b:77:1d:94:6f:38:f0:38:44:6a:ef:d1:b5:50: 0d:2e:25:44:aa:09:d4:9f:a3:97:96:88:c7:7a:c9:70:df:37: bc:23:56:86:a7:92:34:1a:af:17:50:79:40:ea:69:c4:be:92: 9a:d8:a6:9e:da:60:5e:f9:24:c6:88:ae:e6:11:95:3c:69:09: 39:02:6d:b7:c9:87:5d:90:9f:86:10:ac:fa:66:0f:ad:c2:52: e9:9e:fd:48:3e:96:5b:8e:c9:a3:bf:79:f0:88:a1:74:53:3d: 32:8b:86:17:06:b4:27:af:80:0f:de:07:8f:ee:c0:2a:84:21: f5:2e:9b:d7:14:6e:3b:6c:a0:22:1c:c0:a0:21:5b:2a:35:dd: a8:ab:f3:e3:ea:4c:8c:4a:75:ec:80:7e:cd:2e:c6:3d:16:3f: 1a:bc:33:15 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUd22t4bAyadUyaYSmMDYv+hKkcqEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVE RDc4QzVCRDAeFw0yMzA4MzEwNDU2MTFaFw0yNDA4MjkwNTAxMTFaMDMxMTAvBgNV BAMTKDlGQTk1REUyMjkxNTcyREQ1RDM5QjBENUM4QjYxRjk0MkI5Q0JGNEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDw/6OLuXW6OrP3hHwXV0csefsO Z0r7dSmBBmcq23CzS8KGGU/hl38CsdtNic9gfP5HqTzbF+ae3+SggIT5moh7qjrl CYiwvwFwqucbCjoaE9guoVknkPnMX+wlms0RcoAymuOCpaX6LQi7e53UUZzTwGRT 9qzlDujwASQQvsvKFfR5UlB5eOFM0G3ZOxbvecWodCdi19HEE+6WM7MUtlh/X5sL VSQGkjJvYaoEeg7H7MnyukZCoufw/AptJtoyU1WE4uQldAtwQzaamSFOh82xdEQZ USoMYaQqUC+eUySIvmRj4+JU783QxujStxPPvwxRNKYGBCzPUwDAZxIeLyjlAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUn6ld4ikVct1dObDVyLYflCucv0wwHwYDVR0j BBgwFoAULSMR9WPfCvjr79ohhxYmtd14xb0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZjFjNzlmMS0yNjRlLTQyM2YtOWUwOC0wYjI5MDBkYTY5NDkvMC8yRDIzMTFGNTYz REYwQUY4RUJFRkRBMjE4NzE2MjZCNURENzhDNUJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVERDc4 QzVCRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FmMWM3OWYxLTI2NGUtNDIzZi05 ZTA4LTBiMjkwMGRhNjk0OS8wLzMyMzQzMDMyM2EzNjM5MzgzMDNhMzIzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTM5MzIzNzM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAJp gCAAMA0GCSqGSIb3DQEBCwUAA4IBAQCacGmijyIZqFxm6/MJdlwlkp6llgbhF/Y7 M+QoaJqocEMQHmdzQJiGdyQYU9yCaUomMYUIogsU3zPEkEX2iuR2m/JMeI9emJ8V KmwQ8ZAw+LDqYJKPoaf+zR/3d08hC3cdlG848DhEau/RtVANLiVEqgnUn6OXlojH eslw3ze8I1aGp5I0Gq8XUHlA6mnEvpKa2Kae2mBe+STGiK7mEZU8aQk5Am23yYdd kJ+GEKz6Zg+twlLpnv1IPpZbjsmjv3nwiKF0Uz0yi4YXBrQnr4AP3geP7sAqhCH1 LpvXFG47bKAiHMCgIVsqNd2oq/Pj6kyMSnXsgH7NLsY9Fj8avDMV -----END CERTIFICATE-----Generated at Sun Jun 30 02:10:56 2024 by rpki-client on console-ams.rpki-client.org