$ rpki-client -vvf repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a343030303a3a2f34382d3438203d3e203539323738.roa File: 323430323a363938303a343030303a3a2f34382d3438203d3e203539323738.roa (raw, json) Hash identifier: khD0nn+LAKCCF0SYI/rRRrqJ+GyOw/gWBujy4X78zYI= Subject key identifier: 8D:42:EC:77:94:5F:B7:D7:E7:73:A5:C7:8E:E2:29:56:CF:D4:63:1C Certificate issuer: /CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Certificate serial: 5DC400414473DFD3862FC69E21B8D05FB316EE0A Authority key identifier: 2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a343030303a3a2f34382d3438203d3e203539323738.roa Signing time: Thu 31 Aug 2023 05:01:11 +0000 ROA not before: Thu 31 Aug 2023 04:56:11 +0000 ROA not after: Thu 29 Aug 2024 05:01:11 +0000 asID: 59278 IP address blocks: 2402:6980:4000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:c4:00:41:44:73:df:d3:86:2f:c6:9e:21:b8:d0:5f:b3:16:ee:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Validity Not Before: Aug 31 04:56:11 2023 GMT Not After : Aug 29 05:01:11 2024 GMT Subject: CN=8D42EC77945FB7D7E773A5C78EE22956CFD4631C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:0b:df:1d:32:ab:55:ea:8a:fc:e1:f6:8d:aa: 7e:60:59:95:a1:5f:75:f2:ab:19:3e:3c:aa:94:d3: 4d:10:b0:17:ea:99:51:31:2b:2a:e5:f7:30:2c:b7: ed:ab:c4:71:34:5a:3d:50:5c:7f:24:fd:bc:c6:c1: bf:87:47:3c:e5:58:9a:f2:70:39:b8:d0:0c:e3:8a: 20:b9:3f:e9:23:c5:09:69:a0:94:c1:c8:b2:27:85: d6:7e:d1:8d:b7:69:a0:e2:a5:ca:0d:8f:1d:d9:e7: df:ff:ed:ff:13:0a:92:ba:ed:ef:f5:88:99:69:40: 71:ab:d4:c2:20:c3:61:c1:7d:1f:84:ed:82:e9:d8: f1:fd:cc:5e:7f:bb:d5:e9:49:f9:85:bd:5d:22:8a: 76:6d:8b:8e:d4:e9:e3:75:c4:6f:30:f2:2d:31:33: 00:97:0e:0e:77:3b:77:a5:d2:04:6d:3d:a6:a7:2e: 7f:c0:b4:2b:fb:12:47:4f:b2:80:36:43:52:80:e6: 0e:0e:ee:2f:6a:7e:2d:a4:a3:79:72:9c:42:9a:4f: 9f:ab:89:0a:84:b4:d4:ae:e5:c1:85:4b:d6:ab:45: 21:58:2e:7c:04:d1:54:6a:90:12:e9:6e:97:4b:c0: 62:d8:03:d0:e1:ef:15:7e:87:0b:07:4a:dd:87:dc: 27:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:42:EC:77:94:5F:B7:D7:E7:73:A5:C7:8E:E2:29:56:CF:D4:63:1C X509v3 Authority Key Identifier: keyid:2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a343030303a3a2f34382d3438203d3e203539323738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:6980:4000::/48 Signature Algorithm: sha256WithRSAEncryption 55:91:10:5b:d1:4c:42:54:1f:fb:2b:0b:6a:f4:e7:2d:3d:12: 20:22:16:ad:30:b3:04:59:e5:5d:f5:49:9a:79:e8:b8:0a:22: 1e:40:6c:20:5c:76:89:ce:63:a3:7f:15:3b:19:f8:f3:34:6a: a5:13:9b:20:62:c4:5f:18:57:af:9b:c9:3a:83:7a:8c:cb:a6: 3e:e1:df:d6:fe:da:62:0e:14:62:60:8c:b5:98:57:ae:57:f5: 29:0a:47:31:69:c8:62:57:e1:28:63:1a:6d:fb:7d:a3:57:c1: 54:07:ec:26:34:5b:c4:fb:9a:2f:ad:c9:89:7b:cd:fa:33:f6: 83:cd:18:0f:0b:d0:a2:f8:a1:5f:96:eb:77:28:06:41:7e:14: 21:63:3d:f6:8c:fa:6e:b9:d9:6e:e3:7b:35:38:02:37:84:58: 89:5f:d9:a7:fb:92:65:9c:d8:f0:3d:55:8a:1a:c1:ae:60:bb: 49:6c:b5:a0:a4:4d:53:78:7e:99:07:58:27:7c:30:2b:77:8d: 36:80:d9:73:17:94:f5:57:a1:4b:b9:b5:07:45:14:0b:65:db: 68:79:69:b7:d2:b7:2d:81:3f:77:df:64:3a:59:fc:4b:27:25: fb:10:5a:87:8c:36:1e:a8:32:e0:03:34:9a:80:9a:b8:fa:f9: c6:4c:d6:8b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUXcQAQURz39OGL8aeIbjQX7MW7gowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVE RDc4QzVCRDAeFw0yMzA4MzEwNDU2MTFaFw0yNDA4MjkwNTAxMTFaMDMxMTAvBgNV BAMTKDhENDJFQzc3OTQ1RkI3RDdFNzczQTVDNzhFRTIyOTU2Q0ZENDYzMUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZC98dMqtV6or84faNqn5gWZWh X3Xyqxk+PKqU000QsBfqmVExKyrl9zAst+2rxHE0Wj1QXH8k/bzGwb+HRzzlWJry cDm40AzjiiC5P+kjxQlpoJTByLInhdZ+0Y23aaDipcoNjx3Z59//7f8TCpK67e/1 iJlpQHGr1MIgw2HBfR+E7YLp2PH9zF5/u9XpSfmFvV0iinZti47U6eN1xG8w8i0x MwCXDg53O3el0gRtPaanLn/AtCv7EkdPsoA2Q1KA5g4O7i9qfi2ko3lynEKaT5+r iQqEtNSu5cGFS9arRSFYLnwE0VRqkBLpbpdLwGLYA9Dh7xV+hwsHSt2H3Cd/AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUjULsd5Rft9fnc6XHjuIpVs/UYxwwHwYDVR0j BBgwFoAULSMR9WPfCvjr79ohhxYmtd14xb0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZjFjNzlmMS0yNjRlLTQyM2YtOWUwOC0wYjI5MDBkYTY5NDkvMC8yRDIzMTFGNTYz REYwQUY4RUJFRkRBMjE4NzE2MjZCNURENzhDNUJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVERDc4 QzVCRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FmMWM3OWYxLTI2NGUtNDIzZi05 ZTA4LTBiMjkwMGRhNjk0OS8wLzMyMzQzMDMyM2EzNjM5MzgzMDNhMzQzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTM5MzIzNzM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAJp gEAAMA0GCSqGSIb3DQEBCwUAA4IBAQBVkRBb0UxCVB/7Kwtq9OctPRIgIhatMLME WeVd9Umaeei4CiIeQGwgXHaJzmOjfxU7GfjzNGqlE5sgYsRfGFevm8k6g3qMy6Y+ 4d/W/tpiDhRiYIy1mFeuV/UpCkcxachiV+EoYxpt+32jV8FUB+wmNFvE+5ovrcmJ e836M/aDzRgPC9Ci+KFflut3KAZBfhQhYz32jPpuudlu43s1OAI3hFiJX9mn+5Jl nNjwPVWKGsGuYLtJbLWgpE1TeH6ZB1gnfDArd402gNlzF5T1V6FLubUHRRQLZdto eWm30rctgT9332Q6WfxLJyX7EFqHjDYeqDLgAzSagJq4+vnGTNaL -----END CERTIFICATE-----Generated at Sun Jun 2 21:39:59 2024 by rpki-client on console-fra.rpki-client.org