$ rpki-client -vvf repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a3a2f33322d3438203d3e203539323738.roa File: 323430323a363938303a3a2f33322d3438203d3e203539323738.roa (raw, json) Hash identifier: FuMaNeFApIPScPEG+WN4A5Ne45/WMrNJE4gHRoz0Wzw= Subject key identifier: 72:CA:2F:30:4C:C1:E8:2E:0B:F7:D5:04:B5:0C:87:E7:BA:E5:8D:D6 Certificate issuer: /CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Certificate serial: 6712A4330FE5D76D8ACF135828C7AA94C18B0877 Authority key identifier: 2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a3a2f33322d3438203d3e203539323738.roa Signing time: Sat 28 Oct 2023 14:00:01 +0000 ROA not before: Sat 28 Oct 2023 13:55:01 +0000 ROA not after: Sat 26 Oct 2024 14:00:01 +0000 asID: 59278 IP address blocks: 2402:6980::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jul 2024 06:17:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:12:a4:33:0f:e5:d7:6d:8a:cf:13:58:28:c7:aa:94:c1:8b:08:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Validity Not Before: Oct 28 13:55:01 2023 GMT Not After : Oct 26 14:00:01 2024 GMT Subject: CN=72CA2F304CC1E82E0BF7D504B50C87E7BAE58DD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0d:0e:73:65:8a:5e:ca:57:b4:82:ad:eb:56: 31:65:36:e8:8b:d6:7a:d3:ec:8d:61:23:81:e0:18: 07:64:cb:aa:94:bd:10:d5:1d:9e:22:0c:26:58:16: 4b:33:5d:16:f6:b7:7f:74:01:43:f3:ee:cc:af:83: 33:cd:ad:50:fd:17:e3:4c:92:c9:e7:5f:cf:c0:7f: af:af:f8:32:8d:14:71:96:cc:bf:9c:a1:80:b7:0d: a1:f0:58:db:40:63:c8:56:49:92:52:f0:02:d2:0a: 99:5b:a8:d5:20:3b:d0:d4:d0:5b:b1:d2:dc:86:d1: d9:13:d5:be:9d:85:7a:36:5f:0a:a3:cb:ca:bd:47: 9a:5b:05:c4:e1:7d:c8:b3:0a:29:11:f3:fb:56:6b: 28:d8:f5:ed:04:09:06:01:26:0c:4b:f8:3f:ca:51: 83:77:e6:a9:fd:d3:b4:e2:ca:ea:71:28:ca:8d:cb: d8:c2:2e:3e:68:bc:e7:fa:dd:a5:3c:9b:00:55:77: cb:7f:91:2e:6c:21:7b:f8:bb:3f:11:e9:73:51:d7: 7e:4b:9d:94:dc:c9:f7:fa:e8:99:ab:eb:7e:fe:77: 43:eb:2a:1e:df:86:ee:33:c2:b3:79:1f:0d:1f:67: 9d:69:39:4d:fe:83:92:2f:54:85:d0:ea:77:57:ad: 98:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:CA:2F:30:4C:C1:E8:2E:0B:F7:D5:04:B5:0C:87:E7:BA:E5:8D:D6 X509v3 Authority Key Identifier: keyid:2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a3a2f33322d3438203d3e203539323738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:6980::/32 Signature Algorithm: sha256WithRSAEncryption b6:2f:e3:af:11:76:ad:55:5e:79:0e:27:67:6e:67:0e:7f:62: e5:2b:02:da:6c:40:1b:e9:17:ce:2e:1c:b9:3d:78:b3:db:f1: 63:70:4a:60:fc:b0:61:26:41:c4:e4:ca:18:d0:73:96:5c:90: 0c:5f:a1:e0:69:cf:9b:ec:f8:be:53:a0:82:b1:7a:d0:87:73: 5b:7d:b2:89:0f:2d:b5:29:27:b9:7e:49:57:ef:11:e8:bb:c2: cf:34:ef:de:7b:b0:6b:be:de:86:3a:03:77:2c:b1:72:dc:be: d0:fd:2e:79:ce:10:08:8c:84:ff:e5:e5:c6:45:74:e8:23:20: 32:c4:1d:75:de:47:96:f3:88:ab:ec:c1:df:47:f8:09:ee:92: bb:88:d9:52:75:b1:e4:53:ba:e6:5f:15:e9:23:b2:d2:04:83: 1d:7a:4b:62:83:5e:bb:22:2e:2a:96:16:6c:ae:75:f1:3c:ae: 6f:a9:e8:62:37:b0:6e:f2:ad:8a:27:51:1d:dc:b9:a2:b6:15: 93:5d:57:a8:6e:58:6a:10:6d:ef:78:dd:fa:3f:49:8f:51:3d: 16:55:9b:28:19:57:2b:0b:d2:c0:c6:de:79:be:1d:46:07:96: 6e:da:92:66:cc:e6:36:2a:92:e7:c1:f0:db:58:f4:bf:79:4d: 57:07:e8:9a -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUZxKkMw/l122KzxNYKMeqlMGLCHcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVE RDc4QzVCRDAeFw0yMzEwMjgxMzU1MDFaFw0yNDEwMjYxNDAwMDFaMDMxMTAvBgNV BAMTKDcyQ0EyRjMwNENDMUU4MkUwQkY3RDUwNEI1MEM4N0U3QkFFNThERDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3DQ5zZYpeyle0gq3rVjFlNuiL 1nrT7I1hI4HgGAdky6qUvRDVHZ4iDCZYFkszXRb2t390AUPz7syvgzPNrVD9F+NM ksnnX8/Af6+v+DKNFHGWzL+coYC3DaHwWNtAY8hWSZJS8ALSCplbqNUgO9DU0Fux 0tyG0dkT1b6dhXo2Xwqjy8q9R5pbBcThfcizCikR8/tWayjY9e0ECQYBJgxL+D/K UYN35qn907TiyupxKMqNy9jCLj5ovOf63aU8mwBVd8t/kS5sIXv4uz8R6XNR135L nZTcyff66Jmr637+d0PrKh7fhu4zwrN5Hw0fZ51pOU3+g5IvVIXQ6ndXrZifAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUcsovMEzB6C4L99UEtQyH57rljdYwHwYDVR0j BBgwFoAULSMR9WPfCvjr79ohhxYmtd14xb0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZjFjNzlmMS0yNjRlLTQyM2YtOWUwOC0wYjI5MDBkYTY5NDkvMC8yRDIzMTFGNTYz REYwQUY4RUJFRkRBMjE4NzE2MjZCNURENzhDNUJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVERDc4 QzVCRC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FmMWM3OWYxLTI2NGUtNDIzZi05 ZTA4LTBiMjkwMGRhNjk0OS8wLzMyMzQzMDMyM2EzNjM5MzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM1MzkzMjM3Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAmmAMA0GCSqGSIb3 DQEBCwUAA4IBAQC2L+OvEXatVV55DidnbmcOf2LlKwLabEAb6RfOLhy5PXiz2/Fj cEpg/LBhJkHE5MoY0HOWXJAMX6Hgac+b7Pi+U6CCsXrQh3NbfbKJDy21KSe5fklX 7xHou8LPNO/ee7Brvt6GOgN3LLFy3L7Q/S55zhAIjIT/5eXGRXToIyAyxB113keW 84ir7MHfR/gJ7pK7iNlSdbHkU7rmXxXpI7LSBIMdektig167Ii4qlhZsrnXxPK5v qehiN7Bu8q2KJ1Ed3LmithWTXVeoblhqEG3veN36P0mPUT0WVZsoGVcrC9LAxt55 vh1GB5Zu2pJmzOY2KpLnwfDbWPS/eU1XB+ia -----END CERTIFICATE-----Generated at Sun Jun 30 02:10:56 2024 by rpki-client on console-ams.rpki-client.org