$ rpki-client -vvf repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a313030303a3a2f33362d3336203d3e20313338383834.roa File: 323430343a636534303a313030303a3a2f33362d3336203d3e20313338383834.roa (raw, json) Hash identifier: l6dRrmYHksllBIt1ng0VtTnT2PJRmDXxTq5SVD7XCIU= Subject key identifier: 6F:7A:AD:B2:62:EF:6E:F0:35:24:33:56:AC:96:A5:9C:E1:B1:9C:C6 Certificate issuer: /CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Certificate serial: 2A2650A7A5C17EFB4AC1F62AE5714958B726ACEB Authority key identifier: 88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a313030303a3a2f33362d3336203d3e20313338383834.roa Signing time: Wed 27 Sep 2023 17:00:01 +0000 ROA not before: Wed 27 Sep 2023 16:55:01 +0000 ROA not after: Wed 25 Sep 2024 17:00:01 +0000 asID: 138884 IP address blocks: 2404:ce40:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:26:50:a7:a5:c1:7e:fb:4a:c1:f6:2a:e5:71:49:58:b7:26:ac:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Validity Not Before: Sep 27 16:55:01 2023 GMT Not After : Sep 25 17:00:01 2024 GMT Subject: CN=6F7AADB262EF6EF035243356AC96A59CE1B19CC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:94:3a:f4:55:d5:59:e1:49:e6:a2:18:9e:43: 3e:78:d7:6a:75:16:62:e5:05:61:30:c1:26:b9:55: 0d:c9:21:8c:d1:90:75:86:78:3f:7e:3e:a8:a1:4c: 28:67:fb:9b:0d:15:37:5b:5b:75:d6:3d:5a:9e:6c: ae:01:1f:2b:90:52:8e:3d:22:90:d5:73:d6:41:f5: 0d:0b:d4:fb:fc:72:9e:cd:b6:15:d5:4a:ae:9c:48: 85:86:85:7e:70:9c:3b:47:ad:fe:54:7b:cc:47:eb: c8:b4:b6:eb:bc:3d:ca:15:b3:0d:a7:8e:49:07:58: 3e:94:62:b0:55:64:4c:b6:ed:29:9d:e4:2f:56:34: 8f:7d:bd:60:9f:a5:cf:bc:5a:1e:d8:55:fb:53:7c: 97:18:0e:04:92:d0:0f:11:28:ba:e8:96:43:58:b9: b8:13:3b:18:83:4b:ed:5a:85:2b:cf:de:4b:da:18: 42:60:14:41:ff:f3:27:19:03:5c:98:ce:1c:e4:b4: 24:ae:8a:a9:e3:81:2c:37:0c:ec:27:7d:3e:28:a1: 09:80:b8:66:c1:2c:13:95:c7:6e:2b:df:1a:3a:18: 9e:c0:1b:d0:f8:5b:8d:8f:22:e0:88:81:03:3e:d1: de:ae:80:b2:af:49:e9:4d:1c:bf:1d:6f:1a:a7:55: bb:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:7A:AD:B2:62:EF:6E:F0:35:24:33:56:AC:96:A5:9C:E1:B1:9C:C6 X509v3 Authority Key Identifier: keyid:88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a313030303a3a2f33362d3336203d3e20313338383834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:ce40:1000::/36 Signature Algorithm: sha256WithRSAEncryption bb:c1:79:a7:06:19:a1:b9:05:e1:08:0d:46:10:ee:01:23:f8: ca:39:fe:8d:92:24:cf:d3:a7:5b:4e:d0:ed:25:9d:ed:60:b7: e7:85:05:81:e0:f7:70:10:93:70:35:15:69:af:8a:9d:32:d4: 07:3e:ec:a2:18:25:2d:b7:86:6c:02:b4:11:8d:52:5e:30:44: 07:d5:0f:22:41:8a:15:e7:8c:82:36:76:22:43:2e:9b:dd:8a: 00:69:52:5e:36:ab:77:ec:1c:ad:9a:fc:0e:28:7c:75:d0:6d: 33:04:b6:c1:43:00:8a:21:cb:93:fc:b1:0b:26:b1:f4:af:d8: e8:1c:77:02:4b:34:02:01:12:02:f4:80:90:c7:9e:54:e8:cc: 80:1c:4b:90:52:15:28:56:48:ea:0b:14:d6:b9:73:7d:6e:41: a2:2f:57:7f:42:eb:b9:e7:ff:a5:2c:df:e8:1d:bf:2d:e7:02: 7a:0d:69:31:04:fb:af:7b:fa:8b:16:24:a6:fc:c7:e2:94:2d: 3c:81:e1:84:e9:9f:37:4b:d7:e3:1e:95:69:3c:ef:9f:12:00: 32:bd:21:78:52:8f:8b:bf:fb:ae:f1:5e:d4:53:ae:fd:5e:83: 6f:d3:ba:32:a6:f4:51:3f:d0:85:ee:5d:f9:7a:61:52:8e:79: 15:45:4e:c4 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUKiZQp6XBfvtKwfYq5XFJWLcmrOswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1 MjI0OUIzRTAeFw0yMzA5MjcxNjU1MDFaFw0yNDA5MjUxNzAwMDFaMDMxMTAvBgNV BAMTKDZGN0FBREIyNjJFRjZFRjAzNTI0MzM1NkFDOTZBNTlDRTFCMTlDQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCllDr0VdVZ4UnmohieQz5412p1 FmLlBWEwwSa5VQ3JIYzRkHWGeD9+PqihTChn+5sNFTdbW3XWPVqebK4BHyuQUo49 IpDVc9ZB9Q0L1Pv8cp7NthXVSq6cSIWGhX5wnDtHrf5Ue8xH68i0tuu8PcoVsw2n jkkHWD6UYrBVZEy27Smd5C9WNI99vWCfpc+8Wh7YVftTfJcYDgSS0A8RKLrolkNY ubgTOxiDS+1ahSvP3kvaGEJgFEH/8ycZA1yYzhzktCSuiqnjgSw3DOwnfT4ooQmA uGbBLBOVx24r3xo6GJ7AG9D4W42PIuCIgQM+0d6ugLKvSelNHL8dbxqnVbvjAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUb3qtsmLvbvA1JDNWrJalnOGxnMYwHwYDVR0j BBgwFoAUiL0arqFtiiRVBBbNuV4jIVIkmz4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjBjNmQ2OS02MjkwLTQwMmYtYTg0ZS1kMjg5YzZlOTNhNzMvMC84OEJEMUFBRUEx NkQ4QTI0NTUwNDE2Q0RCOTVFMjMyMTUyMjQ5QjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1MjI0 OUIzRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyMGM2ZDY5LTYyOTAtNDAyZi1h ODRlLWQyODljNmU5M2E3My8wLzMyMzQzMDM0M2E2MzY1MzQzMDNhMzEzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTMzMzgzODM4MzQucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BM5AEDANBgkqhkiG9w0BAQsFAAOCAQEAu8F5pwYZobkF4QgNRhDuASP4yjn+jZIk z9OnW07Q7SWd7WC354UFgeD3cBCTcDUVaa+KnTLUBz7sohglLbeGbAK0EY1SXjBE B9UPIkGKFeeMgjZ2IkMum92KAGlSXjard+wcrZr8Dih8ddBtMwS2wUMAiiHLk/yx Cyax9K/Y6Bx3Aks0AgESAvSAkMeeVOjMgBxLkFIVKFZI6gsU1rlzfW5Boi9Xf0Lr uef/pSzf6B2/LecCeg1pMQT7r3v6ixYkpvzH4pQtPIHhhOmfN0vX4x6VaTzvnxIA Mr0heFKPi7/7rvFe1FOu/V6Db9O6Mqb0UT/Qhe5d+XphUo55FUVOxA== -----END CERTIFICATE-----Generated at Sat Jun 1 09:09:43 2024 by rpki-client on console-fra.rpki-client.org