$ rpki-client -vvf repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a323a3a2f34382d3438203d3e20313338383834.roa File: 323430343a636534303a323a3a2f34382d3438203d3e20313338383834.roa (raw, json) Hash identifier: YJLwKUZ1DDEaBCYEQlcaDOvoIDSXH7Q/abskmWmYeQk= Subject key identifier: 57:28:F4:FB:BD:71:99:26:67:1D:5F:8E:12:C5:2F:6F:C8:E0:07:5D Certificate issuer: /CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Certificate serial: 5DDC150EB6A84529E4D24E77729C0FCD625EE566 Authority key identifier: 88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a323a3a2f34382d3438203d3e20313338383834.roa Signing time: Sat 14 Oct 2023 18:00:01 +0000 ROA not before: Sat 14 Oct 2023 17:55:01 +0000 ROA not after: Sat 12 Oct 2024 18:00:01 +0000 asID: 138884 IP address blocks: 2404:ce40:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:dc:15:0e:b6:a8:45:29:e4:d2:4e:77:72:9c:0f:cd:62:5e:e5:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Validity Not Before: Oct 14 17:55:01 2023 GMT Not After : Oct 12 18:00:01 2024 GMT Subject: CN=5728F4FBBD719926671D5F8E12C52F6FC8E0075D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:0f:d0:b3:9d:ec:b9:e4:bb:17:97:5c:ab:97: 38:aa:f9:9a:83:0c:7b:83:9b:e7:25:7c:18:82:91: e9:52:57:e1:6c:a2:72:9b:7c:15:0f:ca:39:f4:60: f6:3b:1a:19:6c:63:f2:1c:5a:74:8e:7a:9f:53:39: 7c:89:cc:46:0f:c9:b7:2e:27:68:57:04:ba:08:59: c0:59:45:83:fd:a8:29:70:09:a3:46:71:d2:62:90: 53:49:ed:58:be:40:08:bb:0d:3a:b3:23:f1:bb:ab: 6e:30:bd:40:de:3e:d0:12:56:73:53:a5:c2:52:0c: 1c:ab:ed:17:00:82:55:59:51:3b:4b:d3:b6:1b:8f: ff:58:0a:2c:39:2c:98:71:c6:e3:d4:1c:fe:c8:6a: 79:fc:e3:5b:5f:47:9d:db:b2:71:09:7f:45:8e:1b: 80:ae:1a:af:53:ce:51:1c:66:d0:93:c8:d5:59:3d: cb:0d:a0:4f:5c:da:54:d0:b5:74:9c:ed:cc:39:3b: 75:95:d3:9c:47:e7:51:d4:1b:ae:51:9c:41:2e:c3: 1a:a4:3c:63:72:bc:b4:09:59:4f:9d:6c:a1:fb:dd: 8c:9b:e8:db:5f:6c:0e:4e:36:31:1a:cc:01:d9:a3: da:2c:a5:52:9d:fc:93:c8:b2:83:89:9c:07:c6:09: 1f:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:28:F4:FB:BD:71:99:26:67:1D:5F:8E:12:C5:2F:6F:C8:E0:07:5D X509v3 Authority Key Identifier: keyid:88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a323a3a2f34382d3438203d3e20313338383834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:ce40:2::/48 Signature Algorithm: sha256WithRSAEncryption a5:f0:78:d7:82:03:33:01:1d:e8:4c:39:14:8c:74:28:42:b8: 5f:31:13:ed:80:93:4b:79:96:a1:64:74:2b:0a:32:2a:1f:0f: f3:cf:96:92:87:84:47:28:90:5a:b0:58:9d:57:e7:c9:f7:ab: 87:7d:e7:02:66:d7:df:b4:fd:c5:0e:80:c1:1a:17:b9:29:f3: 87:0d:0d:ac:56:5e:a9:d7:de:fa:1b:6d:b4:4e:2f:98:72:fe: 76:ae:b9:f1:c1:d4:93:7d:47:f4:16:b0:24:48:f5:e5:09:00: 3d:48:aa:63:a4:9d:c4:a8:bf:c9:d9:b2:d7:e1:50:8d:e2:f7: e0:56:46:2a:83:0a:89:a6:db:6b:66:40:ef:28:31:f2:41:c2: 7a:5c:30:36:c1:9a:13:6a:db:61:cb:1e:00:3d:c0:c2:9f:0c: 18:fa:6c:8c:dc:d5:8d:49:17:3c:4d:fe:12:b6:35:dc:da:3e: 48:49:d5:e4:3e:94:88:41:d4:5a:60:4e:a2:28:f0:3c:8f:b9: a0:b4:1c:8e:55:1b:57:11:08:1b:d0:68:5f:4a:f7:1c:a4:f1: ea:90:a4:d4:da:78:8b:da:e3:95:9f:9b:03:5b:6d:44:8d:31: 2a:3f:a4:cc:ff:b5:bd:1a:04:66:0f:be:2f:66:0c:98:68:62: 9c:8b:cd:b1 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUXdwVDraoRSnk0k53cpwPzWJe5WYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1 MjI0OUIzRTAeFw0yMzEwMTQxNzU1MDFaFw0yNDEwMTIxODAwMDFaMDMxMTAvBgNV BAMTKDU3MjhGNEZCQkQ3MTk5MjY2NzFENUY4RTEyQzUyRjZGQzhFMDA3NUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKD9Czney55LsXl1yrlziq+ZqD DHuDm+clfBiCkelSV+FsonKbfBUPyjn0YPY7GhlsY/IcWnSOep9TOXyJzEYPybcu J2hXBLoIWcBZRYP9qClwCaNGcdJikFNJ7Vi+QAi7DTqzI/G7q24wvUDePtASVnNT pcJSDByr7RcAglVZUTtL07Ybj/9YCiw5LJhxxuPUHP7Iann841tfR53bsnEJf0WO G4CuGq9TzlEcZtCTyNVZPcsNoE9c2lTQtXSc7cw5O3WV05xH51HUG65RnEEuwxqk PGNyvLQJWU+dbKH73Yyb6NtfbA5ONjEazAHZo9ospVKd/JPIsoOJnAfGCR89AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUVyj0+71xmSZnHV+OEsUvb8jgB10wHwYDVR0j BBgwFoAUiL0arqFtiiRVBBbNuV4jIVIkmz4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjBjNmQ2OS02MjkwLTQwMmYtYTg0ZS1kMjg5YzZlOTNhNzMvMC84OEJEMUFBRUEx NkQ4QTI0NTUwNDE2Q0RCOTVFMjMyMTUyMjQ5QjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1MjI0 OUIzRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyMGM2ZDY5LTYyOTAtNDAyZi1h ODRlLWQyODljNmU5M2E3My8wLzMyMzQzMDM0M2E2MzY1MzQzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODM4MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBM5AAAIw DQYJKoZIhvcNAQELBQADggEBAKXweNeCAzMBHehMORSMdChCuF8xE+2Ak0t5lqFk dCsKMiofD/PPlpKHhEcokFqwWJ1X58n3q4d95wJm19+0/cUOgMEaF7kp84cNDaxW XqnX3vobbbROL5hy/nauufHB1JN9R/QWsCRI9eUJAD1IqmOkncSov8nZstfhUI3i 9+BWRiqDComm22tmQO8oMfJBwnpcMDbBmhNq22HLHgA9wMKfDBj6bIzc1Y1JFzxN /hK2NdzaPkhJ1eQ+lIhB1FpgTqIo8DyPuaC0HI5VG1cRCBvQaF9K9xyk8eqQpNTa eIva45WfmwNbbUSNMSo/pMz/tb0aBGYPvi9mDJhoYpyLzbE= -----END CERTIFICATE-----Generated at Sat Jun 1 09:09:43 2024 by rpki-client on console-fra.rpki-client.org