$ rpki-client -vvf repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a3a2f34382d3438203d3e20313338383834.roa File: 323430343a636534303a3a2f34382d3438203d3e20313338383834.roa (raw, json) Hash identifier: OvdBPdZUJDsIK6X0rtWJogIrqQZ2101X3HuFH2GWr2c= Subject key identifier: 97:FF:6E:C2:27:F2:52:5D:F6:1D:69:43:B0:2E:2C:53:94:E6:E9:61 Certificate issuer: /CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Certificate serial: 539A64B80D6B46FE05AADF76E2E820A1759FA201 Authority key identifier: 88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a3a2f34382d3438203d3e20313338383834.roa Signing time: Sat 14 Oct 2023 18:00:01 +0000 ROA not before: Sat 14 Oct 2023 17:55:01 +0000 ROA not after: Sat 12 Oct 2024 18:00:01 +0000 asID: 138884 IP address blocks: 2404:ce40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:9a:64:b8:0d:6b:46:fe:05:aa:df:76:e2:e8:20:a1:75:9f:a2:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Validity Not Before: Oct 14 17:55:01 2023 GMT Not After : Oct 12 18:00:01 2024 GMT Subject: CN=97FF6EC227F2525DF61D6943B02E2C5394E6E961 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:99:73:a4:5f:6b:27:da:a0:6b:cc:88:4f:1c: 6d:87:17:7a:f7:4c:80:8a:75:39:b0:4c:42:5b:8b: e1:e3:6e:aa:48:2a:86:03:c0:cb:bf:27:a3:58:f6: 4e:98:54:06:36:b0:85:15:8c:18:fc:6f:d2:fb:f7: 46:be:b7:18:18:e7:37:8b:45:76:e1:e7:f3:e2:3d: 25:5f:b1:50:dd:52:53:ab:0a:d9:b3:38:09:c9:03: 4c:31:4d:d8:03:71:1e:22:e0:d3:61:45:a9:45:de: 7c:6a:c0:6b:1e:5e:b7:94:28:f8:23:c3:fc:c1:8c: 6f:b3:96:bd:85:04:6b:c7:d0:85:53:50:83:36:c5: 23:58:60:eb:18:66:fb:1d:c3:c9:1a:87:11:83:ad: 47:a0:f7:ca:87:5b:de:84:ab:c6:4a:b8:74:ac:a7: 61:6c:4a:a1:03:93:b3:80:ca:60:89:d5:7b:a8:29: 3a:0f:ea:fb:66:23:02:f6:ad:8d:ec:f2:3a:09:7e: 6b:bc:e5:dc:a0:c3:ec:1d:34:02:e8:b4:3d:29:5d: 0e:3e:27:2e:f8:12:8c:64:23:7d:91:e4:ab:61:ab: db:33:70:70:4f:20:46:43:1b:72:e2:df:b4:b1:56: 45:26:7c:90:1b:a6:60:19:ab:ab:e0:29:f2:34:1a: 00:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:FF:6E:C2:27:F2:52:5D:F6:1D:69:43:B0:2E:2C:53:94:E6:E9:61 X509v3 Authority Key Identifier: keyid:88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a3a2f34382d3438203d3e20313338383834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:ce40::/48 Signature Algorithm: sha256WithRSAEncryption d8:77:0a:54:66:4c:e7:3b:49:1b:4b:f6:e1:80:67:da:43:6d: 2c:6d:6e:08:b4:7c:88:e7:ad:48:bb:70:56:b1:20:3d:b7:4e: 0c:d9:7e:2a:d5:61:b8:d5:de:cb:dd:90:b2:a0:79:6b:49:f0: c1:b6:96:c4:31:f6:55:33:1a:c1:11:91:07:d7:5f:bf:14:1d: f2:02:e0:3c:ab:0d:9c:da:f0:fc:e9:7f:4d:a1:aa:d3:2e:38: 1c:29:5d:ed:df:1a:6a:8a:d5:3b:02:4e:c7:bc:84:9a:e6:50: bf:07:25:3f:ec:ce:a2:3c:a1:cb:88:a5:27:3d:7d:3f:33:20: a1:b7:0f:b7:67:a6:9a:b0:70:47:9d:da:42:79:7e:fa:e7:30: dc:bc:ac:22:57:dc:ee:b4:ce:7b:d0:fe:b3:c6:06:50:63:a7: a9:48:45:e6:29:0f:d0:d7:cd:3e:bb:3f:c3:30:f1:8e:4e:13: 83:52:a2:97:9f:24:ac:88:1d:fa:cb:05:fe:1d:d4:44:be:d5: 40:16:3a:42:ba:a2:e9:70:bb:1e:0f:67:cf:7f:ea:66:12:45: 16:23:0c:20:53:f3:7b:05:d2:b2:70:61:8e:03:52:5b:6b:42: bf:4b:ca:e7:2e:1d:6b:66:8f:3f:da:42:eb:43:bb:6c:7a:a1: cd:9f:2a:4a -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUU5pkuA1rRv4Fqt924uggoXWfogEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1 MjI0OUIzRTAeFw0yMzEwMTQxNzU1MDFaFw0yNDEwMTIxODAwMDFaMDMxMTAvBgNV BAMTKDk3RkY2RUMyMjdGMjUyNURGNjFENjk0M0IwMkUyQzUzOTRFNkU5NjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRmXOkX2sn2qBrzIhPHG2HF3r3 TICKdTmwTEJbi+HjbqpIKoYDwMu/J6NY9k6YVAY2sIUVjBj8b9L790a+txgY5zeL RXbh5/PiPSVfsVDdUlOrCtmzOAnJA0wxTdgDcR4i4NNhRalF3nxqwGseXreUKPgj w/zBjG+zlr2FBGvH0IVTUIM2xSNYYOsYZvsdw8kahxGDrUeg98qHW96Eq8ZKuHSs p2FsSqEDk7OAymCJ1XuoKToP6vtmIwL2rY3s8joJfmu85dygw+wdNALotD0pXQ4+ Jy74EoxkI32R5Kthq9szcHBPIEZDG3Li37SxVkUmfJAbpmAZq6vgKfI0GgBXAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUl/9uwifyUl32HWlDsC4sU5Tm6WEwHwYDVR0j BBgwFoAUiL0arqFtiiRVBBbNuV4jIVIkmz4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjBjNmQ2OS02MjkwLTQwMmYtYTg0ZS1kMjg5YzZlOTNhNzMvMC84OEJEMUFBRUEx NkQ4QTI0NTUwNDE2Q0RCOTVFMjMyMTUyMjQ5QjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1MjI0 OUIzRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyMGM2ZDY5LTYyOTAtNDAyZi1h ODRlLWQyODljNmU5M2E3My8wLzMyMzQzMDM0M2E2MzY1MzQzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMxMzMzODM4MzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQEzkAAADANBgkq hkiG9w0BAQsFAAOCAQEA2HcKVGZM5ztJG0v24YBn2kNtLG1uCLR8iOetSLtwVrEg PbdODNl+KtVhuNXey92QsqB5a0nwwbaWxDH2VTMawRGRB9dfvxQd8gLgPKsNnNrw /Ol/TaGq0y44HCld7d8aaorVOwJOx7yEmuZQvwclP+zOojyhy4ilJz19PzMgobcP t2emmrBwR53aQnl++ucw3LysIlfc7rTOe9D+s8YGUGOnqUhF5ikP0NfNPrs/wzDx jk4Tg1Kil58krIgd+ssF/h3URL7VQBY6Qrqi6XC7Hg9nz3/qZhJFFiMMIFPzewXS snBhjgNSW2tCv0vK5y4da2aPP9pC60O7bHqhzZ8qSg== -----END CERTIFICATE-----Generated at Sat Jun 1 09:09:43 2024 by rpki-client on console-fra.rpki-client.org