$ rpki-client -vvf repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/323430353a633763303a3a2f33322d3332203d3e20313339393738.roa File: 323430353a633763303a3a2f33322d3332203d3e20313339393738.roa (raw, json) Hash identifier: wFJ0ba8HuNB/OKXoQmP64RpXh53KiHLMWS+Nt/Tbzv0= Subject key identifier: 0A:3D:24:4B:BC:4E:26:AA:91:56:7D:49:EF:A6:5B:DC:77:8D:95:E7 Certificate issuer: /CN=8603B0F726A05AB356D10DB170BD8E27963AFE1A Certificate serial: 7AC6EF19C71554F0210FC796F722BD42AADCAACC Authority key identifier: 86:03:B0:F7:26:A0:5A:B3:56:D1:0D:B1:70:BD:8E:27:96:3A:FE:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8603B0F726A05AB356D10DB170BD8E27963AFE1A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/323430353a633763303a3a2f33322d3332203d3e20313339393738.roa Signing time: Thu 20 Jun 2024 05:00:00 +0000 ROA not before: Thu 20 Jun 2024 04:55:00 +0000 ROA not after: Thu 19 Jun 2025 05:00:00 +0000 asID: 139978 IP address blocks: 2405:c7c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.crl rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8603B0F726A05AB356D10DB170BD8E27963AFE1A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:c6:ef:19:c7:15:54:f0:21:0f:c7:96:f7:22:bd:42:aa:dc:aa:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8603B0F726A05AB356D10DB170BD8E27963AFE1A Validity Not Before: Jun 20 04:55:00 2024 GMT Not After : Jun 19 05:00:00 2025 GMT Subject: CN=0A3D244BBC4E26AA91567D49EFA65BDC778D95E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:0e:33:46:76:7a:57:3e:3c:54:17:d2:ef:42: 7c:15:c3:a3:2d:01:a8:f7:b9:59:ca:5e:9b:b6:4a: c0:ed:23:b0:c1:29:d7:2c:01:7f:c4:ac:9f:37:b7: 30:ad:f6:e0:1b:c4:93:56:c8:d1:54:92:46:c0:e6: ae:cb:46:56:17:60:5e:1f:e0:92:36:c6:54:d0:d8: 16:25:8d:77:73:84:06:03:86:b9:81:1b:e7:6a:1e: c6:7f:80:88:4e:3b:ba:81:ce:82:29:dc:22:cb:b8: 21:88:8e:d9:2b:01:d8:6d:2b:35:4c:76:d6:47:10: 54:b7:8e:a1:a7:9e:0f:2d:d4:81:dd:8f:4d:06:e7: 20:ed:26:6c:ca:12:57:01:1c:5f:70:70:73:95:aa: 0a:f8:a3:e2:a5:1e:63:f3:4f:4f:22:1a:77:7f:7f: 45:b5:9a:5a:9b:48:87:82:7b:90:c6:28:db:2a:9f: 17:9c:e3:f6:a1:22:1c:58:7b:c8:7c:14:ce:c4:92: 59:3f:95:15:76:e8:51:b7:c8:70:ab:97:51:fe:d8: 9b:15:9b:52:20:de:d4:ec:ff:fd:27:00:9e:94:c4: 37:67:c6:76:b4:da:1b:7a:67:b9:5b:43:53:9d:4a: e9:ec:59:bb:db:48:82:f6:30:93:ca:5a:01:9c:57: e1:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:3D:24:4B:BC:4E:26:AA:91:56:7D:49:EF:A6:5B:DC:77:8D:95:E7 X509v3 Authority Key Identifier: keyid:86:03:B0:F7:26:A0:5A:B3:56:D1:0D:B1:70:BD:8E:27:96:3A:FE:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8603B0F726A05AB356D10DB170BD8E27963AFE1A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/323430353a633763303a3a2f33322d3332203d3e20313339393738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c7c0::/32 Signature Algorithm: sha256WithRSAEncryption b2:e6:e3:2f:0b:bf:d1:11:3d:d8:53:2a:b1:42:5f:2f:f2:2e: 8c:fd:ae:5f:95:92:4c:1e:9a:63:f3:dc:f2:24:09:36:26:a7: 6c:af:38:f4:8d:df:03:b3:0a:ac:54:be:78:73:43:66:c1:73: f6:2f:52:b3:05:2b:d0:7c:54:fa:82:3f:2d:d3:d7:10:42:d8: 3a:62:17:f1:e0:6d:9d:ca:22:f9:91:dc:c9:ba:b5:51:ec:be: 35:9d:a9:c4:72:6d:71:e5:40:1e:c2:d0:e6:19:53:2f:d8:a2: ed:5a:8c:66:cc:fb:08:30:77:6a:9b:e9:44:96:a6:93:c9:6e: 35:84:b3:7e:14:a8:af:1d:59:32:a9:79:09:07:01:00:d4:ce: c6:60:d8:ca:a8:1d:39:5e:65:c1:80:21:27:e9:1e:33:52:8f: 65:0e:50:05:2a:49:91:b0:05:b2:4a:ab:cf:a9:45:23:ed:bc: aa:a6:da:b7:ac:f6:70:fe:7a:6d:1a:be:c3:0a:4a:24:36:bd: a9:12:bb:4d:89:bf:3b:c3:70:d0:d4:fd:b3:64:a3:7b:ef:b1: 1f:dd:6d:d4:b5:2f:ee:42:dd:5b:01:5c:86:48:0c:1f:e1:74: 82:fc:4c:55:0d:c8:1a:0f:8b:32:c4:ef:a3:6d:d8:4b:ff:86: f8:8e:9a:3f -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUesbvGccVVPAhD8eW9yK9QqrcqswwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODYwM0IwRjcyNkEwNUFCMzU2RDEwREIxNzBCRDhFMjc5 NjNBRkUxQTAeFw0yNDA2MjAwNDU1MDBaFw0yNTA2MTkwNTAwMDBaMDMxMTAvBgNV BAMTKDBBM0QyNDRCQkM0RTI2QUE5MTU2N0Q0OUVGQTY1QkRDNzc4RDk1RTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRDjNGdnpXPjxUF9LvQnwVw6Mt Aaj3uVnKXpu2SsDtI7DBKdcsAX/ErJ83tzCt9uAbxJNWyNFUkkbA5q7LRlYXYF4f 4JI2xlTQ2BYljXdzhAYDhrmBG+dqHsZ/gIhOO7qBzoIp3CLLuCGIjtkrAdhtKzVM dtZHEFS3jqGnng8t1IHdj00G5yDtJmzKElcBHF9wcHOVqgr4o+KlHmPzT08iGnd/ f0W1mlqbSIeCe5DGKNsqnxec4/ahIhxYe8h8FM7Eklk/lRV26FG3yHCrl1H+2JsV m1Ig3tTs//0nAJ6UxDdnxna02ht6Z7lbQ1OdSunsWbvbSIL2MJPKWgGcV+HjAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUCj0kS7xOJqqRVn1J76Zb3HeNlecwHwYDVR0j BBgwFoAUhgOw9yagWrNW0Q2xcL2OJ5Y6/howDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i N2I4N2Y2ZC0yOWE3LTRiNGMtODFjNy01YjRjYmRiMmNiNmEvMC84NjAzQjBGNzI2 QTA1QUIzNTZEMTBEQjE3MEJEOEUyNzk2M0FGRTFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODYwM0IwRjcyNkEwNUFCMzU2RDEwREIxNzBCRDhFMjc5NjNB RkUxQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I3Yjg3ZjZkLTI5YTctNGI0Yy04 MWM3LTViNGNiZGIyY2I2YS8wLzMyMzQzMDM1M2E2MzM3NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTM5MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFx8AwDQYJKoZI hvcNAQELBQADggEBALLm4y8Lv9ERPdhTKrFCXy/yLoz9rl+VkkwemmPz3PIkCTYm p2yvOPSN3wOzCqxUvnhzQ2bBc/YvUrMFK9B8VPqCPy3T1xBC2DpiF/HgbZ3KIvmR 3Mm6tVHsvjWdqcRybXHlQB7C0OYZUy/You1ajGbM+wgwd2qb6USWppPJbjWEs34U qK8dWTKpeQkHAQDUzsZg2MqoHTleZcGAISfpHjNSj2UOUAUqSZGwBbJKq8+pRSPt vKqm2res9nD+em0avsMKSiQ2vakSu02JvzvDcNDU/bNko3vvsR/dbdS1L+5C3VsB XIZIDB/hdIL8TFUNyBoPizLE76Nt2Ev/hviOmj8= -----END CERTIFICATE-----Generated at Sat Jun 22 16:30:38 2024 by rpki-client on console-fra.rpki-client.org