$ rpki-client -vvf repo-rpki.idnic.net/repo/bd35bf79-e84a-40e0-8fd4-f169c186be8f/0/323430323a366163303a3a2f33332d3333203d3e20313337333036.roa File: 323430323a366163303a3a2f33332d3333203d3e20313337333036.roa (raw, json) Hash identifier: dGFcOwuJc3sxZNBXW4em6ieDVWOaG57d7vuP85aTJT8= Subject key identifier: 65:B1:BB:A0:AD:2E:5F:25:0A:A1:3E:2F:BD:0C:3F:24:EF:CB:99:81 Certificate issuer: /CN=E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014 Certificate serial: 3C0958F178F88011C4D9A255807975D30D06EAE8 Authority key identifier: E7:26:22:AE:0F:69:B4:CD:AB:C9:CD:22:3B:3E:06:C7:DC:5E:10:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd35bf79-e84a-40e0-8fd4-f169c186be8f/0/323430323a366163303a3a2f33332d3333203d3e20313337333036.roa Signing time: Mon 31 Jul 2023 00:03:05 +0000 ROA not before: Sun 30 Jul 2023 23:58:05 +0000 ROA not after: Mon 29 Jul 2024 00:03:05 +0000 asID: 137306 IP address blocks: 2402:6ac0::/33 maxlen: 33 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd35bf79-e84a-40e0-8fd4-f169c186be8f/0/E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014.crl rsync://repo-rpki.idnic.net/repo/bd35bf79-e84a-40e0-8fd4-f169c186be8f/0/E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 27 Jun 2024 04:25:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:09:58:f1:78:f8:80:11:c4:d9:a2:55:80:79:75:d3:0d:06:ea:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014 Validity Not Before: Jul 30 23:58:05 2023 GMT Not After : Jul 29 00:03:05 2024 GMT Subject: CN=65B1BBA0AD2E5F250AA13E2FBD0C3F24EFCB9981 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:59:e6:b7:2b:33:ad:4a:23:1b:4c:f1:e9:1e: c1:b2:9a:cf:9f:a0:8f:8c:d9:52:29:67:cd:de:d6: 9d:ec:e4:d4:6f:e2:9f:31:f0:f6:c9:96:a5:c5:49: d8:b2:66:d4:46:b9:f9:ac:19:62:64:d8:ba:e8:23: 74:0c:57:9e:b1:07:57:10:e6:08:6f:3d:f6:0f:73: 6e:a5:bd:05:62:fd:b7:8a:90:ec:3b:2e:e8:f2:e6: d4:f3:49:4c:91:a9:2a:ae:89:24:77:ed:c8:89:94: 72:b5:76:4a:64:01:55:80:3c:9d:e9:e1:f7:5e:57: 9e:6c:d8:51:8d:fe:91:b6:14:84:1d:4c:91:b1:f7: 89:7d:7a:a3:7a:36:57:d9:e9:86:b9:9b:8c:6d:df: 7c:27:f5:32:61:d7:d6:bb:41:6f:70:57:61:69:12: 2f:b2:7d:7c:f1:1b:44:b9:ff:c9:58:30:41:9a:12: f8:37:7b:ad:6b:d2:c9:0b:5d:e7:75:e8:09:59:ab: 9f:05:77:53:f9:0c:20:b8:dc:5c:60:8b:b5:0d:8c: 90:b1:d3:69:26:f0:53:b1:bf:65:e3:d7:58:eb:4b: 60:52:a8:4d:c5:4f:37:19:ba:7c:6f:9d:c7:e5:ee: 30:6e:23:6d:7c:70:51:59:d7:f5:0b:7a:c8:22:89: 33:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:B1:BB:A0:AD:2E:5F:25:0A:A1:3E:2F:BD:0C:3F:24:EF:CB:99:81 X509v3 Authority Key Identifier: keyid:E7:26:22:AE:0F:69:B4:CD:AB:C9:CD:22:3B:3E:06:C7:DC:5E:10:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd35bf79-e84a-40e0-8fd4-f169c186be8f/0/E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd35bf79-e84a-40e0-8fd4-f169c186be8f/0/323430323a366163303a3a2f33332d3333203d3e20313337333036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:6ac0::/33 Signature Algorithm: sha256WithRSAEncryption 3b:16:75:7f:8e:f8:41:43:7f:ab:39:58:6d:25:b6:64:9a:ef: 33:cb:30:b0:57:48:54:7e:da:ed:81:b9:53:83:7c:a4:46:2e: 1f:e2:5d:0a:f2:15:c6:61:d0:b1:c3:3e:3f:34:c6:b6:77:04: e7:5d:d2:0f:8c:2a:3f:f5:f5:9d:41:17:4d:3e:eb:db:56:4a: 44:94:89:a3:71:7d:dd:a0:ae:2a:82:b0:d2:c0:f6:e9:ec:5a: 0d:3b:87:8b:2d:cb:f9:05:1b:95:e8:c5:2d:73:3f:31:2f:8b: f2:bd:b0:f3:ce:4e:9d:9f:96:89:b1:61:30:f3:61:0f:70:69: 19:de:f2:56:0a:1a:b5:15:95:c6:68:4e:6a:f3:07:2e:58:d4: 16:9f:ae:51:5a:9f:03:4c:9e:69:3f:5c:59:66:cb:40:c7:b4: af:c5:2d:05:2e:68:05:db:ea:2d:19:79:34:81:0e:dd:36:5d: 69:f5:ae:bf:07:d7:2b:99:06:63:65:5f:4f:15:5a:33:00:dd: e8:56:4d:91:43:59:cf:65:b6:53:b0:8b:65:7b:0c:93:13:f4: 45:f9:21:81:3c:d0:9b:78:5a:9b:9e:dc:c4:ff:b0:08:a4:90: 11:99:64:4b:53:00:14:db:1e:73:a4:5a:6c:0e:10:e5:e6:2f: bb:0a:38:49 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPAlY8Xj4gBHE2aJVgHl10w0G6ugwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTcyNjIyQUUwRjY5QjRDREFCQzlDRDIyM0IzRTA2QzdE QzVFMTAxNDAeFw0yMzA3MzAyMzU4MDVaFw0yNDA3MjkwMDAzMDVaMDMxMTAvBgNV BAMTKDY1QjFCQkEwQUQyRTVGMjUwQUExM0UyRkJEMEMzRjI0RUZDQjk5ODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDWea3KzOtSiMbTPHpHsGyms+f oI+M2VIpZ83e1p3s5NRv4p8x8PbJlqXFSdiyZtRGufmsGWJk2LroI3QMV56xB1cQ 5ghvPfYPc26lvQVi/beKkOw7Lujy5tTzSUyRqSquiSR37ciJlHK1dkpkAVWAPJ3p 4fdeV55s2FGN/pG2FIQdTJGx94l9eqN6NlfZ6Ya5m4xt33wn9TJh19a7QW9wV2Fp Ei+yfXzxG0S5/8lYMEGaEvg3e61r0skLXed16AlZq58Fd1P5DCC43Fxgi7UNjJCx 02km8FOxv2Xj11jrS2BSqE3FTzcZunxvncfl7jBuI218cFFZ1/ULesgiiTNRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZbG7oK0uXyUKoT4vvQw/JO/LmYEwHwYDVR0j BBgwFoAU5yYirg9ptM2ryc0iOz4Gx9xeEBQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDM1YmY3OS1lODRhLTQwZTAtOGZkNC1mMTY5YzE4NmJlOGYvMC9FNzI2MjJBRTBG NjlCNENEQUJDOUNEMjIzQjNFMDZDN0RDNUUxMDE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTcyNjIyQUUwRjY5QjRDREFCQzlDRDIyM0IzRTA2QzdEQzVF MTAxNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkMzViZjc5LWU4NGEtNDBlMC04 ZmQ0LWYxNjljMTg2YmU4Zi8wLzMyMzQzMDMyM2EzNjYxNjMzMDNhM2EyZjMzMzMy ZDMzMzMyMDNkM2UyMDMxMzMzNzMzMzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGByQCasAAMA0GCSqG SIb3DQEBCwUAA4IBAQA7FnV/jvhBQ3+rOVhtJbZkmu8zyzCwV0hUftrtgblTg3yk Ri4f4l0K8hXGYdCxwz4/NMa2dwTnXdIPjCo/9fWdQRdNPuvbVkpElImjcX3doK4q grDSwPbp7FoNO4eLLcv5BRuV6MUtcz8xL4vyvbDzzk6dn5aJsWEw82EPcGkZ3vJW Chq1FZXGaE5q8wcuWNQWn65RWp8DTJ5pP1xZZstAx7SvxS0FLmgF2+otGXk0gQ7d Nl1p9a6/B9crmQZjZV9PFVozAN3oVk2RQ1nPZbZTsItlewyTE/RF+SGBPNCbeFqb ntzE/7AIpJARmWRLUwAU2x5zpFpsDhDl5i+7CjhJ -----END CERTIFICATE-----Generated at Mon Jun 24 07:04:35 2024 by rpki-client on console-fra.rpki-client.org