$ rpki-client -vvf repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/323430313a383234303a3a2f33322d3438203d3e203233393438.roa File: 323430313a383234303a3a2f33322d3438203d3e203233393438.roa (raw, json) Hash identifier: APlG7e5tjJPxVdMdTQzq0hjcjjgmMWw7YVTTeUtBysI= Subject key identifier: 1B:95:FB:6C:E8:F6:CD:02:A2:E6:76:E7:AE:28:5D:14:FD:9E:1F:50 Certificate issuer: /CN=20B00D67B048DAE581FE60A498995A27878149A7 Certificate serial: 7285A0EF7778F2127B14FD8916E9566BA7BBC84B Authority key identifier: 20:B0:0D:67:B0:48:DA:E5:81:FE:60:A4:98:99:5A:27:87:81:49:A7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/323430313a383234303a3a2f33322d3438203d3e203233393438.roa Signing time: Wed 27 Dec 2023 11:00:01 +0000 ROA not before: Wed 27 Dec 2023 10:55:01 +0000 ROA not after: Wed 25 Dec 2024 11:00:01 +0000 asID: 23948 IP address blocks: 2401:8240::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.crl rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:24:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:85:a0:ef:77:78:f2:12:7b:14:fd:89:16:e9:56:6b:a7:bb:c8:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20B00D67B048DAE581FE60A498995A27878149A7 Validity Not Before: Dec 27 10:55:01 2023 GMT Not After : Dec 25 11:00:01 2024 GMT Subject: CN=1B95FB6CE8F6CD02A2E676E7AE285D14FD9E1F50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:03:2d:61:35:c7:3a:d1:62:b5:73:1d:a8:db: da:15:d6:66:b0:cc:ce:e3:f7:6d:27:27:bc:eb:fb: 70:81:8c:95:df:ce:09:91:25:8e:bd:7b:01:6c:24: 07:7e:60:ca:63:5f:83:a8:da:a5:f7:7c:a3:b2:a7: c5:26:be:b0:f4:79:d8:7d:54:09:ea:7b:98:59:f3: 3f:4a:89:2d:6d:41:37:46:1e:67:3d:a0:83:2c:1f: 7a:e8:ba:c3:eb:49:ca:6f:28:e2:26:96:1a:2c:e9: b1:4a:96:19:08:f1:6f:09:c7:ec:70:19:89:f0:01: c4:e1:f3:a4:ba:d6:3f:4f:4e:7a:6f:c5:cf:a8:13: 55:b4:e8:3f:41:14:02:07:dd:3e:52:f3:f4:c6:cf: f0:c8:25:56:3a:46:58:94:c3:d6:97:b0:45:43:7f: b2:58:d1:65:cc:35:28:c5:7b:08:b7:6c:f4:c4:bc: 8e:e3:f0:51:dd:55:4a:02:0c:d7:74:32:e3:4f:ad: 0e:f5:14:19:ec:fc:15:49:13:28:2b:c8:b0:1c:ea: c5:29:49:ea:cd:d2:49:84:ed:e7:bb:80:17:59:06: b5:ef:41:74:21:d7:47:7d:7f:a2:cf:d1:0e:e0:bd: 57:3e:73:f6:9c:cf:aa:63:2a:20:a0:2b:46:d9:b4: 5a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:95:FB:6C:E8:F6:CD:02:A2:E6:76:E7:AE:28:5D:14:FD:9E:1F:50 X509v3 Authority Key Identifier: keyid:20:B0:0D:67:B0:48:DA:E5:81:FE:60:A4:98:99:5A:27:87:81:49:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/323430313a383234303a3a2f33322d3438203d3e203233393438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:8240::/32 Signature Algorithm: sha256WithRSAEncryption 35:54:5d:fb:76:b4:2e:38:36:e8:7c:43:e6:7e:e9:2b:52:5f: 12:f6:f7:14:f0:c0:b5:aa:d1:7f:e2:87:a7:47:8b:cc:5e:f5: 6c:d9:8a:e0:c3:62:53:65:ff:63:94:6f:a6:29:53:45:5b:3e: ab:4f:3b:5a:36:3a:8c:f8:c7:76:4b:77:a7:ee:ba:27:5b:10: 61:e6:85:a7:bd:93:30:dd:81:44:98:db:57:d5:cf:ba:a5:fd: 79:6e:6a:c0:d0:37:40:c5:29:4c:f8:c4:23:ca:39:b6:2e:f7: 1a:e1:4b:a9:b5:29:f4:85:1d:b4:38:0e:0e:05:45:3d:1e:22: 78:26:4c:d7:8b:31:78:94:8e:e6:30:f8:0d:11:2a:c2:ec:f8: ed:fc:47:a1:0e:0f:1f:63:fd:5d:a1:01:47:de:b4:34:35:b5: 25:81:ca:73:3a:0f:70:19:37:bb:12:3e:13:46:2f:9f:94:16: 62:1e:1e:ba:d8:63:e7:ba:11:e7:69:03:96:07:d8:6f:63:d6: ea:c1:a6:ee:14:73:80:a5:e2:ab:4a:23:83:8d:92:ac:e3:8a: ff:72:25:a8:22:eb:f4:86:01:ea:be:5f:88:71:a1:03:7e:07: e7:31:e7:8d:11:de:a2:d8:2c:07:df:6a:bb:21:61:f2:b6:df: 74:57:36:5a -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUcoWg73d48hJ7FP2JFulWa6e7yEswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVBMjc4 NzgxNDlBNzAeFw0yMzEyMjcxMDU1MDFaFw0yNDEyMjUxMTAwMDFaMDMxMTAvBgNV BAMTKDFCOTVGQjZDRThGNkNEMDJBMkU2NzZFN0FFMjg1RDE0RkQ5RTFGNTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5Ay1hNcc60WK1cx2o29oV1maw zM7j920nJ7zr+3CBjJXfzgmRJY69ewFsJAd+YMpjX4Oo2qX3fKOyp8UmvrD0edh9 VAnqe5hZ8z9KiS1tQTdGHmc9oIMsH3rousPrScpvKOImlhos6bFKlhkI8W8Jx+xw GYnwAcTh86S61j9PTnpvxc+oE1W06D9BFAIH3T5S8/TGz/DIJVY6RliUw9aXsEVD f7JY0WXMNSjFewi3bPTEvI7j8FHdVUoCDNd0MuNPrQ71FBns/BVJEygryLAc6sUp SerN0kmE7ee7gBdZBrXvQXQh10d9f6LP0Q7gvVc+c/acz6pjKiCgK0bZtFoRAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUG5X7bOj2zQKi5nbnrihdFP2eH1AwHwYDVR0j BBgwFoAUILANZ7BI2uWB/mCkmJlaJ4eBSacwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NDU0NzEwNC05MzllLTQwZTMtOGZjOC00MjUyMjY0MjA0NGIvMC8yMEIwMEQ2N0Iw NDhEQUU1ODFGRTYwQTQ5ODk5NUEyNzg3ODE0OUE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVBMjc4Nzgx NDlBNy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M0NTQ3MTA0LTkzOWUtNDBlMy04 ZmM4LTQyNTIyNjQyMDQ0Yi8wLzMyMzQzMDMxM2EzODMyMzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMyMzMzOTM0Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAYJAMA0GCSqGSIb3 DQEBCwUAA4IBAQA1VF37drQuODbofEPmfukrUl8S9vcU8MC1qtF/4oenR4vMXvVs 2Yrgw2JTZf9jlG+mKVNFWz6rTztaNjqM+Md2S3en7ronWxBh5oWnvZMw3YFEmNtX 1c+6pf15bmrA0DdAxSlM+MQjyjm2Lvca4UuptSn0hR20OA4OBUU9HiJ4JkzXizF4 lI7mMPgNESrC7Pjt/EehDg8fY/1doQFH3rQ0NbUlgcpzOg9wGTe7Ej4TRi+flBZi Hh662GPnuhHnaQOWB9hvY9bqwabuFHOApeKrSiODjZKs44r/ciWoIuv0hgHqvl+I caEDfgfnMeeNEd6i2CwH32q7IWHytt90VzZa -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:57 2024 by rpki-client on console-ams.rpki-client.org