$ rpki-client -vvf repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/323430323a633330303a3a2f33322d3438203d3e203535363533.roa File: 323430323a633330303a3a2f33322d3438203d3e203535363533.roa (raw, json) Hash identifier: /zt3GRiJNj5wGbh/aOYj3PZCyOkoiz6T/zzdS4RgYm4= Subject key identifier: F3:87:83:80:E3:E9:87:F6:AF:3C:09:D5:89:F0:83:28:C6:CF:7D:98 Certificate issuer: /CN=FC646066A689B77054AF95653FA324395357E6A3 Certificate serial: 651FE9E7D3997AAD0631EA5F78B813578C1E6B45 Authority key identifier: FC:64:60:66:A6:89:B7:70:54:AF:95:65:3F:A3:24:39:53:57:E6:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/323430323a633330303a3a2f33322d3438203d3e203535363533.roa Signing time: Mon 31 Jul 2023 00:08:23 +0000 ROA not before: Mon 31 Jul 2023 00:03:23 +0000 ROA not after: Mon 29 Jul 2024 00:08:23 +0000 asID: 55653 IP address blocks: 2402:c300::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.crl rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 03:58:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:1f:e9:e7:d3:99:7a:ad:06:31:ea:5f:78:b8:13:57:8c:1e:6b:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FC646066A689B77054AF95653FA324395357E6A3 Validity Not Before: Jul 31 00:03:23 2023 GMT Not After : Jul 29 00:08:23 2024 GMT Subject: CN=F3878380E3E987F6AF3C09D589F08328C6CF7D98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:de:3d:db:9a:4f:12:72:e6:6d:05:40:28:61: ba:08:c4:dc:43:16:84:b0:e4:c9:eb:1c:0b:30:4b: b3:57:c0:96:f7:c6:ae:07:9e:c5:19:89:11:fc:dd: 38:14:0f:2f:02:0d:62:5d:61:ba:19:a0:6a:a8:53: 7e:69:a3:b8:ec:95:6e:97:d5:36:81:e6:25:6c:51: fe:81:ef:82:e5:53:92:f2:8c:ab:64:84:9a:36:16: ed:a2:9d:81:ab:1a:65:c2:1b:f2:83:3c:25:db:b7: 0c:08:6e:a5:46:b4:05:1d:bf:6a:90:12:35:0d:25: f7:ea:d6:41:16:74:d2:93:09:db:52:5a:2d:5c:92: 13:65:d7:e2:b6:42:bb:e6:54:7e:f0:1e:6e:53:ca: 13:ef:f0:14:1c:f6:7c:ce:0f:b8:94:1d:6b:df:96: d8:df:c3:d0:a3:d2:d8:67:50:16:17:26:2c:be:69: 74:05:5c:57:09:dd:b6:68:45:5f:44:17:47:e1:e4: 27:2d:47:da:ae:20:7d:7b:e7:3c:89:c3:b6:c3:30: 2e:67:f7:36:9d:5e:df:ef:e7:a6:64:3b:42:b1:f2: 88:73:23:a1:e2:15:63:df:ef:e5:86:7c:05:03:74: 77:43:61:66:1c:c7:8a:3c:49:37:f4:28:c8:ea:ef: 86:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:87:83:80:E3:E9:87:F6:AF:3C:09:D5:89:F0:83:28:C6:CF:7D:98 X509v3 Authority Key Identifier: keyid:FC:64:60:66:A6:89:B7:70:54:AF:95:65:3F:A3:24:39:53:57:E6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/323430323a633330303a3a2f33322d3438203d3e203535363533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:c300::/32 Signature Algorithm: sha256WithRSAEncryption 2a:87:0c:be:b7:26:bf:4c:a2:3c:56:11:4a:d6:8b:4c:cc:ba: 6c:cf:8a:cd:96:c0:1c:ac:7e:a4:05:fd:11:0d:d1:19:c7:75: 44:df:09:61:76:27:ca:71:ee:98:12:6b:d3:66:83:e4:a3:b3: 2b:c0:e1:24:53:6a:76:2b:04:a5:3c:8e:47:a4:2b:ce:7d:a2: 3a:b6:26:26:16:9a:9b:c9:b4:ed:2e:c4:25:68:f2:09:23:d4: 44:94:32:2c:a1:f0:0e:2b:f3:12:48:4a:3e:c0:ad:99:d8:06: 7f:93:05:f5:e8:07:f9:b7:70:a1:ec:50:b5:eb:23:ce:cd:11: 12:df:c4:f8:55:ec:3a:fa:14:6f:b4:fd:f6:fb:c0:a0:46:fe: 9b:16:07:1c:47:dc:d3:50:2d:4f:9b:09:12:54:80:1a:18:ce: ac:5e:1c:66:2a:19:d7:63:25:5a:d1:03:56:78:d9:23:a1:c7: a0:b3:da:70:9e:33:d4:b2:17:6d:1e:04:d9:40:16:ca:b4:7a: 3c:16:70:b6:ad:fe:b1:ff:b8:f8:f2:af:23:2a:87:66:b3:a8: 8e:5d:0c:ca:6f:af:26:ca:93:a1:3f:a9:ee:1f:14:3d:8c:34: 1e:8b:14:fb:b7:20:be:0d:84:bc:85:90:51:d2:fd:6e:e7:14: 6f:4b:97:ab -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUZR/p59OZeq0GMepfeLgTV4wea0UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkM2NDYwNjZBNjg5Qjc3MDU0QUY5NTY1M0ZBMzI0Mzk1 MzU3RTZBMzAeFw0yMzA3MzEwMDAzMjNaFw0yNDA3MjkwMDA4MjNaMDMxMTAvBgNV BAMTKEYzODc4MzgwRTNFOTg3RjZBRjNDMDlENTg5RjA4MzI4QzZDRjdEOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE3j3bmk8ScuZtBUAoYboIxNxD FoSw5MnrHAswS7NXwJb3xq4HnsUZiRH83TgUDy8CDWJdYboZoGqoU35po7jslW6X 1TaB5iVsUf6B74LlU5LyjKtkhJo2Fu2inYGrGmXCG/KDPCXbtwwIbqVGtAUdv2qQ EjUNJffq1kEWdNKTCdtSWi1ckhNl1+K2QrvmVH7wHm5TyhPv8BQc9nzOD7iUHWvf ltjfw9Cj0thnUBYXJiy+aXQFXFcJ3bZoRV9EF0fh5CctR9quIH175zyJw7bDMC5n 9zadXt/v56ZkO0Kx8ohzI6HiFWPf7+WGfAUDdHdDYWYcx4o8STf0KMjq74ZTAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQU84eDgOPph/avPAnVifCDKMbPfZgwHwYDVR0j BBgwFoAU/GRgZqaJt3BUr5VlP6MkOVNX5qMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OTc0NjVlMy03OGEwLTQ5NjUtYWUxNC1lNGNiNGQwZmMxODUvMC9GQzY0NjA2NkE2 ODlCNzcwNTRBRjk1NjUzRkEzMjQzOTUzNTdFNkEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkM2NDYwNjZBNjg5Qjc3MDU0QUY5NTY1M0ZBMzI0Mzk1MzU3 RTZBMy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M5NzQ2NWUzLTc4YTAtNDk2NS1h ZTE0LWU0Y2I0ZDBmYzE4NS8wLzMyMzQzMDMyM2E2MzMzMzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM1MzUzNjM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAsMAMA0GCSqGSIb3 DQEBCwUAA4IBAQAqhwy+tya/TKI8VhFK1otMzLpsz4rNlsAcrH6kBf0RDdEZx3VE 3wlhdifKce6YEmvTZoPko7MrwOEkU2p2KwSlPI5HpCvOfaI6tiYmFpqbybTtLsQl aPIJI9RElDIsofAOK/MSSEo+wK2Z2AZ/kwX16Af5t3Ch7FC16yPOzRES38T4Vew6 +hRvtP32+8CgRv6bFgccR9zTUC1PmwkSVIAaGM6sXhxmKhnXYyVa0QNWeNkjoceg s9pwnjPUshdtHgTZQBbKtHo8FnC2rf6x/7j48q8jKodms6iOXQzKb68mypOhP6nu HxQ9jDQeixT7tyC+DYS8hZBR0v1u5xRvS5er -----END CERTIFICATE-----Generated at Sun Jun 2 03:35:02 2024 by rpki-client on console-fra.rpki-client.org