$ rpki-client -vvf repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/323430363a376234303a3a2f33322d3438203d3e203538383231.roa File: 323430363a376234303a3a2f33322d3438203d3e203538383231.roa (raw, json) Hash identifier: H3BZfMLJ++968AkDGJzUVKNckBSAL3vvc3u9TVAEzVo= Subject key identifier: 05:D9:5E:F2:05:32:9A:1F:45:B3:AE:26:08:C6:8B:91:75:81:FB:D5 Certificate issuer: /CN=1D8D9CBC52934EF02BCD1D478AEBA6A368F80419 Certificate serial: 0D8445F1C3FDA8F0FB503410DE35DA890CC84550 Authority key identifier: 1D:8D:9C:BC:52:93:4E:F0:2B:CD:1D:47:8A:EB:A6:A3:68:F8:04:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/323430363a376234303a3a2f33322d3438203d3e203538383231.roa Signing time: Sat 11 Nov 2023 05:00:00 +0000 ROA not before: Sat 11 Nov 2023 04:55:00 +0000 ROA not after: Sat 09 Nov 2024 05:00:00 +0000 asID: 58821 IP address blocks: 2406:7b40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.crl rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 13:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:84:45:f1:c3:fd:a8:f0:fb:50:34:10:de:35:da:89:0c:c8:45:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D8D9CBC52934EF02BCD1D478AEBA6A368F80419 Validity Not Before: Nov 11 04:55:00 2023 GMT Not After : Nov 9 05:00:00 2024 GMT Subject: CN=05D95EF205329A1F45B3AE2608C68B917581FBD5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:bf:4e:7d:56:38:14:a5:9e:b4:33:e8:d5:e7: 62:6c:35:97:cc:52:5c:60:07:ff:b6:38:9f:1e:1f: f7:e4:03:df:1b:1d:67:14:07:eb:a5:d7:a9:27:ad: 67:0d:64:81:31:0e:e1:df:d8:3f:74:78:d5:44:65: 00:55:88:bb:ee:a8:58:c1:33:b0:71:01:da:9b:4d: 86:68:5e:67:5a:ea:8d:5e:01:00:fd:cd:cc:ee:14: fe:a3:4e:a8:bc:0c:03:96:67:94:33:c7:0f:fb:ff: 68:41:0c:74:95:24:f1:3c:47:8e:3a:32:e8:6a:8c: aa:3a:86:8b:f7:21:a3:45:3d:14:90:b6:0e:ea:34: c8:a2:b7:a0:a6:70:02:e9:1b:d5:ea:20:bf:74:8e: 49:19:ac:f8:2e:62:1f:80:ec:cf:43:a6:89:d3:fb: e1:38:c8:64:cd:6b:25:da:17:7c:ed:54:e4:c4:bc: 5a:d3:12:09:0b:5a:29:ba:75:da:3c:51:6d:a1:ed: 24:44:bc:3d:ed:24:bb:3e:b9:db:13:e1:5a:35:5b: b3:d1:8f:d1:aa:2d:65:9a:f0:56:3e:b9:69:2e:74: f9:08:c3:66:68:b4:9c:5a:cb:ef:4a:5d:2b:5e:8e: cb:80:cf:d4:10:84:13:bd:7c:91:94:70:4f:01:79: 2a:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:D9:5E:F2:05:32:9A:1F:45:B3:AE:26:08:C6:8B:91:75:81:FB:D5 X509v3 Authority Key Identifier: keyid:1D:8D:9C:BC:52:93:4E:F0:2B:CD:1D:47:8A:EB:A6:A3:68:F8:04:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/323430363a376234303a3a2f33322d3438203d3e203538383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:7b40::/32 Signature Algorithm: sha256WithRSAEncryption 66:26:63:9b:17:6f:08:0c:a4:24:be:01:3d:f0:6d:85:f6:70: bd:ab:9d:c3:77:27:58:2f:09:74:84:19:37:a2:8e:e2:f8:75: cc:03:c3:68:ca:50:b0:12:7e:01:85:c0:e4:7f:d4:c8:16:e5: de:49:75:e7:19:9a:c5:43:4a:ef:27:c1:2a:85:6d:b8:8b:9b: 1b:bb:d9:2f:6f:86:3e:d6:ce:06:be:e2:63:e7:af:1a:2a:f7: f3:0b:62:c3:94:52:ec:7a:61:26:3d:6c:99:dd:85:9f:58:d5: 3c:38:7e:5d:af:4e:aa:71:a5:40:08:e9:55:10:25:4d:80:8c: 7c:00:11:3e:b3:e2:39:a2:89:ed:f5:7f:9f:2f:4e:84:69:6a: 7b:09:93:73:c1:e9:36:84:c1:57:63:e6:d2:79:c2:43:76:3f: 50:23:e7:93:b7:a1:e0:02:b2:e5:9a:b4:f1:f0:ec:52:e8:04: 02:ed:52:c5:ac:74:06:a8:7a:da:56:c7:85:1c:1a:79:8e:ae: b5:3f:fe:21:1e:a6:14:d2:fa:ea:5c:7d:97:2a:6f:08:6e:1a: fb:31:72:1c:f2:7b:02:ec:09:a5:25:d9:09:0b:9a:4e:b5:08: cc:2c:d0:e5:4d:d0:c2:43:29:07:3d:fd:a5:be:a5:e3:a1:14: 48:90:15:af -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUDYRF8cP9qPD7UDQQ3jXaiQzIRVAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQ4RDlDQkM1MjkzNEVGMDJCQ0QxRDQ3OEFFQkE2QTM2 OEY4MDQxOTAeFw0yMzExMTEwNDU1MDBaFw0yNDExMDkwNTAwMDBaMDMxMTAvBgNV BAMTKDA1RDk1RUYyMDUzMjlBMUY0NUIzQUUyNjA4QzY4QjkxNzU4MUZCRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCov059VjgUpZ60M+jV52JsNZfM UlxgB/+2OJ8eH/fkA98bHWcUB+ul16knrWcNZIExDuHf2D90eNVEZQBViLvuqFjB M7BxAdqbTYZoXmda6o1eAQD9zczuFP6jTqi8DAOWZ5Qzxw/7/2hBDHSVJPE8R446 MuhqjKo6hov3IaNFPRSQtg7qNMiit6CmcALpG9XqIL90jkkZrPguYh+A7M9DponT ++E4yGTNayXaF3ztVOTEvFrTEgkLWim6ddo8UW2h7SREvD3tJLs+udsT4Vo1W7PR j9GqLWWa8FY+uWkudPkIw2ZotJxay+9KXStejsuAz9QQhBO9fJGUcE8BeSrzAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUBdle8gUymh9Fs64mCMaLkXWB+9UwHwYDVR0j BBgwFoAUHY2cvFKTTvArzR1Hiuumo2j4BBkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZTFlYTUxMy1hYzZlLTRhNWYtYjNlYi1kNTM1MmNhZjQ4NmIvMC8xRDhEOUNCQzUy OTM0RUYwMkJDRDFENDc4QUVCQTZBMzY4RjgwNDE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUQ4RDlDQkM1MjkzNEVGMDJCQ0QxRDQ3OEFFQkE2QTM2OEY4 MDQxOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NlMWVhNTEzLWFjNmUtNGE1Zi1i M2ViLWQ1MzUyY2FmNDg2Yi8wLzMyMzQzMDM2M2EzNzYyMzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM1MzgzODMyMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBntAMA0GCSqGSIb3 DQEBCwUAA4IBAQBmJmObF28IDKQkvgE98G2F9nC9q53DdydYLwl0hBk3oo7i+HXM A8NoylCwEn4BhcDkf9TIFuXeSXXnGZrFQ0rvJ8EqhW24i5sbu9kvb4Y+1s4GvuJj 568aKvfzC2LDlFLsemEmPWyZ3YWfWNU8OH5dr06qcaVACOlVECVNgIx8ABE+s+I5 oont9X+fL06EaWp7CZNzwek2hMFXY+bSecJDdj9QI+eTt6HgArLlmrTx8OxS6AQC 7VLFrHQGqHraVseFHBp5jq61P/4hHqYU0vrqXH2XKm8Ibhr7MXIc8nsC7AmlJdkJ C5pOtQjMLNDlTdDCQykHPf2lvqXjoRRIkBWv -----END CERTIFICATE-----Generated at Wed May 1 04:48:15 2024 by rpki-client on console-ams.rpki-client.org