$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/323430313a313063303a383030303a3a2f33342d3334203d3e20313331373137.roa File: 323430313a313063303a383030303a3a2f33342d3334203d3e20313331373137.roa (raw, json) Hash identifier: MfIGgmjQK7dA3sMImjATuOaEyST7GjqMj2Q4Ue7g/4Q= Subject key identifier: A8:58:F3:58:74:7C:79:C4:F1:87:F4:B9:B8:FC:12:3D:E6:5D:96:04 Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087 Certificate serial: 1DFE83F2DA020E9271C378EEF580C5A05DCAA645 Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/323430313a313063303a383030303a3a2f33342d3334203d3e20313331373137.roa Signing time: Mon 31 Jul 2023 00:03:13 +0000 ROA not before: Sun 30 Jul 2023 23:58:13 +0000 ROA not after: Mon 29 Jul 2024 00:03:13 +0000 asID: 131717 IP address blocks: 2401:10c0:8000::/34 maxlen: 34 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:fe:83:f2:da:02:0e:92:71:c3:78:ee:f5:80:c5:a0:5d:ca:a6:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087 Validity Not Before: Jul 30 23:58:13 2023 GMT Not After : Jul 29 00:03:13 2024 GMT Subject: CN=A858F358747C79C4F187F4B9B8FC123DE65D9604 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:f6:34:2c:7d:9b:af:7d:e8:03:fa:e1:43:e0: 21:a9:f5:fe:27:9b:3b:e1:85:23:45:2e:4f:46:2f: 6e:51:48:33:83:3a:59:56:10:48:18:d7:6a:2c:26: 7c:a2:a6:24:08:8b:a4:4c:ed:17:a2:af:d7:b6:9e: 44:6c:7c:81:1e:03:34:7c:30:19:7d:bb:20:e0:8c: 7c:51:5b:27:c2:09:d1:61:c8:c5:32:42:c1:8b:d4: 6f:f8:d4:34:6c:33:54:63:bb:d3:b4:e4:23:d6:38: fa:50:91:1d:6e:ba:c6:61:c8:73:0b:d7:bc:0b:2d: 72:eb:20:35:2e:d7:3c:63:c0:73:3e:62:80:31:fc: 06:7a:b7:d6:4a:ee:24:8f:ae:4c:0e:aa:7e:73:9f: 33:20:73:39:11:83:e9:91:49:4a:9a:0f:02:14:59: 53:7b:32:a6:b7:67:5c:1c:a1:09:3a:09:54:85:c0: ce:9a:19:36:21:f7:ad:b4:51:dd:73:29:92:65:8b: 87:30:13:f5:34:71:80:92:61:b7:a3:b7:c7:5f:08: 5a:45:6f:64:07:0e:05:01:49:93:8c:6e:69:83:75: ec:6a:01:66:0c:17:c5:99:cd:7e:33:af:39:79:b5: 57:9d:d1:9b:d3:49:48:79:39:a6:b2:8c:7f:c6:d4: 39:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:58:F3:58:74:7C:79:C4:F1:87:F4:B9:B8:FC:12:3D:E6:5D:96:04 X509v3 Authority Key Identifier: keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/323430313a313063303a383030303a3a2f33342d3334203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:10c0:8000::/34 Signature Algorithm: sha256WithRSAEncryption 9d:41:5d:bf:24:7d:7a:a5:a2:62:65:ff:66:28:19:83:ba:91: 7b:65:c5:e5:f5:44:88:73:77:f9:59:10:01:3a:5d:63:a7:e8: 91:23:80:6b:1d:62:81:2f:d5:33:a5:f6:55:fe:16:13:f5:cb: e4:4b:7e:7d:c8:4a:ef:ee:0b:20:f5:ff:0c:94:d7:fa:4a:d3: f7:6f:24:fb:15:28:86:ab:a7:92:d5:1f:63:e3:ce:48:df:0d: 3a:cd:2e:27:dc:b6:bd:67:90:cf:96:dd:e6:8b:28:85:4a:98: fa:78:81:71:06:86:e3:1b:da:bb:b5:5d:54:ba:ae:57:b2:49: 10:ec:c9:3c:b3:e0:25:1d:65:ab:95:aa:42:74:18:55:07:cb: b3:e8:7d:90:14:a4:ff:d5:f2:26:45:71:e1:bd:19:9c:f0:ae: 5d:bf:61:d8:d5:7b:48:10:51:9f:17:8a:e1:1b:43:7b:49:b3: 33:68:ba:38:a7:47:28:0c:7b:22:94:19:b2:01:17:f3:8e:01: ff:ce:e7:f4:4b:7a:05:aa:8a:23:eb:11:ad:8f:be:ec:18:4c: 90:28:c3:1b:bc:de:b5:df:95:e6:6a:7b:5c:e0:18:a7:48:58: cb:ac:57:b8:3e:8b:59:02:f6:93:b2:1b:21:9b:60:eb:be:33: bf:3e:95:f5 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUHf6D8toCDpJxw3ju9YDFoF3KpkUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4 MTg2NTA4NzAeFw0yMzA3MzAyMzU4MTNaFw0yNDA3MjkwMDAzMTNaMDMxMTAvBgNV BAMTKEE4NThGMzU4NzQ3Qzc5QzRGMTg3RjRCOUI4RkMxMjNERTY1RDk2MDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZ9jQsfZuvfegD+uFD4CGp9f4n mzvhhSNFLk9GL25RSDODOllWEEgY12osJnyipiQIi6RM7Reir9e2nkRsfIEeAzR8 MBl9uyDgjHxRWyfCCdFhyMUyQsGL1G/41DRsM1Rju9O05CPWOPpQkR1uusZhyHML 17wLLXLrIDUu1zxjwHM+YoAx/AZ6t9ZK7iSPrkwOqn5znzMgczkRg+mRSUqaDwIU WVN7Mqa3Z1wcoQk6CVSFwM6aGTYh9620Ud1zKZJli4cwE/U0cYCSYbejt8dfCFpF b2QHDgUBSZOMbmmDdexqAWYMF8WZzX4zrzl5tVed0ZvTSUh5OaayjH/G1DnbAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUqFjzWHR8ecTxh/S5uPwSPeZdlgQwHwYDVR0j BBgwFoAUiCIJ43NW4FEvvk6BsA5PJIGGUIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDc0NzFhMy1lZTUzLTQ5OWMtOWYyZC1jZjE2YjFlNGEzNTMvMC84ODIyMDlFMzcz NTZFMDUxMkZCRTRFODFCMDBFNEYyNDgxODY1MDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4MTg2 NTA4Ny5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzMyMzQzMDMxM2EzMTMwNjMzMDNhMzgzMDMwMzAz YTNhMmYzMzM0MmQzMzM0MjAzZDNlMjAzMTMzMzEzNzMxMzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgYk ARDAgDANBgkqhkiG9w0BAQsFAAOCAQEAnUFdvyR9eqWiYmX/ZigZg7qRe2XF5fVE iHN3+VkQATpdY6fokSOAax1igS/VM6X2Vf4WE/XL5Et+fchK7+4LIPX/DJTX+krT 928k+xUohqunktUfY+POSN8NOs0uJ9y2vWeQz5bd5osohUqY+niBcQaG4xvau7Vd VLquV7JJEOzJPLPgJR1lq5WqQnQYVQfLs+h9kBSk/9XyJkVx4b0ZnPCuXb9h2NV7 SBBRnxeK4RtDe0mzM2i6OKdHKAx7IpQZsgEX844B/87n9Et6BaqKI+sRrY++7BhM kCjDG7zetd+V5mp7XOAYp0hYy6xXuD6LWQL2k7IbIZtg674zvz6V9Q== -----END CERTIFICATE-----Generated at Tue Apr 30 19:13:20 2024 by rpki-client on console-ams.rpki-client.org