$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/323430313a313063303a3a2f33342d3334203d3e20313331373137.roa File: 323430313a313063303a3a2f33342d3334203d3e20313331373137.roa (raw, json) Hash identifier: Ag7mu77YJyaGwQ7viWNmthaYJeRdVnsA4M/L//Qqmco= Subject key identifier: 07:DA:9B:7E:9D:90:F0:EF:BA:78:55:53:1C:B1:A8:71:F7:9E:CA:0A Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087 Certificate serial: 01C0CCA71E99F0CA499A99185205EDA3B62A9FAF Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/323430313a313063303a3a2f33342d3334203d3e20313331373137.roa Signing time: Mon 31 Jul 2023 00:03:13 +0000 ROA not before: Sun 30 Jul 2023 23:58:13 +0000 ROA not after: Mon 29 Jul 2024 00:03:13 +0000 asID: 131717 IP address blocks: 2401:10c0::/34 maxlen: 34 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:c0:cc:a7:1e:99:f0:ca:49:9a:99:18:52:05:ed:a3:b6:2a:9f:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087 Validity Not Before: Jul 30 23:58:13 2023 GMT Not After : Jul 29 00:03:13 2024 GMT Subject: CN=07DA9B7E9D90F0EFBA7855531CB1A871F79ECA0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:27:76:74:53:71:9a:7a:5e:57:b0:e8:59:8b: c9:53:ec:c7:9b:b2:48:9d:64:4e:58:99:04:f0:bc: 95:4c:18:0f:26:5c:ce:f1:a6:48:7d:56:31:00:29: b9:7e:08:2e:6a:53:42:68:da:e0:a6:f4:89:93:eb: ff:d6:d6:12:14:95:c5:7f:c7:42:c4:3c:f7:ce:b1: a7:44:42:54:12:81:f0:5f:6c:b8:64:03:77:5b:70: 48:af:78:a4:de:6f:a8:de:2d:4a:0b:a5:f6:49:3d: 9b:04:32:34:1f:87:dd:26:ec:aa:70:9a:5e:a7:e8: 9f:32:b6:ef:59:72:0f:14:57:06:8c:bb:02:41:f7: f4:62:3e:cb:5f:5b:f6:1a:33:d2:03:16:c8:54:8b: 78:42:b6:73:b5:f5:68:34:0b:19:e7:52:ea:9a:62: bb:5b:cd:2c:5b:d1:80:c3:02:96:1c:32:85:f7:02: 21:cb:4a:22:32:7a:5c:82:d0:cc:51:d3:2f:83:ca: 80:3b:d4:0b:29:d1:d3:55:62:61:ed:76:8d:20:12: 0f:31:68:5d:01:be:54:8d:43:8f:b6:6c:e9:00:f0: 5f:97:65:57:b4:2f:eb:e8:1a:bd:eb:a6:63:17:1d: b5:c3:cf:de:e1:95:19:86:1e:33:22:6f:43:20:b7: d8:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:DA:9B:7E:9D:90:F0:EF:BA:78:55:53:1C:B1:A8:71:F7:9E:CA:0A X509v3 Authority Key Identifier: keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/323430313a313063303a3a2f33342d3334203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:10c0::/34 Signature Algorithm: sha256WithRSAEncryption b4:2e:cb:60:a7:a6:4f:92:39:13:05:49:13:47:f5:58:98:4c: 7a:8d:31:15:45:71:42:fa:9e:83:f8:73:fc:12:4d:d8:76:b8: 4a:41:48:2e:15:df:f7:9e:d7:46:d0:e9:9e:36:34:c7:73:63: 0f:3d:41:ab:64:a2:c2:6f:0f:ed:94:f7:95:2f:e3:3f:6f:07: 3b:0e:a6:02:63:35:25:c4:6b:7a:e9:d8:12:1c:0b:63:d2:32: 21:f4:83:a2:83:2d:93:8e:4e:bf:5d:30:b4:d7:60:92:23:15: 7c:ef:69:47:c6:3b:24:7a:bb:69:90:05:b1:f7:bc:ad:91:3b: d7:d3:9e:28:fc:c4:33:23:3d:52:a3:2c:23:c4:e7:1b:53:d5: b2:73:8d:4d:6b:5d:53:f9:2d:33:f9:df:5b:ce:2b:48:cc:98: 1c:82:13:00:43:6c:6d:56:28:03:eb:09:36:52:cd:96:d3:83: af:d0:f6:ca:27:83:26:e3:f5:ca:ec:ef:95:07:74:d4:ea:6a: 19:cb:d5:d2:ea:22:51:5e:5c:f6:c8:68:d5:5d:df:fc:78:ec: 0d:96:24:8f:ef:88:a3:e7:ba:4e:89:80:ae:65:27:94:65:b4: 53:98:c4:94:e4:69:70:2a:c4:cd:d1:4b:1b:5a:ac:20:c5:d1: 4a:48:39:c4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAcDMpx6Z8MpJmpkYUgXto7Yqn68wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4 MTg2NTA4NzAeFw0yMzA3MzAyMzU4MTNaFw0yNDA3MjkwMDAzMTNaMDMxMTAvBgNV BAMTKDA3REE5QjdFOUQ5MEYwRUZCQTc4NTU1MzFDQjFBODcxRjc5RUNBMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjJ3Z0U3Gael5XsOhZi8lT7Meb skidZE5YmQTwvJVMGA8mXM7xpkh9VjEAKbl+CC5qU0Jo2uCm9ImT6//W1hIUlcV/ x0LEPPfOsadEQlQSgfBfbLhkA3dbcEiveKTeb6jeLUoLpfZJPZsEMjQfh90m7Kpw ml6n6J8ytu9Zcg8UVwaMuwJB9/RiPstfW/YaM9IDFshUi3hCtnO19Wg0CxnnUuqa YrtbzSxb0YDDApYcMoX3AiHLSiIyelyC0MxR0y+DyoA71Asp0dNVYmHtdo0gEg8x aF0BvlSNQ4+2bOkA8F+XZVe0L+voGr3rpmMXHbXDz97hlRmGHjMib0Mgt9hzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUB9qbfp2Q8O+6eFVTHLGocfeeygowHwYDVR0j BBgwFoAUiCIJ43NW4FEvvk6BsA5PJIGGUIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDc0NzFhMy1lZTUzLTQ5OWMtOWYyZC1jZjE2YjFlNGEzNTMvMC84ODIyMDlFMzcz NTZFMDUxMkZCRTRFODFCMDBFNEYyNDgxODY1MDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4MTg2 NTA4Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzMyMzQzMDMxM2EzMTMwNjMzMDNhM2EyZjMzMzQy ZDMzMzQyMDNkM2UyMDMxMzMzMTM3MzEzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBiQBEMAAMA0GCSqG SIb3DQEBCwUAA4IBAQC0Lstgp6ZPkjkTBUkTR/VYmEx6jTEVRXFC+p6D+HP8Ek3Y drhKQUguFd/3ntdG0OmeNjTHc2MPPUGrZKLCbw/tlPeVL+M/bwc7DqYCYzUlxGt6 6dgSHAtj0jIh9IOigy2Tjk6/XTC012CSIxV872lHxjskertpkAWx97ytkTvX054o /MQzIz1SoywjxOcbU9Wyc41Na11T+S0z+d9bzitIzJgcghMAQ2xtVigD6wk2Us2W 04Ov0PbKJ4Mm4/XK7O+VB3TU6moZy9XS6iJRXlz2yGjVXd/8eOwNliSP74ij57pO iYCuZSeUZbRTmMSU5GlwKsTN0UsbWqwgxdFKSDnE -----END CERTIFICATE-----Generated at Tue Apr 30 18:54:27 2024 by rpki-client on console-fra.rpki-client.org