$ rpki-client -vvf repo-rpki.idnic.net/repo/e2ac9e63-9890-422e-88dc-7cb6ddac22fa/0/323430353a633934303a3a2f33322d3332203d3e20313430303132.roa File: 323430353a633934303a3a2f33322d3332203d3e20313430303132.roa (raw, json) Hash identifier: BraLFkizGXK/y3+8/DPGr8iJNYmfKEu/pOlCDnEGxao= Subject key identifier: 2F:F0:D2:6C:95:5A:04:4A:10:1E:D9:7A:57:DE:3A:19:37:BD:55:0A Certificate issuer: /CN=E17357E41F3644D13EBC7C4B25B8A2936B91165A Certificate serial: 4F290CC5E50E13CA3C0063CD8E9966D68E6D18E5 Authority key identifier: E1:73:57:E4:1F:36:44:D1:3E:BC:7C:4B:25:B8:A2:93:6B:91:16:5A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E17357E41F3644D13EBC7C4B25B8A2936B91165A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e2ac9e63-9890-422e-88dc-7cb6ddac22fa/0/323430353a633934303a3a2f33322d3332203d3e20313430303132.roa Signing time: Tue 08 Aug 2023 04:00:01 +0000 ROA not before: Tue 08 Aug 2023 03:55:01 +0000 ROA not after: Tue 06 Aug 2024 04:00:01 +0000 asID: 140012 IP address blocks: 2405:c940::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e2ac9e63-9890-422e-88dc-7cb6ddac22fa/0/E17357E41F3644D13EBC7C4B25B8A2936B91165A.crl rsync://repo-rpki.idnic.net/repo/e2ac9e63-9890-422e-88dc-7cb6ddac22fa/0/E17357E41F3644D13EBC7C4B25B8A2936B91165A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E17357E41F3644D13EBC7C4B25B8A2936B91165A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:29:0c:c5:e5:0e:13:ca:3c:00:63:cd:8e:99:66:d6:8e:6d:18:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E17357E41F3644D13EBC7C4B25B8A2936B91165A Validity Not Before: Aug 8 03:55:01 2023 GMT Not After : Aug 6 04:00:01 2024 GMT Subject: CN=2FF0D26C955A044A101ED97A57DE3A1937BD550A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:2a:76:b9:9f:d0:77:ee:4c:53:04:b0:c9:83: 11:26:60:59:1b:98:bd:89:aa:a0:75:27:8b:2d:66: f1:47:dc:11:e5:8a:36:a4:4a:7e:73:be:a9:cf:97: 40:a2:c1:4d:38:86:ba:85:df:c7:19:2c:3a:0d:53: 31:b3:55:36:04:7c:85:7d:50:6d:7a:3d:27:82:75: 46:a0:62:27:d6:a3:bb:53:67:10:a5:85:af:28:10: 65:a1:68:8d:74:43:c5:28:b6:32:21:12:61:33:f3: 44:81:c2:3d:c9:3e:41:9a:3f:be:18:12:e6:09:d9: ca:15:1e:0c:13:89:ff:3f:ea:34:71:85:b4:da:e2: d7:19:5b:9b:75:e8:37:09:3c:98:5e:b3:89:f1:5d: 65:91:48:f7:24:00:cd:63:fc:0d:31:6a:a1:96:7c: 64:4f:44:12:ea:5f:bc:6c:de:81:bc:61:ab:27:72: 7f:e4:a1:db:bc:fb:df:d7:31:8a:7d:19:f7:2d:a1: 96:18:fd:60:2d:96:ab:c8:59:a4:90:28:10:09:7e: bd:00:86:a3:6d:21:3a:70:a5:ad:09:44:20:1f:0f: 15:69:9c:f1:67:51:1b:fb:9d:51:3b:ff:c9:cb:40: 54:ce:6d:2f:52:77:26:e6:cd:7a:94:f1:f1:ca:d3: 1f:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:F0:D2:6C:95:5A:04:4A:10:1E:D9:7A:57:DE:3A:19:37:BD:55:0A X509v3 Authority Key Identifier: keyid:E1:73:57:E4:1F:36:44:D1:3E:BC:7C:4B:25:B8:A2:93:6B:91:16:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e2ac9e63-9890-422e-88dc-7cb6ddac22fa/0/E17357E41F3644D13EBC7C4B25B8A2936B91165A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E17357E41F3644D13EBC7C4B25B8A2936B91165A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e2ac9e63-9890-422e-88dc-7cb6ddac22fa/0/323430353a633934303a3a2f33322d3332203d3e20313430303132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c940::/32 Signature Algorithm: sha256WithRSAEncryption 18:e1:26:ae:31:19:01:3f:e2:31:0e:fa:fa:ec:b3:f0:5f:9d: ec:76:74:13:ea:be:41:c5:95:de:13:2a:e0:8d:86:66:e9:00: f6:a3:e2:9a:cd:db:83:34:e5:71:cf:a3:e6:89:4f:b5:00:a8: 7d:a1:e9:fd:be:ce:ce:da:6f:98:35:6e:8d:aa:cf:49:58:44: 8d:5d:d2:ac:5a:5d:82:9a:a5:51:e5:33:87:e6:be:14:71:99: 45:80:13:d1:f6:df:13:00:cf:e2:a7:68:ca:e5:ce:2d:ac:d4: 9b:23:5f:1f:04:9a:ed:d9:2b:13:e0:42:22:09:df:2f:60:7f: cc:ea:fb:36:25:e3:50:d2:27:93:85:02:88:42:0f:d7:20:a9: 50:34:4e:d6:fa:6f:9a:3e:2b:e2:6b:12:c4:9b:58:7c:e1:25: 82:1f:23:68:6a:bd:cf:61:f6:a4:11:53:04:e3:07:c2:6b:1c: 70:53:81:3f:2f:38:10:ec:4b:22:f0:33:54:2a:39:81:90:c6: b0:d6:31:aa:f1:a9:1d:6b:55:8f:5e:9c:dc:da:8d:57:47:7a: b2:c4:c2:d0:bb:ad:c6:61:49:2d:e1:06:03:e4:02:e8:e6:3d: 23:38:1d:57:0d:20:e2:f5:5a:40:ad:fd:0d:00:02:f2:ef:60: 2e:55:cc:d7 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUTykMxeUOE8o8AGPNjplm1o5tGOUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTE3MzU3RTQxRjM2NDREMTNFQkM3QzRCMjVCOEEyOTM2 QjkxMTY1QTAeFw0yMzA4MDgwMzU1MDFaFw0yNDA4MDYwNDAwMDFaMDMxMTAvBgNV BAMTKDJGRjBEMjZDOTU1QTA0NEExMDFFRDk3QTU3REUzQTE5MzdCRDU1MEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfKna5n9B37kxTBLDJgxEmYFkb mL2JqqB1J4stZvFH3BHlijakSn5zvqnPl0CiwU04hrqF38cZLDoNUzGzVTYEfIV9 UG16PSeCdUagYifWo7tTZxClha8oEGWhaI10Q8UotjIhEmEz80SBwj3JPkGaP74Y EuYJ2coVHgwTif8/6jRxhbTa4tcZW5t16DcJPJhes4nxXWWRSPckAM1j/A0xaqGW fGRPRBLqX7xs3oG8Yasncn/kodu8+9/XMYp9GfctoZYY/WAtlqvIWaSQKBAJfr0A hqNtITpwpa0JRCAfDxVpnPFnURv7nVE7/8nLQFTObS9SdybmzXqU8fHK0x+rAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUL/DSbJVaBEoQHtl6V946GTe9VQowHwYDVR0j BBgwFoAU4XNX5B82RNE+vHxLJbiik2uRFlowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MmFjOWU2My05ODkwLTQyMmUtODhkYy03Y2I2ZGRhYzIyZmEvMC9FMTczNTdFNDFG MzY0NEQxM0VCQzdDNEIyNUI4QTI5MzZCOTExNjVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTE3MzU3RTQxRjM2NDREMTNFQkM3QzRCMjVCOEEyOTM2Qjkx MTY1QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UyYWM5ZTYzLTk4OTAtNDIyZS04 OGRjLTdjYjZkZGFjMjJmYS8wLzMyMzQzMDM1M2E2MzM5MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMDMwMzEzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFyUAwDQYJKoZI hvcNAQELBQADggEBABjhJq4xGQE/4jEO+vrss/Bfnex2dBPqvkHFld4TKuCNhmbp APaj4prN24M05XHPo+aJT7UAqH2h6f2+zs7ab5g1bo2qz0lYRI1d0qxaXYKapVHl M4fmvhRxmUWAE9H23xMAz+KnaMrlzi2s1JsjXx8Emu3ZKxPgQiIJ3y9gf8zq+zYl 41DSJ5OFAohCD9cgqVA0Ttb6b5o+K+JrEsSbWHzhJYIfI2hqvc9h9qQRUwTjB8Jr HHBTgT8vOBDsSyLwM1QqOYGQxrDWMarxqR1rVY9enNzajVdHerLEwtC7rcZhSS3h BgPkAujmPSM4HVcNIOL1WkCt/Q0AAvLvYC5VzNc= -----END CERTIFICATE-----Generated at Sat Jun 22 14:47:23 2024 by rpki-client on console-fra.rpki-client.org