$ rpki-client -vvf repo-rpki.idnic.net/repo/e607d929-4ca8-4f53-a298-5e33be1f8604/0/323430313a333334303a3a2f33322d3438203d3e203435373232.roa File: 323430313a333334303a3a2f33322d3438203d3e203435373232.roa (raw, json) Hash identifier: 5kphXit/LNBkVw8osIk/3vijQtN+EbxCtDf6F2cC7lU= Subject key identifier: 98:88:47:7C:DB:C4:0F:F3:8C:BF:96:2D:A1:87:FE:86:B6:E0:7D:DF Certificate issuer: /CN=5110A717EFE96B12E5D3A475E9B2179E5DE0EA0C Certificate serial: 2FAED040A4B533D86D892D2076503130EC76B72E Authority key identifier: 51:10:A7:17:EF:E9:6B:12:E5:D3:A4:75:E9:B2:17:9E:5D:E0:EA:0C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5110A717EFE96B12E5D3A475E9B2179E5DE0EA0C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e607d929-4ca8-4f53-a298-5e33be1f8604/0/323430313a333334303a3a2f33322d3438203d3e203435373232.roa Signing time: Mon 01 Jul 2024 01:03:48 +0000 ROA not before: Mon 01 Jul 2024 00:58:48 +0000 ROA not after: Mon 30 Jun 2025 01:03:48 +0000 asID: 45722 IP address blocks: 2401:3340::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e607d929-4ca8-4f53-a298-5e33be1f8604/0/5110A717EFE96B12E5D3A475E9B2179E5DE0EA0C.crl rsync://repo-rpki.idnic.net/repo/e607d929-4ca8-4f53-a298-5e33be1f8604/0/5110A717EFE96B12E5D3A475E9B2179E5DE0EA0C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5110A717EFE96B12E5D3A475E9B2179E5DE0EA0C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 21:34:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:ae:d0:40:a4:b5:33:d8:6d:89:2d:20:76:50:31:30:ec:76:b7:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5110A717EFE96B12E5D3A475E9B2179E5DE0EA0C Validity Not Before: Jul 1 00:58:48 2024 GMT Not After : Jun 30 01:03:48 2025 GMT Subject: CN=9888477CDBC40FF38CBF962DA187FE86B6E07DDF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:3d:54:ec:16:6e:4f:87:8e:b0:68:3f:23:41: 9a:2f:f5:39:fd:c9:48:10:de:0a:f2:8c:a0:29:c7: 77:f3:44:71:67:84:a3:0a:91:df:60:79:0a:9e:1f: f7:2f:1d:b1:24:89:0e:c1:49:66:de:78:5b:4d:a3: 4e:a9:e3:91:69:a9:fd:73:38:4b:b5:c3:58:b8:f4: 75:c4:b5:52:9d:b1:86:23:41:94:88:19:b8:63:82: cb:b0:fc:64:da:09:94:6a:6d:89:7e:a2:2d:38:16: 62:84:c0:b5:bd:61:97:31:7c:f5:c9:49:e0:95:00: 63:7e:b4:7d:c6:0c:0e:a9:d9:ab:00:39:9d:b6:08: e4:90:5f:6a:bf:98:24:88:9e:0f:27:aa:8a:1d:3a: 33:89:7e:1d:d9:0b:cc:33:a6:ff:8c:ae:d6:5e:7e: 77:5d:df:46:d9:75:d6:3c:c3:e2:fc:29:0d:67:07: 32:03:5e:1e:d4:c6:54:e6:1b:75:d5:4a:f8:86:56: 43:62:f2:3a:5f:5c:5c:4f:2b:c8:2c:dd:b5:d6:22: 41:b0:19:fe:66:f7:33:d9:19:4f:ea:aa:01:61:7a: f3:6d:45:9e:ef:43:44:47:c9:73:6c:0b:7a:98:91: 74:d1:18:71:9e:a7:30:49:00:82:d3:73:e2:e6:63: 39:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:88:47:7C:DB:C4:0F:F3:8C:BF:96:2D:A1:87:FE:86:B6:E0:7D:DF X509v3 Authority Key Identifier: keyid:51:10:A7:17:EF:E9:6B:12:E5:D3:A4:75:E9:B2:17:9E:5D:E0:EA:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e607d929-4ca8-4f53-a298-5e33be1f8604/0/5110A717EFE96B12E5D3A475E9B2179E5DE0EA0C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5110A717EFE96B12E5D3A475E9B2179E5DE0EA0C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e607d929-4ca8-4f53-a298-5e33be1f8604/0/323430313a333334303a3a2f33322d3438203d3e203435373232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:3340::/32 Signature Algorithm: sha256WithRSAEncryption 88:b0:f4:da:80:84:09:a5:17:94:08:5f:ca:c5:90:96:36:ea: 97:c1:68:f1:f9:29:05:7f:c7:00:ff:15:a2:01:18:54:e0:89: cc:80:e8:24:67:3e:ee:d0:e4:6c:3f:5e:e4:de:a0:47:aa:91: 81:a9:43:32:cc:8c:71:fa:11:20:b1:ff:95:5f:1a:05:15:fc: 4d:a4:b7:2e:f4:c9:b0:c9:06:4e:d8:3c:7f:09:9c:24:b9:f4: 4e:11:67:b8:0c:8f:87:aa:79:87:37:da:62:52:ef:c2:5b:f0: 29:14:4e:c6:65:d4:c5:00:7b:d7:03:cc:8e:5d:29:52:d9:b6: 81:e0:1b:16:05:a8:83:6e:14:41:c3:51:9f:56:81:c5:b8:ce: 2d:0c:86:fb:4b:6f:08:62:b4:13:d9:d5:b2:ea:91:3c:3a:b0: fd:54:bd:64:f8:ca:1a:de:e2:4c:01:ad:49:5d:d7:78:1f:06: f6:f4:76:ee:c9:82:80:1c:8f:e5:8a:a5:57:5a:77:5c:b9:8a: a9:50:11:46:e5:ff:96:fa:fe:66:5b:4c:67:73:e0:20:e4:53: 9d:b1:f2:a9:55:1f:b2:37:4b:df:ca:05:91:fa:4d:2b:e5:06: ff:72:1f:34:cb:c6:f5:5d:dd:86:15:5a:41:39:f8:de:ca:78: 47:57:ee:27 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUL67QQKS1M9htiS0gdlAxMOx2ty4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTExMEE3MTdFRkU5NkIxMkU1RDNBNDc1RTlCMjE3OUU1 REUwRUEwQzAeFw0yNDA3MDEwMDU4NDhaFw0yNTA2MzAwMTAzNDhaMDMxMTAvBgNV BAMTKDk4ODg0NzdDREJDNDBGRjM4Q0JGOTYyREExODdGRTg2QjZFMDdEREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTPVTsFm5Ph46waD8jQZov9Tn9 yUgQ3gryjKApx3fzRHFnhKMKkd9geQqeH/cvHbEkiQ7BSWbeeFtNo06p45Fpqf1z OEu1w1i49HXEtVKdsYYjQZSIGbhjgsuw/GTaCZRqbYl+oi04FmKEwLW9YZcxfPXJ SeCVAGN+tH3GDA6p2asAOZ22COSQX2q/mCSIng8nqoodOjOJfh3ZC8wzpv+MrtZe fndd30bZddY8w+L8KQ1nBzIDXh7UxlTmG3XVSviGVkNi8jpfXFxPK8gs3bXWIkGw Gf5m9zPZGU/qqgFhevNtRZ7vQ0RHyXNsC3qYkXTRGHGepzBJAILTc+LmYznxAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUmIhHfNvED/OMv5YtoYf+hrbgfd8wHwYDVR0j BBgwFoAUURCnF+/paxLl06R16bIXnl3g6gwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjA3ZDkyOS00Y2E4LTRmNTMtYTI5OC01ZTMzYmUxZjg2MDQvMC81MTEwQTcxN0VG RTk2QjEyRTVEM0E0NzVFOUIyMTc5RTVERTBFQTBDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTExMEE3MTdFRkU5NkIxMkU1RDNBNDc1RTlCMjE3OUU1REUw RUEwQy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2MDdkOTI5LTRjYTgtNGY1My1h Mjk4LTVlMzNiZTFmODYwNC8wLzMyMzQzMDMxM2EzMzMzMzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM0MzUzNzMyMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkATNAMA0GCSqGSIb3 DQEBCwUAA4IBAQCIsPTagIQJpReUCF/KxZCWNuqXwWjx+SkFf8cA/xWiARhU4InM gOgkZz7u0ORsP17k3qBHqpGBqUMyzIxx+hEgsf+VXxoFFfxNpLcu9MmwyQZO2Dx/ CZwkufROEWe4DI+HqnmHN9piUu/CW/ApFE7GZdTFAHvXA8yOXSlS2baB4BsWBaiD bhRBw1GfVoHFuM4tDIb7S28IYrQT2dWy6pE8OrD9VL1k+Moa3uJMAa1JXdd4Hwb2 9HbuyYKAHI/liqVXWndcuYqpUBFG5f+W+v5mW0xnc+Ag5FOdsfKpVR+yN0vfygWR +k0r5Qb/ch80y8b1Xd2GFVpBOfjeynhHV+4n -----END CERTIFICATE-----Generated at Thu Nov 21 23:33:00 2024 by rpki-client on console-ams.rpki-client.org