$ rpki-client -vvf repo-rpki.idnic.net/repo/f3a62c9a-d4f0-454b-807f-84f9b3c202b3/0/323430353a346338303a3a2f33322d3438203d3e20313335343635.roa File: 323430353a346338303a3a2f33322d3438203d3e20313335343635.roa (raw, json) Hash identifier: QYHKTKZ5gsFoLw6uZHDxB3rhXHB/nvwJjJOjQl/PuUQ= Subject key identifier: 5B:40:AE:C5:87:DD:97:05:53:B2:1B:66:69:70:1E:1F:36:FC:08:C4 Certificate issuer: /CN=4551A032C44485FF6593E043527E3E1CE35B4C46 Certificate serial: 7E16B2A8C7388A3D5BBAA5C05C599BEA53771A2A Authority key identifier: 45:51:A0:32:C4:44:85:FF:65:93:E0:43:52:7E:3E:1C:E3:5B:4C:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4551A032C44485FF6593E043527E3E1CE35B4C46.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3a62c9a-d4f0-454b-807f-84f9b3c202b3/0/323430353a346338303a3a2f33322d3438203d3e20313335343635.roa Signing time: Mon 31 Jul 2023 00:08:35 +0000 ROA not before: Mon 31 Jul 2023 00:03:35 +0000 ROA not after: Mon 29 Jul 2024 00:08:35 +0000 asID: 135465 IP address blocks: 2405:4c80::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3a62c9a-d4f0-454b-807f-84f9b3c202b3/0/4551A032C44485FF6593E043527E3E1CE35B4C46.crl rsync://repo-rpki.idnic.net/repo/f3a62c9a-d4f0-454b-807f-84f9b3c202b3/0/4551A032C44485FF6593E043527E3E1CE35B4C46.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4551A032C44485FF6593E043527E3E1CE35B4C46.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Jun 2024 03:42:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:16:b2:a8:c7:38:8a:3d:5b:ba:a5:c0:5c:59:9b:ea:53:77:1a:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4551A032C44485FF6593E043527E3E1CE35B4C46 Validity Not Before: Jul 31 00:03:35 2023 GMT Not After : Jul 29 00:08:35 2024 GMT Subject: CN=5B40AEC587DD970553B21B6669701E1F36FC08C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:88:6e:d9:8f:05:4b:b7:98:25:bf:04:d0:91: b9:18:3d:6f:1c:a4:72:03:91:f5:23:1f:c3:2a:f7: 86:09:e4:8f:a4:ea:74:43:ad:89:ed:6b:01:4e:7c: a5:68:93:58:a1:d0:46:3c:c3:bf:b4:30:c5:c4:94: 1a:c0:4d:2a:99:13:8a:20:ac:ac:7c:73:ab:2f:b5: b7:c8:52:bf:5d:8b:e0:7e:f2:4a:81:bc:19:09:f5: 30:12:e7:c5:1f:0a:ad:b7:87:cf:31:56:ac:ef:82: 36:a5:4f:db:db:55:19:8d:0d:6b:4f:9a:ea:19:5f: 0c:89:59:48:cf:32:79:b4:1b:03:e9:69:f7:49:ce: 1c:16:f6:ed:59:36:f1:bb:51:43:8d:6a:eb:ca:b4: 38:f6:74:17:ca:a8:b2:cb:18:d2:88:bd:08:e9:34: 01:af:22:82:00:c0:32:ac:f7:ea:8d:b6:d7:9d:89: db:5f:d0:b1:4f:e0:1f:af:37:99:27:ec:2b:57:8b: 6c:4d:31:01:8d:70:53:3d:f0:4f:46:09:1a:cb:d7: 2f:cc:2b:ec:c7:df:f0:e9:63:97:97:28:80:ac:d8: 53:90:a3:fb:69:be:36:bd:0a:1e:be:61:17:c5:f8: ae:ea:f8:4e:61:76:e1:19:d5:a4:d1:08:6f:31:62: cd:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:40:AE:C5:87:DD:97:05:53:B2:1B:66:69:70:1E:1F:36:FC:08:C4 X509v3 Authority Key Identifier: keyid:45:51:A0:32:C4:44:85:FF:65:93:E0:43:52:7E:3E:1C:E3:5B:4C:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3a62c9a-d4f0-454b-807f-84f9b3c202b3/0/4551A032C44485FF6593E043527E3E1CE35B4C46.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4551A032C44485FF6593E043527E3E1CE35B4C46.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3a62c9a-d4f0-454b-807f-84f9b3c202b3/0/323430353a346338303a3a2f33322d3438203d3e20313335343635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:4c80::/32 Signature Algorithm: sha256WithRSAEncryption ca:74:8e:6b:17:d8:b8:6f:0f:0c:b7:80:26:e6:f5:47:ab:88: 40:88:62:5f:12:70:67:3c:67:fc:0f:d8:d7:be:93:1d:c5:15: 93:81:a9:e9:3d:82:5a:c1:ba:f2:74:07:0f:fd:90:fb:70:2c: 0b:d9:05:40:6d:89:aa:c1:cc:40:f0:ec:dc:99:2b:1f:2c:c6: 57:18:0b:c3:5d:03:95:03:e9:9b:af:76:2a:19:f5:a8:f5:94: 16:29:c7:ef:df:29:a2:03:e8:46:25:11:90:33:09:8b:9d:ec: 20:2f:25:67:09:97:c8:51:26:de:5c:f1:30:91:78:a2:44:7d: 09:13:22:53:74:4e:32:ae:a3:04:58:d6:61:bf:04:06:d5:92: e9:51:04:08:e1:41:3e:51:ac:69:69:09:02:13:fd:2a:c8:ec: 26:a9:c1:26:57:0c:51:12:74:2c:d5:fc:0d:d2:d3:f7:6f:99: 7f:08:3a:b5:0f:c2:d2:5c:6b:23:c4:96:90:48:7a:49:1a:9a: df:f6:9e:24:57:af:8c:5c:77:ab:de:a7:9a:42:d3:9f:9c:9f: ab:0d:18:31:d4:30:bd:04:93:4e:7e:90:e9:23:c5:7c:08:ca: a0:70:33:8f:b7:11:e3:0c:4c:bf:12:c8:5e:e5:0e:59:f5:18: f9:6f:56:af -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUfhayqMc4ij1buqXAXFmb6lN3GiowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDU1MUEwMzJDNDQ0ODVGRjY1OTNFMDQzNTI3RTNFMUNF MzVCNEM0NjAeFw0yMzA3MzEwMDAzMzVaFw0yNDA3MjkwMDA4MzVaMDMxMTAvBgNV BAMTKDVCNDBBRUM1ODdERDk3MDU1M0IyMUI2NjY5NzAxRTFGMzZGQzA4QzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIiG7ZjwVLt5glvwTQkbkYPW8c pHIDkfUjH8Mq94YJ5I+k6nRDrYntawFOfKVok1ih0EY8w7+0MMXElBrATSqZE4og rKx8c6svtbfIUr9di+B+8kqBvBkJ9TAS58UfCq23h88xVqzvgjalT9vbVRmNDWtP muoZXwyJWUjPMnm0GwPpafdJzhwW9u1ZNvG7UUONauvKtDj2dBfKqLLLGNKIvQjp NAGvIoIAwDKs9+qNttedidtf0LFP4B+vN5kn7CtXi2xNMQGNcFM98E9GCRrL1y/M K+zH3/DpY5eXKICs2FOQo/tpvja9Ch6+YRfF+K7q+E5hduEZ1aTRCG8xYs3zAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUW0CuxYfdlwVTshtmaXAeHzb8CMQwHwYDVR0j BBgwFoAURVGgMsREhf9lk+BDUn4+HONbTEYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2E2MmM5YS1kNGYwLTQ1NGItODA3Zi04NGY5YjNjMjAyYjMvMC80NTUxQTAzMkM0 NDQ4NUZGNjU5M0UwNDM1MjdFM0UxQ0UzNUI0QzQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDU1MUEwMzJDNDQ0ODVGRjY1OTNFMDQzNTI3RTNFMUNFMzVC NEM0Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzYTYyYzlhLWQ0ZjAtNDU0Yi04 MDdmLTg0ZjliM2MyMDJiMy8wLzMyMzQzMDM1M2EzNDYzMzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzNTM0MzYzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFTIAwDQYJKoZI hvcNAQELBQADggEBAMp0jmsX2LhvDwy3gCbm9UeriECIYl8ScGc8Z/wP2Ne+kx3F FZOBqek9glrBuvJ0Bw/9kPtwLAvZBUBtiarBzEDw7NyZKx8sxlcYC8NdA5UD6Zuv dioZ9aj1lBYpx+/fKaID6EYlEZAzCYud7CAvJWcJl8hRJt5c8TCReKJEfQkTIlN0 TjKuowRY1mG/BAbVkulRBAjhQT5RrGlpCQIT/SrI7CapwSZXDFESdCzV/A3S0/dv mX8IOrUPwtJcayPElpBIekkamt/2niRXr4xcd6vep5pC05+cn6sNGDHUML0Ek05+ kOkjxXwIyqBwM4+3EeMMTL8SyF7lDln1GPlvVq8= -----END CERTIFICATE-----Generated at Sun Jun 23 02:49:04 2024 by rpki-client on console-fra.rpki-client.org