$ rpki-client -vvf repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/323430313a646363303a3a2f33322d3438203d3e203338313635.roa File: 323430313a646363303a3a2f33322d3438203d3e203338313635.roa (raw, json) Hash identifier: iw37tA2216xz+ocSb2LDXTQtCnChlzAWcyi4uaBPjFc= Subject key identifier: AE:C9:CC:F7:0E:FE:FB:FC:CE:3B:5F:AD:C6:3E:3C:13:91:59:A5:42 Certificate issuer: /CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053 Certificate serial: 021D9F25F7D44FDBB24A2C9A6ED6A482FCFB6FBD Authority key identifier: F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/323430313a646363303a3a2f33322d3438203d3e203338313635.roa Signing time: Wed 08 Nov 2023 22:00:00 +0000 ROA not before: Wed 08 Nov 2023 21:55:00 +0000 ROA not after: Wed 06 Nov 2024 22:00:00 +0000 asID: 38165 IP address blocks: 2401:dcc0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.crl rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 07:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:1d:9f:25:f7:d4:4f:db:b2:4a:2c:9a:6e:d6:a4:82:fc:fb:6f:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053 Validity Not Before: Nov 8 21:55:00 2023 GMT Not After : Nov 6 22:00:00 2024 GMT Subject: CN=AEC9CCF70EFEFBFCCE3B5FADC63E3C139159A542 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:38:2e:57:93:fe:ab:68:c5:93:60:1e:ff:e3: 3c:59:3d:60:d9:96:0d:93:e3:20:eb:61:f6:42:8d: b3:aa:8a:d8:76:a9:7d:38:6b:0c:ec:f2:2d:17:d1: 4f:7a:30:8e:4e:e0:79:14:7f:7c:4f:c9:31:9e:f3: bd:0f:74:a0:9f:a9:2a:67:0e:1f:b3:a5:e1:e4:ec: 6e:54:8f:2d:42:5c:a3:ed:a8:ff:07:07:b4:af:6a: e9:e3:34:0d:88:00:d6:0f:31:25:07:51:a9:3f:f5: 8e:f7:09:7c:28:03:c7:5a:0b:cb:df:10:a5:f7:70: 52:3c:c0:13:89:00:60:84:f5:6f:86:8c:a7:ac:5f: 58:1f:97:94:0f:01:df:30:d1:c2:62:48:83:9c:45: 46:da:d3:3d:1f:3a:29:42:96:4d:97:42:48:c6:5a: b1:04:22:31:d4:f7:b9:67:87:6d:02:d2:94:af:05: b4:eb:80:8c:25:6d:4a:17:fa:fb:84:99:07:9f:1c: 6e:3f:56:8e:2a:36:7a:6b:85:74:85:05:42:f5:9f: ab:b4:d8:13:13:51:13:bb:d1:fe:17:27:c1:4c:91: 37:1f:39:07:35:be:73:e9:36:5f:5e:76:14:27:bb: 71:42:80:e0:a3:38:4f:eb:b4:d6:6c:c7:fe:5b:2d: 15:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:C9:CC:F7:0E:FE:FB:FC:CE:3B:5F:AD:C6:3E:3C:13:91:59:A5:42 X509v3 Authority Key Identifier: keyid:F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/323430313a646363303a3a2f33322d3438203d3e203338313635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:dcc0::/32 Signature Algorithm: sha256WithRSAEncryption 6e:82:d3:d7:f9:00:ce:6f:33:26:f0:b3:a0:8b:5b:7e:4d:42: bb:24:79:d4:03:dd:ff:4a:91:5e:3a:26:16:0b:f3:6f:db:99: 4a:65:f7:b1:45:d1:84:80:14:c7:d9:af:9b:c0:12:75:b7:3f: 64:c7:ef:f7:9a:b9:9d:67:30:72:2c:3e:bb:0d:3a:14:64:8a: 48:c0:52:05:0d:9d:a4:a1:de:ad:59:69:a7:7e:e7:41:65:31: d3:48:07:1a:25:05:f5:09:09:05:76:02:9a:ad:ef:04:75:8e: 1f:09:c1:e1:97:e8:d9:45:90:1e:6e:1e:f0:80:8f:96:06:a8: 03:22:e8:41:7a:84:c8:72:1e:da:f2:a0:f9:8c:6e:b5:cb:6d: 9e:b7:c2:d7:1d:94:1e:be:e1:25:d1:7c:82:f7:51:23:46:5c: df:94:e1:c2:38:69:e2:96:8e:fe:08:6e:cb:af:c3:88:f1:76: 31:10:f7:ab:06:85:81:a9:b5:97:ac:c1:93:b3:01:79:d5:78: e2:f4:50:65:84:91:00:f6:f2:fd:b2:5e:1c:51:ae:dc:89:12: 33:5c:92:94:4c:86:2a:e4:9e:70:27:60:31:06:7e:6e:5f:f2: 12:ec:f6:22:5c:ce:65:43:6d:8c:1a:83:01:31:0f:55:2e:44: 73:4d:51:9d -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUAh2fJffUT9uySiyabtakgvz7b70wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjJDMjI0MTRCRjA4RkMwOEIwQUVCRjQ0RkFGODVBODU5 NzlEMTA1MzAeFw0yMzExMDgyMTU1MDBaFw0yNDExMDYyMjAwMDBaMDMxMTAvBgNV BAMTKEFFQzlDQ0Y3MEVGRUZCRkNDRTNCNUZBREM2M0UzQzEzOTE1OUE1NDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmOC5Xk/6raMWTYB7/4zxZPWDZ lg2T4yDrYfZCjbOqith2qX04awzs8i0X0U96MI5O4HkUf3xPyTGe870PdKCfqSpn Dh+zpeHk7G5Ujy1CXKPtqP8HB7SvaunjNA2IANYPMSUHUak/9Y73CXwoA8daC8vf EKX3cFI8wBOJAGCE9W+GjKesX1gfl5QPAd8w0cJiSIOcRUba0z0fOilClk2XQkjG WrEEIjHU97lnh20C0pSvBbTrgIwlbUoX+vuEmQefHG4/Vo4qNnprhXSFBUL1n6u0 2BMTURO70f4XJ8FMkTcfOQc1vnPpNl9edhQnu3FCgOCjOE/rtNZsx/5bLRXPAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUrsnM9w7++/zOO1+txj48E5FZpUIwHwYDVR0j BBgwFoAU8sIkFL8I/Aiwrr9E+vhahZedEFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NzQ0OGMxMS1mOGQzLTQ1N2QtOGUyMi04NDg4N2FiMjJhMzAvMC9GMkMyMjQxNEJG MDhGQzA4QjBBRUJGNDRGQUY4NUE4NTk3OUQxMDUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjJDMjI0MTRCRjA4RkMwOEIwQUVCRjQ0RkFGODVBODU5NzlE MTA1My5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3NDQ4YzExLWY4ZDMtNDU3ZC04 ZTIyLTg0ODg3YWIyMmEzMC8wLzMyMzQzMDMxM2E2NDYzNjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMzMzgzMTM2MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAdzAMA0GCSqGSIb3 DQEBCwUAA4IBAQBugtPX+QDObzMm8LOgi1t+TUK7JHnUA93/SpFeOiYWC/Nv25lK ZfexRdGEgBTH2a+bwBJ1tz9kx+/3mrmdZzByLD67DToUZIpIwFIFDZ2kod6tWWmn fudBZTHTSAcaJQX1CQkFdgKare8EdY4fCcHhl+jZRZAebh7wgI+WBqgDIuhBeoTI ch7a8qD5jG61y22et8LXHZQevuEl0XyC91EjRlzflOHCOGnilo7+CG7Lr8OI8XYx EPerBoWBqbWXrMGTswF51Xji9FBlhJEA9vL9sl4cUa7ciRIzXJKUTIYq5J5wJ2Ax Bn5uX/IS7PYiXM5lQ22MGoMBMQ9VLkRzTVGd -----END CERTIFICATE-----Generated at Fri May 31 08:37:57 2024 by rpki-client on console-fra.rpki-client.org