$ rpki-client -vvf repo-rpki.idnic.net/repo/ff2506b1-396d-499e-b7f5-5d9f8e7e0bee/0/323430363a373663303a3a2f33322d3438203d3e203538383231.roa File: 323430363a373663303a3a2f33322d3438203d3e203538383231.roa (raw, json) Hash identifier: RjI4gYGKdj8Bl0U/T4bPU1JIh/5E5PAXVxUvLbLTPMM= Subject key identifier: 68:E9:A2:BB:1B:AE:04:E0:CB:0C:C8:D1:2B:B7:B5:2A:EB:C3:A9:AD Certificate issuer: /CN=58BB439F406646053DA2029A1FDBBE942B381419 Certificate serial: 50D66F3670954B43FFA011CBD02B514F421C1708 Authority key identifier: 58:BB:43:9F:40:66:46:05:3D:A2:02:9A:1F:DB:BE:94:2B:38:14:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58BB439F406646053DA2029A1FDBBE942B381419.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ff2506b1-396d-499e-b7f5-5d9f8e7e0bee/0/323430363a373663303a3a2f33322d3438203d3e203538383231.roa Signing time: Sat 11 Nov 2023 05:01:55 +0000 ROA not before: Sat 11 Nov 2023 04:56:55 +0000 ROA not after: Sat 09 Nov 2024 05:01:55 +0000 asID: 58821 IP address blocks: 2406:76c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ff2506b1-396d-499e-b7f5-5d9f8e7e0bee/0/58BB439F406646053DA2029A1FDBBE942B381419.crl rsync://repo-rpki.idnic.net/repo/ff2506b1-396d-499e-b7f5-5d9f8e7e0bee/0/58BB439F406646053DA2029A1FDBBE942B381419.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58BB439F406646053DA2029A1FDBBE942B381419.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 09:38:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:d6:6f:36:70:95:4b:43:ff:a0:11:cb:d0:2b:51:4f:42:1c:17:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58BB439F406646053DA2029A1FDBBE942B381419 Validity Not Before: Nov 11 04:56:55 2023 GMT Not After : Nov 9 05:01:55 2024 GMT Subject: CN=68E9A2BB1BAE04E0CB0CC8D12BB7B52AEBC3A9AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:65:22:f5:84:17:93:c4:19:bb:cc:53:eb:e2: 16:7e:cb:5d:61:03:37:35:94:47:63:54:1a:7a:78: 43:44:26:60:78:64:2d:7c:33:61:53:a8:e6:bf:af: 94:71:c5:a5:3b:cc:2d:81:36:76:6c:16:b7:ba:45: 00:d9:8d:da:97:47:fc:8b:d0:79:21:53:a3:35:20: 5e:aa:93:c7:42:29:f9:32:6a:25:67:8e:34:22:03: 84:92:83:0b:81:23:2a:88:29:70:ca:1c:7d:ea:98: 31:af:95:f6:6c:f3:c8:a9:d0:cd:4a:01:c0:82:d7: f1:3e:43:14:68:f5:7b:ab:bc:83:92:c2:f5:53:4f: 43:5b:99:32:24:f1:39:01:f9:b1:6a:5e:96:67:31: aa:cb:f7:5c:5f:d5:6a:31:25:42:00:c2:ef:49:06: 38:c7:f4:f4:33:19:d5:93:ed:69:68:77:25:48:d7: d2:dd:50:d6:b0:87:9a:03:9e:72:91:ef:b6:59:24: 68:43:39:3c:26:34:1f:a2:76:83:5e:16:03:46:f5: 67:19:e7:e7:bd:dc:66:ab:03:a2:7f:a6:5d:1c:91: 13:26:3b:92:66:2c:ac:ce:65:da:d4:4b:0e:2e:50: f3:a3:6f:1a:7b:5c:04:93:c0:26:92:fd:3f:57:cf: 34:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:E9:A2:BB:1B:AE:04:E0:CB:0C:C8:D1:2B:B7:B5:2A:EB:C3:A9:AD X509v3 Authority Key Identifier: keyid:58:BB:43:9F:40:66:46:05:3D:A2:02:9A:1F:DB:BE:94:2B:38:14:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ff2506b1-396d-499e-b7f5-5d9f8e7e0bee/0/58BB439F406646053DA2029A1FDBBE942B381419.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58BB439F406646053DA2029A1FDBBE942B381419.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ff2506b1-396d-499e-b7f5-5d9f8e7e0bee/0/323430363a373663303a3a2f33322d3438203d3e203538383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:76c0::/32 Signature Algorithm: sha256WithRSAEncryption b8:0a:05:74:46:57:63:ae:12:e2:63:68:21:f1:49:85:dd:59: 97:e7:a9:7f:30:18:20:8c:41:a9:ec:90:1b:ba:e8:b2:73:34: af:46:2d:f7:97:b9:ff:be:62:f6:76:8d:74:c3:59:6b:93:cc: 28:35:da:eb:d2:78:ea:88:e4:d4:cc:4d:5f:9f:67:8f:bf:bd: 42:af:bb:a5:39:90:7f:7b:ad:1e:a1:fb:56:43:71:d7:b5:55: 18:8c:34:1b:94:b2:a6:00:8d:3a:ad:43:b4:6e:13:f9:72:9d: 1b:ca:e9:5c:d7:e2:98:a2:9e:79:be:a0:e6:a4:3e:88:ff:7a: bc:7c:72:bd:bd:5d:d2:ff:ab:85:f2:6c:ea:dc:6f:63:56:d1: 1f:62:f8:14:46:4c:fe:f8:65:2d:1b:7d:b1:92:62:aa:38:68: fe:74:54:78:1e:89:2e:7d:b2:d0:01:8d:d2:1e:00:a1:f0:74: 23:ed:74:af:13:17:ce:9c:77:ae:6d:92:bc:01:96:b0:40:90: 82:c1:06:2f:b2:2a:7b:67:6b:5a:04:20:1d:24:6c:bd:07:d1: 24:8c:d7:56:81:58:ff:ea:cf:b3:21:4f:2b:4b:fd:ed:53:72: c2:c7:c4:d0:f2:ee:e3:18:7e:14:35:98:5e:9a:b1:37:03:3a: 9e:32:93:4a -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUUNZvNnCVS0P/oBHL0CtRT0IcFwgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThCQjQzOUY0MDY2NDYwNTNEQTIwMjlBMUZEQkJFOTQy QjM4MTQxOTAeFw0yMzExMTEwNDU2NTVaFw0yNDExMDkwNTAxNTVaMDMxMTAvBgNV BAMTKDY4RTlBMkJCMUJBRTA0RTBDQjBDQzhEMTJCQjdCNTJBRUJDM0E5QUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKZSL1hBeTxBm7zFPr4hZ+y11h Azc1lEdjVBp6eENEJmB4ZC18M2FTqOa/r5RxxaU7zC2BNnZsFre6RQDZjdqXR/yL 0HkhU6M1IF6qk8dCKfkyaiVnjjQiA4SSgwuBIyqIKXDKHH3qmDGvlfZs88ip0M1K AcCC1/E+QxRo9XurvIOSwvVTT0NbmTIk8TkB+bFqXpZnMarL91xf1WoxJUIAwu9J BjjH9PQzGdWT7WlodyVI19LdUNawh5oDnnKR77ZZJGhDOTwmNB+idoNeFgNG9WcZ 5+e93GarA6J/pl0ckRMmO5JmLKzOZdrUSw4uUPOjbxp7XASTwCaS/T9XzzSTAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUaOmiuxuuBODLDMjRK7e1KuvDqa0wHwYDVR0j BBgwFoAUWLtDn0BmRgU9ogKaH9u+lCs4FBkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ZjI1MDZiMS0zOTZkLTQ5OWUtYjdmNS01ZDlmOGU3ZTBiZWUvMC81OEJCNDM5RjQw NjY0NjA1M0RBMjAyOUExRkRCQkU5NDJCMzgxNDE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThCQjQzOUY0MDY2NDYwNTNEQTIwMjlBMUZEQkJFOTQyQjM4 MTQxOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZmMjUwNmIxLTM5NmQtNDk5ZS1i N2Y1LTVkOWY4ZTdlMGJlZS8wLzMyMzQzMDM2M2EzNzM2NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM1MzgzODMyMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBnbAMA0GCSqGSIb3 DQEBCwUAA4IBAQC4CgV0RldjrhLiY2gh8UmF3VmX56l/MBggjEGp7JAbuuiyczSv Ri33l7n/vmL2do10w1lrk8woNdrr0njqiOTUzE1fn2ePv71Cr7ulOZB/e60eoftW Q3HXtVUYjDQblLKmAI06rUO0bhP5cp0byulc1+KYop55vqDmpD6I/3q8fHK9vV3S /6uF8mzq3G9jVtEfYvgURkz++GUtG32xkmKqOGj+dFR4HokufbLQAY3SHgCh8HQj 7XSvExfOnHeubZK8AZawQJCCwQYvsip7Z2taBCAdJGy9B9EkjNdWgVj/6s+zIU8r S/3tU3LCx8TQ8u7jGH4UNZhemrE3AzqeMpNK -----END CERTIFICATE-----Generated at Wed May 1 05:54:35 2024 by rpki-client on console-ams.rpki-client.org