$ rpki-client -vvf repo-rpki.idnic.net/repo/018c6831-8f40-4a20-813e-878558e80c26/0/323430343a34303a3a2f33322d3438203d3e20313338313036.roa File: 323430343a34303a3a2f33322d3438203d3e20313338313036.roa (raw, json) Hash identifier: 0s9oFgprRVui0ZPE7ilDvcKWxjYdScksgtihSEHY5Ks= Subject key identifier: 45:5B:BB:C7:44:23:76:A1:FA:52:82:DF:4C:97:87:A0:9B:66:FE:DB Certificate issuer: /CN=25FB03D0A2C3547C3A38ACAE2A752BB15A245E15 Certificate serial: 25D6DC6532BF5F94196C5B36C08F98721FCC5C6D Authority key identifier: 25:FB:03:D0:A2:C3:54:7C:3A:38:AC:AE:2A:75:2B:B1:5A:24:5E:15 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25FB03D0A2C3547C3A38ACAE2A752BB15A245E15.cer Subject info access: rsync://repo-rpki.idnic.net/repo/018c6831-8f40-4a20-813e-878558e80c26/0/323430343a34303a3a2f33322d3438203d3e20313338313036.roa Signing time: Tue 21 Nov 2023 01:00:02 +0000 ROA not before: Tue 21 Nov 2023 00:55:02 +0000 ROA not after: Tue 19 Nov 2024 01:00:02 +0000 asID: 138106 IP address blocks: 2404:40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/018c6831-8f40-4a20-813e-878558e80c26/0/25FB03D0A2C3547C3A38ACAE2A752BB15A245E15.crl rsync://repo-rpki.idnic.net/repo/018c6831-8f40-4a20-813e-878558e80c26/0/25FB03D0A2C3547C3A38ACAE2A752BB15A245E15.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25FB03D0A2C3547C3A38ACAE2A752BB15A245E15.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 19:28:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:d6:dc:65:32:bf:5f:94:19:6c:5b:36:c0:8f:98:72:1f:cc:5c:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25FB03D0A2C3547C3A38ACAE2A752BB15A245E15 Validity Not Before: Nov 21 00:55:02 2023 GMT Not After : Nov 19 01:00:02 2024 GMT Subject: CN=455BBBC7442376A1FA5282DF4C9787A09B66FEDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:35:9a:4d:9b:64:56:40:d6:bc:f4:96:42:44: ef:d5:b5:c9:a1:0b:4c:2e:5a:cc:7a:73:05:d4:c3: f0:82:d0:78:02:2b:ff:c6:e2:cb:46:30:f2:6d:e0: ad:0c:82:da:f7:53:3a:09:bc:c7:b8:8e:29:c8:f5: f8:c8:ce:0c:63:af:93:de:ca:c7:1a:53:cf:e7:49: 13:e1:6c:17:f5:a8:e7:b5:80:2c:fd:f0:53:3a:d1: e4:e2:95:52:43:bd:cd:3d:3a:93:0b:a8:91:a9:9d: 65:ef:e5:81:0b:15:ef:ab:40:57:24:1b:ad:ef:b1: 75:7a:dc:c5:5f:70:e7:55:e5:98:c8:10:b4:e1:2b: d7:e0:fd:51:c6:fc:cf:6d:df:51:90:27:3a:dd:0e: a5:2a:b9:2c:68:5e:94:e8:6f:8a:55:40:af:1f:1f: f1:cb:b5:f2:55:2d:79:1e:3e:14:75:c1:50:c2:ad: b7:66:80:e0:cd:e0:ed:22:f4:66:80:49:a4:69:bd: 98:b5:11:1a:2a:bb:fa:be:3b:ee:0b:a4:71:42:a7: 45:aa:ef:e7:40:30:e6:d1:0c:04:6c:53:ee:bc:1d: a2:fb:22:c0:db:14:a1:f6:18:0c:76:e1:ca:24:67: 2a:be:38:6b:e8:7f:45:d2:d4:2d:c1:5d:c4:7b:99: 27:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:5B:BB:C7:44:23:76:A1:FA:52:82:DF:4C:97:87:A0:9B:66:FE:DB X509v3 Authority Key Identifier: keyid:25:FB:03:D0:A2:C3:54:7C:3A:38:AC:AE:2A:75:2B:B1:5A:24:5E:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/018c6831-8f40-4a20-813e-878558e80c26/0/25FB03D0A2C3547C3A38ACAE2A752BB15A245E15.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25FB03D0A2C3547C3A38ACAE2A752BB15A245E15.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/018c6831-8f40-4a20-813e-878558e80c26/0/323430343a34303a3a2f33322d3438203d3e20313338313036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:40::/32 Signature Algorithm: sha256WithRSAEncryption 9c:85:9d:3d:16:44:06:ac:dc:e5:2b:1c:d7:c7:16:47:e5:17: 67:34:6b:56:a4:2f:09:a4:9f:1e:e9:10:cc:b7:15:0c:e7:f8: 32:c4:3f:92:b4:05:97:cd:4c:b7:46:8c:4d:57:7c:d3:2d:7b: e7:d4:ea:f4:ba:b9:ea:bf:bd:aa:b9:d5:7f:00:fe:a3:db:b3: 07:bf:a6:79:4d:0b:51:a2:20:62:d0:ab:80:be:02:d7:33:4f: c2:8f:5a:cd:49:6e:1f:82:9d:b0:fc:7d:f2:da:66:38:1a:df: 73:ac:66:0e:15:a9:7c:e0:73:a8:3c:ee:c1:33:a3:e5:f1:1a: 6e:7a:a7:a2:33:4c:fc:eb:40:66:f4:70:ec:48:d8:b6:b5:bc: be:ba:9a:e8:19:40:a4:0c:e9:e9:44:25:b8:fa:56:bb:4d:1a: 9d:b0:43:f2:d5:a4:76:d3:e2:d0:a2:cb:d0:f0:4c:64:16:e9: 23:b1:0f:36:27:f7:c0:fb:ec:2d:04:be:c6:b5:a7:7e:10:9d: dd:f5:c2:0d:33:73:f7:32:74:a1:cf:4f:4e:a6:df:66:4d:1b: e4:18:e4:ca:3c:be:d0:46:95:d9:5a:75:8e:8b:01:85:4e:ca: 28:ce:79:68:26:68:e9:9d:0c:55:73:01:69:77:58:fe:0d:fa: 03:4f:48:62 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUJdbcZTK/X5QZbFs2wI+Ych/MXG0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVGQjAzRDBBMkMzNTQ3QzNBMzhBQ0FFMkE3NTJCQjE1 QTI0NUUxNTAeFw0yMzExMjEwMDU1MDJaFw0yNDExMTkwMTAwMDJaMDMxMTAvBgNV BAMTKDQ1NUJCQkM3NDQyMzc2QTFGQTUyODJERjRDOTc4N0EwOUI2NkZFREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzNZpNm2RWQNa89JZCRO/Vtcmh C0wuWsx6cwXUw/CC0HgCK//G4stGMPJt4K0Mgtr3UzoJvMe4jinI9fjIzgxjr5Pe yscaU8/nSRPhbBf1qOe1gCz98FM60eTilVJDvc09OpMLqJGpnWXv5YELFe+rQFck G63vsXV63MVfcOdV5ZjIELThK9fg/VHG/M9t31GQJzrdDqUquSxoXpTob4pVQK8f H/HLtfJVLXkePhR1wVDCrbdmgODN4O0i9GaASaRpvZi1ERoqu/q+O+4LpHFCp0Wq 7+dAMObRDARsU+68HaL7IsDbFKH2GAx24cokZyq+OGvof0XS1C3BXcR7mSetAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQURVu7x0QjdqH6UoLfTJeHoJtm/tswHwYDVR0j BBgwFoAUJfsD0KLDVHw6OKyuKnUrsVokXhUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MThjNjgzMS04ZjQwLTRhMjAtODEzZS04Nzg1NThlODBjMjYvMC8yNUZCMDNEMEEy QzM1NDdDM0EzOEFDQUUyQTc1MkJCMTVBMjQ1RTE1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjVGQjAzRDBBMkMzNTQ3QzNBMzhBQ0FFMkE3NTJCQjE1QTI0 NUUxNS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDE4YzY4MzEtOGY0MC00YTIwLTgx M2UtODc4NTU4ZTgwYzI2LzAvMzIzNDMwMzQzYTM0MzAzYTNhMmYzMzMyMmQzNDM4 MjAzZDNlMjAzMTMzMzgzMTMwMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBABAMA0GCSqGSIb3DQEB CwUAA4IBAQCchZ09FkQGrNzlKxzXxxZH5RdnNGtWpC8JpJ8e6RDMtxUM5/gyxD+S tAWXzUy3RoxNV3zTLXvn1Or0urnqv72qudV/AP6j27MHv6Z5TQtRoiBi0KuAvgLX M0/Cj1rNSW4fgp2w/H3y2mY4Gt9zrGYOFal84HOoPO7BM6Pl8RpueqeiM0z860Bm 9HDsSNi2tby+uproGUCkDOnpRCW4+la7TRqdsEPy1aR20+LQosvQ8ExkFukjsQ82 J/fA++wtBL7Gtad+EJ3d9cINM3P3MnShz09Opt9mTRvkGOTKPL7QRpXZWnWOiwGF TsooznloJmjpnQxVcwFpd1j+DfoDT0hi -----END CERTIFICATE-----Generated at Wed May 1 12:16:02 2024 by rpki-client on console-ams.rpki-client.org