$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a32303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a32303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: E3gXB5X+MONP8MChkALZDllTFPGZ3v+31eQcA8VOcvE= Subject key identifier: 2A:88:35:B9:E6:4D:21:7F:AC:AA:34:45:9D:46:6D:13:46:DC:1F:58 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 755259082BB11AA4A3EA2366EC2B1BD99E7AABA8 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a32303a3a2f34382d3438203d3e20313336303838.roa Signing time: Mon 31 Jul 2023 00:07:17 +0000 ROA not before: Mon 31 Jul 2023 00:02:17 +0000 ROA not after: Mon 29 Jul 2024 00:07:17 +0000 asID: 136088 IP address blocks: 2400:d940:20::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Apr 2024 05:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:52:59:08:2b:b1:1a:a4:a3:ea:23:66:ec:2b:1b:d9:9e:7a:ab:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jul 31 00:02:17 2023 GMT Not After : Jul 29 00:07:17 2024 GMT Subject: CN=2A8835B9E64D217FACAA34459D466D1346DC1F58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:95:90:40:08:5e:6c:45:0e:6c:89:ee:39:1f: 76:76:59:4e:ae:47:b7:e6:66:0a:20:3e:e0:45:0a: cc:ca:bf:65:cc:08:8a:3d:67:a6:58:90:a6:99:65: f2:90:ed:bf:c1:8f:b1:77:c2:1c:1a:8b:f8:bc:fa: 4f:b1:ba:8f:1c:16:74:05:b9:ef:83:0f:84:49:a3: e3:ba:95:42:29:e2:78:79:83:98:1b:2c:cc:ee:c9: e9:0f:d0:8c:be:a5:db:98:61:ec:52:e7:27:23:b1: 6a:e2:43:fc:b9:3d:40:63:5d:c3:95:a7:4a:9e:fb: 45:87:19:4d:d0:ba:44:f0:ff:a7:db:9b:8b:8a:c6: aa:75:b7:6f:6e:bd:e5:6f:24:15:b0:67:0b:f0:a4: db:fb:e8:ca:7c:44:59:90:bc:82:29:f8:0e:a1:b0: 06:65:13:91:b5:d7:c4:e4:6d:ad:7c:c9:1a:71:df: 00:d5:45:26:bd:79:f1:c6:c5:de:cf:3c:e9:da:fa: f5:54:b5:5f:d5:1a:3c:5c:c1:9c:06:56:90:3c:ca: e2:03:15:40:7a:20:56:57:56:25:36:82:ca:2b:b5: 17:5b:58:92:7f:9b:56:3b:85:03:1f:74:82:ba:d6: a2:e5:13:ef:94:3e:71:f1:26:a0:97:90:f5:67:e8: 78:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:88:35:B9:E6:4D:21:7F:AC:AA:34:45:9D:46:6D:13:46:DC:1F:58 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a32303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:20::/48 Signature Algorithm: sha256WithRSAEncryption ca:c8:f6:74:f3:8b:f3:76:7c:0c:49:72:ec:1c:30:d1:45:a1: 29:cb:ce:13:4d:37:c4:d4:1c:c1:b5:04:4b:78:5a:22:4a:b4: c7:a7:2a:04:b2:6c:2a:93:ae:a7:d1:c5:83:9c:03:61:bf:f1: b5:af:33:af:2b:cf:a5:2a:0d:24:aa:6b:c4:7a:43:b1:99:21: 14:7c:30:a0:06:58:c9:3f:0e:f0:70:b2:d9:bb:31:07:b7:dd: 22:50:a0:ad:ca:e9:8a:5a:65:83:50:93:3c:b5:e4:5c:cd:7d: b1:45:ee:de:30:f4:d9:55:ef:2c:a3:20:ed:4e:8f:6b:1a:26: e5:b6:61:fe:5e:ed:99:07:01:e0:03:4c:6a:24:f5:0b:aa:ed: 84:6b:eb:03:19:08:3c:00:05:3d:02:2c:3e:1f:ee:c5:0d:00: f9:d2:ae:e1:d7:e7:ee:38:d0:df:76:ca:8a:d3:44:b4:61:c8: ec:d1:a5:bc:68:d0:91:f7:f2:cc:43:2c:a8:50:f2:46:06:6b: 53:45:b7:64:d6:9e:e6:04:ee:95:69:f8:70:e4:78:f5:6e:e1: 69:c9:a1:5c:dd:73:bd:b3:b6:34:e6:71:f0:c4:e5:80:b0:2e: 11:40:55:86:93:68:3d:29:82:41:f6:33:5e:66:79:dc:ff:75: b2:cb:7b:01 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUdVJZCCuxGqSj6iNm7Csb2Z56q6gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yMzA3MzEwMDAyMTdaFw0yNDA3MjkwMDA3MTdaMDMxMTAvBgNV BAMTKDJBODgzNUI5RTY0RDIxN0ZBQ0FBMzQ0NTlENDY2RDEzNDZEQzFGNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2lZBACF5sRQ5sie45H3Z2WU6u R7fmZgogPuBFCszKv2XMCIo9Z6ZYkKaZZfKQ7b/Bj7F3whwai/i8+k+xuo8cFnQF ue+DD4RJo+O6lUIp4nh5g5gbLMzuyekP0Iy+pduYYexS5ycjsWriQ/y5PUBjXcOV p0qe+0WHGU3QukTw/6fbm4uKxqp1t29uveVvJBWwZwvwpNv76Mp8RFmQvIIp+A6h sAZlE5G118Tkba18yRpx3wDVRSa9efHGxd7PPOna+vVUtV/VGjxcwZwGVpA8yuID FUB6IFZXViU2gsortRdbWJJ/m1Y7hQMfdIK61qLlE++UPnHxJqCXkPVn6Hj5AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUKog1ueZNIX+sqjRFnUZtE0bcH1gwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzIzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNjMwMzgzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA2UAA IDANBgkqhkiG9w0BAQsFAAOCAQEAysj2dPOL83Z8DEly7Bww0UWhKcvOE003xNQc wbUES3haIkq0x6cqBLJsKpOup9HFg5wDYb/xta8zryvPpSoNJKprxHpDsZkhFHww oAZYyT8O8HCy2bsxB7fdIlCgrcrpilplg1CTPLXkXM19sUXu3jD02VXvLKMg7U6P axom5bZh/l7tmQcB4ANMaiT1C6rthGvrAxkIPAAFPQIsPh/uxQ0A+dKu4dfn7jjQ 33bKitNEtGHI7NGlvGjQkffyzEMsqFDyRgZrU0W3ZNae5gTulWn4cOR49W7hacmh XN1zvbO2NOZx8MTlgLAuEUBVhpNoPSmCQfYzXmZ53P91sst7AQ== -----END CERTIFICATE-----Generated at Wed Apr 17 23:07:51 2024 by rpki-client on console-fra.rpki-client.org