$ rpki-client -vvf repo-rpki.idnic.net/repo/018c6831-8f40-4a20-813e-878558e80c26/0/323430343a34303a3a2f33322d3438203d3e20313338313036.roa File: 323430343a34303a3a2f33322d3438203d3e20313338313036.roa (raw, json) Hash identifier: RZy6TYvU/OnVoAwKApvUrLMBSgr2tYCN+5iMb33gzqM= Subject key identifier: 70:25:93:1F:32:54:4E:6F:34:0E:46:1A:6F:CC:D7:33:17:57:B0:17 Certificate issuer: /CN=25FB03D0A2C3547C3A38ACAE2A752BB15A245E15 Certificate serial: 37BE5154EEC70D6EE13DD4908CDCA80D0CDF6044 Authority key identifier: 25:FB:03:D0:A2:C3:54:7C:3A:38:AC:AE:2A:75:2B:B1:5A:24:5E:15 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25FB03D0A2C3547C3A38ACAE2A752BB15A245E15.cer Subject info access: rsync://repo-rpki.idnic.net/repo/018c6831-8f40-4a20-813e-878558e80c26/0/323430343a34303a3a2f33322d3438203d3e20313338313036.roa Signing time: Tue 22 Oct 2024 01:00:02 +0000 ROA not before: Tue 22 Oct 2024 00:55:02 +0000 ROA not after: Tue 21 Oct 2025 01:00:02 +0000 asID: 138106 IP address blocks: 2404:40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/018c6831-8f40-4a20-813e-878558e80c26/0/25FB03D0A2C3547C3A38ACAE2A752BB15A245E15.crl rsync://repo-rpki.idnic.net/repo/018c6831-8f40-4a20-813e-878558e80c26/0/25FB03D0A2C3547C3A38ACAE2A752BB15A245E15.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25FB03D0A2C3547C3A38ACAE2A752BB15A245E15.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:be:51:54:ee:c7:0d:6e:e1:3d:d4:90:8c:dc:a8:0d:0c:df:60:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25FB03D0A2C3547C3A38ACAE2A752BB15A245E15 Validity Not Before: Oct 22 00:55:02 2024 GMT Not After : Oct 21 01:00:02 2025 GMT Subject: CN=7025931F32544E6F340E461A6FCCD7331757B017 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:18:33:08:69:ee:97:83:43:e6:30:d6:d6:20: f4:62:23:a9:05:1c:6c:7a:46:10:93:74:a0:dd:d9: 1d:1a:a3:80:a5:b7:a7:46:91:a5:14:db:ae:77:58: 8a:5d:e7:eb:85:2d:9a:26:dc:0d:7c:e2:fc:2a:f2: 39:5d:3f:1b:60:d2:db:d3:66:96:6f:8b:dc:a7:ea: 90:06:f9:45:89:98:c7:84:6c:ad:5b:6f:8f:48:91: 41:3b:56:38:38:77:31:02:fe:9c:28:0d:e9:c6:82: 0a:aa:ff:96:87:fb:92:b6:80:49:24:2f:9c:5c:aa: 0c:bc:cc:98:45:8a:7e:d8:48:17:ed:80:a4:03:9c: 4a:1d:eb:74:07:5f:b2:35:d3:40:28:db:e3:1a:40: 45:ee:ac:04:b3:8c:a2:45:07:3a:81:f5:ad:fd:5b: 25:c8:f5:af:91:1a:dd:bc:ed:ab:ad:a2:92:a1:12: 5d:44:9f:2b:4b:6b:4c:3a:ee:07:3b:6d:06:ca:d8: 91:16:11:e5:40:4b:89:ab:c4:db:fe:ea:21:f3:81: bc:fe:dd:4b:ff:65:36:11:59:9f:3c:95:cb:b4:b6: 12:eb:86:25:36:e1:df:77:34:d8:b7:55:d6:3a:d7: 76:86:0a:a4:0b:a9:88:a7:b8:15:f7:2f:d7:c2:ad: 32:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:25:93:1F:32:54:4E:6F:34:0E:46:1A:6F:CC:D7:33:17:57:B0:17 X509v3 Authority Key Identifier: keyid:25:FB:03:D0:A2:C3:54:7C:3A:38:AC:AE:2A:75:2B:B1:5A:24:5E:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/018c6831-8f40-4a20-813e-878558e80c26/0/25FB03D0A2C3547C3A38ACAE2A752BB15A245E15.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25FB03D0A2C3547C3A38ACAE2A752BB15A245E15.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/018c6831-8f40-4a20-813e-878558e80c26/0/323430343a34303a3a2f33322d3438203d3e20313338313036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:40::/32 Signature Algorithm: sha256WithRSAEncryption 21:9c:12:ed:c7:8e:47:c4:6d:b7:a2:d8:1e:75:23:6a:91:92: 05:01:3d:8f:b8:3c:1f:d4:a0:90:03:7a:97:20:8e:c2:ba:f6: 75:94:89:0b:d1:a4:41:de:7e:6a:42:ce:05:8a:92:80:33:27: 6e:e0:d8:d1:34:53:0f:ab:67:e3:cc:8d:a3:80:9d:8b:02:fc: 39:3d:b4:07:e3:c4:0f:8e:cf:81:8c:16:55:f4:fa:fd:92:d2: 24:28:e0:6d:f7:26:94:8c:e8:99:ce:68:c9:2d:fd:ba:57:a8: 03:91:f7:dc:7b:71:2f:89:0b:e3:a2:a9:bb:a7:79:d9:11:0d: e5:bd:d8:d2:30:d9:2f:c8:99:26:82:30:66:95:7f:8d:94:85: be:23:eb:36:99:19:6b:69:f1:20:cc:96:83:31:51:6d:78:40: e9:61:95:ff:2e:36:cc:20:28:07:16:1f:cf:bf:5a:a4:8a:37: b6:43:77:f9:48:1b:38:1a:d0:99:b2:8f:8b:90:61:d3:7b:72: e5:f1:91:3a:d2:66:00:3d:cf:39:be:db:19:ae:31:d8:92:48: 7c:d2:83:81:76:83:d3:1b:d3:a3:82:85:0c:3d:51:5b:56:ee: 68:2b:93:b7:3f:66:6c:48:57:72:37:14:25:c3:03:cd:cd:17: 43:a3:05:d8 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUN75RVO7HDW7hPdSQjNyoDQzfYEQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVGQjAzRDBBMkMzNTQ3QzNBMzhBQ0FFMkE3NTJCQjE1 QTI0NUUxNTAeFw0yNDEwMjIwMDU1MDJaFw0yNTEwMjEwMTAwMDJaMDMxMTAvBgNV BAMTKDcwMjU5MzFGMzI1NDRFNkYzNDBFNDYxQTZGQ0NENzMzMTc1N0IwMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRGDMIae6Xg0PmMNbWIPRiI6kF HGx6RhCTdKDd2R0ao4Clt6dGkaUU2653WIpd5+uFLZom3A184vwq8jldPxtg0tvT ZpZvi9yn6pAG+UWJmMeEbK1bb49IkUE7Vjg4dzEC/pwoDenGggqq/5aH+5K2gEkk L5xcqgy8zJhFin7YSBftgKQDnEod63QHX7I100Ao2+MaQEXurASzjKJFBzqB9a39 WyXI9a+RGt287autopKhEl1EnytLa0w67gc7bQbK2JEWEeVAS4mrxNv+6iHzgbz+ 3Uv/ZTYRWZ88lcu0thLrhiU24d93NNi3VdY613aGCqQLqYinuBX3L9fCrTJnAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUcCWTHzJUTm80DkYab8zXMxdXsBcwHwYDVR0j BBgwFoAUJfsD0KLDVHw6OKyuKnUrsVokXhUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MThjNjgzMS04ZjQwLTRhMjAtODEzZS04Nzg1NThlODBjMjYvMC8yNUZCMDNEMEEy QzM1NDdDM0EzOEFDQUUyQTc1MkJCMTVBMjQ1RTE1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjVGQjAzRDBBMkMzNTQ3QzNBMzhBQ0FFMkE3NTJCQjE1QTI0 NUUxNS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDE4YzY4MzEtOGY0MC00YTIwLTgx M2UtODc4NTU4ZTgwYzI2LzAvMzIzNDMwMzQzYTM0MzAzYTNhMmYzMzMyMmQzNDM4 MjAzZDNlMjAzMTMzMzgzMTMwMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBABAMA0GCSqGSIb3DQEB CwUAA4IBAQAhnBLtx45HxG23otgedSNqkZIFAT2PuDwf1KCQA3qXII7CuvZ1lIkL 0aRB3n5qQs4FipKAMydu4NjRNFMPq2fjzI2jgJ2LAvw5PbQH48QPjs+BjBZV9Pr9 ktIkKOBt9yaUjOiZzmjJLf26V6gDkffce3EviQvjoqm7p3nZEQ3lvdjSMNkvyJkm gjBmlX+NlIW+I+s2mRlrafEgzJaDMVFteEDpYZX/LjbMICgHFh/Pv1qkije2Q3f5 SBs4GtCZso+LkGHTe3Ll8ZE60mYAPc85vtsZrjHYkkh80oOBdoPTG9OjgoUMPVFb Vu5oK5O3P2ZsSFdyNxQlwwPNzRdDowXY -----END CERTIFICATE-----Generated at Mon Nov 25 22:02:29 2024 by rpki-client on console-fra.rpki-client.org