$ rpki-client -vvf repo-rpki.idnic.net/repo/026cf28d-ffc7-4351-a8cb-25d19fc43177/0/323430353a336663303a3a2f33322d3332203d3e20313339343031.roa File: 323430353a336663303a3a2f33322d3332203d3e20313339343031.roa (raw, json) Hash identifier: EofXMeQ3rQxAMPrxu14cOWyeKj+CAQJFfwVa/5Ug6IM= Subject key identifier: 19:3C:72:6C:93:92:5C:EB:E5:DB:47:29:A2:0B:51:88:25:22:41:D7 Certificate issuer: /CN=B65D1460ACFC8D91183381DC64E52D2E282D14B0 Certificate serial: 101A67FAEE9737E58D56AC0C7FD20720E9022921 Authority key identifier: B6:5D:14:60:AC:FC:8D:91:18:33:81:DC:64:E5:2D:2E:28:2D:14:B0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B65D1460ACFC8D91183381DC64E52D2E282D14B0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/026cf28d-ffc7-4351-a8cb-25d19fc43177/0/323430353a336663303a3a2f33322d3332203d3e20313339343031.roa Signing time: Mon 01 Jul 2024 01:05:25 +0000 ROA not before: Mon 01 Jul 2024 01:00:25 +0000 ROA not after: Mon 30 Jun 2025 01:05:25 +0000 asID: 139401 IP address blocks: 2405:3fc0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/026cf28d-ffc7-4351-a8cb-25d19fc43177/0/B65D1460ACFC8D91183381DC64E52D2E282D14B0.crl rsync://repo-rpki.idnic.net/repo/026cf28d-ffc7-4351-a8cb-25d19fc43177/0/B65D1460ACFC8D91183381DC64E52D2E282D14B0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B65D1460ACFC8D91183381DC64E52D2E282D14B0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:1a:67:fa:ee:97:37:e5:8d:56:ac:0c:7f:d2:07:20:e9:02:29:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B65D1460ACFC8D91183381DC64E52D2E282D14B0 Validity Not Before: Jul 1 01:00:25 2024 GMT Not After : Jun 30 01:05:25 2025 GMT Subject: CN=193C726C93925CEBE5DB4729A20B5188252241D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:04:07:b1:44:52:87:a1:06:e5:c6:0b:7a:e5: 0d:94:62:ed:fb:ca:e9:df:fd:63:a1:b0:ad:79:89: be:1e:bf:71:e5:3d:ee:2f:0c:6c:96:3a:0f:4a:e5: 5f:b8:3c:28:2b:80:ee:75:16:16:d8:e6:28:ab:ee: 22:57:19:77:c3:92:ff:69:9a:7d:a9:2d:02:f1:39: 57:8a:0f:22:50:e2:f2:76:5d:ed:b2:b0:13:58:14: 8b:f5:7b:00:f1:75:3a:3e:a5:41:16:50:d8:35:07: 0b:5d:87:59:c0:3b:d6:ee:07:63:ac:e6:f5:7b:01: 9b:48:1a:e2:97:14:26:14:f6:05:95:b4:ee:a9:75: f7:cc:fb:8c:2c:9c:9d:88:93:6a:4a:8c:38:f5:33: aa:13:51:56:2a:e1:46:6f:41:2c:48:0e:c3:1b:49: 13:69:01:c8:9d:56:8f:7c:fe:9c:6e:dd:cb:6f:bc: 1d:50:61:f3:2e:56:7c:d3:94:8d:07:53:27:61:03: c0:0f:92:16:d7:c3:25:14:a1:df:04:97:48:4f:9a: ac:eb:92:9e:bc:0b:11:78:97:b1:24:e7:4c:fc:bb: 8c:6d:79:e3:f3:ca:02:e8:a8:21:4f:cd:f5:69:b5: 90:46:d0:5b:96:7a:f6:8c:2b:01:7b:05:28:36:6d: aa:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:3C:72:6C:93:92:5C:EB:E5:DB:47:29:A2:0B:51:88:25:22:41:D7 X509v3 Authority Key Identifier: keyid:B6:5D:14:60:AC:FC:8D:91:18:33:81:DC:64:E5:2D:2E:28:2D:14:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/026cf28d-ffc7-4351-a8cb-25d19fc43177/0/B65D1460ACFC8D91183381DC64E52D2E282D14B0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B65D1460ACFC8D91183381DC64E52D2E282D14B0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/026cf28d-ffc7-4351-a8cb-25d19fc43177/0/323430353a336663303a3a2f33322d3332203d3e20313339343031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3fc0::/32 Signature Algorithm: sha256WithRSAEncryption 8e:61:d8:d3:b7:7e:59:76:b9:15:4b:46:98:a1:52:3d:08:37: 42:66:f7:8b:e6:97:f2:04:d8:a2:05:03:a9:87:cb:36:13:16: 5b:8c:41:ab:b1:a2:09:ef:a4:7e:16:2f:e0:56:87:e7:7c:0b: 03:41:00:92:af:91:d0:63:c5:61:0d:ae:97:f9:87:4a:89:50: c3:a9:51:56:de:55:85:13:17:b4:36:4b:5f:3d:ff:3d:24:29: 96:27:05:3d:a2:3d:21:57:ff:d6:c0:af:32:38:93:7c:5e:f8: 8d:f4:15:b9:15:5f:80:8d:14:bd:b1:bb:5a:11:49:e2:70:bb: 84:24:ad:df:57:87:1f:cc:95:08:08:7d:66:24:9c:45:2f:8c: 90:9b:ff:bd:e6:7c:c1:94:e5:cf:fd:25:52:42:db:36:5f:6e: 64:c2:e1:a0:db:c1:0d:6f:ba:2c:3e:92:e2:79:f8:04:0f:19: 01:0f:bd:a2:e8:dc:a2:41:17:a4:3c:9c:81:29:e3:dd:b3:c6: ab:b3:0f:3e:7c:f4:31:a0:22:d4:2f:ad:db:e1:96:29:d9:2d: de:6b:39:ae:d6:cf:b9:27:4b:ff:10:ca:06:73:c6:0a:11:c5: 70:87:41:36:ba:bc:39:ef:6f:3b:06:3e:db:d5:fd:9a:83:30: 70:93:23:1e -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUEBpn+u6XN+WNVqwMf9IHIOkCKSEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjY1RDE0NjBBQ0ZDOEQ5MTE4MzM4MURDNjRFNTJEMkUy ODJEMTRCMDAeFw0yNDA3MDEwMTAwMjVaFw0yNTA2MzAwMTA1MjVaMDMxMTAvBgNV BAMTKDE5M0M3MjZDOTM5MjVDRUJFNURCNDcyOUEyMEI1MTg4MjUyMjQxRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFBAexRFKHoQblxgt65Q2UYu37 yunf/WOhsK15ib4ev3HlPe4vDGyWOg9K5V+4PCgrgO51FhbY5iir7iJXGXfDkv9p mn2pLQLxOVeKDyJQ4vJ2Xe2ysBNYFIv1ewDxdTo+pUEWUNg1Bwtdh1nAO9buB2Os 5vV7AZtIGuKXFCYU9gWVtO6pdffM+4wsnJ2Ik2pKjDj1M6oTUVYq4UZvQSxIDsMb SRNpAcidVo98/pxu3ctvvB1QYfMuVnzTlI0HUydhA8APkhbXwyUUod8El0hPmqzr kp68CxF4l7Ek50z8u4xteePzygLoqCFPzfVptZBG0FuWevaMKwF7BSg2baq7AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUGTxybJOSXOvl20cpogtRiCUiQdcwHwYDVR0j BBgwFoAUtl0UYKz8jZEYM4HcZOUtLigtFLAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MjZjZjI4ZC1mZmM3LTQzNTEtYThjYi0yNWQxOWZjNDMxNzcvMC9CNjVEMTQ2MEFD RkM4RDkxMTgzMzgxREM2NEU1MkQyRTI4MkQxNEIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjY1RDE0NjBBQ0ZDOEQ5MTE4MzM4MURDNjRFNTJEMkUyODJE MTRCMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAyNmNmMjhkLWZmYzctNDM1MS1h OGNiLTI1ZDE5ZmM0MzE3Ny8wLzMyMzQzMDM1M2EzMzY2NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTM0MzAzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFP8AwDQYJKoZI hvcNAQELBQADggEBAI5h2NO3fll2uRVLRpihUj0IN0Jm94vml/IE2KIFA6mHyzYT FluMQauxognvpH4WL+BWh+d8CwNBAJKvkdBjxWENrpf5h0qJUMOpUVbeVYUTF7Q2 S189/z0kKZYnBT2iPSFX/9bArzI4k3xe+I30FbkVX4CNFL2xu1oRSeJwu4Qkrd9X hx/MlQgIfWYknEUvjJCb/73mfMGU5c/9JVJC2zZfbmTC4aDbwQ1vuiw+kuJ5+AQP GQEPvaLo3KJBF6Q8nIEp492zxquzDz589DGgItQvrdvhlinZLd5rOa7Wz7knS/8Q ygZzxgoRxXCHQTa6vDnvbzsGPtvV/ZqDMHCTIx4= -----END CERTIFICATE-----Generated at Thu Nov 21 06:48:39 2024 by rpki-client on console-fra.rpki-client.org