$ rpki-client -vvf repo-rpki.idnic.net/repo/02cb0b3a-692d-442e-9308-903c02d5718f/0/323430353a63303a3a2f33322d3438203d3e20313338383831.roa File: 323430353a63303a3a2f33322d3438203d3e20313338383831.roa (raw, json) Hash identifier: 9l77c+ELVpnt8sBa7r5sdntlRqnRcBIJIYmt6ZvAHvU= Subject key identifier: DF:15:6C:74:91:78:FA:18:02:C1:8D:BF:F8:8B:B1:E9:A2:2B:65:D9 Certificate issuer: /CN=02AC8DC3B003059A7040EDCFC881D9C93B064C18 Certificate serial: 359AC0D4212C41AA2F62E6FFFB4C6E0F80F4F60B Authority key identifier: 02:AC:8D:C3:B0:03:05:9A:70:40:ED:CF:C8:81:D9:C9:3B:06:4C:18 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/02AC8DC3B003059A7040EDCFC881D9C93B064C18.cer Subject info access: rsync://repo-rpki.idnic.net/repo/02cb0b3a-692d-442e-9308-903c02d5718f/0/323430353a63303a3a2f33322d3438203d3e20313338383831.roa Signing time: Mon 01 Jul 2024 01:05:00 +0000 ROA not before: Mon 01 Jul 2024 01:00:00 +0000 ROA not after: Mon 30 Jun 2025 01:05:00 +0000 asID: 138881 IP address blocks: 2405:c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/02cb0b3a-692d-442e-9308-903c02d5718f/0/02AC8DC3B003059A7040EDCFC881D9C93B064C18.crl rsync://repo-rpki.idnic.net/repo/02cb0b3a-692d-442e-9308-903c02d5718f/0/02AC8DC3B003059A7040EDCFC881D9C93B064C18.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/02AC8DC3B003059A7040EDCFC881D9C93B064C18.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:9a:c0:d4:21:2c:41:aa:2f:62:e6:ff:fb:4c:6e:0f:80:f4:f6:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02AC8DC3B003059A7040EDCFC881D9C93B064C18 Validity Not Before: Jul 1 01:00:00 2024 GMT Not After : Jun 30 01:05:00 2025 GMT Subject: CN=DF156C749178FA1802C18DBFF88BB1E9A22B65D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:88:0c:52:9b:3a:05:b8:d3:25:4a:3b:66:dc: 76:e0:11:60:eb:a6:21:96:da:0f:fa:c7:61:0b:52: ad:b7:bc:29:85:bd:28:e9:68:88:e7:6e:c0:20:88: 16:72:42:31:2c:fe:80:ca:73:6e:09:67:d3:94:6b: 77:2f:c5:60:1a:31:1b:bb:7b:fa:fa:85:91:d3:9f: 53:19:ba:39:6d:8a:7a:e8:ce:39:2f:d2:5d:5c:a0: 29:63:77:76:08:35:9f:a1:58:83:40:95:d5:b7:8b: 07:14:c8:32:28:c4:5c:b3:44:13:8a:9d:92:22:34: da:11:68:73:57:4e:47:47:e1:1c:e0:06:19:45:cf: 1e:e2:c7:fc:7c:ee:99:17:4f:0b:33:7f:81:71:8c: 40:41:4e:98:62:00:5c:cb:4f:51:56:96:f7:52:98: 34:28:b9:c8:41:fb:e5:6a:29:ac:85:47:07:52:57: 92:45:bf:92:14:e0:57:77:4b:48:9e:d4:d8:0f:38: bd:a2:e2:11:c3:3a:df:b3:a4:91:73:83:55:4b:d9: b9:f2:50:90:ec:af:13:9f:1a:eb:e1:9a:57:7d:30: 18:27:23:48:97:8e:11:77:ff:14:ae:f5:78:0d:db: 85:38:2f:26:9a:07:3f:61:e3:ef:08:1f:c0:ac:1c: 83:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:15:6C:74:91:78:FA:18:02:C1:8D:BF:F8:8B:B1:E9:A2:2B:65:D9 X509v3 Authority Key Identifier: keyid:02:AC:8D:C3:B0:03:05:9A:70:40:ED:CF:C8:81:D9:C9:3B:06:4C:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/02cb0b3a-692d-442e-9308-903c02d5718f/0/02AC8DC3B003059A7040EDCFC881D9C93B064C18.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/02AC8DC3B003059A7040EDCFC881D9C93B064C18.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/02cb0b3a-692d-442e-9308-903c02d5718f/0/323430353a63303a3a2f33322d3438203d3e20313338383831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c0::/32 Signature Algorithm: sha256WithRSAEncryption 02:07:f5:91:98:0c:aa:7d:50:3f:79:f5:86:f5:42:ec:23:74: 35:06:a1:db:5e:0d:d7:10:37:db:33:26:a4:f2:80:54:62:d5: ea:5c:2a:44:9a:8b:11:ee:82:3d:91:0e:a7:3f:c7:15:48:8f: f3:6c:43:c1:93:dd:38:e1:06:c8:8b:3c:bf:99:f3:ff:2c:15: 8c:2f:63:49:b5:e6:5a:cd:3e:c0:c1:6f:51:99:db:19:65:e0: e0:6b:68:c6:94:e3:cd:c5:70:3f:28:84:27:94:eb:6d:4d:90: 82:83:60:dd:06:04:7f:1d:10:ef:46:b5:18:e8:e7:bc:59:42: 8a:7a:55:e7:2c:39:f4:2d:0e:3a:3b:4a:d9:0d:2b:29:0d:68: 0d:d9:99:3a:cc:3c:a7:28:5f:dc:6a:e5:b0:1a:31:09:1a:52: 45:ce:69:99:a9:49:ba:20:7b:7a:be:77:c6:37:40:0b:8a:66: 1c:ef:83:c4:db:0c:78:93:d8:71:d1:03:6d:b6:21:b3:42:a6: be:e9:78:d7:b1:7a:24:58:42:e2:74:48:32:e0:fb:bf:84:ad: 4f:67:52:99:09:6c:a5:1e:b1:95:47:9c:c5:3c:d9:8c:95:f6: f9:be:4c:52:86:7a:af:ec:c8:77:aa:0f:88:eb:a9:6e:7c:1f: 29:22:2b:74 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUNZrA1CEsQaovYub/+0xuD4D09gswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDJBQzhEQzNCMDAzMDU5QTcwNDBFRENGQzg4MUQ5Qzkz QjA2NEMxODAeFw0yNDA3MDEwMTAwMDBaFw0yNTA2MzAwMTA1MDBaMDMxMTAvBgNV BAMTKERGMTU2Qzc0OTE3OEZBMTgwMkMxOERCRkY4OEJCMUU5QTIyQjY1RDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkiAxSmzoFuNMlSjtm3HbgEWDr piGW2g/6x2ELUq23vCmFvSjpaIjnbsAgiBZyQjEs/oDKc24JZ9OUa3cvxWAaMRu7 e/r6hZHTn1MZujltinrozjkv0l1coCljd3YINZ+hWINAldW3iwcUyDIoxFyzRBOK nZIiNNoRaHNXTkdH4RzgBhlFzx7ix/x87pkXTwszf4FxjEBBTphiAFzLT1FWlvdS mDQouchB++VqKayFRwdSV5JFv5IU4Fd3S0ie1NgPOL2i4hHDOt+zpJFzg1VL2bny UJDsrxOfGuvhmld9MBgnI0iXjhF3/xSu9XgN24U4LyaaBz9h4+8IH8CsHIOrAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQU3xVsdJF4+hgCwY2/+Iux6aIrZdkwHwYDVR0j BBgwFoAUAqyNw7ADBZpwQO3PyIHZyTsGTBgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MmNiMGIzYS02OTJkLTQ0MmUtOTMwOC05MDNjMDJkNTcxOGYvMC8wMkFDOERDM0Iw MDMwNTlBNzA0MEVEQ0ZDODgxRDlDOTNCMDY0QzE4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDJBQzhEQzNCMDAzMDU5QTcwNDBFRENGQzg4MUQ5QzkzQjA2 NEMxOC5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDJjYjBiM2EtNjkyZC00NDJlLTkz MDgtOTAzYzAyZDU3MThmLzAvMzIzNDMwMzUzYTYzMzAzYTNhMmYzMzMyMmQzNDM4 MjAzZDNlMjAzMTMzMzgzODM4MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBQDAMA0GCSqGSIb3DQEB CwUAA4IBAQACB/WRmAyqfVA/efWG9ULsI3Q1BqHbXg3XEDfbMyak8oBUYtXqXCpE mosR7oI9kQ6nP8cVSI/zbEPBk9044QbIizy/mfP/LBWML2NJteZazT7AwW9RmdsZ ZeDga2jGlOPNxXA/KIQnlOttTZCCg2DdBgR/HRDvRrUY6Oe8WUKKelXnLDn0LQ46 O0rZDSspDWgN2Zk6zDynKF/cauWwGjEJGlJFzmmZqUm6IHt6vnfGN0ALimYc74PE 2wx4k9hx0QNttiGzQqa+6XjXsXokWELidEgy4Pu/hK1PZ1KZCWylHrGVR5zFPNmM lfb5vkxShnqv7Mh3qg+I66lufB8pIit0 -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:19 2024 by rpki-client on console-fra.rpki-client.org