$ rpki-client -vvf repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/323430333a653338303a313030313a3a2f34382d3438203d3e20313334363337.roa File: 323430333a653338303a313030313a3a2f34382d3438203d3e20313334363337.roa (raw, json) Hash identifier: TIfHNJHDSmjgEWtC1QEQ1yzW8dtqNzbfylzezlEImD0= Subject key identifier: DB:86:48:42:FF:60:CB:B2:3C:4D:CB:BE:AD:8E:D1:52:05:02:10:D6 Certificate issuer: /CN=027DBEC91021154263BB0CF1565833705023D987 Certificate serial: 7D115B95EF21166A5DB0C8204913FDE1229F9307 Authority key identifier: 02:7D:BE:C9:10:21:15:42:63:BB:0C:F1:56:58:33:70:50:23:D9:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/027DBEC91021154263BB0CF1565833705023D987.cer Subject info access: rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/323430333a653338303a313030313a3a2f34382d3438203d3e20313334363337.roa Signing time: Tue 20 Feb 2024 08:31:18 +0000 ROA not before: Tue 20 Feb 2024 08:26:18 +0000 ROA not after: Tue 18 Feb 2025 08:31:18 +0000 asID: 134637 IP address blocks: 2403:e380:1001::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/027DBEC91021154263BB0CF1565833705023D987.crl rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/027DBEC91021154263BB0CF1565833705023D987.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/027DBEC91021154263BB0CF1565833705023D987.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:11:5b:95:ef:21:16:6a:5d:b0:c8:20:49:13:fd:e1:22:9f:93:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=027DBEC91021154263BB0CF1565833705023D987 Validity Not Before: Feb 20 08:26:18 2024 GMT Not After : Feb 18 08:31:18 2025 GMT Subject: CN=DB864842FF60CBB23C4DCBBEAD8ED152050210D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2f:d8:89:3b:96:a7:33:37:19:c8:79:77:65: e5:7d:8c:64:ec:68:12:75:a1:ad:50:d6:8f:31:ec: 00:c0:36:44:85:39:41:49:ac:ac:cb:b2:e4:87:af: a4:f2:ce:86:18:07:25:d7:cb:48:f1:33:3a:4b:f2: 29:3b:21:24:d9:8f:09:ae:3d:5f:f2:61:56:79:36: 44:81:0d:d2:07:46:a8:e0:38:6d:58:94:af:24:03: 2f:d6:43:d1:82:3a:15:a6:9a:b6:5a:6c:45:2f:5d: 71:e9:c1:24:8f:23:c5:7b:9a:9a:ad:97:17:e2:87: d4:dd:95:1c:52:4e:72:d8:41:8d:07:2b:ea:64:3c: b5:6f:e9:16:5e:4e:29:6f:0f:29:36:37:92:c1:9d: dd:df:cd:9a:88:8c:54:09:c6:0c:be:3f:26:b7:dc: 71:03:85:09:78:b3:32:34:93:93:3d:d7:e7:4f:7a: 55:dd:f2:59:3c:67:c7:17:9a:06:0e:33:92:c8:4c: 8f:60:ad:1c:a5:fb:8f:36:b3:df:00:10:ee:79:3f: b3:46:bc:23:6e:e9:d6:16:1f:60:5c:07:8d:ab:e3: cd:f3:dd:af:66:20:6e:55:3a:68:2e:a3:bd:1f:99: 94:3d:a4:ec:52:20:56:66:d0:7d:3d:23:9f:2d:c9: 27:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:86:48:42:FF:60:CB:B2:3C:4D:CB:BE:AD:8E:D1:52:05:02:10:D6 X509v3 Authority Key Identifier: keyid:02:7D:BE:C9:10:21:15:42:63:BB:0C:F1:56:58:33:70:50:23:D9:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/027DBEC91021154263BB0CF1565833705023D987.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/027DBEC91021154263BB0CF1565833705023D987.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/323430333a653338303a313030313a3a2f34382d3438203d3e20313334363337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:e380:1001::/48 Signature Algorithm: sha256WithRSAEncryption 19:2f:01:b2:41:d6:6d:d3:12:ba:8c:7b:b9:63:15:2d:5f:1d: 13:04:7e:f1:db:4a:76:57:43:6e:2f:01:c3:b8:c4:11:57:46: af:93:9d:7e:4a:89:99:a6:12:9c:3a:6a:84:a8:db:14:a7:d6: 82:5f:5f:1b:b5:60:5e:84:84:41:70:80:69:ef:0c:92:6e:98: 23:18:a1:88:4c:47:d3:eb:d4:04:b9:13:44:73:64:86:ac:de: da:17:7e:3c:b0:8e:57:ec:39:10:90:eb:53:06:1f:68:ba:b5: 53:fb:04:e3:c0:2f:d4:14:18:3c:0e:68:ff:8e:a1:41:94:63: f1:4d:64:f0:76:2c:21:b9:a7:69:d2:23:db:db:32:49:62:18: 48:7c:44:82:78:0d:51:80:57:2b:d2:5d:62:53:d7:b2:76:47: 00:0a:2a:8a:0c:7c:54:39:1d:3b:38:d5:c7:7f:ca:3f:cd:32: f7:51:59:ac:a3:b4:26:31:bc:b6:c2:25:ec:c1:ce:73:2a:f3: a5:41:e4:ae:b2:cf:48:db:fd:84:7f:bb:c0:99:c9:82:2e:60: b6:d4:0d:f8:ea:39:50:88:05:92:93:ee:54:52:eb:82:c1:84: be:a0:5e:2b:40:30:48:cf:e9:e8:0f:d8:ea:7e:1e:3a:5e:2c: 71:03:17:a7 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUfRFble8hFmpdsMggSRP94SKfkwcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI3REJFQzkxMDIxMTU0MjYzQkIwQ0YxNTY1ODMzNzA1 MDIzRDk4NzAeFw0yNDAyMjAwODI2MThaFw0yNTAyMTgwODMxMThaMDMxMTAvBgNV BAMTKERCODY0ODQyRkY2MENCQjIzQzREQ0JCRUFEOEVEMTUyMDUwMjEwRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHL9iJO5anMzcZyHl3ZeV9jGTs aBJ1oa1Q1o8x7ADANkSFOUFJrKzLsuSHr6TyzoYYByXXy0jxMzpL8ik7ISTZjwmu PV/yYVZ5NkSBDdIHRqjgOG1YlK8kAy/WQ9GCOhWmmrZabEUvXXHpwSSPI8V7mpqt lxfih9TdlRxSTnLYQY0HK+pkPLVv6RZeTilvDyk2N5LBnd3fzZqIjFQJxgy+Pya3 3HEDhQl4szI0k5M91+dPelXd8lk8Z8cXmgYOM5LITI9grRyl+482s98AEO55P7NG vCNu6dYWH2BcB42r483z3a9mIG5VOmguo70fmZQ9pOxSIFZm0H09I58tySflAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU24ZIQv9gy7I8Tcu+rY7RUgUCENYwHwYDVR0j BBgwFoAUAn2+yRAhFUJjuwzxVlgzcFAj2YcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NzRmMjE0YS1iZjU1LTQwNDgtODQ1ZC0yMDY3NWZiNWYyYTQvMC8wMjdEQkVDOTEw MjExNTQyNjNCQjBDRjE1NjU4MzM3MDUwMjNEOTg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDI3REJFQzkxMDIxMTU0MjYzQkIwQ0YxNTY1ODMzNzA1MDIz RDk4Ny5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA3NGYyMTRhLWJmNTUtNDA0OC04 NDVkLTIwNjc1ZmI1ZjJhNC8wLzMyMzQzMDMzM2E2NTMzMzgzMDNhMzEzMDMwMzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzQzNjMzMzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk A+OAEAEwDQYJKoZIhvcNAQELBQADggEBABkvAbJB1m3TErqMe7ljFS1fHRMEfvHb SnZXQ24vAcO4xBFXRq+TnX5KiZmmEpw6aoSo2xSn1oJfXxu1YF6EhEFwgGnvDJJu mCMYoYhMR9Pr1AS5E0RzZIas3toXfjywjlfsORCQ61MGH2i6tVP7BOPAL9QUGDwO aP+OoUGUY/FNZPB2LCG5p2nSI9vbMkliGEh8RIJ4DVGAVyvSXWJT17J2RwAKKooM fFQ5HTs41cd/yj/NMvdRWayjtCYxvLbCJezBznMq86VB5K6yz0jb/YR/u8CZyYIu YLbUDfjqOVCIBZKT7lRS64LBhL6gXitAMEjP6egP2Op+HjpeLHEDF6c= -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:50 2024 by rpki-client on console-ams.rpki-client.org