$ rpki-client -vvf repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/323430333a653338303a313030323a3a2f34382d3438203d3e20313334363337.roa File: 323430333a653338303a313030323a3a2f34382d3438203d3e20313334363337.roa (raw, json) Hash identifier: nyJxL363rc/94RmMW/gEcPBUWvUgO16eXcYFa5ulHbc= Subject key identifier: 92:18:B5:68:0D:38:01:5F:E9:2B:FF:52:09:BF:CC:A4:39:4E:DC:AB Certificate issuer: /CN=027DBEC91021154263BB0CF1565833705023D987 Certificate serial: 78C6FC8CA360025486A38CB57A42519C94AAC119 Authority key identifier: 02:7D:BE:C9:10:21:15:42:63:BB:0C:F1:56:58:33:70:50:23:D9:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/027DBEC91021154263BB0CF1565833705023D987.cer Subject info access: rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/323430333a653338303a313030323a3a2f34382d3438203d3e20313334363337.roa Signing time: Tue 20 Feb 2024 08:31:37 +0000 ROA not before: Tue 20 Feb 2024 08:26:37 +0000 ROA not after: Tue 18 Feb 2025 08:31:37 +0000 asID: 134637 IP address blocks: 2403:e380:1002::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/027DBEC91021154263BB0CF1565833705023D987.crl rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/027DBEC91021154263BB0CF1565833705023D987.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/027DBEC91021154263BB0CF1565833705023D987.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:c6:fc:8c:a3:60:02:54:86:a3:8c:b5:7a:42:51:9c:94:aa:c1:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=027DBEC91021154263BB0CF1565833705023D987 Validity Not Before: Feb 20 08:26:37 2024 GMT Not After : Feb 18 08:31:37 2025 GMT Subject: CN=9218B5680D38015FE92BFF5209BFCCA4394EDCAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:5b:70:3d:6f:17:d8:be:01:1e:c7:63:af:a2: 8b:ef:01:37:b1:50:60:0c:32:68:7c:f7:af:4b:54: 1c:5d:5b:2f:4c:ed:52:0f:7c:42:b7:fa:05:c7:38: 96:13:ea:b2:ac:8f:29:4c:a8:8c:9f:f4:dc:51:e0: 6b:bd:65:14:b8:43:fb:63:8b:71:93:40:7e:3c:07: ad:21:d3:f0:22:9c:b0:41:69:f4:89:1a:ef:b4:7a: 00:0c:ed:4d:cb:78:da:31:a5:71:06:a5:e9:d4:a6: bf:07:55:c6:96:33:28:89:81:b8:b8:d6:a6:13:2d: 1d:dc:fe:39:7a:2b:4c:eb:e3:c1:f6:d5:63:54:a3: 1f:2e:68:c4:f1:1b:ab:73:27:6b:a3:d7:43:b5:c8: c9:1c:c6:08:eb:e5:88:13:96:32:72:06:75:cb:37: ab:b1:4d:11:8b:33:e4:2c:5b:35:6f:2e:1e:c9:21: e8:e5:4b:5d:88:a2:4c:39:8a:b0:75:87:0f:b9:a8: 7e:2b:dc:f8:e7:3e:3a:45:40:8f:d8:e2:85:38:08: cb:4b:02:7e:5c:1a:52:0b:99:b3:dc:ec:9a:3d:d1: 08:52:4b:71:a1:e0:45:4c:5b:e1:7c:21:ef:af:db: b5:45:ed:c6:62:a9:15:44:ba:24:c0:54:60:4e:60: e7:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:18:B5:68:0D:38:01:5F:E9:2B:FF:52:09:BF:CC:A4:39:4E:DC:AB X509v3 Authority Key Identifier: keyid:02:7D:BE:C9:10:21:15:42:63:BB:0C:F1:56:58:33:70:50:23:D9:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/027DBEC91021154263BB0CF1565833705023D987.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/027DBEC91021154263BB0CF1565833705023D987.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/323430333a653338303a313030323a3a2f34382d3438203d3e20313334363337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:e380:1002::/48 Signature Algorithm: sha256WithRSAEncryption 50:f3:16:d6:ae:81:22:3a:a1:bf:ae:c5:30:45:7a:4f:b5:1c: 58:75:19:8b:80:e0:bd:71:14:f2:53:08:99:9a:c5:6d:68:c7: ba:23:c1:83:40:2a:35:54:29:32:01:16:00:c5:d8:15:65:40: af:2a:96:df:27:13:da:94:24:da:a3:f8:ab:83:ee:92:ab:51: 96:50:6d:d1:04:3f:03:3c:c4:16:52:d4:ed:c0:bb:9e:99:6c: ac:39:bc:b6:42:b2:23:9f:70:0a:41:71:42:e0:61:f5:c5:51: fc:7c:65:d7:32:3c:93:ac:18:c7:4f:ed:8e:ba:5b:81:81:61: 28:ba:3f:f5:25:b0:76:32:fe:90:96:28:60:17:4b:cd:89:28: 20:dd:72:49:be:bd:30:70:a5:2d:10:07:5c:13:42:f8:eb:d4: 65:82:0d:68:d7:f3:7e:04:be:5c:4c:6b:8c:52:49:c7:58:b9: 5f:24:ea:59:e0:4c:e3:fe:09:e2:92:39:09:e1:65:1f:d2:84: 49:79:6d:e4:4e:a5:24:f8:52:45:72:61:16:32:dc:d1:62:91: 36:f9:6d:0d:ae:40:8e:8a:bc:7d:b6:91:c8:dd:0a:0e:e6:a0: 33:ed:7f:eb:30:a6:8d:e8:85:8c:04:2a:40:75:ec:4e:c5:95: d2:08:80:68 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUeMb8jKNgAlSGo4y1ekJRnJSqwRkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI3REJFQzkxMDIxMTU0MjYzQkIwQ0YxNTY1ODMzNzA1 MDIzRDk4NzAeFw0yNDAyMjAwODI2MzdaFw0yNTAyMTgwODMxMzdaMDMxMTAvBgNV BAMTKDkyMThCNTY4MEQzODAxNUZFOTJCRkY1MjA5QkZDQ0E0Mzk0RURDQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjW3A9bxfYvgEex2OvoovvATex UGAMMmh8969LVBxdWy9M7VIPfEK3+gXHOJYT6rKsjylMqIyf9NxR4Gu9ZRS4Q/tj i3GTQH48B60h0/AinLBBafSJGu+0egAM7U3LeNoxpXEGpenUpr8HVcaWMyiJgbi4 1qYTLR3c/jl6K0zr48H21WNUox8uaMTxG6tzJ2uj10O1yMkcxgjr5YgTljJyBnXL N6uxTRGLM+QsWzVvLh7JIejlS12Iokw5irB1hw+5qH4r3PjnPjpFQI/Y4oU4CMtL An5cGlILmbPc7Jo90QhSS3Gh4EVMW+F8Ie+v27VF7cZiqRVEuiTAVGBOYOe7AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUkhi1aA04AV/pK/9SCb/MpDlO3KswHwYDVR0j BBgwFoAUAn2+yRAhFUJjuwzxVlgzcFAj2YcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NzRmMjE0YS1iZjU1LTQwNDgtODQ1ZC0yMDY3NWZiNWYyYTQvMC8wMjdEQkVDOTEw MjExNTQyNjNCQjBDRjE1NjU4MzM3MDUwMjNEOTg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDI3REJFQzkxMDIxMTU0MjYzQkIwQ0YxNTY1ODMzNzA1MDIz RDk4Ny5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA3NGYyMTRhLWJmNTUtNDA0OC04 NDVkLTIwNjc1ZmI1ZjJhNC8wLzMyMzQzMDMzM2E2NTMzMzgzMDNhMzEzMDMwMzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzQzNjMzMzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk A+OAEAIwDQYJKoZIhvcNAQELBQADggEBAFDzFtaugSI6ob+uxTBFek+1HFh1GYuA 4L1xFPJTCJmaxW1ox7ojwYNAKjVUKTIBFgDF2BVlQK8qlt8nE9qUJNqj+KuD7pKr UZZQbdEEPwM8xBZS1O3Au56ZbKw5vLZCsiOfcApBcULgYfXFUfx8ZdcyPJOsGMdP 7Y66W4GBYSi6P/UlsHYy/pCWKGAXS82JKCDdckm+vTBwpS0QB1wTQvjr1GWCDWjX 834EvlxMa4xSScdYuV8k6lngTOP+CeKSOQnhZR/ShEl5beROpST4UkVyYRYy3NFi kTb5bQ2uQI6KvH22kcjdCg7moDPtf+swpo3ohYwEKkB17E7FldIIgGg= -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:05 2024 by rpki-client on console-fra.rpki-client.org