$ rpki-client -vvf repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/323430333a653338303a313030333a3a2f34382d3438203d3e20313334363337.roa File: 323430333a653338303a313030333a3a2f34382d3438203d3e20313334363337.roa (raw, json) Hash identifier: zqlz66LfPLWwSJPkqa2REKHmiJk5sxkYJ2AOT8srtmI= Subject key identifier: 11:4D:02:0B:F6:74:0C:1F:65:9B:81:73:84:C5:02:FA:D2:30:96:C9 Certificate issuer: /CN=027DBEC91021154263BB0CF1565833705023D987 Certificate serial: 753FB7D59AF19FDC29CD64E06DEFFF2BA55826A3 Authority key identifier: 02:7D:BE:C9:10:21:15:42:63:BB:0C:F1:56:58:33:70:50:23:D9:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/027DBEC91021154263BB0CF1565833705023D987.cer Subject info access: rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/323430333a653338303a313030333a3a2f34382d3438203d3e20313334363337.roa Signing time: Tue 20 Feb 2024 08:31:50 +0000 ROA not before: Tue 20 Feb 2024 08:26:50 +0000 ROA not after: Tue 18 Feb 2025 08:31:50 +0000 asID: 134637 IP address blocks: 2403:e380:1003::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/027DBEC91021154263BB0CF1565833705023D987.crl rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/027DBEC91021154263BB0CF1565833705023D987.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/027DBEC91021154263BB0CF1565833705023D987.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:3f:b7:d5:9a:f1:9f:dc:29:cd:64:e0:6d:ef:ff:2b:a5:58:26:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=027DBEC91021154263BB0CF1565833705023D987 Validity Not Before: Feb 20 08:26:50 2024 GMT Not After : Feb 18 08:31:50 2025 GMT Subject: CN=114D020BF6740C1F659B817384C502FAD23096C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e8:f9:36:fb:17:89:71:44:2c:a2:2f:f1:b7: b6:88:ae:ce:7e:8a:e3:92:f6:41:d6:78:59:94:eb: b3:1d:77:ff:5b:1f:29:d5:3e:97:49:7f:d5:fd:da: 83:27:9f:f5:2f:69:0e:73:ed:2c:20:e9:9e:54:5b: 68:fa:75:89:3e:87:0f:fb:64:cd:87:d9:e2:99:4b: 62:37:97:10:38:73:9f:90:6d:36:34:c0:b8:78:53: 3a:69:36:b6:22:bd:44:c2:4e:94:82:a9:1d:fc:c2: 6b:91:0f:fe:2a:6f:52:95:ca:73:d6:62:53:ce:b8: 9d:e6:50:fd:5e:d5:8b:82:d8:86:4e:d1:5f:cc:5b: a7:d7:20:5d:15:9d:47:9d:3d:43:38:72:3d:4e:ad: f5:db:0e:72:50:a1:0f:ed:1f:f7:eb:e2:ab:66:40: 78:a8:8c:6c:6a:b0:f4:1a:08:c3:10:1e:33:ec:64: 22:e2:92:a8:35:cd:4c:92:2b:76:e4:f5:c5:2b:a6: 10:36:27:d3:80:07:a5:c5:86:2a:fa:a7:d3:c1:10: 73:68:fb:42:09:58:17:a8:97:04:2a:43:5b:ac:5c: e6:67:21:1b:ab:5f:96:80:ff:ab:92:09:ce:7c:75: 90:eb:65:fc:f9:76:9e:c7:88:70:17:35:72:4e:5c: e8:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:4D:02:0B:F6:74:0C:1F:65:9B:81:73:84:C5:02:FA:D2:30:96:C9 X509v3 Authority Key Identifier: keyid:02:7D:BE:C9:10:21:15:42:63:BB:0C:F1:56:58:33:70:50:23:D9:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/027DBEC91021154263BB0CF1565833705023D987.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/027DBEC91021154263BB0CF1565833705023D987.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/323430333a653338303a313030333a3a2f34382d3438203d3e20313334363337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:e380:1003::/48 Signature Algorithm: sha256WithRSAEncryption 63:64:c2:f2:55:d1:99:47:ea:38:da:e7:6d:df:4f:77:85:46: 4e:44:e6:58:0d:19:b6:d3:0f:05:14:5f:f7:82:57:29:24:4c: 77:a1:a5:df:45:de:72:0a:76:6a:2d:72:8d:0b:d2:bd:fa:f6: 3b:aa:20:9d:a8:d0:dc:2f:23:33:db:c8:35:e8:ec:5a:e9:e0: 8b:ca:23:7f:af:a2:58:e0:e0:e8:37:bd:a2:30:8b:b3:11:11: 31:ed:7e:f5:bb:0b:8c:50:65:54:e3:cc:c4:6d:f3:38:0e:3a: 8f:c4:4a:37:62:15:43:6b:b7:5b:52:7c:9c:2d:46:d9:37:b2: db:60:fa:1c:9f:a8:3d:d8:4a:e5:dd:ff:ce:56:82:af:9b:21: 85:4a:ed:71:f3:c5:50:99:a9:70:ac:50:1e:7a:6c:26:b1:ab: 36:c0:74:b0:75:f1:a3:7e:dc:f7:ed:c7:b5:5d:94:74:5c:e1: ab:c0:64:6c:18:9b:0c:20:71:6a:ba:72:d6:ab:98:30:f3:50: a6:a5:ab:c5:42:30:f2:bd:41:86:31:f7:82:0a:cc:83:0d:44: 49:cb:98:bb:cf:5f:cc:2c:bd:48:f3:dd:e6:e7:55:62:f9:bf: b7:78:69:34:73:af:22:98:1a:b2:16:5b:5f:de:b5:24:de:ab: b5:a8:52:ef -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUdT+31Zrxn9wpzWTgbe//K6VYJqMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI3REJFQzkxMDIxMTU0MjYzQkIwQ0YxNTY1ODMzNzA1 MDIzRDk4NzAeFw0yNDAyMjAwODI2NTBaFw0yNTAyMTgwODMxNTBaMDMxMTAvBgNV BAMTKDExNEQwMjBCRjY3NDBDMUY2NTlCODE3Mzg0QzUwMkZBRDIzMDk2QzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC56Pk2+xeJcUQsoi/xt7aIrs5+ iuOS9kHWeFmU67Mdd/9bHynVPpdJf9X92oMnn/UvaQ5z7Swg6Z5UW2j6dYk+hw/7 ZM2H2eKZS2I3lxA4c5+QbTY0wLh4UzppNrYivUTCTpSCqR38wmuRD/4qb1KVynPW YlPOuJ3mUP1e1YuC2IZO0V/MW6fXIF0VnUedPUM4cj1OrfXbDnJQoQ/tH/fr4qtm QHiojGxqsPQaCMMQHjPsZCLikqg1zUySK3bk9cUrphA2J9OAB6XFhir6p9PBEHNo +0IJWBeolwQqQ1usXOZnIRurX5aA/6uSCc58dZDrZfz5dp7HiHAXNXJOXOg/AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUEU0CC/Z0DB9lm4FzhMUC+tIwlskwHwYDVR0j BBgwFoAUAn2+yRAhFUJjuwzxVlgzcFAj2YcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NzRmMjE0YS1iZjU1LTQwNDgtODQ1ZC0yMDY3NWZiNWYyYTQvMC8wMjdEQkVDOTEw MjExNTQyNjNCQjBDRjE1NjU4MzM3MDUwMjNEOTg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDI3REJFQzkxMDIxMTU0MjYzQkIwQ0YxNTY1ODMzNzA1MDIz RDk4Ny5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA3NGYyMTRhLWJmNTUtNDA0OC04 NDVkLTIwNjc1ZmI1ZjJhNC8wLzMyMzQzMDMzM2E2NTMzMzgzMDNhMzEzMDMwMzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzQzNjMzMzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk A+OAEAMwDQYJKoZIhvcNAQELBQADggEBAGNkwvJV0ZlH6jja523fT3eFRk5E5lgN GbbTDwUUX/eCVykkTHehpd9F3nIKdmotco0L0r369juqIJ2o0NwvIzPbyDXo7Frp 4IvKI3+voljg4Og3vaIwi7MRETHtfvW7C4xQZVTjzMRt8zgOOo/ESjdiFUNrt1tS fJwtRtk3sttg+hyfqD3YSuXd/85Wgq+bIYVK7XHzxVCZqXCsUB56bCaxqzbAdLB1 8aN+3Pftx7VdlHRc4avAZGwYmwwgcWq6ctarmDDzUKalq8VCMPK9QYYx94IKzIMN REnLmLvPX8wsvUjz3ebnVWL5v7d4aTRzryKYGrIWW1/etSTeq7WoUu8= -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:50 2024 by rpki-client on console-ams.rpki-client.org