$ rpki-client -vvf repo-rpki.idnic.net/repo/0dd078fe-0930-45dc-b403-3ce4e863f8b5/0/323430373a613163303a3a2f33322d3332203d3e20313432333135.roa File: 323430373a613163303a3a2f33322d3332203d3e20313432333135.roa (raw, json) Hash identifier: xHxphXXH6E2aSKS1oJs1B9cVA6gHRIrr9KouWG/qckk= Subject key identifier: E8:15:A1:0F:B7:6F:A2:30:92:76:37:78:89:C8:CD:D0:BE:D2:A8:4D Certificate issuer: /CN=EFCC7BEA840185763FF7624CF3DDE00563137A27 Certificate serial: 2641E8712C836CDEAB1F73FA927C52F307AB1ACF Authority key identifier: EF:CC:7B:EA:84:01:85:76:3F:F7:62:4C:F3:DD:E0:05:63:13:7A:27 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFCC7BEA840185763FF7624CF3DDE00563137A27.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0dd078fe-0930-45dc-b403-3ce4e863f8b5/0/323430373a613163303a3a2f33322d3332203d3e20313432333135.roa Signing time: Wed 01 May 2024 07:01:50 +0000 ROA not before: Wed 01 May 2024 06:56:50 +0000 ROA not after: Wed 30 Apr 2025 07:01:50 +0000 asID: 142315 IP address blocks: 2407:a1c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0dd078fe-0930-45dc-b403-3ce4e863f8b5/0/EFCC7BEA840185763FF7624CF3DDE00563137A27.crl rsync://repo-rpki.idnic.net/repo/0dd078fe-0930-45dc-b403-3ce4e863f8b5/0/EFCC7BEA840185763FF7624CF3DDE00563137A27.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFCC7BEA840185763FF7624CF3DDE00563137A27.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:41:e8:71:2c:83:6c:de:ab:1f:73:fa:92:7c:52:f3:07:ab:1a:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EFCC7BEA840185763FF7624CF3DDE00563137A27 Validity Not Before: May 1 06:56:50 2024 GMT Not After : Apr 30 07:01:50 2025 GMT Subject: CN=E815A10FB76FA2309276377889C8CDD0BED2A84D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:6e:df:2d:2a:82:ea:32:e8:f9:3e:44:bb:7a: 32:61:94:b3:65:e2:08:a2:b2:a4:5c:0d:1a:a9:dc: 86:18:e3:b9:d6:db:20:c3:d4:48:47:e5:7a:fc:8c: d3:b5:c1:cb:36:2d:eb:bb:08:1f:c4:ec:fb:19:4b: ea:35:89:5d:23:7e:c5:3a:39:a9:1f:07:a9:36:7b: d2:7e:ef:69:6b:f3:c8:95:c3:ba:d3:b2:0e:c7:f9: 59:c1:cd:21:10:eb:35:85:6f:75:87:21:e7:e9:7c: a1:8f:ba:cb:e1:22:42:9f:33:d1:50:af:4a:5d:41: 8f:ed:a3:89:c1:2e:c6:1b:28:c3:69:16:cf:89:df: a2:ae:58:5b:14:ff:3e:78:96:e2:ed:d2:c0:81:e9: ac:41:62:af:db:21:96:18:dc:c9:8b:e6:e0:51:28: 81:08:5f:c1:ec:9c:13:80:55:5e:47:e1:fa:30:c8: 57:63:cd:76:b0:e4:cb:54:89:94:97:bc:0f:8b:b9: be:b7:51:e3:6b:c4:2e:d0:6a:5c:84:a9:99:58:28: 0d:ef:5b:05:fb:6b:0a:ab:90:6f:0c:65:7b:d4:28: ef:cf:c1:21:35:23:7f:00:93:4f:39:f6:fd:95:59: 93:de:8a:db:79:26:6e:f6:25:16:84:47:47:b0:eb: 3e:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:15:A1:0F:B7:6F:A2:30:92:76:37:78:89:C8:CD:D0:BE:D2:A8:4D X509v3 Authority Key Identifier: keyid:EF:CC:7B:EA:84:01:85:76:3F:F7:62:4C:F3:DD:E0:05:63:13:7A:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0dd078fe-0930-45dc-b403-3ce4e863f8b5/0/EFCC7BEA840185763FF7624CF3DDE00563137A27.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFCC7BEA840185763FF7624CF3DDE00563137A27.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0dd078fe-0930-45dc-b403-3ce4e863f8b5/0/323430373a613163303a3a2f33322d3332203d3e20313432333135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:a1c0::/32 Signature Algorithm: sha256WithRSAEncryption 30:51:f9:f7:25:a6:37:ac:f7:a1:a9:90:d1:4f:22:2a:ee:28: 38:84:d0:4e:65:19:f4:b3:79:a3:7b:40:a7:6d:be:68:93:c0: 53:9d:23:90:af:87:97:38:02:3f:39:09:95:53:63:52:86:ca: 60:df:6e:34:b2:b3:36:ff:92:3f:3d:6d:5a:0c:6d:11:b0:bb: d8:80:bd:b2:2b:05:5f:22:64:19:79:23:d4:c7:4a:9d:b1:47: 38:37:bb:eb:07:55:47:de:8a:1b:2b:37:34:d7:54:d4:6d:ae: 28:6e:74:6f:27:d1:dd:a9:f1:e5:b8:c0:ff:a1:bb:71:2d:b7: fd:81:f0:a9:f0:b4:99:25:49:ff:52:8a:67:f3:3e:2d:1e:3c: 1a:86:d6:e6:52:fe:e7:03:20:97:ec:8f:96:15:ad:7f:6e:15: f4:d4:e1:2f:67:cd:d6:a8:42:a5:f3:dc:4f:35:47:b1:ea:12: b4:7e:aa:81:ea:4e:b1:b9:c0:21:a5:58:5d:e9:d5:27:b3:64: 9d:60:55:8a:a4:dd:bd:79:e4:39:83:02:76:ad:b5:00:67:38: ea:03:c6:f1:4b:bd:60:c3:8e:01:ac:66:25:36:52:21:fc:38: dd:b0:ce:40:a6:b5:74:00:5b:d6:70:c7:f9:db:e9:1d:61:5a: 2d:16:6f:38 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUJkHocSyDbN6rH3P6knxS8werGs8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUZDQzdCRUE4NDAxODU3NjNGRjc2MjRDRjNEREUwMDU2 MzEzN0EyNzAeFw0yNDA1MDEwNjU2NTBaFw0yNTA0MzAwNzAxNTBaMDMxMTAvBgNV BAMTKEU4MTVBMTBGQjc2RkEyMzA5Mjc2Mzc3ODg5QzhDREQwQkVEMkE4NEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDibt8tKoLqMuj5PkS7ejJhlLNl 4giisqRcDRqp3IYY47nW2yDD1EhH5Xr8jNO1wcs2Leu7CB/E7PsZS+o1iV0jfsU6 OakfB6k2e9J+72lr88iVw7rTsg7H+VnBzSEQ6zWFb3WHIefpfKGPusvhIkKfM9FQ r0pdQY/to4nBLsYbKMNpFs+J36KuWFsU/z54luLt0sCB6axBYq/bIZYY3MmL5uBR KIEIX8HsnBOAVV5H4fowyFdjzXaw5MtUiZSXvA+Lub63UeNrxC7QalyEqZlYKA3v WwX7awqrkG8MZXvUKO/PwSE1I38Ak0859v2VWZPeitt5Jm72JRaER0ew6z45AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU6BWhD7dvojCSdjd4icjN0L7SqE0wHwYDVR0j BBgwFoAU78x76oQBhXY/92JM893gBWMTeicwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZGQwNzhmZS0wOTMwLTQ1ZGMtYjQwMy0zY2U0ZTg2M2Y4YjUvMC9FRkNDN0JFQTg0 MDE4NTc2M0ZGNzYyNENGM0RERTAwNTYzMTM3QTI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUZDQzdCRUE4NDAxODU3NjNGRjc2MjRDRjNEREUwMDU2MzEz N0EyNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBkZDA3OGZlLTA5MzAtNDVkYy1i NDAzLTNjZTRlODYzZjhiNS8wLzMyMzQzMDM3M2E2MTMxNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMjMzMzEzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQHocAwDQYJKoZI hvcNAQELBQADggEBADBR+fclpjes96GpkNFPIiruKDiE0E5lGfSzeaN7QKdtvmiT wFOdI5Cvh5c4Aj85CZVTY1KGymDfbjSyszb/kj89bVoMbRGwu9iAvbIrBV8iZBl5 I9THSp2xRzg3u+sHVUfeihsrNzTXVNRtrihudG8n0d2p8eW4wP+hu3Ett/2B8Knw tJklSf9SimfzPi0ePBqG1uZS/ucDIJfsj5YVrX9uFfTU4S9nzdaoQqXz3E81R7Hq ErR+qoHqTrG5wCGlWF3p1SezZJ1gVYqk3b155DmDAnattQBnOOoDxvFLvWDDjgGs ZiU2UiH8ON2wzkCmtXQAW9Zwx/nb6R1hWi0Wbzg= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:47 2024 by rpki-client on console-fra.rpki-client.org