$ rpki-client -vvf repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/323430373a613563303a313a3a2f34382d3438203d3e20313432333339.roa File: 323430373a613563303a313a3a2f34382d3438203d3e20313432333339.roa (raw, json) Hash identifier: jzAqzS+UM0D1OlBXnCUhpQdP3zDL5sXG1VXuhoHVU1Y= Subject key identifier: 76:EB:BC:0A:31:3F:62:F0:62:57:2E:50:C5:DC:CD:CD:E7:9B:07:49 Certificate issuer: /CN=C24FD85D1F493383773D253EBB38BED908305E45 Certificate serial: 3A01A1E2D15E5C3EC6BE0D781ECCED6F89FB78D1 Authority key identifier: C2:4F:D8:5D:1F:49:33:83:77:3D:25:3E:BB:38:BE:D9:08:30:5E:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C24FD85D1F493383773D253EBB38BED908305E45.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/323430373a613563303a313a3a2f34382d3438203d3e20313432333339.roa Signing time: Thu 01 Aug 2024 02:49:35 +0000 ROA not before: Thu 01 Aug 2024 02:44:35 +0000 ROA not after: Thu 31 Jul 2025 02:49:35 +0000 asID: 142339 IP address blocks: 2407:a5c0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/C24FD85D1F493383773D253EBB38BED908305E45.crl rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/C24FD85D1F493383773D253EBB38BED908305E45.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C24FD85D1F493383773D253EBB38BED908305E45.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 11:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:01:a1:e2:d1:5e:5c:3e:c6:be:0d:78:1e:cc:ed:6f:89:fb:78:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C24FD85D1F493383773D253EBB38BED908305E45 Validity Not Before: Aug 1 02:44:35 2024 GMT Not After : Jul 31 02:49:35 2025 GMT Subject: CN=76EBBC0A313F62F062572E50C5DCCDCDE79B0749 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0e:40:d2:7d:98:79:bd:52:37:ef:b1:de:10: cb:52:e4:87:7d:57:53:eb:4c:61:93:65:45:ce:c2: 02:92:11:b9:00:15:13:8b:e4:4a:8c:6a:ec:df:a7: b7:ab:b7:ec:30:ac:51:1a:32:ad:52:2c:dd:49:76: c7:bf:18:68:8d:90:e0:ee:df:54:ea:e8:e8:34:19: f9:21:f2:dc:08:33:b2:8e:54:c7:a1:46:fc:92:36: 53:ed:ec:36:25:e3:03:b0:bf:de:52:7a:e4:89:b5: c0:9c:ce:d9:6c:d2:e6:d8:27:64:43:96:b4:26:c5: ee:3e:b5:c6:9f:ab:60:50:2a:6a:06:bc:0f:ed:6a: 56:ad:db:10:fe:3f:c1:c7:b3:87:7a:26:15:79:56: d6:67:67:d4:83:03:5d:f0:f9:d6:c2:78:0a:e2:37: 88:1a:fa:0e:74:c1:c4:da:28:1a:cd:70:35:3d:96: 7e:9f:1d:d2:a1:f3:cb:e2:5c:b0:4d:d9:2d:3d:c4: 8c:aa:ab:8a:d8:ca:48:16:ce:4f:2a:80:e4:57:05: d3:e8:e9:c1:c8:3e:ac:7b:46:12:88:29:dd:2b:69: 91:b5:c5:8f:dd:23:3d:e4:c6:f0:3f:c8:83:31:0e: 33:aa:5d:40:39:27:e6:af:82:52:c7:d9:32:91:0a: 86:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:EB:BC:0A:31:3F:62:F0:62:57:2E:50:C5:DC:CD:CD:E7:9B:07:49 X509v3 Authority Key Identifier: keyid:C2:4F:D8:5D:1F:49:33:83:77:3D:25:3E:BB:38:BE:D9:08:30:5E:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/C24FD85D1F493383773D253EBB38BED908305E45.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C24FD85D1F493383773D253EBB38BED908305E45.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/323430373a613563303a313a3a2f34382d3438203d3e20313432333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:a5c0:1::/48 Signature Algorithm: sha256WithRSAEncryption 45:39:d0:e4:fe:5c:02:31:ea:57:f6:62:19:d1:f1:68:e2:fd: a0:1a:15:eb:7d:41:0e:65:82:ee:0d:fa:ca:58:5d:98:8f:27: a7:0d:23:66:87:40:38:28:20:e0:28:5d:a1:24:81:85:ac:bb: 54:6a:f0:ec:92:9d:ff:86:0c:8b:09:1f:7c:df:f0:41:4d:cc: 7d:5f:9e:e5:b5:6d:a9:54:b0:62:f1:17:3f:5f:d1:a2:cc:c3: ef:96:34:fe:65:1e:c2:a4:76:1d:56:ed:1f:3e:fa:0b:f9:b4: 2a:dc:97:0f:b4:8a:e1:12:fc:75:1e:54:c1:7a:5f:87:c2:bc: 3a:8f:d3:8d:24:03:98:fa:58:5e:78:b2:13:f5:aa:b1:7b:15: d9:5b:fa:cb:00:6c:86:e2:b9:96:ab:60:87:8e:12:ae:db:57: 33:02:89:1a:a7:63:42:40:07:5a:f0:6d:d8:45:18:f0:35:5e: cd:d7:62:72:c2:e4:81:63:58:7a:0b:95:42:75:45:27:de:ac: 23:ac:55:ca:64:6d:e4:24:74:bc:39:cd:07:25:2a:83:16:07: 44:da:fb:22:d4:fb:5a:7e:a5:e5:80:ce:37:c7:40:ec:8d:50: ce:db:ee:8f:5b:7e:13:d4:1d:ed:a1:3d:83:d3:83:37:0f:83: cd:c4:64:92 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUOgGh4tFeXD7Gvg14Hsztb4n7eNEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzI0RkQ4NUQxRjQ5MzM4Mzc3M0QyNTNFQkIzOEJFRDkw ODMwNUU0NTAeFw0yNDA4MDEwMjQ0MzVaFw0yNTA3MzEwMjQ5MzVaMDMxMTAvBgNV BAMTKDc2RUJCQzBBMzEzRjYyRjA2MjU3MkU1MEM1RENDRENERTc5QjA3NDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+DkDSfZh5vVI377HeEMtS5Id9 V1PrTGGTZUXOwgKSEbkAFROL5EqMauzfp7ert+wwrFEaMq1SLN1Jdse/GGiNkODu 31Tq6Og0Gfkh8twIM7KOVMehRvySNlPt7DYl4wOwv95SeuSJtcCcztls0ubYJ2RD lrQmxe4+tcafq2BQKmoGvA/talat2xD+P8HHs4d6JhV5VtZnZ9SDA13w+dbCeAri N4ga+g50wcTaKBrNcDU9ln6fHdKh88viXLBN2S09xIyqq4rYykgWzk8qgORXBdPo 6cHIPqx7RhKIKd0raZG1xY/dIz3kxvA/yIMxDjOqXUA5J+avglLH2TKRCoYNAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUduu8CjE/YvBiVy5QxdzNzeebB0kwHwYDVR0j BBgwFoAUwk/YXR9JM4N3PSU+uzi+2QgwXkUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MTkyMDIxZS0zOTA0LTQxMTUtYWY1ZS0zZWRiNzEzYmFhMTQvMC9DMjRGRDg1RDFG NDkzMzgzNzczRDI1M0VCQjM4QkVEOTA4MzA1RTQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzI0RkQ4NUQxRjQ5MzM4Mzc3M0QyNTNFQkIzOEJFRDkwODMw NUU0NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzExOTIwMjFlLTM5MDQtNDExNS1h ZjVlLTNlZGI3MTNiYWExNC8wLzMyMzQzMDM3M2E2MTM1NjMzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzIzMzMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkB6XAAAEw DQYJKoZIhvcNAQELBQADggEBAEU50OT+XAIx6lf2YhnR8Wji/aAaFet9QQ5lgu4N +spYXZiPJ6cNI2aHQDgoIOAoXaEkgYWsu1Rq8OySnf+GDIsJH3zf8EFNzH1fnuW1 balUsGLxFz9f0aLMw++WNP5lHsKkdh1W7R8++gv5tCrclw+0iuES/HUeVMF6X4fC vDqP040kA5j6WF54shP1qrF7Fdlb+ssAbIbiuZarYIeOEq7bVzMCiRqnY0JAB1rw bdhFGPA1Xs3XYnLC5IFjWHoLlUJ1RSferCOsVcpkbeQkdLw5zQclKoMWB0Ta+yLU +1p+peWAzjfHQOyNUM7b7o9bfhPUHe2hPYPTgzcPg83EZJI= -----END CERTIFICATE-----Generated at Mon Nov 25 09:01:49 2024 by rpki-client on console-ams.rpki-client.org