$ rpki-client -vvf repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/323430373a613563303a3a2f33322d3332203d3e20313432333339.roa File: 323430373a613563303a3a2f33322d3332203d3e20313432333339.roa (raw, json) Hash identifier: MqPsWsjfl+dvyk5ktsSY4CI6tIF3C/cx5WnXAN8LB/s= Subject key identifier: F0:E7:37:CE:E8:E9:41:9F:13:03:53:15:34:A9:FF:CA:E5:30:14:EB Certificate issuer: /CN=C24FD85D1F493383773D253EBB38BED908305E45 Certificate serial: 0636F19C4661574BF05261E405F996AA07BBEA49 Authority key identifier: C2:4F:D8:5D:1F:49:33:83:77:3D:25:3E:BB:38:BE:D9:08:30:5E:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C24FD85D1F493383773D253EBB38BED908305E45.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/323430373a613563303a3a2f33322d3332203d3e20313432333339.roa Signing time: Fri 23 Aug 2024 18:00:00 +0000 ROA not before: Fri 23 Aug 2024 17:55:00 +0000 ROA not after: Fri 22 Aug 2025 18:00:00 +0000 asID: 142339 IP address blocks: 2407:a5c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/C24FD85D1F493383773D253EBB38BED908305E45.crl rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/C24FD85D1F493383773D253EBB38BED908305E45.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C24FD85D1F493383773D253EBB38BED908305E45.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:14:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:36:f1:9c:46:61:57:4b:f0:52:61:e4:05:f9:96:aa:07:bb:ea:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C24FD85D1F493383773D253EBB38BED908305E45 Validity Not Before: Aug 23 17:55:00 2024 GMT Not After : Aug 22 18:00:00 2025 GMT Subject: CN=F0E737CEE8E9419F1303531534A9FFCAE53014EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:95:24:35:8e:87:17:1f:fe:06:e1:c2:5b:d4: cf:66:6a:97:18:a4:b8:98:9e:67:1d:a2:fc:7a:ae: 5b:16:da:59:9c:d4:b6:1d:48:c8:6d:99:46:e8:53: 1e:ae:95:f0:8d:56:53:3a:00:16:ab:25:22:57:cf: 22:4d:33:c2:ec:61:32:f5:78:aa:18:b5:85:52:1d: 59:c0:eb:92:b6:9f:d9:81:37:7a:5e:47:ac:e9:ce: 4a:48:ef:3c:23:ce:35:35:ec:75:db:de:88:b2:13: 74:2a:b2:bf:56:1d:2b:c8:ea:55:54:25:bf:e5:12: 92:b4:01:6b:e0:5a:68:79:32:7e:8d:cc:9c:5c:e0: 8f:84:b2:d6:d4:fb:4b:ec:e9:a6:c0:7c:06:5f:09: 55:da:3d:16:18:f9:62:a9:e1:ce:2d:73:47:81:f7: c4:01:98:48:95:58:f8:4b:40:18:49:15:cc:05:26: c9:59:e6:bc:07:4c:fc:54:a6:ec:88:d7:72:8c:67: 60:61:1a:0c:5a:4b:af:f6:b3:ab:c1:73:da:22:8f: d2:2a:ea:bb:df:5d:ab:2d:69:a9:0c:de:a1:f9:47: d6:ec:af:cb:23:eb:d2:70:80:54:88:f4:b3:35:e9: 62:bd:76:17:78:73:f4:05:83:ce:00:a7:93:6d:87: 74:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:E7:37:CE:E8:E9:41:9F:13:03:53:15:34:A9:FF:CA:E5:30:14:EB X509v3 Authority Key Identifier: keyid:C2:4F:D8:5D:1F:49:33:83:77:3D:25:3E:BB:38:BE:D9:08:30:5E:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/C24FD85D1F493383773D253EBB38BED908305E45.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C24FD85D1F493383773D253EBB38BED908305E45.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/323430373a613563303a3a2f33322d3332203d3e20313432333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:a5c0::/32 Signature Algorithm: sha256WithRSAEncryption 3a:e6:a1:c0:1b:38:fb:bd:a1:30:cd:3a:0d:9a:00:52:61:ce: 17:00:d1:0c:65:a9:50:4f:19:16:9a:ef:96:9c:23:e1:92:74: fc:b7:d7:e8:25:6f:97:80:73:cc:9d:38:63:43:40:b9:c7:b8: f2:22:0e:26:29:75:3f:5a:59:99:41:e0:9b:c9:79:2d:81:5b: 46:df:12:28:ae:01:a7:85:92:00:4a:0f:48:d8:59:6f:6c:ff: 15:2e:0b:15:60:a4:33:9b:dc:5b:8d:72:87:3a:ec:41:7a:4d: 89:67:d7:bc:b8:4a:c5:22:33:66:d8:23:a3:db:34:48:ff:ca: 0e:5d:15:1e:f6:df:21:22:69:91:1e:3b:d7:a4:9d:4e:e1:7d: e1:4a:d8:b3:69:94:27:a3:1a:64:06:ff:96:42:8c:be:df:98: 66:85:ae:88:3f:9e:7c:96:79:ef:e9:e6:18:02:c8:9a:8f:d4: 0e:69:48:fd:28:8c:1c:90:70:82:c3:cc:58:35:d1:7f:84:64: 7e:e4:40:dd:0a:72:bf:4e:cb:ec:8f:d9:3d:b5:e0:f8:85:eb: 44:ac:24:ec:fe:a4:2b:4d:1a:f5:54:e7:ef:fd:94:00:ed:8f: 04:4e:cd:8f:98:4c:b6:49:4c:3d:40:f1:5a:1c:19:04:42:5e: 47:87:3f:5a -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUBjbxnEZhV0vwUmHkBfmWqge76kkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzI0RkQ4NUQxRjQ5MzM4Mzc3M0QyNTNFQkIzOEJFRDkw ODMwNUU0NTAeFw0yNDA4MjMxNzU1MDBaFw0yNTA4MjIxODAwMDBaMDMxMTAvBgNV BAMTKEYwRTczN0NFRThFOTQxOUYxMzAzNTMxNTM0QTlGRkNBRTUzMDE0RUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD3lSQ1jocXH/4G4cJb1M9mapcY pLiYnmcdovx6rlsW2lmc1LYdSMhtmUboUx6ulfCNVlM6ABarJSJXzyJNM8LsYTL1 eKoYtYVSHVnA65K2n9mBN3peR6zpzkpI7zwjzjU17HXb3oiyE3Qqsr9WHSvI6lVU Jb/lEpK0AWvgWmh5Mn6NzJxc4I+EstbU+0vs6abAfAZfCVXaPRYY+WKp4c4tc0eB 98QBmEiVWPhLQBhJFcwFJslZ5rwHTPxUpuyI13KMZ2BhGgxaS6/2s6vBc9oij9Iq 6rvfXastaakM3qH5R9bsr8sj69JwgFSI9LM16WK9dhd4c/QFg84Ap5Nth3T3AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU8Oc3zujpQZ8TA1MVNKn/yuUwFOswHwYDVR0j BBgwFoAUwk/YXR9JM4N3PSU+uzi+2QgwXkUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MTkyMDIxZS0zOTA0LTQxMTUtYWY1ZS0zZWRiNzEzYmFhMTQvMC9DMjRGRDg1RDFG NDkzMzgzNzczRDI1M0VCQjM4QkVEOTA4MzA1RTQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzI0RkQ4NUQxRjQ5MzM4Mzc3M0QyNTNFQkIzOEJFRDkwODMw NUU0NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzExOTIwMjFlLTM5MDQtNDExNS1h ZjVlLTNlZGI3MTNiYWExNC8wLzMyMzQzMDM3M2E2MTM1NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMjMzMzMzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQHpcAwDQYJKoZI hvcNAQELBQADggEBADrmocAbOPu9oTDNOg2aAFJhzhcA0QxlqVBPGRaa75acI+GS dPy31+glb5eAc8ydOGNDQLnHuPIiDiYpdT9aWZlB4JvJeS2BW0bfEiiuAaeFkgBK D0jYWW9s/xUuCxVgpDOb3FuNcoc67EF6TYln17y4SsUiM2bYI6PbNEj/yg5dFR72 3yEiaZEeO9eknU7hfeFK2LNplCejGmQG/5ZCjL7fmGaFrog/nnyWee/p5hgCyJqP 1A5pSP0ojByQcILDzFg10X+EZH7kQN0Kcr9Oy+yP2T214PiF60SsJOz+pCtNGvVU 5+/9lADtjwROzY+YTLZJTD1A8VocGQRCXkeHP1o= -----END CERTIFICATE-----Generated at Mon Nov 25 09:00:38 2024 by rpki-client on console-fra.rpki-client.org