$ rpki-client -vvf repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/323430333a396634303a3a2f33322d3438203d3e20313338303734.roa File: 323430333a396634303a3a2f33322d3438203d3e20313338303734.roa (raw, json) Hash identifier: 1il+bYXQjl2Z5M2afvU115zEzq23jQfoWNPWBzr6QnM= Subject key identifier: 19:E9:3E:57:04:8B:56:C7:1B:06:92:15:35:86:97:62:2F:2B:9E:13 Certificate issuer: /CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB Certificate serial: 3438FCE3E2C439B7076E9A59C4F630403EA1CCCD Authority key identifier: C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/323430333a396634303a3a2f33322d3438203d3e20313338303734.roa Signing time: Mon 01 Jul 2024 01:05:39 +0000 ROA not before: Mon 01 Jul 2024 01:00:39 +0000 ROA not after: Mon 30 Jun 2025 01:05:39 +0000 asID: 138074 IP address blocks: 2403:9f40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 05:08:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:38:fc:e3:e2:c4:39:b7:07:6e:9a:59:c4:f6:30:40:3e:a1:cc:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB Validity Not Before: Jul 1 01:00:39 2024 GMT Not After : Jun 30 01:05:39 2025 GMT Subject: CN=19E93E57048B56C71B069215358697622F2B9E13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:21:31:60:d0:0a:a9:e2:9a:e0:58:08:56:ec: 99:65:a4:f6:1b:a9:1c:f5:9f:01:c0:78:2e:15:fb: ee:c1:d0:19:7a:0a:25:58:cc:27:5e:d1:6f:8f:da: b5:20:5f:93:e2:c1:61:8f:ed:fb:7e:e7:ea:f2:74: c7:e7:46:9d:58:a2:10:99:bd:1d:1f:df:8b:3c:1d: ea:b0:48:47:7f:12:e5:8b:b4:ec:fd:c8:f2:ff:9c: 93:df:81:e9:1b:c1:a2:7f:6c:fe:63:e3:3d:2c:25: b1:43:96:0f:21:21:86:87:6a:ad:f6:b1:ca:6b:88: a0:88:ab:23:e3:94:1d:b7:aa:99:25:95:f8:a0:7a: 3d:5f:84:d1:76:ab:3c:21:91:35:64:ae:67:60:de: b0:33:62:a0:fc:68:68:9c:45:68:eb:71:fd:d4:28: 6d:aa:52:48:ff:7e:62:fe:a4:52:82:4f:82:e4:b7: 46:98:ca:d3:35:4e:fc:eb:63:d3:ae:3c:80:45:ae: 8c:de:ff:15:25:0c:ba:90:93:31:ff:51:5e:f2:31: 0d:66:c2:16:0c:eb:5a:25:4c:ea:e8:57:db:67:c6: 64:df:57:5b:8c:3b:80:50:f7:06:d6:6a:18:1b:21: fe:64:63:13:4c:e4:2f:96:6f:ae:a9:27:84:a2:a7: f8:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:E9:3E:57:04:8B:56:C7:1B:06:92:15:35:86:97:62:2F:2B:9E:13 X509v3 Authority Key Identifier: keyid:C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/323430333a396634303a3a2f33322d3438203d3e20313338303734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:9f40::/32 Signature Algorithm: sha256WithRSAEncryption 88:e2:e2:a5:d8:a3:ed:99:78:88:34:e0:7b:72:f1:2d:3a:b6: 30:dd:19:87:8b:6b:f3:4c:12:ca:2c:7d:f5:dd:db:66:ce:52: d8:71:0d:6a:43:6b:e3:b6:52:ea:00:ff:67:ef:ab:59:06:50: 5e:34:ac:ed:1b:3a:d3:94:b1:d7:ec:73:68:2e:00:fd:a5:7a: 07:5e:a8:8a:7c:83:e8:03:8d:77:b0:b7:2c:f1:28:e5:83:dc: 00:b5:33:59:71:a8:51:07:c9:4d:18:67:60:e6:26:ae:93:cd: a4:89:f5:97:72:e3:25:16:0f:12:44:6b:47:8b:1a:5b:21:57: 90:24:55:84:4a:68:93:42:b4:09:3c:2f:8f:30:08:81:1a:02: 50:72:1c:5a:5f:78:2c:01:58:23:03:7c:e1:33:b4:fe:e8:57: d8:a8:55:fd:40:6d:9d:e7:ec:89:3c:ae:ea:b1:09:c5:d4:d7: 80:b2:7e:76:d2:ff:bd:84:ee:a5:71:5b:b9:f2:9f:4d:75:0c: a3:58:33:f6:fc:e0:4b:52:7e:c5:04:53:81:17:34:5a:fc:53: 0b:fc:61:3f:41:56:6f:ef:83:0d:33:f6:92:fb:77:9d:bf:94: b1:ef:03:0f:80:4a:a5:27:10:a6:57:41:33:a0:30:33:d1:0a: f6:59:24:b1 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUNDj84+LEObcHbppZxPYwQD6hzM0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZC RUZCM0FCQjAeFw0yNDA3MDEwMTAwMzlaFw0yNTA2MzAwMTA1MzlaMDMxMTAvBgNV BAMTKDE5RTkzRTU3MDQ4QjU2QzcxQjA2OTIxNTM1ODY5NzYyMkYyQjlFMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsITFg0Aqp4prgWAhW7JllpPYb qRz1nwHAeC4V++7B0Bl6CiVYzCde0W+P2rUgX5PiwWGP7ft+5+rydMfnRp1YohCZ vR0f34s8HeqwSEd/EuWLtOz9yPL/nJPfgekbwaJ/bP5j4z0sJbFDlg8hIYaHaq32 scpriKCIqyPjlB23qpkllfigej1fhNF2qzwhkTVkrmdg3rAzYqD8aGicRWjrcf3U KG2qUkj/fmL+pFKCT4Lkt0aYytM1TvzrY9OuPIBFroze/xUlDLqQkzH/UV7yMQ1m whYM61olTOroV9tnxmTfV1uMO4BQ9wbWahgbIf5kYxNM5C+Wb66pJ4Sip/gBAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUGek+VwSLVscbBpIVNYaXYi8rnhMwHwYDVR0j BBgwFoAUyOwY4CdjmwW8WKIijRJkhr77OrswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YzI4OTcwNi1hNGY0LTRlMWYtOWE2ZS0wMWM5YzUzY2Q4ZjkvMC9DOEVDMThFMDI3 NjM5QjA1QkM1OEEyMjI4RDEyNjQ4NkJFRkIzQUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZCRUZC M0FCQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFjMjg5NzA2LWE0ZjQtNGUxZi05 YTZlLTAxYzljNTNjZDhmOS8wLzMyMzQzMDMzM2EzOTY2MzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODMwMzczNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQDn0AwDQYJKoZI hvcNAQELBQADggEBAIji4qXYo+2ZeIg04Hty8S06tjDdGYeLa/NMEsosffXd22bO UthxDWpDa+O2UuoA/2fvq1kGUF40rO0bOtOUsdfsc2guAP2legdeqIp8g+gDjXew tyzxKOWD3AC1M1lxqFEHyU0YZ2DmJq6TzaSJ9Zdy4yUWDxJEa0eLGlshV5AkVYRK aJNCtAk8L48wCIEaAlByHFpfeCwBWCMDfOEztP7oV9ioVf1AbZ3n7Ik8ruqxCcXU 14CyfnbS/72E7qVxW7nyn011DKNYM/b84EtSfsUEU4EXNFr8Uwv8YT9BVm/vgw0z 9pL7d52/lLHvAw+ASqUnEKZXQTOgMDPRCvZZJLE= -----END CERTIFICATE-----Generated at Thu Nov 21 05:03:32 2024 by rpki-client on console-fra.rpki-client.org