$ rpki-client -vvf repo-rpki.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/323430373a373234303a3a2f33322d3332203d3e203538383230.roa File: 323430373a373234303a3a2f33322d3332203d3e203538383230.roa (raw, json) Hash identifier: m+3e83rjcFa0CHA9e2C7l/krLaNoi3e7xJSgoMbjlxQ= Subject key identifier: 0D:4E:43:9E:C5:41:6C:D2:EE:ED:0B:F3:7E:36:86:FE:7D:18:7C:EA Certificate issuer: /CN=314988A79F2A522D2ED1D4AC99C4ABDFDCDBB400 Certificate serial: 2A2902D4950E0CD2C513B29E7C7AEDD40A2DEC9E Authority key identifier: 31:49:88:A7:9F:2A:52:2D:2E:D1:D4:AC:99:C4:AB:DF:DC:DB:B4:00 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/314988A79F2A522D2ED1D4AC99C4ABDFDCDBB400.cer Subject info access: rsync://repo-rpki.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/323430373a373234303a3a2f33322d3332203d3e203538383230.roa Signing time: Thu 14 Mar 2024 16:01:14 +0000 ROA not before: Thu 14 Mar 2024 15:56:14 +0000 ROA not after: Thu 13 Mar 2025 16:01:14 +0000 asID: 58820 IP address blocks: 2407:7240::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/314988A79F2A522D2ED1D4AC99C4ABDFDCDBB400.crl rsync://repo-rpki.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/314988A79F2A522D2ED1D4AC99C4ABDFDCDBB400.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/314988A79F2A522D2ED1D4AC99C4ABDFDCDBB400.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:29:02:d4:95:0e:0c:d2:c5:13:b2:9e:7c:7a:ed:d4:0a:2d:ec:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=314988A79F2A522D2ED1D4AC99C4ABDFDCDBB400 Validity Not Before: Mar 14 15:56:14 2024 GMT Not After : Mar 13 16:01:14 2025 GMT Subject: CN=0D4E439EC5416CD2EEED0BF37E3686FE7D187CEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:af:ac:9e:5f:7e:d9:bb:00:52:61:f6:c6:77: 4e:d1:e6:e0:b6:6f:47:cf:e0:07:a5:6d:0a:f9:8a: c5:c5:33:fe:ef:92:e9:c1:3c:08:52:5b:f3:c4:28: 1f:87:39:23:fd:00:1c:dd:65:bd:33:86:07:a8:e2: 7a:54:7d:fa:c8:3d:42:3b:f8:62:a1:24:ab:40:40: bf:86:79:95:c7:50:4c:24:dd:96:41:7b:8c:ce:39: 29:0c:6e:87:b7:99:81:90:ba:e3:a1:ff:a6:3c:09: bf:74:e8:16:64:f4:d7:cd:eb:6e:4a:76:fe:39:26: 7c:83:64:61:3e:70:8a:bc:67:88:7d:74:2a:1f:3a: c5:9a:7b:40:91:07:7f:14:47:7b:8d:b6:7a:3d:ae: 48:c3:6a:eb:07:2b:10:8f:35:7d:a9:6d:3b:14:61: c3:9b:5a:d6:08:d3:34:f9:17:5d:19:0f:0c:e4:33: cd:6f:c7:29:7b:0e:e7:ba:8c:9c:bd:28:a0:af:5f: f4:ce:47:d9:1e:b5:16:4b:50:24:db:81:83:ab:d2: d8:87:1a:8a:93:ec:00:50:bc:37:8f:4a:eb:13:b3: 45:83:2f:18:f3:16:62:1c:b3:51:ab:74:b6:89:3a: 57:bf:7e:a9:83:10:19:9d:ae:54:d2:97:ae:ab:12: ad:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:4E:43:9E:C5:41:6C:D2:EE:ED:0B:F3:7E:36:86:FE:7D:18:7C:EA X509v3 Authority Key Identifier: keyid:31:49:88:A7:9F:2A:52:2D:2E:D1:D4:AC:99:C4:AB:DF:DC:DB:B4:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/314988A79F2A522D2ED1D4AC99C4ABDFDCDBB400.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/314988A79F2A522D2ED1D4AC99C4ABDFDCDBB400.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/323430373a373234303a3a2f33322d3332203d3e203538383230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:7240::/32 Signature Algorithm: sha256WithRSAEncryption 5b:81:74:34:ff:54:0e:a1:28:3a:46:54:8a:c7:6b:5b:20:b4: 12:7d:3c:7e:fc:9f:b5:42:07:69:33:ad:bb:d9:1b:fb:6c:06: 70:c9:d8:bd:25:20:00:2d:43:b4:cf:3a:5e:f1:fb:93:c7:a3: 60:64:0e:5f:70:95:ff:25:ee:cb:c5:79:63:28:23:43:3f:11: 7f:54:19:a7:f3:86:5b:d3:eb:98:e1:7d:ec:0d:52:70:30:83: 87:2d:79:f6:48:b8:fc:49:c3:60:71:00:93:dd:c5:b3:81:b0: 0b:62:87:12:1b:c5:3b:84:a1:77:39:01:36:e9:4f:07:2f:46: f4:ef:e4:bd:5d:5d:0a:d5:ee:27:1a:43:8b:59:b9:bc:2d:c4: 33:96:ce:87:20:43:47:3e:c3:d2:a2:03:bb:d5:78:a7:c1:a1: 1a:f9:0a:2f:df:6a:ce:65:62:ad:5b:43:db:51:c3:7f:90:d2: dc:64:4b:39:97:bc:5a:d0:41:17:d8:b1:bb:e7:c7:3e:4b:2c: 98:1f:f8:00:df:84:65:b1:77:16:61:e8:e2:5f:33:f7:8f:82: 90:7c:cb:e2:5b:de:57:73:a9:be:78:34:19:20:3e:5b:4a:24: d4:1a:3f:88:3d:21:25:8b:e5:7a:fb:d6:69:ef:3c:7f:97:e3: 91:e5:07:db -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUKikC1JUODNLFE7KefHrt1Aot7J4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzE0OTg4QTc5RjJBNTIyRDJFRDFENEFDOTlDNEFCREZE Q0RCQjQwMDAeFw0yNDAzMTQxNTU2MTRaFw0yNTAzMTMxNjAxMTRaMDMxMTAvBgNV BAMTKDBENEU0MzlFQzU0MTZDRDJFRUVEMEJGMzdFMzY4NkZFN0QxODdDRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbr6yeX37ZuwBSYfbGd07R5uC2 b0fP4AelbQr5isXFM/7vkunBPAhSW/PEKB+HOSP9ABzdZb0zhgeo4npUffrIPUI7 +GKhJKtAQL+GeZXHUEwk3ZZBe4zOOSkMboe3mYGQuuOh/6Y8Cb906BZk9NfN625K dv45JnyDZGE+cIq8Z4h9dCofOsWae0CRB38UR3uNtno9rkjDausHKxCPNX2pbTsU YcObWtYI0zT5F10ZDwzkM81vxyl7Due6jJy9KKCvX/TOR9ketRZLUCTbgYOr0tiH GoqT7ABQvDePSusTs0WDLxjzFmIcs1GrdLaJOle/fqmDEBmdrlTSl66rEq27AgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUDU5DnsVBbNLu7QvzfjaG/n0YfOowHwYDVR0j BBgwFoAUMUmIp58qUi0u0dSsmcSr39zbtAAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NGJhNjc3OC1iMTZkLTRiYTgtOTg0Zi0zNGU0MTlmYzljNDkvMC8zMTQ5ODhBNzlG MkE1MjJEMkVEMUQ0QUM5OUM0QUJERkRDREJCNDAwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzE0OTg4QTc5RjJBNTIyRDJFRDFENEFDOTlDNEFCREZEQ0RC QjQwMC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0YmE2Nzc4LWIxNmQtNGJhOC05 ODRmLTM0ZTQxOWZjOWM0OS8wLzMyMzQzMDM3M2EzNzMyMzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDM1MzgzODMyMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkB3JAMA0GCSqGSIb3 DQEBCwUAA4IBAQBbgXQ0/1QOoSg6RlSKx2tbILQSfTx+/J+1QgdpM6272Rv7bAZw ydi9JSAALUO0zzpe8fuTx6NgZA5fcJX/Je7LxXljKCNDPxF/VBmn84Zb0+uY4X3s DVJwMIOHLXn2SLj8ScNgcQCT3cWzgbALYocSG8U7hKF3OQE26U8HL0b07+S9XV0K 1e4nGkOLWbm8LcQzls6HIENHPsPSogO71XinwaEa+Qov32rOZWKtW0PbUcN/kNLc ZEs5l7xa0EEX2LG758c+SyyYH/gA34RlsXcWYejiXzP3j4KQfMviW95Xc6m+eDQZ ID5bSiTUGj+IPSEli+V6+9Zp7zx/l+OR5Qfb -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:41 2024 by rpki-client on console-fra.rpki-client.org