$ rpki-client -vvf repo-rpki.idnic.net/repo/26652000-1f2c-4791-81b4-d4457cef1270/0/323430353a623034303a3a2f33322d3332203d3e20313339393531.roa File: 323430353a623034303a3a2f33322d3332203d3e20313339393531.roa (raw, json) Hash identifier: e6sexSgsStO6owug/ZWl3GYIquSX/tV3q/cRIhml4Mc= Subject key identifier: 96:E5:05:44:AA:3E:14:AE:88:DC:1D:63:AE:26:E0:3E:36:E5:ED:F9 Certificate issuer: /CN=7D52713C0D26932DC1EECC75CB0C11784C9B0592 Certificate serial: 36CEDF6E0FD8B94625F7665BFACCBD3F91AF8F7B Authority key identifier: 7D:52:71:3C:0D:26:93:2D:C1:EE:CC:75:CB:0C:11:78:4C:9B:05:92 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D52713C0D26932DC1EECC75CB0C11784C9B0592.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26652000-1f2c-4791-81b4-d4457cef1270/0/323430353a623034303a3a2f33322d3332203d3e20313339393531.roa Signing time: Fri 27 Sep 2024 04:00:01 +0000 ROA not before: Fri 27 Sep 2024 03:55:01 +0000 ROA not after: Fri 26 Sep 2025 04:00:01 +0000 asID: 139951 IP address blocks: 2405:b040::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26652000-1f2c-4791-81b4-d4457cef1270/0/7D52713C0D26932DC1EECC75CB0C11784C9B0592.crl rsync://repo-rpki.idnic.net/repo/26652000-1f2c-4791-81b4-d4457cef1270/0/7D52713C0D26932DC1EECC75CB0C11784C9B0592.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D52713C0D26932DC1EECC75CB0C11784C9B0592.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Sep 2024 06:11:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:ce:df:6e:0f:d8:b9:46:25:f7:66:5b:fa:cc:bd:3f:91:af:8f:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D52713C0D26932DC1EECC75CB0C11784C9B0592 Validity Not Before: Sep 27 03:55:01 2024 GMT Not After : Sep 26 04:00:01 2025 GMT Subject: CN=96E50544AA3E14AE88DC1D63AE26E03E36E5EDF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:65:e4:19:05:c7:b2:d7:3f:1f:04:94:ea:1d: 69:d3:40:28:6d:93:42:71:21:0e:11:16:87:27:69: 0f:35:29:d8:ea:e7:36:4f:0c:54:a1:ad:f7:85:76: 32:b7:84:1f:6c:69:45:1b:f5:a0:fa:5c:02:02:10: 06:20:25:2a:bf:c1:3e:95:12:80:53:67:c1:a2:6b: cb:e1:3a:be:30:04:85:47:0e:f4:01:2f:6d:b4:d7: 04:ce:b5:6c:92:a1:32:b7:89:c5:f1:6c:ed:0b:28: 18:a3:12:8a:0c:67:45:84:a4:82:a8:55:c7:6d:37: 59:23:b4:6a:a9:50:15:4f:72:71:67:55:f4:06:ec: d2:83:8c:4d:69:6e:f2:ee:e9:6a:c4:ac:98:20:04: 3e:69:ff:a4:6e:ba:e4:ef:2a:15:56:e2:e4:01:53: 7a:40:8e:41:14:48:8e:62:f2:92:70:a3:6d:55:5b: de:0d:2d:74:7e:51:e5:5c:08:12:2b:53:37:df:74: c7:29:00:6a:45:98:eb:0d:f5:b6:0c:a2:78:20:c7: 69:67:e0:7d:f2:93:15:6f:d0:ea:fe:a5:4d:15:f5: 81:46:02:a8:06:2a:91:bd:8a:35:20:a4:5f:6d:2f: 80:5b:95:e1:a5:bc:3e:3e:f5:25:37:b7:f1:c0:de: 20:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:E5:05:44:AA:3E:14:AE:88:DC:1D:63:AE:26:E0:3E:36:E5:ED:F9 X509v3 Authority Key Identifier: keyid:7D:52:71:3C:0D:26:93:2D:C1:EE:CC:75:CB:0C:11:78:4C:9B:05:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26652000-1f2c-4791-81b4-d4457cef1270/0/7D52713C0D26932DC1EECC75CB0C11784C9B0592.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D52713C0D26932DC1EECC75CB0C11784C9B0592.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26652000-1f2c-4791-81b4-d4457cef1270/0/323430353a623034303a3a2f33322d3332203d3e20313339393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b040::/32 Signature Algorithm: sha256WithRSAEncryption 46:a9:dd:61:e3:ea:33:31:1c:18:bd:2e:4a:73:76:16:b9:c9: 2c:c3:4f:d8:ad:ca:74:53:04:68:e7:45:99:92:31:2c:7e:15: 7e:35:41:72:d0:e6:37:98:7f:f1:1e:02:d0:5b:0b:41:15:b4: ea:fb:98:9f:c7:a0:8e:0d:94:37:d3:fe:18:68:6b:97:b3:9d: a9:23:34:bc:e2:12:f8:63:d6:9e:79:11:3e:6a:88:75:c2:ec: 1c:e7:13:d3:7d:6d:e5:42:fe:cd:3e:9f:be:26:4d:32:11:30: 4e:2e:a1:77:56:8b:48:dd:e5:3f:bd:2c:d2:af:2a:78:ec:f5: ee:30:a2:52:73:3e:7c:2a:44:50:2a:d4:2c:e6:42:59:22:ef: d5:5f:3b:a6:93:e7:27:c3:a0:c4:ba:ca:db:85:31:ac:90:67: 01:9e:bf:d9:12:a8:15:1d:22:a4:20:5c:7b:77:1b:eb:54:ad: 82:b8:c5:b7:06:2a:d1:1f:02:ba:77:d2:cd:91:c5:e9:3d:38: e9:c3:17:f4:43:27:8a:f2:a2:1d:de:66:85:41:e6:01:37:fa: f7:ea:1a:60:2e:60:b5:6e:63:ac:c7:60:08:93:7c:d1:8c:2d: 59:6f:61:22:48:3a:67:f9:63:20:c1:cd:46:33:bc:67:59:9f: 94:dd:31:90 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUNs7fbg/YuUYl92Zb+sy9P5Gvj3swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q1MjcxM0MwRDI2OTMyREMxRUVDQzc1Q0IwQzExNzg0 QzlCMDU5MjAeFw0yNDA5MjcwMzU1MDFaFw0yNTA5MjYwNDAwMDFaMDMxMTAvBgNV BAMTKDk2RTUwNTQ0QUEzRTE0QUU4OERDMUQ2M0FFMjZFMDNFMzZFNUVERjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1ZeQZBcey1z8fBJTqHWnTQCht k0JxIQ4RFocnaQ81Kdjq5zZPDFShrfeFdjK3hB9saUUb9aD6XAICEAYgJSq/wT6V EoBTZ8Gia8vhOr4wBIVHDvQBL2201wTOtWySoTK3icXxbO0LKBijEooMZ0WEpIKo VcdtN1kjtGqpUBVPcnFnVfQG7NKDjE1pbvLu6WrErJggBD5p/6RuuuTvKhVW4uQB U3pAjkEUSI5i8pJwo21VW94NLXR+UeVcCBIrUzffdMcpAGpFmOsN9bYMonggx2ln 4H3ykxVv0Or+pU0V9YFGAqgGKpG9ijUgpF9tL4BbleGlvD4+9SU3t/HA3iC5AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUluUFRKo+FK6I3B1jribgPjbl7fkwHwYDVR0j BBgwFoAUfVJxPA0mky3B7sx1ywwReEybBZIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NjY1MjAwMC0xZjJjLTQ3OTEtODFiNC1kNDQ1N2NlZjEyNzAvMC83RDUyNzEzQzBE MjY5MzJEQzFFRUNDNzVDQjBDMTE3ODRDOUIwNTkyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q1MjcxM0MwRDI2OTMyREMxRUVDQzc1Q0IwQzExNzg0QzlC MDU5Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2NjUyMDAwLTFmMmMtNDc5MS04 MWI0LWQ0NDU3Y2VmMTI3MC8wLzMyMzQzMDM1M2E2MjMwMzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTM5MzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFsEAwDQYJKoZI hvcNAQELBQADggEBAEap3WHj6jMxHBi9Lkpzdha5ySzDT9itynRTBGjnRZmSMSx+ FX41QXLQ5jeYf/EeAtBbC0EVtOr7mJ/HoI4NlDfT/hhoa5eznakjNLziEvhj1p55 ET5qiHXC7BznE9N9beVC/s0+n74mTTIRME4uoXdWi0jd5T+9LNKvKnjs9e4wolJz PnwqRFAq1CzmQlki79VfO6aT5yfDoMS6ytuFMayQZwGev9kSqBUdIqQgXHt3G+tU rYK4xbcGKtEfArp30s2Rxek9OOnDF/RDJ4ryoh3eZoVB5gE3+vfqGmAuYLVuY6zH YAiTfNGMLVlvYSJIOmf5YyDBzUYzvGdZn5TdMZA= -----END CERTIFICATE-----Generated at Fri Sep 27 04:59:02 2024 by rpki-client on console-fra.rpki-client.org