$ rpki-client -vvf repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/323430333a626163303a3a2f33322d3438203d3e20313333383135.roa File: 323430333a626163303a3a2f33322d3438203d3e20313333383135.roa (raw, json) Hash identifier: 62AOXONPCfPBRxAtpNp6448deYzXkfkQpY21xizhiY0= Subject key identifier: A8:3C:5A:14:D9:97:49:F5:B0:E8:90:03:C2:99:52:9E:12:76:4C:A0 Certificate issuer: /CN=CEA03A07989107F547A2B2ABAA6AD4E70312AD5C Certificate serial: 5576CF2C5D0CC19522A3D993F638BCB5BCF8F47B Authority key identifier: CE:A0:3A:07:98:91:07:F5:47:A2:B2:AB:AA:6A:D4:E7:03:12:AD:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/323430333a626163303a3a2f33322d3438203d3e20313333383135.roa Signing time: Mon 31 Jul 2023 00:03:15 +0000 ROA not before: Sun 30 Jul 2023 23:58:15 +0000 ROA not after: Mon 29 Jul 2024 00:03:15 +0000 asID: 133815 IP address blocks: 2403:bac0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 05:34:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:76:cf:2c:5d:0c:c1:95:22:a3:d9:93:f6:38:bc:b5:bc:f8:f4:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEA03A07989107F547A2B2ABAA6AD4E70312AD5C Validity Not Before: Jul 30 23:58:15 2023 GMT Not After : Jul 29 00:03:15 2024 GMT Subject: CN=A83C5A14D99749F5B0E89003C299529E12764CA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:16:b7:d7:3b:13:5f:7d:8b:86:f1:73:a7:84: cf:53:c4:aa:dd:ea:8b:77:6c:61:e9:8b:4f:91:c3: be:94:2c:ed:90:63:ac:50:54:5c:9f:17:1d:cb:1d: 23:ae:84:4a:75:7c:45:82:9b:bb:51:a7:9e:9c:09: a0:c6:f3:ec:25:76:23:76:b4:d6:20:8a:72:cf:59: 4f:d8:d1:4d:89:b3:d9:82:a7:cb:f1:16:a2:0e:1a: 71:68:3b:8d:18:30:eb:55:e5:0d:4d:77:a8:74:bc: d1:bc:ab:9a:87:4c:2c:7c:ab:48:c8:4c:77:5b:de: 23:1c:f9:b7:d5:7a:a0:11:90:ea:7b:6a:84:c4:bb: 74:dc:52:06:36:51:bc:b5:78:6f:0d:0e:ee:0f:c0: 01:71:84:6d:00:87:63:8f:d7:a0:68:8f:ac:2b:83: 6c:2f:2d:59:e3:0e:1b:24:9a:66:ca:f7:61:25:48: 30:8a:b9:45:e6:84:34:93:05:1c:d5:63:d6:a9:66: 68:1b:35:1f:1f:50:3f:50:61:ec:db:f6:b9:65:f3: f6:05:7c:47:d2:08:09:9b:6a:00:a1:64:b4:0f:bb: 5b:58:0a:7f:a1:41:d1:5b:7b:d8:a7:1a:f4:99:c2: c9:9c:63:18:d8:55:9e:0e:80:5f:e8:09:e7:c9:59: 8b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:3C:5A:14:D9:97:49:F5:B0:E8:90:03:C2:99:52:9E:12:76:4C:A0 X509v3 Authority Key Identifier: keyid:CE:A0:3A:07:98:91:07:F5:47:A2:B2:AB:AA:6A:D4:E7:03:12:AD:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/323430333a626163303a3a2f33322d3438203d3e20313333383135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:bac0::/32 Signature Algorithm: sha256WithRSAEncryption ba:9e:70:5a:29:74:16:4e:c6:3f:5f:c7:40:58:92:c8:b5:a0: 66:42:8c:3a:cf:bf:6b:7a:25:52:6c:9c:05:e2:e8:5b:a0:cf: 00:5b:5c:34:a9:31:f6:87:31:29:45:fc:88:fc:55:ac:0f:c5: ca:4f:22:4b:2b:af:74:83:b6:e4:b3:35:c2:12:07:76:d7:5a: b3:43:bb:e7:26:67:67:c1:ea:eb:33:48:07:49:b8:5f:30:23: 12:49:90:f9:e2:68:94:71:fd:20:80:07:d8:24:22:23:3d:f3: 0b:49:6f:df:e1:bb:01:9f:2b:b8:cd:b4:09:8c:48:93:26:09: c8:86:1c:df:06:66:e5:77:16:c4:6d:e1:7c:36:09:ba:22:4a: 52:bf:67:14:44:d2:3e:2d:f4:e8:9a:1f:82:4f:34:7c:75:60: e4:81:51:56:41:b5:62:c3:34:f2:de:ed:53:6c:fb:0e:6b:f2: ec:bb:4f:b4:26:09:98:ae:c4:1a:dc:40:59:f0:e9:97:cc:29: c2:7b:1f:1a:2f:77:7d:e4:e4:bf:7d:94:80:bd:b1:df:a8:c0: a5:4f:88:22:a6:3e:be:dd:68:04:e7:96:a0:a6:94:ac:7b:ed: 5d:62:1c:0d:94:8f:79:b7:86:cc:62:8f:68:45:09:1b:5a:2d: 1c:dc:42:88 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUVXbPLF0MwZUio9mT9ji8tbz49HswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VBMDNBMDc5ODkxMDdGNTQ3QTJCMkFCQUE2QUQ0RTcw MzEyQUQ1QzAeFw0yMzA3MzAyMzU4MTVaFw0yNDA3MjkwMDAzMTVaMDMxMTAvBgNV BAMTKEE4M0M1QTE0RDk5NzQ5RjVCMEU4OTAwM0MyOTk1MjlFMTI3NjRDQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYFrfXOxNffYuG8XOnhM9TxKrd 6ot3bGHpi0+Rw76ULO2QY6xQVFyfFx3LHSOuhEp1fEWCm7tRp56cCaDG8+wldiN2 tNYginLPWU/Y0U2Js9mCp8vxFqIOGnFoO40YMOtV5Q1Nd6h0vNG8q5qHTCx8q0jI THdb3iMc+bfVeqARkOp7aoTEu3TcUgY2Uby1eG8NDu4PwAFxhG0Ah2OP16Boj6wr g2wvLVnjDhskmmbK92ElSDCKuUXmhDSTBRzVY9apZmgbNR8fUD9QYezb9rll8/YF fEfSCAmbagChZLQPu1tYCn+hQdFbe9inGvSZwsmcYxjYVZ4OgF/oCefJWYvVAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUqDxaFNmXSfWw6JADwplSnhJ2TKAwHwYDVR0j BBgwFoAUzqA6B5iRB/VHorKrqmrU5wMSrVwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTNhZTQ4NS1hNjU4LTRjNWMtYWJlMi0xZTdmZDhiMDM4YTAvMC9DRUEwM0EwNzk4 OTEwN0Y1NDdBMkIyQUJBQTZBRDRFNzAzMTJBRDVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0VBMDNBMDc5ODkxMDdGNTQ3QTJCMkFCQUE2QUQ0RTcwMzEy QUQ1Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhM2FlNDg1LWE2NTgtNGM1Yy1h YmUyLTFlN2ZkOGIwMzhhMC8wLzMyMzQzMDMzM2E2MjYxNjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzMzM4MzEzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQDusAwDQYJKoZI hvcNAQELBQADggEBALqecFopdBZOxj9fx0BYksi1oGZCjDrPv2t6JVJsnAXi6Fug zwBbXDSpMfaHMSlF/Ij8VawPxcpPIksrr3SDtuSzNcISB3bXWrNDu+cmZ2fB6usz SAdJuF8wIxJJkPniaJRx/SCAB9gkIiM98wtJb9/huwGfK7jNtAmMSJMmCciGHN8G ZuV3FsRt4Xw2CboiSlK/ZxRE0j4t9OiaH4JPNHx1YOSBUVZBtWLDNPLe7VNs+w5r 8uy7T7QmCZiuxBrcQFnw6ZfMKcJ7Hxovd33k5L99lIC9sd+owKVPiCKmPr7daATn lqCmlKx77V1iHA2Uj3m3hsxij2hFCRtaLRzcQog= -----END CERTIFICATE-----Generated at Thu May 2 23:01:49 2024 by rpki-client on console-fra.rpki-client.org