$ rpki-client -vvf repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/323430333a626163303a3a2f33322d3438203d3e20313333383135.roa File: 323430333a626163303a3a2f33322d3438203d3e20313333383135.roa (raw, json) Hash identifier: 2l9WJirwQZDRv/TSoObPb5SI7hgV3kRaxDMplLJM4ms= Subject key identifier: 03:72:D2:B1:6C:6A:10:71:5B:B0:A8:6B:75:CA:4E:68:58:F2:7B:11 Certificate issuer: /CN=CEA03A07989107F547A2B2ABAA6AD4E70312AD5C Certificate serial: 73B3A03EB4529791EFCCB39B708AFF8A4F2E1B52 Authority key identifier: CE:A0:3A:07:98:91:07:F5:47:A2:B2:AB:AA:6A:D4:E7:03:12:AD:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/323430333a626163303a3a2f33322d3438203d3e20313333383135.roa Signing time: Mon 01 Jul 2024 01:02:46 +0000 ROA not before: Mon 01 Jul 2024 00:57:46 +0000 ROA not after: Mon 30 Jun 2025 01:02:46 +0000 asID: 133815 IP address blocks: 2403:bac0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:b3:a0:3e:b4:52:97:91:ef:cc:b3:9b:70:8a:ff:8a:4f:2e:1b:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEA03A07989107F547A2B2ABAA6AD4E70312AD5C Validity Not Before: Jul 1 00:57:46 2024 GMT Not After : Jun 30 01:02:46 2025 GMT Subject: CN=0372D2B16C6A10715BB0A86B75CA4E6858F27B11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:98:72:7c:8a:69:5a:2d:97:32:b6:c7:9d:d4: 3e:26:85:bf:85:2d:81:62:e5:ba:27:53:10:c5:c9: 47:f7:b4:51:80:bb:7d:5b:da:ef:ce:61:9a:1d:cd: 0a:df:47:e5:c0:14:56:3f:83:fe:9b:ff:4f:f4:dd: e9:1a:1d:85:e1:86:26:4c:03:c4:89:e7:9e:4e:dd: 63:a7:b5:60:26:2d:bd:32:90:ea:38:53:15:07:09: 1d:93:e8:10:6e:f2:dd:2c:77:16:f2:49:e6:d1:af: 28:21:09:6e:6e:58:fc:36:8c:d6:e1:50:6c:b4:c9: e9:2b:4f:86:6d:f4:b8:c0:e4:ef:d9:03:f8:b9:b6: ad:d2:df:6e:2d:a9:19:65:88:f0:ec:44:5a:14:17: c4:e8:b5:26:17:72:40:9f:0d:ec:05:74:e8:4c:d0: 8a:9a:7a:e0:de:a1:fb:ae:7e:0d:2e:2b:85:e8:45: 90:b5:44:68:d9:53:65:f8:6d:f7:99:b4:1a:a5:ed: bd:14:49:8a:bd:be:bf:14:32:a8:71:84:3a:ba:83: 61:6c:44:ff:4f:71:3c:73:43:35:a2:d7:9c:4d:79: 50:96:f8:1d:3c:51:e4:ed:b3:53:fc:78:21:4b:0b: 8b:29:a3:c7:9c:90:5b:bb:57:36:71:c8:b1:62:86: bb:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:72:D2:B1:6C:6A:10:71:5B:B0:A8:6B:75:CA:4E:68:58:F2:7B:11 X509v3 Authority Key Identifier: keyid:CE:A0:3A:07:98:91:07:F5:47:A2:B2:AB:AA:6A:D4:E7:03:12:AD:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/323430333a626163303a3a2f33322d3438203d3e20313333383135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:bac0::/32 Signature Algorithm: sha256WithRSAEncryption 34:4c:36:d9:8c:a4:d4:26:87:11:4b:d9:55:4e:b3:23:35:bb: 89:e2:e3:22:48:97:60:95:71:9c:83:c6:50:32:94:40:72:d3: 02:23:a5:3d:14:3d:5d:a8:dd:21:a5:a9:db:0d:c1:15:2c:25: 13:f3:86:49:42:6d:94:67:bf:02:ea:4d:6d:17:61:72:00:62: f7:60:c0:50:72:1d:9f:48:da:bc:3d:bd:7e:32:70:8b:61:f0: 6d:56:83:52:25:fa:84:80:f3:86:b1:d4:28:e0:13:cc:00:ce: 9a:6d:29:c5:f6:0b:74:ff:13:cd:9a:a0:93:a7:ef:15:c8:5d: 0e:13:d0:67:2c:7a:34:aa:92:56:9e:f1:51:ca:fa:e1:9a:20: 12:da:d1:b5:71:58:58:d4:b5:5d:1f:92:85:9b:a7:f7:19:8f: a2:14:ac:3f:ec:1a:72:e9:06:0a:5c:0a:2d:91:f1:d4:9f:95: c2:90:b2:09:fc:b0:05:8b:87:c3:f8:39:c0:69:c3:40:26:f3: 88:45:f3:44:13:b8:8c:fa:b7:6a:5b:52:1b:f7:38:a0:c9:1f: d4:0e:1a:e7:83:0e:0f:6a:5b:89:e8:71:12:87:f8:90:eb:9c: 19:66:30:71:9b:e3:28:33:d2:dc:6f:8a:57:d5:bf:64:72:57: 2c:bd:06:62 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUc7OgPrRSl5HvzLObcIr/ik8uG1IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VBMDNBMDc5ODkxMDdGNTQ3QTJCMkFCQUE2QUQ0RTcw MzEyQUQ1QzAeFw0yNDA3MDEwMDU3NDZaFw0yNTA2MzAwMTAyNDZaMDMxMTAvBgNV BAMTKDAzNzJEMkIxNkM2QTEwNzE1QkIwQTg2Qjc1Q0E0RTY4NThGMjdCMTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOmHJ8imlaLZcytsed1D4mhb+F LYFi5bonUxDFyUf3tFGAu31b2u/OYZodzQrfR+XAFFY/g/6b/0/03ekaHYXhhiZM A8SJ555O3WOntWAmLb0ykOo4UxUHCR2T6BBu8t0sdxbySebRryghCW5uWPw2jNbh UGy0yekrT4Zt9LjA5O/ZA/i5tq3S324tqRlliPDsRFoUF8TotSYXckCfDewFdOhM 0IqaeuDeofuufg0uK4XoRZC1RGjZU2X4bfeZtBql7b0USYq9vr8UMqhxhDq6g2Fs RP9PcTxzQzWi15xNeVCW+B08UeTts1P8eCFLC4spo8eckFu7VzZxyLFihrsrAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUA3LSsWxqEHFbsKhrdcpOaFjyexEwHwYDVR0j BBgwFoAUzqA6B5iRB/VHorKrqmrU5wMSrVwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTNhZTQ4NS1hNjU4LTRjNWMtYWJlMi0xZTdmZDhiMDM4YTAvMC9DRUEwM0EwNzk4 OTEwN0Y1NDdBMkIyQUJBQTZBRDRFNzAzMTJBRDVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0VBMDNBMDc5ODkxMDdGNTQ3QTJCMkFCQUE2QUQ0RTcwMzEy QUQ1Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhM2FlNDg1LWE2NTgtNGM1Yy1h YmUyLTFlN2ZkOGIwMzhhMC8wLzMyMzQzMDMzM2E2MjYxNjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzMzM4MzEzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQDusAwDQYJKoZI hvcNAQELBQADggEBADRMNtmMpNQmhxFL2VVOsyM1u4ni4yJIl2CVcZyDxlAylEBy 0wIjpT0UPV2o3SGlqdsNwRUsJRPzhklCbZRnvwLqTW0XYXIAYvdgwFByHZ9I2rw9 vX4ycIth8G1Wg1Il+oSA84ax1CjgE8wAzpptKcX2C3T/E82aoJOn7xXIXQ4T0Gcs ejSqklae8VHK+uGaIBLa0bVxWFjUtV0fkoWbp/cZj6IUrD/sGnLpBgpcCi2R8dSf lcKQsgn8sAWLh8P4OcBpw0Am84hF80QTuIz6t2pbUhv3OKDJH9QOGueDDg9qW4no cRKH+JDrnBlmMHGb4ygz0txvilfVv2RyVyy9BmI= -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:41 2024 by rpki-client on console-fra.rpki-client.org