$ rpki-client -vvf repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/323430353a383734303a3a2f33322d3438203d3e203436303139.roa File: 323430353a383734303a3a2f33322d3438203d3e203436303139.roa (raw, json) Hash identifier: cIh7AeQoTmqNjdCKCQgoJST4L8Z/MHBHqxUbrV/FBVA= Subject key identifier: DF:13:4D:A3:AC:5F:6C:DD:31:D0:85:B3:51:34:24:9E:3D:DC:A6:8A Certificate issuer: /CN=9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5 Certificate serial: 5D57A2F3F3050F188BB747A72BF3116F413FCC08 Authority key identifier: 9F:56:EC:50:DA:14:D1:3D:14:9F:51:45:D6:2A:FC:5A:3F:0B:70:B5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/323430353a383734303a3a2f33322d3438203d3e203436303139.roa Signing time: Mon 31 Jul 2023 00:02:31 +0000 ROA not before: Sun 30 Jul 2023 23:57:31 +0000 ROA not after: Mon 29 Jul 2024 00:02:31 +0000 asID: 46019 IP address blocks: 2405:8740::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5.crl rsync://repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 07:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:57:a2:f3:f3:05:0f:18:8b:b7:47:a7:2b:f3:11:6f:41:3f:cc:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5 Validity Not Before: Jul 30 23:57:31 2023 GMT Not After : Jul 29 00:02:31 2024 GMT Subject: CN=DF134DA3AC5F6CDD31D085B35134249E3DDCA68A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ff:84:5b:8d:cd:1c:bb:14:d2:a5:f9:8d:21: e0:25:ca:23:09:5f:16:17:44:53:d3:d0:6c:45:9b: f1:af:20:e7:be:52:9e:14:c5:46:3a:27:9e:77:87: 87:7f:b4:f1:12:6b:46:e3:fa:4d:e3:04:40:6d:83: 25:21:3e:1f:a7:eb:a0:0a:0e:a1:7d:ad:a6:5f:9d: 4d:25:8e:8e:55:7e:19:7f:3e:dc:44:d9:65:b3:e8: ef:c1:5a:f1:93:54:59:e4:92:3d:f8:30:d9:db:a3: f7:0c:73:4b:92:d7:79:04:87:fa:d1:8c:3e:78:b7: 47:f6:82:48:5c:18:6d:e4:86:53:48:c4:73:95:07: 7f:9f:82:9d:5b:a8:20:79:ed:58:9b:ba:2d:b3:7c: 9d:89:24:c9:1e:f4:3e:82:16:99:25:ad:c7:99:ef: e7:87:62:1c:ad:ae:d9:ba:b0:22:c5:50:b0:d9:58: 7f:5e:8c:98:d5:40:f1:46:45:f9:92:9d:9c:2a:57: dc:47:79:79:b9:fa:95:8f:7c:8a:e8:9a:4e:83:e2: 64:03:92:4a:d0:dc:b6:f8:45:ed:40:32:67:4c:43: a2:64:16:3f:20:3c:72:fd:47:f0:6e:41:63:0b:38: 78:d7:6d:b3:59:77:0a:c6:12:0d:3a:72:d9:96:29: e7:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:13:4D:A3:AC:5F:6C:DD:31:D0:85:B3:51:34:24:9E:3D:DC:A6:8A X509v3 Authority Key Identifier: keyid:9F:56:EC:50:DA:14:D1:3D:14:9F:51:45:D6:2A:FC:5A:3F:0B:70:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/323430353a383734303a3a2f33322d3438203d3e203436303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:8740::/32 Signature Algorithm: sha256WithRSAEncryption 08:b9:91:d1:08:ff:59:13:c3:57:35:65:bb:5d:f2:f1:d4:ae: f6:fd:54:6f:75:88:b9:b2:8e:ac:0e:55:a6:87:80:b7:df:06: 1b:f3:a5:b0:19:e2:6a:12:d9:e9:3c:22:fe:f2:e4:06:bd:6a: 43:df:88:0d:8d:c5:2b:18:29:07:d5:82:9d:a2:ef:d3:1e:07: e1:d4:12:cf:66:e1:7f:be:a2:dc:d0:4b:73:3f:74:33:7f:2f: a1:c3:37:5d:5b:48:20:74:0d:cc:05:a9:de:44:74:81:95:60: 0c:15:48:e3:b0:9b:01:ce:87:ac:85:84:8f:6f:79:41:c1:1b: 8b:41:8d:37:03:2f:3a:67:dc:50:01:63:d9:eb:1a:a2:56:f0: 1b:73:6e:fb:c9:cb:81:f4:63:e9:57:4f:7d:c4:98:7d:3d:b8: b6:92:d3:b7:04:45:27:54:6d:24:6a:4a:8c:4e:1b:6a:03:17: af:e2:df:f4:a4:51:6e:4d:b0:0d:13:ce:a1:25:f0:08:19:62: 90:7b:3c:4f:e2:ac:c7:52:fc:4b:22:7d:b5:e8:a7:26:2c:f8: 7c:d4:f6:84:78:51:92:34:44:d3:86:19:3a:3d:e1:a3:7b:c6: 80:d9:23:76:b9:e9:fc:83:0a:43:2a:30:e6:9c:af:cf:e9:4c: f2:92:eb:0d -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUXVei8/MFDxiLt0enK/MRb0E/zAgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUY1NkVDNTBEQTE0RDEzRDE0OUY1MTQ1RDYyQUZDNUEz RjBCNzBCNTAeFw0yMzA3MzAyMzU3MzFaFw0yNDA3MjkwMDAyMzFaMDMxMTAvBgNV BAMTKERGMTM0REEzQUM1RjZDREQzMUQwODVCMzUxMzQyNDlFM0REQ0E2OEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD/4Rbjc0cuxTSpfmNIeAlyiMJ XxYXRFPT0GxFm/GvIOe+Up4UxUY6J553h4d/tPESa0bj+k3jBEBtgyUhPh+n66AK DqF9raZfnU0ljo5Vfhl/PtxE2WWz6O/BWvGTVFnkkj34MNnbo/cMc0uS13kEh/rR jD54t0f2gkhcGG3khlNIxHOVB3+fgp1bqCB57Vibui2zfJ2JJMke9D6CFpklrceZ 7+eHYhytrtm6sCLFULDZWH9ejJjVQPFGRfmSnZwqV9xHeXm5+pWPfIromk6D4mQD kkrQ3Lb4Re1AMmdMQ6JkFj8gPHL9R/BuQWMLOHjXbbNZdwrGEg06ctmWKefTAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQU3xNNo6xfbN0x0IWzUTQknj3cpoowHwYDVR0j BBgwFoAUn1bsUNoU0T0Un1FF1ir8Wj8LcLUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YmY3MWM5MS0xNjI0LTRmYzAtOGM2My0yZWZhZmQ0NmZiYzEvMC85RjU2RUM1MERB MTREMTNEMTQ5RjUxNDVENjJBRkM1QTNGMEI3MEI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUY1NkVDNTBEQTE0RDEzRDE0OUY1MTQ1RDYyQUZDNUEzRjBC NzBCNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJiZjcxYzkxLTE2MjQtNGZjMC04 YzYzLTJlZmFmZDQ2ZmJjMS8wLzMyMzQzMDM1M2EzODM3MzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM0MzYzMDMxMzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBYdAMA0GCSqGSIb3 DQEBCwUAA4IBAQAIuZHRCP9ZE8NXNWW7XfLx1K72/VRvdYi5so6sDlWmh4C33wYb 86WwGeJqEtnpPCL+8uQGvWpD34gNjcUrGCkH1YKdou/THgfh1BLPZuF/vqLc0Etz P3Qzfy+hwzddW0ggdA3MBaneRHSBlWAMFUjjsJsBzoeshYSPb3lBwRuLQY03Ay86 Z9xQAWPZ6xqiVvAbc277ycuB9GPpV099xJh9Pbi2ktO3BEUnVG0kakqMThtqAxev 4t/0pFFuTbANE86hJfAIGWKQezxP4qzHUvxLIn216KcmLPh81PaEeFGSNETThhk6 PeGje8aA2SN2uen8gwpDKjDmnK/P6UzykusN -----END CERTIFICATE-----Generated at Thu May 2 04:01:03 2024 by rpki-client on console-fra.rpki-client.org