$ rpki-client -vvf repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/323430353a383734303a3a2f33322d3438203d3e203436303139.roa File: 323430353a383734303a3a2f33322d3438203d3e203436303139.roa (raw, json) Hash identifier: a7znhfBNHys+TKNktu9lUaJAAJAo87DRguXsLyL1Vu0= Subject key identifier: CD:D3:FB:A6:55:2B:BD:95:39:64:B0:D6:77:D6:11:01:CE:41:C9:72 Certificate issuer: /CN=9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5 Certificate serial: 4A03E7C553BF908193C9A12625C2BF0357DBDED5 Authority key identifier: 9F:56:EC:50:DA:14:D1:3D:14:9F:51:45:D6:2A:FC:5A:3F:0B:70:B5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/323430353a383734303a3a2f33322d3438203d3e203436303139.roa Signing time: Mon 01 Jul 2024 01:02:23 +0000 ROA not before: Mon 01 Jul 2024 00:57:23 +0000 ROA not after: Mon 30 Jun 2025 01:02:23 +0000 asID: 46019 IP address blocks: 2405:8740::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5.crl rsync://repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:03:e7:c5:53:bf:90:81:93:c9:a1:26:25:c2:bf:03:57:db:de:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5 Validity Not Before: Jul 1 00:57:23 2024 GMT Not After : Jun 30 01:02:23 2025 GMT Subject: CN=CDD3FBA6552BBD953964B0D677D61101CE41C972 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:7a:12:3e:0b:4c:83:a2:9a:5e:c7:b9:ae:20: f1:0d:4f:fd:43:88:2b:99:1b:f0:e4:bf:dd:d9:c9: 6e:18:81:dd:d7:77:96:61:c1:4a:11:de:fd:0d:cf: db:e7:fc:e7:8f:69:42:20:cd:fd:e4:75:e7:1f:b4: 90:fc:01:0a:ed:98:cc:3c:33:0e:05:d7:7a:d7:55: 9e:ac:87:3b:23:a8:1f:22:71:f0:a3:c9:bd:07:8f: 1a:e8:fb:c5:c4:2d:c9:dc:6d:ab:f8:9f:01:c8:45: 03:03:96:97:30:95:0f:93:82:3f:f1:7e:28:0c:0e: 30:e0:98:de:1f:fc:52:66:d5:84:91:b1:bd:0e:ce: 3a:5c:3f:04:2f:75:28:8a:f4:32:b0:49:7a:ad:74: 19:51:fd:bf:49:94:39:09:d5:eb:b8:01:98:ed:73: 95:3f:b9:e9:0a:0d:22:4a:2d:83:dc:76:1e:8d:93: 7a:de:17:3a:eb:e8:13:b4:ab:10:9f:c9:3e:b5:ba: 6c:c7:a0:3e:bb:b7:5a:fa:22:fb:cf:04:d2:9f:59: 84:ac:d8:52:4a:43:0f:d7:3f:1d:f6:1e:31:8e:f7: d1:fc:3b:3b:48:bf:ea:04:84:fe:31:12:d2:f8:78: 18:87:2e:b1:fe:98:8b:9b:83:93:9a:82:c6:23:35: 2b:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:D3:FB:A6:55:2B:BD:95:39:64:B0:D6:77:D6:11:01:CE:41:C9:72 X509v3 Authority Key Identifier: keyid:9F:56:EC:50:DA:14:D1:3D:14:9F:51:45:D6:2A:FC:5A:3F:0B:70:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/323430353a383734303a3a2f33322d3438203d3e203436303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:8740::/32 Signature Algorithm: sha256WithRSAEncryption 79:53:3f:3e:ff:53:fc:4e:ef:d0:09:1d:0f:4b:fd:48:0e:43: 70:b5:70:26:2f:73:ce:0e:89:5f:e5:26:d5:f6:05:71:1f:d9: a3:2f:a3:69:75:db:6e:84:db:ed:d9:e3:77:66:fb:5f:b3:a2: 79:8b:67:a4:cc:32:77:08:2c:dc:97:26:39:b1:8d:d7:d8:b1: 88:cc:f5:44:bb:be:8a:9a:c1:78:db:f5:e6:12:42:e7:4a:b2: 11:8f:95:e4:9a:d5:28:69:19:0c:d8:a4:06:6f:60:b0:11:14: 12:3c:c7:cb:c2:62:00:05:bb:92:7f:94:ff:fa:e2:22:5b:20: 76:41:50:de:58:17:9a:f8:9b:04:e2:38:38:96:f3:1c:32:05: 79:0e:c9:e5:65:69:92:6c:41:e5:75:b5:0d:1d:a4:11:41:6a: ad:25:fe:3f:67:7b:e0:0f:c8:6a:54:4d:c3:93:26:59:e8:89: fc:b9:f7:cc:7c:04:0a:81:06:d9:ed:9e:9c:4d:83:4f:98:1a: b2:8c:6e:ce:ea:96:81:07:1d:14:3c:9d:c3:f9:6d:4c:fe:27: a4:19:5b:6f:ce:c6:f4:b7:0a:ed:25:fd:f2:df:56:ba:e1:cb: a0:41:72:4d:32:54:d9:d9:41:5a:fb:7b:8a:dd:c0:04:d1:c7: 69:2f:9e:5f -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUSgPnxVO/kIGTyaEmJcK/A1fb3tUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUY1NkVDNTBEQTE0RDEzRDE0OUY1MTQ1RDYyQUZDNUEz RjBCNzBCNTAeFw0yNDA3MDEwMDU3MjNaFw0yNTA2MzAwMTAyMjNaMDMxMTAvBgNV BAMTKENERDNGQkE2NTUyQkJEOTUzOTY0QjBENjc3RDYxMTAxQ0U0MUM5NzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoehI+C0yDoppex7muIPENT/1D iCuZG/Dkv93ZyW4Ygd3Xd5ZhwUoR3v0Nz9vn/OePaUIgzf3kdecftJD8AQrtmMw8 Mw4F13rXVZ6shzsjqB8icfCjyb0Hjxro+8XELcncbav4nwHIRQMDlpcwlQ+Tgj/x figMDjDgmN4f/FJm1YSRsb0OzjpcPwQvdSiK9DKwSXqtdBlR/b9JlDkJ1eu4AZjt c5U/uekKDSJKLYPcdh6Nk3reFzrr6BO0qxCfyT61umzHoD67t1r6IvvPBNKfWYSs 2FJKQw/XPx32HjGO99H8OztIv+oEhP4xEtL4eBiHLrH+mIubg5OagsYjNSuxAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUzdP7plUrvZU5ZLDWd9YRAc5ByXIwHwYDVR0j BBgwFoAUn1bsUNoU0T0Un1FF1ir8Wj8LcLUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YmY3MWM5MS0xNjI0LTRmYzAtOGM2My0yZWZhZmQ0NmZiYzEvMC85RjU2RUM1MERB MTREMTNEMTQ5RjUxNDVENjJBRkM1QTNGMEI3MEI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUY1NkVDNTBEQTE0RDEzRDE0OUY1MTQ1RDYyQUZDNUEzRjBC NzBCNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJiZjcxYzkxLTE2MjQtNGZjMC04 YzYzLTJlZmFmZDQ2ZmJjMS8wLzMyMzQzMDM1M2EzODM3MzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM0MzYzMDMxMzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBYdAMA0GCSqGSIb3 DQEBCwUAA4IBAQB5Uz8+/1P8Tu/QCR0PS/1IDkNwtXAmL3PODolf5SbV9gVxH9mj L6NpddtuhNvt2eN3Zvtfs6J5i2ekzDJ3CCzclyY5sY3X2LGIzPVEu76KmsF42/Xm EkLnSrIRj5XkmtUoaRkM2KQGb2CwERQSPMfLwmIABbuSf5T/+uIiWyB2QVDeWBea +JsE4jg4lvMcMgV5DsnlZWmSbEHldbUNHaQRQWqtJf4/Z3vgD8hqVE3DkyZZ6In8 uffMfAQKgQbZ7Z6cTYNPmBqyjG7O6paBBx0UPJ3D+W1M/iekGVtvzsb0twrtJf3y 31a64cugQXJNMlTZ2UFa+3uK3cAE0cdpL55f -----END CERTIFICATE-----Generated at Thu Nov 21 05:03:32 2024 by rpki-client on console-fra.rpki-client.org