$ rpki-client -vvf repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/323430303a656134303a3a2f33322d3332203d3e203436303631.roa File: 323430303a656134303a3a2f33322d3332203d3e203436303631.roa (raw, json) Hash identifier: K7wbvP8VipTjZ61KDQJhbbGGoXz8zSKyn6wY7TPFZF8= Subject key identifier: 4D:55:32:4D:6E:B6:AD:60:5D:D3:4F:75:52:AF:56:D1:8E:E4:DD:52 Certificate issuer: /CN=667078BDA093F84040F3016D179CABA67F68A647 Certificate serial: 1CEEAC80EEA3CE02408CFCDB1A5CCAAFBBC9AE51 Authority key identifier: 66:70:78:BD:A0:93:F8:40:40:F3:01:6D:17:9C:AB:A6:7F:68:A6:47 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/667078BDA093F84040F3016D179CABA67F68A647.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/323430303a656134303a3a2f33322d3332203d3e203436303631.roa Signing time: Wed 02 Oct 2024 15:00:02 +0000 ROA not before: Wed 02 Oct 2024 14:55:02 +0000 ROA not after: Wed 01 Oct 2025 15:00:02 +0000 asID: 46061 IP address blocks: 2400:ea40::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/667078BDA093F84040F3016D179CABA67F68A647.crl rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/667078BDA093F84040F3016D179CABA67F68A647.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/667078BDA093F84040F3016D179CABA67F68A647.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 08:40:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:ee:ac:80:ee:a3:ce:02:40:8c:fc:db:1a:5c:ca:af:bb:c9:ae:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=667078BDA093F84040F3016D179CABA67F68A647 Validity Not Before: Oct 2 14:55:02 2024 GMT Not After : Oct 1 15:00:02 2025 GMT Subject: CN=4D55324D6EB6AD605DD34F7552AF56D18EE4DD52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:84:41:b9:37:a6:6e:89:8f:fb:d1:61:e0:7d: e2:75:c5:4e:f7:29:9f:8f:66:7d:33:14:fe:32:90: 00:44:60:0f:44:d5:f4:dc:3f:5b:92:58:42:d5:4e: 80:61:51:7f:d7:27:46:56:7d:d7:c7:e8:07:ae:80: 87:59:38:4f:36:23:4e:e9:7f:5b:be:62:0c:89:49: 62:75:4f:b7:c7:e7:77:ab:b1:f4:00:e1:6a:99:e0: 52:01:90:e9:a3:5c:59:80:78:58:eb:b3:93:8f:1e: 37:db:d3:92:12:22:de:ec:8a:f8:27:20:89:3a:92: 32:84:02:18:23:df:27:4f:db:74:c0:68:32:e3:5e: e4:1c:75:cf:e5:cc:f4:f8:07:87:e0:1f:2e:c2:f8: 58:e3:c5:28:7d:63:1f:c9:57:8d:f9:a8:f0:eb:0e: 67:3c:4b:3d:27:ca:72:0c:d4:f5:53:17:5e:44:a7: 1c:6b:e3:26:87:c2:34:bc:e0:a7:13:f8:08:a5:95: 6c:29:35:89:3f:79:8c:f5:c8:10:b2:d0:9a:d2:cc: 02:b7:50:9d:fe:09:0e:42:63:8d:87:56:0f:67:32: e6:1f:fb:1d:49:eb:02:fe:73:97:2d:d9:d6:38:06: 5c:71:ee:c5:b6:67:7a:b9:dc:63:c8:70:e4:a7:43: 7b:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:55:32:4D:6E:B6:AD:60:5D:D3:4F:75:52:AF:56:D1:8E:E4:DD:52 X509v3 Authority Key Identifier: keyid:66:70:78:BD:A0:93:F8:40:40:F3:01:6D:17:9C:AB:A6:7F:68:A6:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/667078BDA093F84040F3016D179CABA67F68A647.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/667078BDA093F84040F3016D179CABA67F68A647.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/323430303a656134303a3a2f33322d3332203d3e203436303631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:ea40::/32 Signature Algorithm: sha256WithRSAEncryption 35:5a:5b:84:eb:1f:1d:71:e3:53:6d:51:b8:9e:40:c3:36:f5: b9:3e:35:1c:56:f2:b3:6e:a0:1b:1e:54:75:3d:fb:a9:b9:40: 98:51:32:9a:7b:f1:0e:a2:33:d6:30:d7:d4:b7:11:2b:d5:d3: e0:d5:f5:6c:89:ec:0e:4c:6f:e5:e8:82:f0:b0:18:b5:09:1e: 19:79:9c:80:79:b8:52:15:16:0d:97:3e:d1:de:7d:2a:fe:97: 5e:bc:f2:57:6c:20:c6:17:ed:3e:b7:04:79:ea:10:dd:47:68: 16:11:d5:2b:c8:e3:b4:ee:04:3b:6b:76:fc:e3:96:05:19:bb: a5:79:2d:d8:32:c2:92:8f:9d:50:79:5e:22:db:b9:ac:d9:66: ed:b9:6d:3d:83:70:0c:5b:78:e3:82:b6:dc:f0:fb:c2:07:2c: 0b:6d:33:b2:76:2e:45:f4:7c:cb:b3:e5:10:ab:e6:a5:f8:25: ad:b6:a3:e1:e8:ce:69:47:08:18:6f:00:e2:66:0e:ba:f9:13: f0:d3:fc:d0:c3:71:87:3d:cf:4c:aa:20:2e:1f:6f:e3:f1:5f: 92:6c:ec:d9:7d:f7:08:f1:1d:e6:59:3c:87:13:9b:2e:5c:36: ec:96:e2:d9:81:9b:57:6d:aa:86:00:4c:a9:ad:d2:24:b5:c2: cb:8f:a0:18 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUHO6sgO6jzgJAjPzbGlzKr7vJrlEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjY3MDc4QkRBMDkzRjg0MDQwRjMwMTZEMTc5Q0FCQTY3 RjY4QTY0NzAeFw0yNDEwMDIxNDU1MDJaFw0yNTEwMDExNTAwMDJaMDMxMTAvBgNV BAMTKDRENTUzMjRENkVCNkFENjA1REQzNEY3NTUyQUY1NkQxOEVFNERENTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJhEG5N6ZuiY/70WHgfeJ1xU73 KZ+PZn0zFP4ykABEYA9E1fTcP1uSWELVToBhUX/XJ0ZWfdfH6AeugIdZOE82I07p f1u+YgyJSWJ1T7fH53ersfQA4WqZ4FIBkOmjXFmAeFjrs5OPHjfb05ISIt7sivgn IIk6kjKEAhgj3ydP23TAaDLjXuQcdc/lzPT4B4fgHy7C+FjjxSh9Yx/JV435qPDr Dmc8Sz0nynIM1PVTF15Epxxr4yaHwjS84KcT+AillWwpNYk/eYz1yBCy0JrSzAK3 UJ3+CQ5CY42HVg9nMuYf+x1J6wL+c5ct2dY4Blxx7sW2Z3q53GPIcOSnQ3tBAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUTVUyTW62rWBd0091Uq9W0Y7k3VIwHwYDVR0j BBgwFoAUZnB4vaCT+EBA8wFtF5yrpn9opkcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzMyNmY0ZS02NjA1LTQ5NmEtYjlmOC1kNmU3N2IyOWJjYzYvMC82NjcwNzhCREEw OTNGODQwNDBGMzAxNkQxNzlDQUJBNjdGNjhBNjQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjY3MDc4QkRBMDkzRjg0MDQwRjMwMTZEMTc5Q0FCQTY3RjY4 QTY0Ny5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJjMzI2ZjRlLTY2MDUtNDk2YS1i OWY4LWQ2ZTc3YjI5YmNjNi8wLzMyMzQzMDMwM2E2NTYxMzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDM0MzYzMDM2MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAOpAMA0GCSqGSIb3 DQEBCwUAA4IBAQA1WluE6x8dceNTbVG4nkDDNvW5PjUcVvKzbqAbHlR1PfupuUCY UTKae/EOojPWMNfUtxEr1dPg1fVsiewOTG/l6ILwsBi1CR4ZeZyAebhSFRYNlz7R 3n0q/pdevPJXbCDGF+0+twR56hDdR2gWEdUryOO07gQ7a3b845YFGbuleS3YMsKS j51QeV4i27ms2WbtuW09g3AMW3jjgrbc8PvCBywLbTOydi5F9HzLs+UQq+al+CWt tqPh6M5pRwgYbwDiZg66+RPw0/zQw3GHPc9MqiAuH2/j8V+SbOzZffcI8R3mWTyH E5suXDbsluLZgZtXbaqGAEyprdIktcLLj6AY -----END CERTIFICATE-----Generated at Tue Mar 11 05:02:46 2025 by rpki-client