$ rpki-client -vvf repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/323430323a333263303a3a2f33322d3332203d3e20313332363337.roa File: 323430323a333263303a3a2f33322d3332203d3e20313332363337.roa (raw, json) Hash identifier: qUMTZOKqFJrYj5YAPgs121X9//L8rpIE4d8u+ioonEM= Subject key identifier: B6:2F:67:00:B9:CB:6B:A6:86:4D:CA:A1:CB:B7:CD:B9:74:84:D0:DE Certificate issuer: /CN=7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD Certificate serial: 2EFDC32D7AA960C7C71DB370B9001C2E8BA5DA4C Authority key identifier: 7E:FA:64:C1:15:73:C2:92:E1:92:C2:CD:EA:C4:D5:F8:B8:C2:1D:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/323430323a333263303a3a2f33322d3332203d3e20313332363337.roa Signing time: Thu 06 Jun 2024 02:19:05 +0000 ROA not before: Thu 06 Jun 2024 02:14:05 +0000 ROA not after: Thu 05 Jun 2025 02:19:05 +0000 asID: 132637 IP address blocks: 2402:32c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.crl rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:fd:c3:2d:7a:a9:60:c7:c7:1d:b3:70:b9:00:1c:2e:8b:a5:da:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD Validity Not Before: Jun 6 02:14:05 2024 GMT Not After : Jun 5 02:19:05 2025 GMT Subject: CN=B62F6700B9CB6BA6864DCAA1CBB7CDB97484D0DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d9:05:15:25:55:0a:82:79:b8:c5:a7:e9:a4: 0e:4c:0d:a9:83:a7:34:d8:c8:be:f2:92:a4:b8:f8: 3a:4c:35:74:a5:9b:0c:5c:5c:46:e8:b0:b7:3f:2a: f5:2f:16:fe:45:63:87:b3:0b:8e:af:6b:ba:06:7e: 71:13:c3:e2:8c:8e:ea:65:0f:5c:30:67:e7:c0:b3: a8:33:54:4c:3b:e2:28:26:75:33:e3:66:a8:0e:dd: 07:d6:60:4f:c5:b7:43:96:a9:60:73:88:1a:9a:f1: a5:be:1c:10:88:16:b6:89:8f:72:05:26:6d:35:3b: 28:01:b0:02:8b:7d:b1:20:0f:8e:99:62:ca:df:46: 30:db:96:85:bf:f6:c0:a7:15:43:9a:5f:18:85:a6: cc:31:56:04:c5:12:07:41:22:33:54:cd:4a:5c:0a: 48:f6:e4:93:28:f4:fa:1f:d3:df:b6:bb:09:eb:fb: 3f:f5:55:4e:3b:77:6f:13:53:19:b2:39:8a:28:e0: 19:28:81:e2:11:07:a3:05:23:e6:0c:14:29:5d:9a: f5:55:71:5b:0e:d3:14:c2:bf:b9:3c:9b:a7:d2:d3: 36:37:35:e9:6a:a0:c0:49:30:5c:3b:78:6b:5b:ea: 1a:f1:3d:d3:69:4e:a1:90:1c:0f:9e:22:cb:91:94: 1f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:2F:67:00:B9:CB:6B:A6:86:4D:CA:A1:CB:B7:CD:B9:74:84:D0:DE X509v3 Authority Key Identifier: keyid:7E:FA:64:C1:15:73:C2:92:E1:92:C2:CD:EA:C4:D5:F8:B8:C2:1D:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/323430323a333263303a3a2f33322d3332203d3e20313332363337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:32c0::/32 Signature Algorithm: sha256WithRSAEncryption aa:af:9e:83:d8:60:04:fd:64:33:2b:9f:b9:c3:3d:fb:f4:ee: 9b:86:ad:e2:ca:e1:92:0e:c0:78:e1:e0:80:34:0a:a6:6c:b7: b1:19:37:5e:be:7a:b2:d6:88:3d:e7:b3:53:26:6d:29:f3:cd: 72:d6:7f:f3:ca:1d:eb:9d:89:7e:28:19:cb:4a:2c:54:e4:c8: e3:cf:a8:39:f2:31:15:1f:c0:5a:64:d6:00:e3:2f:67:98:8a: c9:ba:d3:66:d1:b7:96:5d:ff:9d:40:fb:ac:0f:18:90:dc:66: 5e:99:b5:96:02:a4:6b:8c:fe:20:47:11:6c:e9:6a:ca:63:6e: 75:95:e5:08:f1:c9:f8:7f:17:e4:f4:97:2c:fa:6d:7f:10:43: 65:0a:1a:46:21:aa:f9:6a:52:6a:af:c0:5f:77:5a:26:7e:96: 3f:78:13:85:44:7c:b3:19:0f:34:91:16:72:04:62:25:4c:42: af:38:a7:b6:32:78:ea:ae:35:98:70:2d:c8:75:0b:b1:11:2a: 45:59:64:52:e9:4b:66:b4:09:42:14:19:f9:c8:93:54:51:1e: 3f:22:b6:d8:78:11:c3:1a:5f:b8:31:36:fc:ca:c5:3d:96:c4: 32:70:37:76:6e:b1:97:fb:97:b4:05:f7:c7:4b:db:64:a4:dc: ab:e7:16:16 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIULv3DLXqpYMfHHbNwuQAcLoul2kwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0VGQTY0QzExNTczQzI5MkUxOTJDMkNERUFDNEQ1RjhC OEMyMURCRDAeFw0yNDA2MDYwMjE0MDVaFw0yNTA2MDUwMjE5MDVaMDMxMTAvBgNV BAMTKEI2MkY2NzAwQjlDQjZCQTY4NjREQ0FBMUNCQjdDREI5NzQ4NEQwREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI2QUVJVUKgnm4xafppA5MDamD pzTYyL7ykqS4+DpMNXSlmwxcXEbosLc/KvUvFv5FY4ezC46va7oGfnETw+KMjupl D1wwZ+fAs6gzVEw74igmdTPjZqgO3QfWYE/Ft0OWqWBziBqa8aW+HBCIFraJj3IF Jm01OygBsAKLfbEgD46ZYsrfRjDbloW/9sCnFUOaXxiFpswxVgTFEgdBIjNUzUpc Ckj25JMo9Pof09+2uwnr+z/1VU47d28TUxmyOYoo4BkogeIRB6MFI+YMFCldmvVV cVsO0xTCv7k8m6fS0zY3NelqoMBJMFw7eGtb6hrxPdNpTqGQHA+eIsuRlB8hAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUti9nALnLa6aGTcqhy7fNuXSE0N4wHwYDVR0j BBgwFoAUfvpkwRVzwpLhksLN6sTV+LjCHb0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDA5MjdlNi04YTBhLTRmYTctODk2OS05ZmI5ZDY5NDM5N2MvMC83RUZBNjRDMTE1 NzNDMjkyRTE5MkMyQ0RFQUM0RDVGOEI4QzIxREJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0VGQTY0QzExNTczQzI5MkUxOTJDMkNERUFDNEQ1RjhCOEMy MURCRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkMDkyN2U2LThhMGEtNGZhNy04 OTY5LTlmYjlkNjk0Mzk3Yy8wLzMyMzQzMDMyM2EzMzMyNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzMjM2MzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQCMsAwDQYJKoZI hvcNAQELBQADggEBAKqvnoPYYAT9ZDMrn7nDPfv07puGreLK4ZIOwHjh4IA0CqZs t7EZN16+erLWiD3ns1MmbSnzzXLWf/PKHeudiX4oGctKLFTkyOPPqDnyMRUfwFpk 1gDjL2eYism602bRt5Zd/51A+6wPGJDcZl6ZtZYCpGuM/iBHEWzpaspjbnWV5Qjx yfh/F+T0lyz6bX8QQ2UKGkYhqvlqUmqvwF93WiZ+lj94E4VEfLMZDzSRFnIEYiVM Qq84p7YyeOquNZhwLch1C7ERKkVZZFLpS2a0CUIUGfnIk1RRHj8itth4EcMaX7gx NvzKxT2WxDJwN3ZusZf7l7QF98dL22Sk3KvnFhY= -----END CERTIFICATE-----Generated at Fri Nov 22 22:09:27 2024 by rpki-client on console-ams.rpki-client.org