$ rpki-client -vvf repo-rpki.idnic.net/repo/337506c5-5ef1-4294-8902-a4114fdf3b00/0/323430353a326334303a3a2f33322d3438203d3e203435373035.roa File: 323430353a326334303a3a2f33322d3438203d3e203435373035.roa (raw, json) Hash identifier: 11R4VbN5gI5IqFyoABa76CnRTx/2S0gTdE6pcYNApx8= Subject key identifier: AE:E9:14:0E:FC:6B:4E:2F:ED:7E:6C:DC:62:2E:D4:31:63:81:4A:55 Certificate issuer: /CN=348D53D52081AB75C21BE292C2A5077DF4B75308 Certificate serial: 1E3193FED928E5C4DD2050D4969CEC24A25F8701 Authority key identifier: 34:8D:53:D5:20:81:AB:75:C2:1B:E2:92:C2:A5:07:7D:F4:B7:53:08 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/348D53D52081AB75C21BE292C2A5077DF4B75308.cer Subject info access: rsync://repo-rpki.idnic.net/repo/337506c5-5ef1-4294-8902-a4114fdf3b00/0/323430353a326334303a3a2f33322d3438203d3e203435373035.roa Signing time: Mon 01 Jul 2024 01:05:45 +0000 ROA not before: Mon 01 Jul 2024 01:00:45 +0000 ROA not after: Mon 30 Jun 2025 01:05:45 +0000 asID: 45705 IP address blocks: 2405:2c40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/337506c5-5ef1-4294-8902-a4114fdf3b00/0/348D53D52081AB75C21BE292C2A5077DF4B75308.crl rsync://repo-rpki.idnic.net/repo/337506c5-5ef1-4294-8902-a4114fdf3b00/0/348D53D52081AB75C21BE292C2A5077DF4B75308.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/348D53D52081AB75C21BE292C2A5077DF4B75308.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 23:19:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:31:93:fe:d9:28:e5:c4:dd:20:50:d4:96:9c:ec:24:a2:5f:87:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=348D53D52081AB75C21BE292C2A5077DF4B75308 Validity Not Before: Jul 1 01:00:45 2024 GMT Not After : Jun 30 01:05:45 2025 GMT Subject: CN=AEE9140EFC6B4E2FED7E6CDC622ED43163814A55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:cf:0a:a4:49:fa:7c:13:49:bb:4b:2e:26:01: 6d:2a:87:4a:d3:c1:51:78:21:29:10:c9:91:d3:8e: c6:57:8e:cf:3a:73:5c:27:27:2e:9d:52:ae:22:b7: 02:7b:13:76:fa:2e:eb:c9:31:35:cc:3d:6c:b4:bd: 0a:f9:a0:e3:f1:a0:7e:1d:bd:af:fa:95:d7:11:71: 0d:dc:4b:13:fa:7f:e6:5b:64:ac:4b:86:db:bb:3c: dd:5f:ca:3b:77:f0:f2:8d:2b:7c:42:c6:09:89:75: 1d:3c:59:77:52:36:61:7d:ff:90:6b:98:9b:9f:c9: 6f:37:b6:c1:da:0c:31:79:0e:aa:ad:c6:b2:38:56: fb:9c:b3:71:24:29:e2:08:67:b5:c2:01:fb:a6:9c: bc:c6:5a:bb:c1:ea:42:be:84:9c:d7:eb:84:b1:e4: c4:f7:4d:8e:f7:8f:39:3e:07:97:56:4c:8d:6f:8d: 21:5f:64:ef:54:30:a1:2d:c5:b6:cc:cc:30:16:44: 66:f7:75:47:e2:d1:bc:d3:e1:ee:34:79:7e:79:79: e1:70:fb:53:63:dc:26:56:31:bb:dc:11:a4:89:a4: 8a:37:ef:9a:c7:03:01:9e:b2:b2:79:6a:90:10:eb: 48:4d:ee:4d:c3:cd:06:22:e3:00:7d:7c:b7:74:4d: f8:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:E9:14:0E:FC:6B:4E:2F:ED:7E:6C:DC:62:2E:D4:31:63:81:4A:55 X509v3 Authority Key Identifier: keyid:34:8D:53:D5:20:81:AB:75:C2:1B:E2:92:C2:A5:07:7D:F4:B7:53:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/337506c5-5ef1-4294-8902-a4114fdf3b00/0/348D53D52081AB75C21BE292C2A5077DF4B75308.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/348D53D52081AB75C21BE292C2A5077DF4B75308.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/337506c5-5ef1-4294-8902-a4114fdf3b00/0/323430353a326334303a3a2f33322d3438203d3e203435373035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:2c40::/32 Signature Algorithm: sha256WithRSAEncryption c6:bb:40:e3:d1:cb:59:3f:cb:81:37:7d:70:18:a7:a7:23:44: 68:b6:c0:10:e4:ce:f0:45:67:24:f1:8b:74:f7:df:46:e2:ee: 5b:11:9c:4f:82:af:45:f9:93:af:ac:8f:85:5e:c6:e2:57:35: 19:b8:18:4e:0b:e0:ab:75:fd:4d:37:79:64:2d:23:71:e1:5c: 5b:6f:15:3a:33:20:1e:cf:65:52:da:45:d6:cd:24:c4:ca:84: 01:bc:27:0e:dc:40:79:1c:32:27:a0:19:cf:e9:c4:e0:ed:da: 2e:8f:71:63:66:f6:4f:4a:a5:67:e1:0e:0b:87:d8:d6:4a:5f: af:38:99:12:47:06:41:9f:bc:a6:66:41:93:31:f4:2d:c1:d1: 55:e8:52:dd:6d:a1:78:92:3f:6b:20:b9:2d:a9:33:ec:d2:33: fa:14:7b:bc:c3:d8:71:4d:01:24:99:86:42:aa:a4:14:9c:90: f6:ed:95:fd:c4:40:d5:05:df:59:56:2c:e5:8e:a3:09:b2:02: 92:cf:2a:47:3c:29:e4:1a:17:7e:31:b3:91:ff:ad:53:de:f1: bd:9b:23:63:19:73:45:da:0b:8f:f7:2f:8e:db:7f:e9:44:08: 2b:5f:fb:5f:7f:db:d4:4b:ae:c5:b8:aa:f5:46:ed:ff:16:3e: 0e:2c:5a:17 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUHjGT/tko5cTdIFDUlpzsJKJfhwEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ4RDUzRDUyMDgxQUI3NUMyMUJFMjkyQzJBNTA3N0RG NEI3NTMwODAeFw0yNDA3MDEwMTAwNDVaFw0yNTA2MzAwMTA1NDVaMDMxMTAvBgNV BAMTKEFFRTkxNDBFRkM2QjRFMkZFRDdFNkNEQzYyMkVENDMxNjM4MTRBNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqzwqkSfp8E0m7Sy4mAW0qh0rT wVF4ISkQyZHTjsZXjs86c1wnJy6dUq4itwJ7E3b6LuvJMTXMPWy0vQr5oOPxoH4d va/6ldcRcQ3cSxP6f+ZbZKxLhtu7PN1fyjt38PKNK3xCxgmJdR08WXdSNmF9/5Br mJufyW83tsHaDDF5DqqtxrI4Vvucs3EkKeIIZ7XCAfumnLzGWrvB6kK+hJzX64Sx 5MT3TY73jzk+B5dWTI1vjSFfZO9UMKEtxbbMzDAWRGb3dUfi0bzT4e40eX55eeFw +1Nj3CZWMbvcEaSJpIo375rHAwGesrJ5apAQ60hN7k3DzQYi4wB9fLd0TfhjAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUrukUDvxrTi/tfmzcYi7UMWOBSlUwHwYDVR0j BBgwFoAUNI1T1SCBq3XCG+KSwqUHffS3UwgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Mzc1MDZjNS01ZWYxLTQyOTQtODkwMi1hNDExNGZkZjNiMDAvMC8zNDhENTNENTIw ODFBQjc1QzIxQkUyOTJDMkE1MDc3REY0Qjc1MzA4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ4RDUzRDUyMDgxQUI3NUMyMUJFMjkyQzJBNTA3N0RGNEI3 NTMwOC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMzNzUwNmM1LTVlZjEtNDI5NC04 OTAyLWE0MTE0ZmRmM2IwMC8wLzMyMzQzMDM1M2EzMjYzMzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM0MzUzNzMwMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBSxAMA0GCSqGSIb3 DQEBCwUAA4IBAQDGu0Dj0ctZP8uBN31wGKenI0RotsAQ5M7wRWck8Yt0999G4u5b EZxPgq9F+ZOvrI+FXsbiVzUZuBhOC+Crdf1NN3lkLSNx4VxbbxU6MyAez2VS2kXW zSTEyoQBvCcO3EB5HDInoBnP6cTg7douj3FjZvZPSqVn4Q4Lh9jWSl+vOJkSRwZB n7ymZkGTMfQtwdFV6FLdbaF4kj9rILktqTPs0jP6FHu8w9hxTQEkmYZCqqQUnJD2 7ZX9xEDVBd9ZVizljqMJsgKSzypHPCnkGhd+MbOR/61T3vG9myNjGXNF2guP9y+O 23/pRAgrX/tff9vUS67FuKr1Ru3/Fj4OLFoX -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:58 2024 by rpki-client on console-ams.rpki-client.org