$ rpki-client -vvf repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/323430373a373263303a3a2f33322d3332203d3e203538383230.roa File: 323430373a373263303a3a2f33322d3332203d3e203538383230.roa (raw, json) Hash identifier: O0kB35ZfI8HAJk//bVJZTEiu/+ctMIoB+u6dUW4r5UY= Subject key identifier: 00:A8:2B:0F:F4:96:09:86:F6:11:C3:A2:6A:64:D5:62:67:99:56:81 Certificate issuer: /CN=C1C0233DC07302E86D114AB772AB6566ED7F5FBB Certificate serial: 25CE5BE4CE50DF8E2DC92DB007085F8EF0098F03 Authority key identifier: C1:C0:23:3D:C0:73:02:E8:6D:11:4A:B7:72:AB:65:66:ED:7F:5F:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/323430373a373263303a3a2f33322d3332203d3e203538383230.roa Signing time: Thu 14 Mar 2024 16:01:15 +0000 ROA not before: Thu 14 Mar 2024 15:56:15 +0000 ROA not after: Thu 13 Mar 2025 16:01:15 +0000 asID: 58820 IP address blocks: 2407:72c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.crl rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:ce:5b:e4:ce:50:df:8e:2d:c9:2d:b0:07:08:5f:8e:f0:09:8f:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1C0233DC07302E86D114AB772AB6566ED7F5FBB Validity Not Before: Mar 14 15:56:15 2024 GMT Not After : Mar 13 16:01:15 2025 GMT Subject: CN=00A82B0FF4960986F611C3A26A64D56267995681 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:5e:f3:62:b3:d0:6a:6b:10:24:49:d9:db:c7: f3:a9:e1:fa:a7:19:4e:29:1e:cb:70:5f:fc:fd:a8: ea:64:0e:78:01:ca:8a:38:2e:39:91:ca:87:53:a5: f6:3b:43:70:89:28:da:59:b2:1f:3a:e3:6b:b3:c5: 1b:6c:69:96:da:e0:6a:dd:ab:a8:92:01:40:d9:f5: ad:90:1c:91:27:d8:c8:11:91:5d:9f:d1:01:e7:5a: 60:17:dc:39:23:3d:9c:85:50:be:df:69:39:d3:7a: b5:a6:92:0e:b5:8e:5d:33:8d:75:ec:3f:60:7e:29: d9:9c:84:6e:9d:40:5d:d6:51:5d:32:37:2d:44:7c: b6:4d:9a:77:c1:1c:f9:e0:93:de:8c:0d:da:52:d7: 4f:76:f4:84:54:bf:3f:8a:b7:3d:93:90:9a:f8:73: 93:77:54:fb:fc:99:ab:73:e2:dc:76:58:02:d6:79: 05:16:ac:d2:d4:dd:51:69:15:13:16:52:ef:04:4f: 47:62:9c:be:6a:5f:57:60:b3:d8:f9:43:f8:4c:96: c7:84:e3:eb:ea:c1:0e:e5:18:6f:30:8c:cd:15:f6: f1:a5:d9:56:01:11:2f:42:64:90:04:68:b6:e0:f6: ce:1a:be:f5:8d:7e:2e:9e:cc:be:84:b4:4b:65:53: e4:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:A8:2B:0F:F4:96:09:86:F6:11:C3:A2:6A:64:D5:62:67:99:56:81 X509v3 Authority Key Identifier: keyid:C1:C0:23:3D:C0:73:02:E8:6D:11:4A:B7:72:AB:65:66:ED:7F:5F:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/323430373a373263303a3a2f33322d3332203d3e203538383230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:72c0::/32 Signature Algorithm: sha256WithRSAEncryption 8c:0d:ce:e3:bb:cd:48:c0:f5:ee:24:b2:16:b0:38:ae:4c:af: 94:e3:77:b2:ab:d1:dd:df:36:14:b2:7e:73:59:2e:1a:59:2e: b1:3d:27:db:5b:79:3a:25:74:ce:04:18:c4:dd:50:58:99:c0: 21:71:88:95:f5:21:78:5c:5b:11:8d:96:47:37:c3:70:4f:9c: 6a:3f:ab:54:ed:33:4f:de:12:c1:a5:fe:bc:d9:1a:c5:3d:84: 00:81:17:61:c5:b2:20:24:39:70:94:bf:e1:3d:58:8b:dd:a6: f5:85:1e:a9:d3:b3:e9:4b:d6:f9:71:e1:b0:f4:f6:7e:c2:51: 4d:c6:4b:e2:96:40:10:44:4a:98:fa:02:20:9b:63:22:33:eb: 94:0f:49:85:48:82:52:72:df:59:8f:90:43:f8:b5:88:85:e8: 5e:b6:20:bd:c2:27:05:96:bf:31:02:dd:fe:4d:d1:37:ac:39: 75:c5:7f:f9:d7:d3:32:81:26:11:70:5e:1d:df:87:da:96:81: 23:ad:68:cb:f0:97:9d:3c:de:02:9c:d3:a8:47:a9:2a:2f:e4: 03:d3:53:49:ea:fa:77:0d:5f:ef:7c:2a:85:db:b2:69:0b:7b: d9:ec:68:69:02:76:10:07:e9:4e:78:f0:1e:4d:6f:e6:4b:ea: b2:12:a1:f8 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUJc5b5M5Q344tyS2wBwhfjvAJjwMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFDMDIzM0RDMDczMDJFODZEMTE0QUI3NzJBQjY1NjZF RDdGNUZCQjAeFw0yNDAzMTQxNTU2MTVaFw0yNTAzMTMxNjAxMTVaMDMxMTAvBgNV BAMTKDAwQTgyQjBGRjQ5NjA5ODZGNjExQzNBMjZBNjRENTYyNjc5OTU2ODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUXvNis9BqaxAkSdnbx/Op4fqn GU4pHstwX/z9qOpkDngByoo4LjmRyodTpfY7Q3CJKNpZsh8642uzxRtsaZba4Grd q6iSAUDZ9a2QHJEn2MgRkV2f0QHnWmAX3DkjPZyFUL7faTnTerWmkg61jl0zjXXs P2B+KdmchG6dQF3WUV0yNy1EfLZNmnfBHPngk96MDdpS10929IRUvz+Ktz2TkJr4 c5N3VPv8matz4tx2WALWeQUWrNLU3VFpFRMWUu8ET0dinL5qX1dgs9j5Q/hMlseE 4+vqwQ7lGG8wjM0V9vGl2VYBES9CZJAEaLbg9s4avvWNfi6ezL6EtEtlU+RnAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUAKgrD/SWCYb2EcOiamTVYmeZVoEwHwYDVR0j BBgwFoAUwcAjPcBzAuhtEUq3cqtlZu1/X7swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z OGM5YzI1Mi1mN2NhLTRkZDUtODhmNi0yMmFkZGM4OTM0YjMvMC9DMUMwMjMzREMw NzMwMkU4NkQxMTRBQjc3MkFCNjU2NkVEN0Y1RkJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzFDMDIzM0RDMDczMDJFODZEMTE0QUI3NzJBQjY1NjZFRDdG NUZCQi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4YzljMjUyLWY3Y2EtNGRkNS04 OGY2LTIyYWRkYzg5MzRiMy8wLzMyMzQzMDM3M2EzNzMyNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDM1MzgzODMyMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkB3LAMA0GCSqGSIb3 DQEBCwUAA4IBAQCMDc7ju81IwPXuJLIWsDiuTK+U43eyq9Hd3zYUsn5zWS4aWS6x PSfbW3k6JXTOBBjE3VBYmcAhcYiV9SF4XFsRjZZHN8NwT5xqP6tU7TNP3hLBpf68 2RrFPYQAgRdhxbIgJDlwlL/hPViL3ab1hR6p07PpS9b5ceGw9PZ+wlFNxkvilkAQ REqY+gIgm2MiM+uUD0mFSIJSct9Zj5BD+LWIhehetiC9wicFlr8xAt3+TdE3rDl1 xX/519MygSYRcF4d34faloEjrWjL8JedPN4CnNOoR6kqL+QD01NJ6vp3DV/vfCqF 27JpC3vZ7GhpAnYQB+lOePAeTW/mS+qyEqH4 -----END CERTIFICATE-----Generated at Thu Nov 21 21:01:20 2024 by rpki-client on console-fra.rpki-client.org