$ rpki-client -vvf repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/323430333a343334303a3a2f33322d3332203d3e20313337333738.roa File: 323430333a343334303a3a2f33322d3332203d3e20313337333738.roa (raw, json) Hash identifier: Mb0v9h1dQ2fzKimG/dnv0t/MA1EgX4nopy7o63/fKic= Subject key identifier: E9:B5:DA:FA:1B:19:62:85:1B:6C:A7:E8:6D:78:A5:C1:80:9C:72:2C Certificate issuer: /CN=00AC65E61E4913268C5D0B8AFE8C7D913B686D9F Certificate serial: 05AA4AECBE833C400162E083302B7C636DBEBC41 Authority key identifier: 00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/323430333a343334303a3a2f33322d3332203d3e20313337333738.roa Signing time: Mon 01 Jul 2024 01:03:26 +0000 ROA not before: Mon 01 Jul 2024 00:58:26 +0000 ROA not after: Mon 30 Jun 2025 01:03:26 +0000 asID: 137378 IP address blocks: 2403:4340::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.crl rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:aa:4a:ec:be:83:3c:40:01:62:e0:83:30:2b:7c:63:6d:be:bc:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00AC65E61E4913268C5D0B8AFE8C7D913B686D9F Validity Not Before: Jul 1 00:58:26 2024 GMT Not After : Jun 30 01:03:26 2025 GMT Subject: CN=E9B5DAFA1B1962851B6CA7E86D78A5C1809C722C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:eb:08:5a:a8:5e:c8:0f:b0:52:b6:f2:f4:d6: 2a:df:ba:e4:de:11:eb:71:9e:a5:bd:f0:62:24:dc: 15:49:8d:41:1a:37:a4:c6:30:96:02:88:be:42:03: 72:9f:e6:3f:87:a4:b3:e1:ab:88:19:b7:27:ee:88: af:4a:4f:03:fa:57:a4:0e:ff:17:63:29:3c:e6:01: 01:0d:3c:30:b8:0d:ac:70:68:e9:b7:2c:3b:c9:ab: 72:d8:5c:c8:10:4b:2b:e8:ca:9a:0e:78:4e:71:6f: 85:c5:ae:d9:2e:b9:09:b5:ee:bf:05:35:64:f2:22: f9:fb:37:c7:b7:3c:a6:73:50:12:12:03:33:40:5d: a1:60:56:64:17:08:3c:3b:2a:7e:06:73:c5:94:f8: 14:de:a2:96:fd:ec:76:b6:4e:72:08:b6:4c:7f:67: 16:27:94:26:55:6d:38:07:db:f5:86:fb:23:17:fa: 12:bc:d0:83:ac:52:d9:f7:44:39:a0:16:d1:26:a1: 84:43:b7:0e:2b:db:49:f3:92:b8:6d:a1:a2:05:a0: 43:a1:7c:80:eb:dd:91:64:8b:00:d6:43:85:c9:6d: a3:20:41:14:e1:4c:bd:c1:47:b9:0c:c5:a6:3a:ff: 0b:40:57:46:f7:7d:8d:9c:13:da:08:8c:96:dc:3c: 70:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:B5:DA:FA:1B:19:62:85:1B:6C:A7:E8:6D:78:A5:C1:80:9C:72:2C X509v3 Authority Key Identifier: keyid:00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/323430333a343334303a3a2f33322d3332203d3e20313337333738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:4340::/32 Signature Algorithm: sha256WithRSAEncryption 3b:58:4a:c3:cc:61:88:9a:22:eb:2c:9c:36:93:89:f2:10:35: ec:f6:28:94:9e:d0:bb:fe:83:01:cc:aa:6a:81:4f:3e:d9:59: 68:71:96:25:a5:f3:f8:6d:7c:f6:8e:d0:7d:9f:b2:c7:bd:62: 68:e2:18:77:b9:93:d1:04:ee:fa:41:a2:7e:10:07:23:ea:ce: ff:37:2a:0f:12:3d:31:e0:3e:53:90:67:d9:92:de:56:97:d8: 0c:f1:b7:46:31:a6:52:36:2c:ba:b5:bb:9e:52:3f:c1:e9:b3: df:b7:e9:fe:82:12:91:c3:62:c3:f0:ca:ad:e2:b5:c3:78:d4: 33:db:f4:70:10:5c:5d:73:26:4a:43:19:eb:a0:54:5a:7b:18: 41:fb:57:6d:d0:7f:6f:4b:63:b0:15:0e:bd:5f:50:0e:88:d4: 0c:28:74:71:bb:18:fa:5f:c1:7a:c1:44:9e:0c:1c:3c:10:71: d9:32:5e:f1:b7:60:2c:c3:28:94:b2:60:2e:0f:1d:27:f2:34: d5:40:f2:9c:e5:38:99:25:86:01:79:53:c5:4d:57:b7:2b:4c: a0:12:5d:c9:23:45:7b:f4:b7:37:eb:70:fc:4f:a9:96:70:b9: 6e:0d:c7:b4:62:fe:3c:5b:07:e3:f6:22:bb:4f:8d:dc:dc:7a: a2:a2:3e:f4 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUBapK7L6DPEABYuCDMCt8Y22+vEEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBBQzY1RTYxRTQ5MTMyNjhDNUQwQjhBRkU4QzdEOTEz QjY4NkQ5RjAeFw0yNDA3MDEwMDU4MjZaFw0yNTA2MzAwMTAzMjZaMDMxMTAvBgNV BAMTKEU5QjVEQUZBMUIxOTYyODUxQjZDQTdFODZENzhBNUMxODA5QzcyMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC36whaqF7ID7BStvL01irfuuTe EetxnqW98GIk3BVJjUEaN6TGMJYCiL5CA3Kf5j+HpLPhq4gZtyfuiK9KTwP6V6QO /xdjKTzmAQENPDC4DaxwaOm3LDvJq3LYXMgQSyvoypoOeE5xb4XFrtkuuQm17r8F NWTyIvn7N8e3PKZzUBISAzNAXaFgVmQXCDw7Kn4Gc8WU+BTeopb97Ha2TnIItkx/ ZxYnlCZVbTgH2/WG+yMX+hK80IOsUtn3RDmgFtEmoYRDtw4r20nzkrhtoaIFoEOh fIDr3ZFkiwDWQ4XJbaMgQRThTL3BR7kMxaY6/wtAV0b3fY2cE9oIjJbcPHCrAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU6bXa+hsZYoUbbKfobXilwYCcciwwHwYDVR0j BBgwFoAUAKxl5h5JEyaMXQuK/ox9kTtobZ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTg5NTBmMC0zYjE0LTRhNmQtYjMwZi03NTM3OWNiMmViY2UvMC8wMEFDNjVFNjFF NDkxMzI2OEM1RDBCOEFGRThDN0Q5MTNCNjg2RDlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBBQzY1RTYxRTQ5MTMyNjhDNUQwQjhBRkU4QzdEOTEzQjY4 NkQ5Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlODk1MGYwLTNiMTQtNGE2ZC1i MzBmLTc1Mzc5Y2IyZWJjZS8wLzMyMzQzMDMzM2EzNDMzMzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNzMzMzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQDQ0AwDQYJKoZI hvcNAQELBQADggEBADtYSsPMYYiaIussnDaTifIQNez2KJSe0Lv+gwHMqmqBTz7Z WWhxliWl8/htfPaO0H2fsse9YmjiGHe5k9EE7vpBon4QByPqzv83Kg8SPTHgPlOQ Z9mS3laX2Azxt0YxplI2LLq1u55SP8Hps9+36f6CEpHDYsPwyq3itcN41DPb9HAQ XF1zJkpDGeugVFp7GEH7V23Qf29LY7AVDr1fUA6I1AwodHG7GPpfwXrBRJ4MHDwQ cdkyXvG3YCzDKJSyYC4PHSfyNNVA8pzlOJklhgF5U8VNV7crTKASXckjRXv0tzfr cPxPqZZwuW4Nx7Ri/jxbB+P2IrtPjdzceqKiPvQ= -----END CERTIFICATE-----Generated at Fri Nov 22 08:00:08 2024 by rpki-client on console-ams.rpki-client.org