$ rpki-client -vvf repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/323430353a316534303a313a3a2f34382d3438203d3e203538343735.roa File: 323430353a316534303a313a3a2f34382d3438203d3e203538343735.roa (raw, json) Hash identifier: Ob3pXqV5fT3Qb/wUwMvuoxur/OUYsZ0HgXFBn0KdRIs= Subject key identifier: 3C:70:E2:49:EA:48:E8:11:A1:43:03:78:70:29:A3:B7:AE:77:B6:5E Certificate issuer: /CN=A51E37523B05B166B7DE977CF4AC6596FDD97B98 Certificate serial: 0554472D8A2D4EB8D03FB2258B2BEFF142F60103 Authority key identifier: A5:1E:37:52:3B:05:B1:66:B7:DE:97:7C:F4:AC:65:96:FD:D9:7B:98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51E37523B05B166B7DE977CF4AC6596FDD97B98.cer Subject info access: rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/323430353a316534303a313a3a2f34382d3438203d3e203538343735.roa Signing time: Mon 01 Jul 2024 01:06:01 +0000 ROA not before: Mon 01 Jul 2024 01:01:01 +0000 ROA not after: Mon 30 Jun 2025 01:06:01 +0000 asID: 58475 IP address blocks: 2405:1e40:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/A51E37523B05B166B7DE977CF4AC6596FDD97B98.crl rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/A51E37523B05B166B7DE977CF4AC6596FDD97B98.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51E37523B05B166B7DE977CF4AC6596FDD97B98.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 08:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:54:47:2d:8a:2d:4e:b8:d0:3f:b2:25:8b:2b:ef:f1:42:f6:01:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A51E37523B05B166B7DE977CF4AC6596FDD97B98 Validity Not Before: Jul 1 01:01:01 2024 GMT Not After : Jun 30 01:06:01 2025 GMT Subject: CN=3C70E249EA48E811A14303787029A3B7AE77B65E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a7:18:4b:a2:bc:cf:79:f2:69:a5:1a:ab:d3: 0c:cd:02:91:68:00:27:e9:55:9d:3d:7b:f4:69:43: 9c:71:45:08:bf:e6:e4:76:91:39:61:66:57:4f:e8: 31:4a:a6:7b:2e:cf:8f:8d:c2:35:2f:a8:b6:cd:ae: 24:54:0d:e3:58:5f:ae:d5:c4:8a:0a:52:1f:c4:99: 25:06:ce:68:cf:08:82:6e:3a:56:30:6d:f4:1d:aa: 83:7e:6c:12:82:26:a7:7f:9f:a9:f5:89:08:56:11: 9c:56:db:df:fb:77:11:3f:f8:e8:48:41:c2:76:62: 04:4d:ab:5f:e7:44:1d:4f:a3:e1:7d:25:a0:6e:1b: a4:58:70:c9:9f:59:08:e4:29:3a:24:29:62:3f:58: 96:27:5b:8d:00:cf:d3:83:90:a5:d0:d2:b5:be:48: c1:16:ba:a9:89:d8:92:98:18:24:5a:94:1f:4e:a6: 19:e6:33:da:cf:f3:97:fe:f8:db:27:5e:b9:75:ef: 14:72:87:20:99:2d:d3:95:10:2a:a7:f4:96:4c:8d: 2d:9c:f1:34:61:2c:c9:47:1e:e8:1a:4d:17:2e:13: e7:b5:d3:9f:f8:4d:09:11:16:96:f0:54:34:63:e3: 45:3f:d8:34:98:24:c2:2b:5e:76:53:3c:cb:92:95: 83:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:70:E2:49:EA:48:E8:11:A1:43:03:78:70:29:A3:B7:AE:77:B6:5E X509v3 Authority Key Identifier: keyid:A5:1E:37:52:3B:05:B1:66:B7:DE:97:7C:F4:AC:65:96:FD:D9:7B:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/A51E37523B05B166B7DE977CF4AC6596FDD97B98.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51E37523B05B166B7DE977CF4AC6596FDD97B98.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/323430353a316534303a313a3a2f34382d3438203d3e203538343735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:1e40:1::/48 Signature Algorithm: sha256WithRSAEncryption 72:cb:28:d7:a0:e0:9c:b9:5b:c7:1e:44:cf:be:b0:b6:00:84: ca:b6:26:89:df:a5:f2:56:54:71:58:9e:37:05:3f:18:1a:50: a2:0d:2d:2f:9d:06:df:67:14:0d:42:be:4c:5f:56:00:17:ca: 9b:52:1f:c6:86:81:d8:0e:7f:7e:06:25:0e:dd:0d:7b:51:98: 7b:81:f9:b0:21:4f:d7:1d:b8:82:0b:31:51:c1:4b:e7:69:d0: 01:d4:af:95:a6:e7:9c:08:ad:9c:de:2d:a1:e3:78:4b:9e:48: 5c:74:86:74:ad:fa:1f:28:b3:22:46:65:5f:26:ca:b0:db:90: a5:da:cf:4b:18:11:f4:91:fa:6a:7a:c2:a1:fb:cc:7f:4a:0a: 3d:d4:b3:31:47:9c:89:d1:04:d5:49:19:a7:14:5f:b7:b5:6d: 85:32:54:38:d2:de:3d:6c:57:80:46:b8:5d:c4:88:4a:3f:41: 3d:a6:cd:3d:cf:a9:dc:28:79:17:e7:40:5f:8e:59:9c:9e:a8: 5f:27:3e:9c:1e:3e:b8:99:52:06:34:1f:31:24:16:a2:a1:d8: e6:e2:cc:34:71:e8:14:ec:55:3d:3f:6c:19:a3:5c:d5:a7:7c: 7e:30:b9:82:df:88:9c:86:5c:86:ce:c7:60:3d:c1:6a:22:d5: 4b:59:a4:fa -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUBVRHLYotTrjQP7Iliyvv8UL2AQMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTUxRTM3NTIzQjA1QjE2NkI3REU5NzdDRjRBQzY1OTZG REQ5N0I5ODAeFw0yNDA3MDEwMTAxMDFaFw0yNTA2MzAwMTA2MDFaMDMxMTAvBgNV BAMTKDNDNzBFMjQ5RUE0OEU4MTFBMTQzMDM3ODcwMjlBM0I3QUU3N0I2NUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3pxhLorzPefJppRqr0wzNApFo ACfpVZ09e/RpQ5xxRQi/5uR2kTlhZldP6DFKpnsuz4+NwjUvqLbNriRUDeNYX67V xIoKUh/EmSUGzmjPCIJuOlYwbfQdqoN+bBKCJqd/n6n1iQhWEZxW29/7dxE/+OhI QcJ2YgRNq1/nRB1Po+F9JaBuG6RYcMmfWQjkKTokKWI/WJYnW40Az9ODkKXQ0rW+ SMEWuqmJ2JKYGCRalB9OphnmM9rP85f++NsnXrl17xRyhyCZLdOVECqn9JZMjS2c 8TRhLMlHHugaTRcuE+e105/4TQkRFpbwVDRj40U/2DSYJMIrXnZTPMuSlYOhAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUPHDiSepI6BGhQwN4cCmjt653tl4wHwYDVR0j BBgwFoAUpR43UjsFsWa33pd89Kxllv3Ze5gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 OGYzOWJkNC1jZGFjLTQxY2YtODg1OC1kNzQxMGY2NGQxNTUvMC9BNTFFMzc1MjNC MDVCMTY2QjdERTk3N0NGNEFDNjU5NkZERDk3Qjk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTUxRTM3NTIzQjA1QjE2NkI3REU5NzdDRjRBQzY1OTZGREQ5 N0I5OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ4ZjM5YmQ0LWNkYWMtNDFjZi04 ODU4LWQ3NDEwZjY0ZDE1NS8wLzMyMzQzMDM1M2EzMTY1MzQzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM4MzQzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAUeQAABMA0G CSqGSIb3DQEBCwUAA4IBAQByyyjXoOCcuVvHHkTPvrC2AITKtiaJ36XyVlRxWJ43 BT8YGlCiDS0vnQbfZxQNQr5MX1YAF8qbUh/GhoHYDn9+BiUO3Q17UZh7gfmwIU/X HbiCCzFRwUvnadAB1K+VpuecCK2c3i2h43hLnkhcdIZ0rfofKLMiRmVfJsqw25Cl 2s9LGBH0kfpqesKh+8x/Sgo91LMxR5yJ0QTVSRmnFF+3tW2FMlQ40t49bFeARrhd xIhKP0E9ps09z6ncKHkX50BfjlmcnqhfJz6cHj64mVIGNB8xJBaiodjm4sw0cegU 7FU9P2wZo1zVp3x+MLmC34ichlyGzsdgPcFqItVLWaT6 -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:21 2024 by rpki-client on console-fra.rpki-client.org