$ rpki-client -vvf repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/323430373a613630303a3a2f33322d3338203d3e203138303034.roa File: 323430373a613630303a3a2f33322d3338203d3e203138303034.roa (raw, json) Hash identifier: eE3XQXL5yxYICxpW4xLR89CNbidQvABOBnQ5o39erVY= Subject key identifier: 0B:E3:D9:14:D8:75:5C:C0:47:56:94:F7:79:AA:86:A3:0E:59:6C:41 Certificate issuer: /CN=735D87BA86773AC70137CF53116358A1F3B19766 Certificate serial: 30D0DF771FFA5656FA883BB44F985BF763F8B9D1 Authority key identifier: 73:5D:87:BA:86:77:3A:C7:01:37:CF:53:11:63:58:A1:F3:B1:97:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/323430373a613630303a3a2f33322d3338203d3e203138303034.roa Signing time: Sun 02 Jun 2024 04:00:01 +0000 ROA not before: Sun 02 Jun 2024 03:55:01 +0000 ROA not after: Sun 01 Jun 2025 04:00:01 +0000 asID: 18004 IP address blocks: 2407:a600::/32 maxlen: 38 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.crl rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:d0:df:77:1f:fa:56:56:fa:88:3b:b4:4f:98:5b:f7:63:f8:b9:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=735D87BA86773AC70137CF53116358A1F3B19766 Validity Not Before: Jun 2 03:55:01 2024 GMT Not After : Jun 1 04:00:01 2025 GMT Subject: CN=0BE3D914D8755CC0475694F779AA86A30E596C41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:5a:0e:71:aa:3f:ef:3d:97:3d:e3:5c:d1:cb: 81:b2:f8:f5:67:58:11:a7:91:39:7c:30:e2:e0:7f: 68:11:72:67:bd:6b:73:37:ca:68:a9:5b:da:53:43: 83:db:92:40:1c:02:b1:50:38:de:f2:0e:d6:b3:ba: 88:72:2f:98:87:14:16:1b:fb:39:47:9b:27:3d:9a: f6:72:3f:c3:03:de:ea:99:0c:fc:00:c9:1f:bf:db: 43:7d:f0:67:25:86:0a:fa:28:e4:b0:f9:4f:23:2b: d5:b3:3c:7c:48:22:35:41:44:c3:22:95:35:08:e0: 5f:f1:d1:8f:ad:a5:da:9a:8e:90:92:18:27:92:af: ca:39:64:45:c2:cb:1b:98:a4:87:96:b6:d7:3b:26: a0:05:49:2d:4e:bc:1f:dd:07:18:27:72:76:01:87: 98:92:9e:a0:b2:f3:bf:99:49:31:6c:40:43:5a:a8: da:dc:8a:ea:a6:3a:b6:9e:43:d1:71:b5:9c:fe:91: 14:74:df:0c:31:a7:43:43:f3:3c:8e:22:66:b0:d0: 5e:84:59:6f:4f:bc:d4:aa:eb:68:68:d5:2d:2a:93: ba:01:77:4d:a3:86:86:4a:52:aa:79:92:db:0c:fc: f7:b2:e2:7e:49:91:d4:41:52:53:61:26:11:b5:29: 4f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:E3:D9:14:D8:75:5C:C0:47:56:94:F7:79:AA:86:A3:0E:59:6C:41 X509v3 Authority Key Identifier: keyid:73:5D:87:BA:86:77:3A:C7:01:37:CF:53:11:63:58:A1:F3:B1:97:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/323430373a613630303a3a2f33322d3338203d3e203138303034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:a600::/32 Signature Algorithm: sha256WithRSAEncryption 3b:24:95:da:dc:ba:83:1b:7a:5d:06:b9:f0:9f:5f:12:8d:0c: fc:23:f1:7e:a5:da:96:c9:ae:4a:6d:83:12:49:91:e0:a9:2c: 97:2c:9d:fa:ee:3b:65:24:fd:f1:a9:1e:c0:10:b9:50:7a:d5: 02:92:dd:b6:60:8b:75:5d:15:86:ed:50:00:84:08:eb:b1:3c: 46:eb:53:9d:28:90:e7:b8:59:71:08:7a:2f:86:68:30:01:6b: b4:83:8c:1e:31:55:e8:d4:24:f0:e6:14:1b:fb:18:3c:ec:a2: 7a:70:cc:a8:e3:27:ad:b8:b9:5a:40:d9:a9:13:ed:23:aa:f9: ab:7b:94:73:d2:b1:4a:be:85:e4:bd:09:c7:10:a2:46:9a:81: 34:4d:93:17:de:f4:52:4c:8f:6d:d5:cb:22:5e:1c:96:00:85: 51:7d:77:88:2e:88:4d:96:09:66:eb:38:e1:de:34:d5:e0:a7: be:fd:48:03:e4:60:56:0d:d4:08:92:45:b7:b6:25:47:25:a4: 54:0e:96:62:28:95:de:7e:cb:24:f5:38:b5:08:2c:5f:c1:29: 61:49:b7:68:52:83:ea:1c:e4:a0:5c:ec:10:8a:27:1f:1a:05: 9e:da:41:a2:4a:da:9b:7d:27:61:38:a3:b8:ef:db:61:0b:bc: a4:43:b2:b7 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUMNDfdx/6Vlb6iDu0T5hb92P4udEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzM1RDg3QkE4Njc3M0FDNzAxMzdDRjUzMTE2MzU4QTFG M0IxOTc2NjAeFw0yNDA2MDIwMzU1MDFaFw0yNTA2MDEwNDAwMDFaMDMxMTAvBgNV BAMTKDBCRTNEOTE0RDg3NTVDQzA0NzU2OTRGNzc5QUE4NkEzMEU1OTZDNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAWg5xqj/vPZc941zRy4Gy+PVn WBGnkTl8MOLgf2gRcme9a3M3ymipW9pTQ4PbkkAcArFQON7yDtazuohyL5iHFBYb +zlHmyc9mvZyP8MD3uqZDPwAyR+/20N98Gclhgr6KOSw+U8jK9WzPHxIIjVBRMMi lTUI4F/x0Y+tpdqajpCSGCeSr8o5ZEXCyxuYpIeWttc7JqAFSS1OvB/dBxgncnYB h5iSnqCy87+ZSTFsQENaqNrciuqmOraeQ9FxtZz+kRR03wwxp0ND8zyOImaw0F6E WW9PvNSq62ho1S0qk7oBd02jhoZKUqp5ktsM/Pey4n5JkdRBUlNhJhG1KU/VAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUC+PZFNh1XMBHVpT3eaqGow5ZbEEwHwYDVR0j BBgwFoAUc12HuoZ3OscBN89TEWNYofOxl2YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjVkMzY0YS1kYTBiLTQ1NDAtOTM0OS01OTMwYmQ3MjVjZTMvMC83MzVEODdCQTg2 NzczQUM3MDEzN0NGNTMxMTYzNThBMUYzQjE5NzY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzM1RDg3QkE4Njc3M0FDNzAxMzdDRjUzMTE2MzU4QTFGM0Ix OTc2Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmNWQzNjRhLWRhMGItNDU0MC05 MzQ5LTU5MzBiZDcyNWNlMy8wLzMyMzQzMDM3M2E2MTM2MzAzMDNhM2EyZjMzMzIy ZDMzMzgyMDNkM2UyMDMxMzgzMDMwMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkB6YAMA0GCSqGSIb3 DQEBCwUAA4IBAQA7JJXa3LqDG3pdBrnwn18SjQz8I/F+pdqWya5KbYMSSZHgqSyX LJ367jtlJP3xqR7AELlQetUCkt22YIt1XRWG7VAAhAjrsTxG61OdKJDnuFlxCHov hmgwAWu0g4weMVXo1CTw5hQb+xg87KJ6cMyo4yetuLlaQNmpE+0jqvmre5Rz0rFK voXkvQnHEKJGmoE0TZMX3vRSTI9t1csiXhyWAIVRfXeILohNlglm6zjh3jTV4Ke+ /UgD5GBWDdQIkkW3tiVHJaRUDpZiKJXefssk9Ti1CCxfwSlhSbdoUoPqHOSgXOwQ iicfGgWe2kGiStqbfSdhOKO479thC7ykQ7K3 -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:03 2024 by rpki-client on console-fra.rpki-client.org